Jump to content

Recommended Posts

FAQs

What new features are in Malwarebytes 4.0?
Malwarebytes 4.0 leverages all of our years of experience removing malware and delivers all the protection your Windows computer needs, now registering as the primary cybersecurity program in Windows Defender Security Center. The new Malwarebytes Katana engine provides superior malware detection for zero hour threats in particular while improving performance for faster Scans. The user interface has been completely redesigned and presents a flowing simple and intuitive experience, threats detected now link to our knowledge base center so you can rest assured and learn more about them and how they are handled. Our new lightweight installer will setup the product in a single step and keep you always up to date.

What is the difference between Premium and Free?
Our company and community are based on the belief that everyone has a fundamental right to a malware-free existence, and that is not changing. Malwarebytes 4 Free will have the same capabilities as Malwarebytes 3.x. You can run scans on demand for free, however if you want us to keep your computer secured automatically with real-time protection and scheduled scans you can sign up for Premium and unlock the full power of the product’s features.

Which Operating Systems does Malwarebytes 4 support?
Malwarebytes 4 supports Windows 7 SP1 or newer.

We continue to support legacy XP and Vista with our Legacy version, you may download the latest available version for XP and Vista by clicking here.

Even though Malwarebytes does not recommend running operating systems that Microsoft no longer supports, we have no current plans of ending or phasing out in any form our support for Windows 7. This means that going forward, and until further notice, we will continue to support Windows 7 as we have up to this point.

Additional information

     Upgrading to Malwarebytes 4.0

     Pricing

     Anti-Virus Replacement

    Third Party testing and Malwarebytes 4

     Malwarebytes 4.0 files to be added to AV Exclusions List

     Malwarebytes support for legacy Windows XP and Vista Operating Systems

     EICAR

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites
  • Erix pinned and locked this topic

Upgrading to Malwarebytes 4.0

I already have a subscription to Malwarebytes 3.x. How much do I have to pay for Malwarebytes 4.0?

Existing subscribers will not have to pay anything extra. All Premium subscribers with an active subscription can upgrade to Malwarebytes 4.0 for free. Your existing license key will work automatically with Malwarebytes 4.0 Premium.

Malwarebytes continues to honor legacy lifetime licenses for Windows (which, as a reminder, allowed for activation on one Windows device).

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites

Pricing

What will be the price for a Malwarebytes 4.0 Premium license, and how many PCs will it cover?
The price has not changed with the release of Malwarebytes 4.0. The price for new purchases of Malwarebytes 4.0 Premium is $39.99/year for 1 PC. 

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites

Anti-Virus Replacement

Is Malwarebytes 4.0 Premium an anti-virus replacement?

With Malwarebytes 4.0 we are releasing brand new detection technology as part of our Anti-Malware protection. Malwarebytes 4.0 goes beyond traditional AV solutions by applying multiple layers of protection and detection, including proactive ransomware technology, malicious website protection and anti-exploit capabilities. These features combine to deliver the holistic defense across multiple attack vectors necessary to protect users in today’s evolving threat landscape and are backed by Malwarebytes’ powerful linking technology, renowned for its ability to remove all traces of malware from an infected machine.

Since Malwarebytes 4.0 Premium is an anti-virus replacement, will it register itself in Windows Security Center in order for Windows to recognize it as security software?

With any new install Malwarebytes 4.0’s new default behavior is to register in Windows Defender Security Center (also known as Windows Security Center, Windows Action Center) as a primary line of defense. Due to Microsoft’s implementation of Windows Defender Security Center, this means that Windows Defender will disable itself as a result (depending on your operating system). Though we do not prevent you from running traditional anti-virus with Malwarebytes, we recommend that you keep Malwarebytes registered as your primary security to get the most comprehensive protection against threats. 

If you are upgrading from Malwarebytes 3.x, then the behavior is a little different. Your current Windows Security Center registration information for Malwarebytes 3.x will carry over. For example, if you have Malwarebytes 3.x registered in Windows Security Center, then that is what you will see with 4.0. If instead, Malwarebytes 3.x is not registered in Windows Security Center, then it will not register on upgrade to Malwarebytes 4.x and will instead remain in compatibility mode unless you change this in Malwarebytes 4.0’s Settings.

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites

Third-party testing and Malwarebytes 4

Malwarebytes has historically typically refrained from participating in AV comparison and third-party tests, as we believe they do not properly reflect today’s threat landscape and the methods cybercriminals use to attack endpoints; in other words, are unable to demonstrate our product’s full capabilities. More often than not, these tests skip important steps in the series of events that occur during an infection, and this leads to a misrepresentation of a product’s ability to protect customers.

When presented with skewed test results, we, and our customers, must realize:“If that’s the best antivirus solution according to third-party testers, then how come my machine was infected while using it?” Consider the millions of Malwarebytes customers who turned to our product to clean up what other AVs missed.

We understand however, the importance of independent reviews for those considering a security purchase, which is why we have participated in AV-Test.org testing since November 2018, despite our reservations about their methods being catered more toward testing antivirus products than anti-malware.

We have also decided that we will not participate in all third-party tests and will only collaborate with professional testers (not hobby testers nor amateur reviewers, etc). Mainly because the professional ones often try to get as close to real-world environments and methods as possible. They may not be there yet, but are consciously working with the industry to improve. As an example of this, we have here below the PCMag review of Malwarebytes 4 by Neil J. Rubenking.Using real-world methods, he shows the true protection capabilities of Malwarebytes 4 and specifically states: “Malwarebytes Premium now functions as a full-blown antivirus and not just second-line protection, as it did previously”.

