Jump to content
malik521

Manual updating how-to in ver2..?

Recommended Posts

How can I manually update MBAM 2...? On version 1.75 I did it by copy/paste,

 

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware'rules.ref

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\database.conf

 

I tried this one but it seems it boinked the setup as it shows "No updates available "

 

jbXMyBH.png

 

Now how can I do it? 

Share this post


Link to post
Share on other sites

Hi Malik521,

 

Never mind, read to fast.

Share this post


Link to post
Share on other sites

Hi, Malik521:

 

 

I think you are asking about how to update MANUALLY, offline, as explained in Section A, Item #4 >>here<<?

It seems that this method might not work for version 2.00, yet.

 

We'll need to wait for staff to provide official feedback about the manual updating process for 2.00.

 

Having said that, I guess the real question is: why are you needing to use that method to update?

Are you having problems with internet connectivity?

Are you infected?

 

daledoc1

 

Share this post


Link to post
Share on other sites

Hi, Malik521:

 

 

I think you are asking about how to update MANUALLY, offline, as explained in Section A, Item #4 >>here<<?

It seems that this method might not work for version 2.00, yet.

 

We'll need to wait for staff to provide official feedback about the manual updating process for 2.00.

 

Having said that, I guess the real question is: why are you needing to use that method to update?

Are you having problems with internet connectivity?

Are you infected?

 

daledoc1

 

@daledoc1,

 

Thanks for the reply. Sorry I confused you there as English is not my native language. Yes offline-manual updating is my question. Why? I am not infected but it's a habit of mine to backup databases so when I do recovery from a backup image I can update fast even without internet connection. It served me well with that method especially when or during a new format(reformat) I always rely on MBAM to scan my new install/format. I do not rely on any other except MBAM. Also I am not always online unlike other people. Sometimes I copy/paste the rules.ref . database.conf from the office and apply it at home. 

 

I also see that even when I unclick "Start with Windows" MBAM starts with Windows. I need to disable protection in order to achieve it. 

 

We'll need to wait for staff to provide official feedback about the manual updating process for 2.00.

Hmm...even the FAQ has not been updated? A lot are asking also for this...I think the devs should have thought of this even in the beta version..

Hope it will not take long. 

Share this post


Link to post
Share on other sites

Hi:
 
Actually, your question was perfectly clear. :)
 
Yours is the 1st inquiry about this since the version 2.00 upgrade that I recall seeing here at the forum.
So I don't know if there have been "a lot" asking about this?
Perhaps they are asking in another venue, such as the help desk or social media?
 
In any event, the offline updating method doesn't seem to be very commonly used these days.
I can't recall the last time someone asked about it. ;)
I think it was originally conceived as a way of getting the current database onto a badly infected computer without internet access (e.g. in the days of ZeroAccess rootkit, etc).
Recent and current versions of MBAM now offer other tools for getting MBAM to run on an infected rig, such as Chameleon.
I don't know how often folks use it in the manner you describe, as a means of backup?
That's especially so since the database is typically updated at least 10-12 times per day.
So, any database backup would be outdated within a matter of hours.

It seems like a lot of work, when one just needs to click one button in the GUI to update, even for the Free version.

But you might well have different circumstances, especially with your internet connection/bandwidth, where you live. :)
 
In any event, I can't say for sure why the old procedure no longer works for 2.00.

I'm sure that the staff will be updating the instructions for offline database updates soon, if needed.

But we will need to wait for them to provide an official status update on the subject.

 

>>>> And, for your new issue (the fact that it is starting with Windows when you don't want it to): please see this very recent post by the MBAM Product Manager and Forum Admin, exile 360.  I think that might explain and fix it for you.
 
Thanks for your patience,
 
daledoc1
 
P.S. You mentioned that you sometimes copy the database from your work computer to your home computer?  I do not work for the company, but I probably ought to mention that use of MBAM software on a work computer requires Business licensing, as explained here.

