Falkra

Hello, what version of MBAM is installed ? The latest release is 1.44, you should have this version.

Hello, welcome to the forums, At the moment, scanning from a USB drive, like portable applications, is not possible. See here for more information from a staff member (among other discussions) : http://forums.malwarebytes.org/index.php?s...st&p=162736

I will not evaluate their work or trustability, I only say that comparative are synthetic tests, most times very interesting and well done, but they don't reflect, in my opinion, the way people use antivirus, and the protection level they provide. This cannot be really quantified. There is a gap between the tests, and how most users interpret them, most users on forums read the results and transpose them to a global quality rating.

Hello memoemc2, Win32/Vobfus.F looks like antivirus naming, was this detection a message from antivirus software ? It is possible that the antivirus was the first to identify and lock the file, therefore MBAM could not access it. If you think MBAM missed some files and you still have them, you can upload the malicious samples here, they will be checked.

Read carefully what is tested in comparatives, and remember that reactivity (never compared), will make difference between an infected and a protected computer, when new variants are detected or forgotten.

Malwares don't need to destroy protection software, disabling them is enough, and can be less visible than destroying files. I didn't find specific references to Norton files being destroyed, except when exposing a system to some file infectors, but they destroy almost everything. This might be only a question of terminology clarification, like the "Norton registry files" from first post, which are probably registry keys, some of those can be deleted (or most likely altered) by malwares.

Ok, then you can add this IP to exclusions : right click the MBAM icon after seeing the baloon tip about this IP being blocked, then choose to add it to exclusions list, and it will be ignored.

Hello, this IP resolves to a server from TeamViewer : server401.teamviewer.com http://www.teamviewer.com/ Are you using this program ? This one is ok. But TeamViewer is not the only one to use this IP : http://hosts-file.net/?s=124.217.239.120&view=matches http://hosts-file.net/default.asp?s=124.217.239.120

And thanks for fixing this so fast.

I'm sorry, I can't see such post or pinned topic at the moment. This isn't mentionned (as far as I see) except in posts like this one.In fact I don't understand why telling you that is not enough and you want a link. Link to this thread, and if necessary, ask directly developers for a post where they confirm this. As I said, there are no "Instructions on the Correct Running Of MBA-M", you can run it in safe mode if you have no active malware that alters safe mode. Your question cannot be answered by a yes or no answer. It depends. About understanding, english is not my first language, so maybe I misunderstood some of your words. If so I'm sorry, someone else will surely answer better than I did.

I think part of the information is only known by developers, which can't post detailed specifications, to avoid malwares getting efficient when attacking MBAM.

For most infections and sophisticated malwares, safe mode is not required, or should even not be used (considering Bagle, for example, who damages safe mode registry keys), so this suggestion cannot apply to every situation, it needs to be analyzed first, depending on which malware is inside. Safe mode shouldn't be recommended every time. MBAM is designed to unload infections in normal mode. For some specific malware with anti-MBAM capabilities (which are not always successful), some tools like rkill from Grinler can unload malicious processes and enable MBAM to run and destroy the malware again, for example.

Hello JTalbert, welcome to the forums. The malwares with anti-MBAM capabilities you are talking about in your first post would also block MBAM from a USB drive, at least the most sophisticated ones. In a general way, Trusted Advisors, and some other member groups can know a little bit about the incoming improvements, sometimes we can tell you about it. About priorities, you can find here some examples where staff members answer the same, here is one, among others : http://forums.malwarebytes.org/index.php?s...st&p=162736There are other threads (keyword "portable" gave me a lot). Don't worry, the staff knows users want a portable/usb version. It may happen, but we can't tell when, at the moment. Is this because of the missing USB feature ?If you need direct corporate information, you can contact the staff here or PM some specific members, they will probably post after me : http://www.malwarebytes.org/contact.php

Hello, cookies don't harm directly your OS, they are not active data, they are used to store parameters or information. In the worst case, they harm your privacy but not your OS's stability or functions, unlike malwares do. About scan before run, in fact if your resident modules are set up, especially the antivirus one, the files you run are scanned and intercepted before they run, so even if you double click, they can be stopped in case something is detected.

Good !

Close any open work program you have running. Disable your antivirus (temporarily) and any other resident antimalware. Then give one more try at mbam-clean.

Please try this on the computer that is having this issue. Uninstall Malwarebytes' Anti-Malware using Add/Remove programs in the control panel. Restart your computer (very important). Download and run this utility. mbam-clean.exe It will ask to restart your computer (please allow it to, this is important). After the computer restarts, install the latest version from here: mbam-setup.exe

Hello, Please make sure you didn't delete, move or modify any language file (some users do that and also get error 383).

The responsiveness is ok. Not fantastic but ok. True that the software needs a lot of resources, but that's another point.

I have been testing antivirus software for some time, and honnestly, Avast is always late. The team adds deifnitions for new variants too late. I now use Antivir free, which is much better concerning that specific point.

Hello, sorry to bump into existing topic, but I didn't want to start something new on this error code. Runtime error 383 => "Property Set can't be used with a read-only property" This also happens when users delete some language files, they think some files are unneeded, and simply go to the languages folder and keep only one. I was a bit surprised, and tried it. The message immediately appeared. I told the users not to touch MBAM's files, of course.

Have a look to the "logs" tabs, you will be able to read and post protection module logs (unable to start should also be logged, if so).

I made some checks on my OS, and I found something unusual about dates. I posted a detailed report about to the developer team. Thanks for mentionning this, I wouldn't have checked that without your post.

Hello, welcome to Malwarebytes forums, personally, I use the free version of Avira's Antivir. It has a good detection rate, and the updates add to database recent threats detection, unlike Avast (unfortunately). AVG is quite good but needs more memory. One things comparatives cannot reflect easily is how fast teams react. Let's say every antivirus gives you daily updates. If the updates add definitions for threats known for 10 days, it is useless - well - less than adding detection for top recent variants. What matters is what is inside, and Antivir is quite good, for this. I won't say it's the best, or that the best antivirus exist, one hour after reading this, you are protected, or not, depending on what the updates contain. This will be the difference between a protected computer, and an infected computer, sometimes.

Hello, welcome to MBAM forums, please have a look here : http://forums.malwarebytes.org/index.php?showtopic=38860 The planned features for next version (1.45) will introduce new items in protection tab and scheduler. I think you will like them (this is for paid version). On my computer, the date column sorts well the quarantined elements. Make sure your system uses two-digit date format (for months and days so on February the 2nd it displays "02/02" instead of "2/2"), MBAM should be using the OS settings, so it may change how to sort by date.