In the malware detection tests below we can see how Malwarebytes 4 gets better malware detection and blocking results than some of the most popular antivirus products.

 

image.png.2ac236165d473ebfa1153ec8dd37efb4.png

Source: https://www.pcmag.com/image_popup/0,1871,iid=659907,00.asp

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites

Malwarebytes 4.0 files to be added to AV Exclusions List

Some antivirus applications require exclusions to be defined for Malwarebytes, so that they do not interfere with Malwarebytes operation and vice versa. These are typically referred to as exclusions or ignore list entries. The following is a list of Malwarebytes programs which should be placed on an Exclusion list if required. 

This list is specific to Malwarebytes Anti-Malware 4.x.

Exclude the following folders: (The complete folder)

  • C:\Program Files\Malwarebytes\Anti-Malware
  • C:\ProgramData\Malwarebytes\MBAMService

Exclude the following files:

  • C:\Windows\System32\drivers\mbae64.sys  (mbae.sys for x86 systems)
  • C:\Windows\System32\drivers\mbam.sys
  • C:\Windows\System32\drivers\MBAMChameleon.sys
  • C:\Windows\System32\drivers\MBAMSwissArmy.sys
  • C:\Windows\System32\drivers\mwac.sys
  • C:\Windows\system32\Drivers\farflt.sys

For specific steps on how to add these files to your antivirus' exclusion list, you will need to contact your antivirus provider directly for best results.

If you have additional questions or need assistance with this particular scenario, please head to our Malwarebytes Support section and create a new topic or simply click here (note: you need to be signed in to create a new topic)

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites

Malwarebytes support for legacy Windows XP and Vista Operating Systems

Malwarebytes 3.5, will continue to support legacy Windows XP and Windows Vista at the same level as we had with earlier 3.x releases. In order for Malwarebytes to better support these legacy operating systems we’ve designed Malwarebytes 3.5 with special compatibility features to allow on-going protection updates and other maintenance upgrades via a separate development track.

Malwarebytes does not recommend running operating systems that Microsoft no longer supports. We strongly recommend that you consider upgrading your legacy operating systems due to the risk from exploits and other threats. However, we recognize that some customers have reasons to continue working with legacy systems so Malwarebytes wants to continue providing support for these legacy platforms for as long as possible. 

Users running Malwarebytes 3.5 on Windows XP and Vista will continue to receive on-going protection updates to keep safe from the latest infections. However, these operating systems will no longer receive program upgrades, such as component packages or newer program versions, for new features. Malwarebytes will continue to release bug fixes, stability improvements, and other upgrades for the XP and Vista platforms on an as needed basis.

You may download the latest available version for XP and Vista by clicking here.

Additionally, as Microsoft has announced its Support for Windows 7 will be ending Jan 2020, we are frequently asked about Malwarebytes supporting Windows 7.

Even though Malwarebytes does not recommend running operating systems that Microsoft no longer supports, we have no current plans of ending, or phasing out our support for Windows 7. This means that until further notice we will continue to support Windows 7 as we have up to this point.

For further details, please view the official Malwarebytes Lifecycle Policy:  

https://www.malwarebytes.com/support/lifecycle/

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites

EICAR

According to the European Expert Group for IT-Security (EICAR) organization, the EICAR test file is a plain string of ASCII characters which can be opened with a regular text editor. EICAR asserts that antivirus products should detect any file that starts with the EICAR strings, which are the following 68 characters:

X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

Detecting the EICAR strings doesn’t mean anything in terms of proving a products’ real-world effectiveness against threats. This experiment merely proves that the antivirus product can use a pattern-matching signature and trigger against a DOS file (not a Windows PE file) whose content starts with the above EICAR string.

At Malwarebytes, we employ over 7 different prevention layers. Each layer has a specific objective in terms of disrupting threats at different stages of the attack chain. Most layers are signature-less and are designed to protect against the real-world threats our researchers observe in-the-wild, ensuring Malwarebytes customers are protected against prevalent and relevant threats.

The detection or lack thereof of the EICAR test file is not representative of how our different vector blocking and payload prevention techniques work, both in pre-execution and post-execution phases of the attack. The MBAM engine does not need to deal with scripts because our anti-exploit, web blocking and application behavior engines are much more effective at disrupting script-based malware and exploits without relying on signatures. Most anti-virus products have to rely on signatures to detect and block script malware, which is exactly what you DON'T WANT your antivirus to do. There are many more obfuscation and signature evasion techniques available for script droppers than there are for binary malware. Therefore relying on signatures to detect script droppers or files like the EICAR test file, is actually damaging to your security. The fact that your security product detects EICAR with a signature should be a reason for CONCERN instead of success. Most modern script-based droppers and attacks are obfuscated anyways, so using signatures on scripts (as those signature detections for .JS ransomware droppers regularly found in VT) is largely useless and easily bypassed as compared to other protection approaches like those found in Malwarebytes for Windows.

An EICAR detection proves that a product is able to use pattern-matching signatures and detect a type of threat that may have been prevalent and relevant over 2 decades ago. According to EICAR, a batch file that reads in another file and displays an “alert” message if it finds the EICAR string would qualify as a virus detection product.

In summary then, Malwarebytes for Windows already incorporates world-class, next-generation anti-malware technologies. Our combination of signature-less and rules-based layered approach is far more effective than using AV signatures. Malwarebytes is able to prevent 0-minute threats and attacks without updates, even script-based, file-less, and other advanced attacks. We will not detect EICAR because EICAR is not representative of either today’s threat environment or security needs.

Edited by AdvancedSetup
Updated font issue
Link to post
Share on other sites
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.