Share this post


Link to post
Share on other sites

But you might well have different circumstances, especially with your internet connection/bandwidth, where you live.  :)

 

Not all have been blessed with money to spare for a good internet connection. Some of my friends who are asking indeed have asked in social media etc. Some have asked because they have pc's without internet connection all the time (like me) and have such only at a time when it's available or needed badly. Not all work all-day with computers. Some work 8-12 hours in manufacturing or heavy casting industries, the hard blue collar stuff away from computers..etc etc. Cost of internet in some areas where I live are high thus they tend to rely on it. The "backup" is what I said so --so I would not have to update at that moment to have protection. Of course the offline-method scheme was not intended for that way but having such is not a burden especially when you need it and you have no connection or can't be connected at that moment you need the "safe feeling" of having the update definitions at hand. And also let us be reminded that there was a time that you can download "definitions" from a link provided by the old mods here. I think that was in version1.2 or earlier.  I think the offline-update method was also conceived so that you can copy/paste over updated definitions to an infected/or uninfected pc at anytime. 

 

For most it is because of connectivity (as like I mentioned pc's or systems that are not always connected to the internet) or just because that they do not have the extra hard earned dollars to pay for a great connectivity like most of you guys here. I know people who do not use Eset NOD32 / Eset ESS or Kaspersky / Bitdefender / EAM because of their plight with connectivity and stay-on using AvastFree / AviraFree or AVG because they offer a way to be updated via offline-methods. It's difficult for you or most to understand that there are pc's that are not connected or not always wired to the internet especially in this time and age but there are still. 

 


You mentioned that you sometimes copy the database from your work computer to your home computer?  I do not work for the company, but I probably ought to mention that use of MBAM software on a work computer requires Business licensing, as explained here.

 

My company has a business license. It is where we employees came to know how good MBAM is. Most of us(not me) use the freeware version. I believe the rules.ref / database.conf is the same right?

 

Do I need a business license to copy the "rules.ref / database.conf" (from a company which has an MBAM business license) to a usb stick and copy/paste it at my home pc...?

 

Do I need a business license to copy the "rules.ref / database.conf" (from a small internet cafe which has MBAM free --that may need a license but to copy--) to a usb stick and copy/paste it at my home pc...?

 

I have the Premium version and I have connectivity but not always. 

 


I don't know how often folks use it in the manner you describe, as a means of backup?
That's especially so since the database is typically updated at least 10-12 times per day.
So, any database backup would be outdated within a matter of hours.

 

It seems like a lot of work, when one just needs to click one button in the GUI to update, even for the Free version.

 

-- I already mentioned English is NOT my native language and have mentioned that it's a means to update a pc 

...I can update fast even without internet connection...
. Just think and maybe try to understand it "As a means of updating a pc without internet connection" and of course and as we always did  "we will try update using the very latest that we can copy from the pc that has an updated definitions" usually within the day or as the day ends(after work). It may be old to you but it's good enough than a 3 or 4 days stash and of course we do not do that. At home when I am connected(I update and copy the updated defs to a secure folder) I delete that when I have a new one from the office or through my connection(when I am connected). 

 

Do have an open-mind and not compare what you and most people have to others who are not that blessed economically/financially. Funny or tragic or shocking it may seem to you guru but the world is not always milk and honey. In some places "this" is what we have to contend with. 

 


Yours is the 1st inquiry about this since the version 2.00 upgrade that I recall seeing here at the forum.
So I don't know if there have been "a lot" asking about this? Perhaps they are asking in another venue, such as the help desk or social media?

--I said "A lot are asking also for this...I think the devs should have thought of this even in the beta version.." Was there anything there telling you that "that lot of asking" was in THIS forum? It maybe because the ones who are asking a lot are NOT always online they may be asking in the cafeteria or at McDonalds..right? maybe my English is bad or something...

