Lerain

Found it here :D When I will be able to edit my posts ? Is it a paid feature ? The lack of such ability is ultra annoying and I'm doing double posting like crazy because of that.

Do you have a dedicated "Malwarebytes Uninstaller" software like the others AVs, that removes all configurations and so on ? Right now if I uninstall the client, restart the computer and install the latest version again - i'm getting the same result with those Premium feature which means some settings are persisted between different installations.

Greetings again, I was messing around with the latest version of MB as shown here : Happily this is already fixed. Double checked so everything will be detected now. However, I've found something else :D I've installed my MB client a week ago, so the system gave me the limited time Premium license. Very cool thing indeed. I was testing the "Automatic quarantine" feature, just to see if it will detect all the malicious files that I'm going trough. I don't need that feature in my everyday use, so for me I was about to disable it later. Then i thought - what will happen if I try to kill my premium license - just by deleting it from the Account tab :D I did just that - the software reverted to Free edition, but here is the twist. The old premium features got stuck and now I cannot disable them :D I think it's some kind of a bug tho. I was testing some malicious files earlier and nothing removed them, so maybe the "Automatic quarantine" feature is not really working, just a UI bug.

Then put them on a "False Positive" folder and everything will be fine. Nothing will be detected. I don't know how you edit posts here - it seems impossible for me.

Yes, but if you put one of those AI and Heuristic things - they wont be. Example : https://www.raymond.cc/blog/test-the-effectiveness-of-your-antivirus-firewall-and-hips-software/ Option 5 - Zemana Simulation Test Programs Scan the tree EXEs directly from the Zemana Simulation Test Programs - you will get the Maware.AI detection. Then the put the on a "Fasle Positive" folder and everything will be fine. Then get them out of there and scan again - Maware.AI detection.

I don't use the default scan options. Why waste time and resource when I can target only a specific exe. I thought this is clear from my pictures above showing only 1 files was scanned and not detected.

Found one from this website : https://www.eicar.org/?page_id=3950 Scanning the "eicar.com" will lead to : And if i put that inside a "False Positive" folder = same detection. So MB wont care about the folder if its a specific type of virus (like "EICAR-AV-Test" in this example). BUT I've also tested the "Zemana Simulation Test Programs" from here (Number 5) : https://www.raymond.cc/blog/test-the-effectiveness-of-your-antivirus-firewall-and-hips-software/ That one is labeled "Malware.AI.##########" And if i put that one inside a "False Positive" - take a look So at this point we can say for sure that Malwarebytes AI scanning thing (for the lack of a better name) ignores everything that is inside a folder named "False Positive". This is only for virus types that the AI predicts it might be harmful but not really sure. Just a guess, I dont know how this thing works. It was not documented anywhere so i reckon it might be bug, but at this point i think it's more of a feature that was not explained publicly. I rest my case tho - as the others "real type" viruses will be detected no mater the folder name and so on.

My point exactly.. But either way (with this feature on or off) putting EXEs inside a folder names "False Positive" - will not trigger any detection or at least - will not trigger any detection that is related to "Machine Learning" and "AI" as a type. So what about that ? :D I plan to find an actual virus and hide it inside such folder just to see if MB will recognize it after that. Time to go to some shady sites, i reckon. (O.o)

Found out something else from another topic Basically those files that I've modified are only shown as malicious when the expert system algorithms thing is active. If i deactivate it - none of my modified files are triggered as malicious (or at least the ones with a type Heuristic) The thing with the "False Positive" folder is still unclear. I have several modified files that are Machine Learning / Anomalous 97% (first attachment) They are also ignored if i put them inside a "False Positive" folder :D (second)

Greetings, Just found this on random. Don't know if it's a bug or intended. Basically I've modified one of my EXE files for a game in order to get the proper title on Playnite (with tools like Resource Tuner 2.20 or Resource Hacker 5.1.8 where you can edit the ProductName metadata). On that particular one, Malwarebytes doesn't like the change and starts to show up like that : And this is the scan on Virtus Total : https://www.virustotal.com/gui/file/96779fcc37c3f211889548215c3679b138fb88697aa24e6188c0627ea977d977?nocache=1 However, I've put the game inside a folder called "False Positive" and suddenly Malwarebytes stops noticing it. My "Allow List" is completely empty : I've also tested this on another computer with brand new installation of Malwarebytes and as soon as the EXE is inside a folder called "False Positive" - it wont detect anything. Is that supposed to happens ? What will prevent someone from creating the same naming for a folder ("False Positive") and put all kind of malicious things there, since MB will ignore them ?