Jump to content

Recommended Posts

It’s normal that in the new version of scan report in Scan Options section shown that only 3 options enabled : Memory, File System and Startup although in the options I have enabled all options included rootkits ?

 

Link to post
Share on other sites
  • Staff

***This is an automated reply***

Hi,

Thanks for posting in the Malwarebytes for Windows Help forum.

 

If you are having technical issues with our Windows product, please do the following: 

Spoiler

If you haven’t already done so, please run the Malwarebytes Support Tool and then attach the logs in your next reply:

NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

  1. Download Malwarebytes Support Tool
  2. Once the file is downloaded, open your Downloads folder/location of the downloaded file
  3. Double-click mb-support-X.X.X.XXXX.exe to run the program
    • You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
  4. Place a checkmark next to Accept License Agreement and click Next
  5. You will be presented with a page stating, "Get Started!"
  6. Click the Advanced tab on the left column

    mbst_get_started.jpg
     
  7. Click the Gather Logs button

    mbst_advanced_gather_logs.jpg
     
  8. A progress bar will appear and the program will proceed with getting logs from your computer

    mbst_getting_logs.jpg
     
  9. Upon completion, a file named mbst-grab-results.zip will be found on your Desktop. Click OK

    mbst_log_saved_desktop.jpg
     
  10. Please attach the file in your next reply. Before submitting your reply, be sure to enable "Notify me of replies" like so:

     notify me.jpeg  

Click "Reveal Hidden Contents" below for details on how to attach a file:
 

Spoiler

To save attachments, please click the link as shown below. You can click and drag the files to this bar or you can click the choose files, then browse to where your files are located, select them and click the Open button.

mb_attach.jpg.220985d559e943927cbe3c078b
 

One of our experts will be able to assist you shortly.

 

If you are having licensing issues, please do the following: 

Spoiler

For any of these issues:

  • Renewals
  • Refunds (including double billing)
  • Cancellations
  • Update Billing Info
  • Multiple Transactions
  • Consumer Purchases
  • Transaction Receipt

Please contact our support team at https://support.malwarebytes.com/community/consumer/pages/contact-us to get help

If you need help looking up your license details, please head here: https://support.malwarebytes.com/docs/DOC-1264 

 

Thanks in advance for your patience.

-The Malwarebytes Forum Team

 

Link to post
Share on other sites
8 hours ago, Alpharius said:

It’s normal that in the new version of scan report in Scan Options section shown that only 3 options enabled : Memory, File System and Startup although in the options I have enabled all options included rootkits ?

 

Rootkit scanning is off by default.

Link to post
Share on other sites
14 minutes ago, Porthos said:

Rootkit scanning is off by default.

This is of course very interesting but the message is clearly off topic.

I wrote that I have all scan options enabled but it does not displayed in the report, I wanted to find out why.

Link to post
Share on other sites
26 minutes ago, Alpharius said:

I wrote that I have all scan options enabled but it does not displayed in the report, I wanted to find out why.

On a manual scan or a scheduled scan? Rootkit scanning is turned on separately in each.

Link to post
Share on other sites

@Porthos

I think you might be misunderstanding what @Alpharius is saying.

I think he is saying that in MB3 if you looked at a scan report it would tell you if you had Rootkit scanning enabled.  It would also tell you what other options were enabled and what their settings were.  For example for PUP's and PUM's what you wanted to do with them.

I agree.  I think the report should tell you this information. 

I hope I am correctly interpreting what he was saying.

Bill

Edited by BillH99999
Link to post
Share on other sites

It's normal for it not to show it in the UI, however if you export the scan log or copy it to the clipboard and paste it then it should show the following:

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

Link to post
Share on other sites

I don't think it did in v3, though I really didn't look at it too often honestly.  I do remember that there were several items that would only show up once the log was exported, and others that were hidden within the advanced/detailed view.

Link to post
Share on other sites

in 3 version in scan eport in the end showed all scan options and you can see what is enabled and disabled, in 4 versions for some reason shows only memory, startup and file system.

That's for sure, because I always check these options after a manual scan.

Link to post
Share on other sites
1 hour ago, Alpharius said:

in 3 version in scan eport in the end showed all scan options and you can see what is enabled and disabled, in 4 versions for some reason shows only memory, startup and file system.

That's for sure, because I always check these options after a manual scan.

It works for me.

Quote

-Software Information-
Version: 4.0.4.49
Components Version: 1.0.750
Update Package Version: 1.0.15352
License: Premium

-System Information-
OS: Windows 10 (Build 18362.476)
CPU: x64
File System: NTFS
User: System

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 319752
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 2 min, 41 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Quote

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 11/25/19
Scan Time: 7:10 AM
Log File: e2f5241a-0f84-11ea-8655-001a7dda7102.json

-Software Information-
Version: 4.0.4.49
Components Version: 1.0.750
Update Package Version: 1.0.15368
License: Premium

-System Information-
OS: Windows 10 (Build 18362.476)
CPU: x64
File System: NTFS
User: I7-PC\SAPC

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual

Result: Completed
Objects Scanned: 320935
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 2 min, 46 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

 

 

Link to post
Share on other sites
20 minutes ago, Porthos said:

It works for me.

 

I mean scan report itself, not log file, in log I also see all options.

I'm trying to understand why all the options are no longer visible in scan report that opens in malwarebytes version 4, although in version 3 they were all visible in scan report.

Link to post
Share on other sites
14 minutes ago, Alpharius said:

I mean scan report itself, not log file, in log I also see all options.

I'm trying to understand why all the options are no longer visible in scan report that opens in malwarebytes version 4, although in version 3 they were all visible in scan report.

Now I see your point. I also see the same as you and others.

For me it is not an issue since my scans are always clean unless I am testing something. But I agree the "displayed" log report should be more through.

Link to post
Share on other sites

I assume it is different because the UI Developers changed it, not because it is some kind of bug.  They likely decided to try and simplify things a bit by only reporting basic information in the UI.

That said I can request that they bring this information back in a future release if you wish, though of course the final decision is up to the Product team.

Link to post
Share on other sites
10 minutes ago, exile360 said:

That said I can request that they bring this information back in a future release if you wish, though of course the final decision is up to the Product team.

Please. Since it's already necessary to drill down to view the detail, & the report screen is rather sparsely populated, I fail to understand the need to 'clean it up'.

Link to post
Share on other sites

I don't know if I'd call the report screen sparsely populated; the Summary tab of the report certainly is (as well it should be since it is a summary, of course), but the Advanced tab actually shows quite a lot of information as illustrated below:

advanced.thumb.png.a8c6e123c1477e3cdcc7eb91b518c875.png

Of course I'm sure they could simply add it under the Scan options section at the bottom, which I believe would be similar to how it was displayed previously in 3.x.  That said, there are actually a lot more settings that impact what is scanned/detected so it would take up quite a bit more room to display all of them.  Each of the highlighted settings below impacts what is scanned/detected by scans:

372820300_detectionsettings.png.eff3a19cb5a45331f56c1570077e14ab.png

That's at least 5 more items that would need to be shown in order to be complete/comprehensive, and that doesn't account for other possible permutations such as the Quick Scan and Custom Scan variations (this would also mean it would have to break out into additional entries such as 'Registry' and possibly 'MBR/VBR/boot files' etc. depending on how complete/accurate they want it to be).

Still, it certainly could be done.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.