Share this post


Link to post
Share on other sites
..correction...(a part of my reply was mistakenly reflected as a quote). Please pardon for that. 
 

I don't know how often folks use it in the manner you describe, as a means of backup?
That's especially so since the database is typically updated at least 10-12 times per day.
So, any database backup would be outdated within a matter of hours.
 
It seems like a lot of work, when one just needs to click one button in the GUI to update, even for the Free version.
 
-- I already mentioned English is NOT my native language and have mentioned that it's a means to update a pc. . Just think and maybe try to understand it "As a means of updating a pc without internet connection" and of course and as we always did  "we will try update using the very latest that we can copy from the pc that has an updated definitions" usually within the day or as the day ends(after work). It may be old to you but it's good enough than a 3 or 4 days stash and of course we do not do that. At home when I am connected(I update and copy the updated defs to a secure folder) I delete that when I have a new one from the office or through my connection(when I am connected). 
 
Do have an open-mind and not compare what you and most people have to others who are not that blessed economically/financially. Funny or tragic or shocking it may seem to you guru but the world is not always milk and honey. In some places "this" is what we have to contend with. 
 

Yours is the 1st inquiry about this since the version 2.00 upgrade that I recall seeing here at the forum.
So I don't know if there have been "a lot" asking about this? Perhaps they are asking in another venue, such as the help desk or social media?
--I said "A lot are asking also for this...I think the devs should have thought of this even in the beta version.." Was there anything there telling you that "that lot of asking" was in THIS forum? It maybe because the ones who are asking a lot are NOT always online they may be asking in the cafeteria or at McDonalds..right? maybe my English is really bad or something...

Share this post


Link to post
Share on other sites

Hi, malik521:

 

Thanks for your thoughtful feedback.

I apologize for any misunderstanding.

I meant no offense.

 

In any event, we will need to wait for the staff to provide a status update on the ability to perform offline database updates for v.2.00.

 

Thanks for your patience,

daledoc1

Share this post


Link to post
Share on other sites

Offline updating for version 2.0 as in previous versions is no longer supported as that is not a secure method of updating.  There should hopefully be a rules update program available for 2.x soon though.

Share this post


Link to post
Share on other sites

Thank you "AdvancedSetup" for your comments... I was "busy signing up" for a Forum account while you replied... I was going to voice my request for this information also... I run a computer repair shop in Illinois where we fix hundreds of computers every month, and my company is also an approved Malwarebytes reseller through D-Solutions.

 

The reason we need this ability is simple... MalwareBytes is the single best program available to clean machines, and it is the top program in our "arsenal"... when computers come in for us to get rid of the "nasties", we refuse to connect them to our in-house network until after we feel they are clean enough that they will not infect the 20+ machines we might have in-house for repair, plus our own computers.  Some of this malware, as you know, can very well do this and take down a network.

 

You know malware is changing it's ugly self every day, so using old definitions, even a few days old, will not find and clean the new stuff that's out there right now.  Without the ability to manually update, we loose the ability to use MalwareBytes as our first line of defense in cleaning up machines  Case in point, at least with old version 1.75.1300, the installer was 200+ days old and wouldn't be of any value to us without the ability to manual update!

 

I would settle for a weekly updated installer - doesn't have to be a new version, just update the installer with new defs!

Share this post


Link to post
Share on other sites

we refuse to connect them to our in-house network until after we feel they are clean enough that they will not infect the 20+ machines we might have in-house for repair, plus our own computers.  Some of this malware, as you know, can very well do this and take down a network.

 

If this is a service shop, there are ways to segregate a network from another.  That is the repair office is a subnet not accessible to the company IT assets.  Surely a savvy repair shop should know this  ;)

 

Additionally, MBAM may be the wrong product. 

 

I suggest you check out Malwarebytes Business Support specifically TechBench.

Share this post


Link to post
Share on other sites

Hi, malik521:
 
Thanks for your thoughtful feedback.
I apologize for any misunderstanding.
I meant no offense.
 
In any event, we will need to wait for the staff to provide a status update on the ability to perform offline database updates for v.2.00.
 
Thanks for your patience,
daledoc1
 
Forgotten and move-on. Thank you for your patience and understanding. 
 

There should hopefully be a rules update program available for 2.x soon though.
Thank you for this reply. The offline updating method has been very easy and convenient for those in our case. Maybe an update program is the next best thing maybe like what Avast's(daily)/Bitdefender's(weekly) or a tool lke that of Avira's Fusebundle Generator. Surely it's not a burden to the devs. MBAM is a product of choice
 
Y06uzXh.png
 
du8TvPU.png
 
TOxMwN0.png
 
@doublehammer, 
 
Thanks for the post. 

Share this post


Link to post
Share on other sites

corrections again..finger slip..apologies..

 


Hi, malik521:
 
Thanks for your thoughtful feedback.
I apologize for any misunderstanding.
I meant no offense.
 
In any event, we will need to wait for the staff to provide a status update on the ability to perform offline database updates for v.2.00.
 
Thanks for your patience,
daledoc1
 
Forgotten and move-on. Thank you for your patience and understanding. :)

Share this post


Link to post
Share on other sites

David, I appreciate your reply.  What you suggest about segregating the network is understood, and we do this... but, when we are fixing 20+ computers at the same time in-house, we can't have 20+ segregated routers to keep all the customer computers separate from each other, thus that suggestion, while good, is not "totally" practical.

As to the TechBench thumbdrive approach, we stopped connecting thumb drives to infected computers long ago and use instead a CD we update a couple of times a week that contains the MalwareBytes installer (and defs) along with our other tools. We stopped using thumb drives because they can get infected and pass the infections to other machines.  Plus only one expensive TechBench thumb drive would not let us scan 5 to 10 machines at a time like we can do now.  We do have method to our madness!

 

I'd love to have you enlighten me as to how that would benefit us... I'd buy ONE in a hearbeat if you could assure me it would be a better approach, but you would have to be convincing.

JimD

Share this post


Link to post
Share on other sites

doublehammer I agree with David, you need to segregate the repair network separate from your business network. It can be done using VLAN's, but that's a whole different topic...

As for using CD's, that's a great idea but you sure are burning up CD's and profits doing it that way... The way to do this is still using a USB, but you need to get one that you can write protect like a Kanguru SS3™ with Physical Write Protect Switch USB3.0 Flash Drive this way no infections can be written to the USB flash drive when its write protected and you can update the USB Flash drive when ever you want.

 

All that being said, the way your using MBAM in a work shop requires the proper licensing which is the TechBench I suggest you visit that page and contact support and they can work with you on getting what you need.

Share this post


Link to post
Share on other sites

Actually, CD-RWs will prevent the massive overload of repair discs.  When finalized, they, too, are unwritable, except by erasing the contents and re-burning to them.

Share this post


Link to post
Share on other sites

True John but in the time I can write 100 USB sticks you can probably only burn 2 CD-RW disks.  :o:P:D

 

Bottom line - do what works best for your needs and situation.

Share this post


Link to post
Share on other sites

Exactly,  Not only cost, but availability of hardware, time, using what is established...

 

I've recently moved away from making .ISOs myself, and started using various tools for maintaining files and such on a very large UFD.  Right now I'm using a pair of 32 GB, one with Utilities and one specifically for scanning, using all the different free scanners that are bootable from various places.  Can't do that with a CD, not even a DVD, would have to be a BD DL at minimum.

 

It has taken work, but I've got a very nice little system now all the repair tools I can use (thus far) on those two devices.  My goal is to have all that on a single UFD, one that is password protectable and able to be made unwritable except for when I choose.  But that costs a lot of money (relatively speaking).

Share this post


Link to post
Share on other sites

you need to get one that you can write protect like a Kanguru SS3™ with Physical Write Protect Switch USB3.0 Flash Drive this way no infections can be written to the USB flash drive when its write protected and you can update the USB Flash drive when ever you want.

All the tools I need for cleaning and installing new computers and software are all on one USB Flash drive that is write protected as mentioned above. No mess no fuzz and I can updated when I want just by flipping a write protect switch on the drive... easy peasy.... Starting at $40 buck for a 16GB up to $179 for a 128GB.

Share this post


Link to post
Share on other sites

Thanks for all the interesting and helpful comments.  Learn something new every day, didn't know there were thumb drives out there that could be write-protected.  Great idea.  My two techs and I keep our tools on our three 64GB Cruzers now, synchronized to our NAS drive on our network and each other.  The "working CDs" are burned from the Cruzer's most-used items... CDs cost only about 20 cents each, so even a $40 USB drive would be a "2 year payback" in cost savings... but time saved copying at USB speed compared to CD speed would reduce the payback time and make it cost effective...

 

NOW, enlighten me as to how the "Techbench" can work for me... it sounds like all scanning has to be done from it when it is plugged into the computer.  Can it be copied to a 2nd thumb drive such as the read-only Kanguru?  I couldn't afford the $500 each cost for several copies, but couldn't afford to wait to do all the scanning with just one copy either.

JimD 

Share this post


Link to post
Share on other sites

Yes the USB route even though you have to fork over a little bit of cost up front, will pay for itself on the time it takes for you to keep burning CD's.

As for Techbench, it would be best to direct your questions on Techbench in the appropriate section of the forum HERE or by contacting them directly by visiting the main site Malwarebytes Techbench

Share this post


Link to post
Share on other sites

 

Hmm...even the FAQ has not been updated? A lot are asking also for this...I think the devs should have thought of this even in the beta version..

Hope it will not take long. 

 

Hello--

 

I find that there still isn't a mention in the FAQ for version 2 that a manual update method doesn't exist.  If it had been mentioned, I wouldn't have wasted time trying to do it.  The FAQ for version 1 describes a method for doing it and the FAQ for version 2 should warn users that a manual update is no longer possible.  Not so?

Share this post


Link to post
Share on other sites

Hi, Flynnt:

 

Yes, of course Manual Updates are possible. :)

 

This is for both Free and PREMIUM.

Paid PREMIUM users can also schedule automated updates and scans via the Automated Scheduling button.

 

If you are talking about OFFLINE updates, the method used for version 1.x was not secure.

So, it was not carried over to version 2.x.

The dev team has said that a new method will be provided for this some time in the future.

In many cases where offline updates were used for infected computers in the past, Chameleon and other technologies have replaced that approach.

 

Cheers,

post-29793-0-32660500-1400984568_thumb.p

Share this post


Link to post
Share on other sites

Hello--

 

Thanks for the response.

 

In Section A, Issue 4, of the FAQ for version 1 there are instructions for doing an offline upgrade, which is what I was/am referring to,  I should have made it clearer in my previous post.

I know that the method was not carried over to version 2 because I searched the forum and discovered that information.  However, I am saying that information should be in the FAQ for version 2 and not just scattered about in the forum.  When I updated to version 2 and attempted to use the method, it didn't work, but it wasn't obvious to me that this was intentional.  I checked both FAQs and there was no note in the V2 FAQ that this had been done.   My impression, reading both FAQs, was that it hadn't changed -- if it had, someone would have mentioned it in the V2 FAQ.

BTW, I have Pro licenses.
 

Share this post


Link to post
Share on other sites

Hi:

 

Thanks for your feedback. :)

 

I am only a home user and forum volunteer, but I'm sure the staff will consider your suggestions when updating the version 2 FAQ.

(It is still a bit of a work-in-progress, so your patience is appreciated.)

 

If you ever have a question or issue, you can always post back here at the forum.

 

We will do our best to assist you,

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.