• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Kudos0

Why, do we need to use, "Malwarebytes".

I keep seeing the advice in this forum to, "run malwarebytes". which brings me to the following

.

1 What does 'Malwarebytes' do that Norton cannot.

2 What are Norton doing to make their Security Program robust enough so that Malwarebytes is not needed.

As this is all to do with the security of PC data, I feel that Norton/Symantec should be working towards becoming the " 'Total' Security Protection Company", where there is no thought of needing or using other Prog's to rectify security problems.

I'm fully aware that I might get a few 'kick backs' here but felt that I had to ask.

If I'm barking up the wrong 'Tree' here, I'm sure some of you will put me right.

Replies

Kudos1

Re: Why, do we need to use, "Malwarebytes".

Hi boneidle

Malwarebytes is often suggested because it's a on demand scanner. Every security program scans based on different definitions. With the speed and complexity of changing malwares, there is really no way for one security program to keep up with all the changing malwares out there. No security program can catch 100 % of everything that is out there.

Success always occurs in private and failure in full view.
Kudos0

Re: Why, do we need to use, "Malwarebytes".

Re the 1st question

I think it is fair to say that at this time there is no one all singing all dancing, bells & whistles, AV/security product. We could say otherwise when it comes to photo editing, or spreadsheet creation, email client. One hopes that any of the Norton av products are sufficient for the general user but it is clear that some users get themselves into deep trouble which at that point is simply too much for Norton alone to resolve or perhaps users need extra comfort that a particularly nasty bug has actually been fully removed.

In the real word (cf digital word) we see similar examples when an ill person decides to obtain a 2nd opinion. Why should one doctor provide a better or different prognosis than the other?

Kudos1

Re: Why, do we need to use, "Malwarebytes".

Hi boneidle,

I take your point, but floplot and cgoldman are correct. It's really not possible for any one program to be all things to all people.

I view NIS and similar programs as tools -- and I have a lot of them. Sometimes there's an apparent overlap, as with NIS and Malwarebytes, but each is doing things a bit differently. Given that Malwarebytes is free, it's scarcely a problem to have it available and run it when needed.

Kudos2

Re: Why, do we need to use, "Malwarebytes".

Hi Boneidle:

Malwarebytes is useful for several reasons. 

Because it is provided by a completely different developer, the definitions are different.  This allows it to find or handle some things for which Norton has not had the information available.  This makes it a good cross-check against the main security suite.  Since it should only be on-demand, it does not interfere with Norton products.  Even if Norton was the most absolutely perfect product in the world, it is still useful to run a scan with different defs.

The other thing that makes it useful, is that MBAM is able to correct registry items.  Where one antivirus might just take out the infection, leaving something unuseable because of registry damage, MBAM is able to reverse some things, change the value back to what it should be.  It also has relatively few false positives. 

Another thing it does, which we all appreciate, is provide a log of the quarantines, deletions, and/or changes, so we can see what else needs to be done, if anything.  This gives the user the ability to often identify a rootkit, or one of the new .tmp and .dll infections.  Sometimes the information gained is of more value than the actual removal of infections.

I hope that explains it.

Under certain circumstances profanity provides relief denied even to prayer.Mark Twain
Kudos0

Re: Why, do we need to use, "Malwarebytes".

Thanks for the replies.

Just threw this one in the pot to see what came out

Thought perhaps others might be wondering same.

Being a fan of Norton, (creep creep), which I think is one of the best in this game, I just had to ask.

Perhap Norton will add another Link to their quite extensive Chain and bring out a similar Prog., then again, perhaps not.

Still, if they did, I'm sure it would be a good 'un, and another Beta to test.

Kudos2

Re: Why, do we need to use, "Malwarebytes".


floplot wrote:

Hi boneidle

Malwarebytes is often suggested because it's a on demand scanner. Every security program scans based on different definitions. With the speed and complexity of changing malwares, there is really no way for one security program to keep up with all the changing malwares out there. No security program can catch 100 % of everything that is out there.


A whole bunch of good answers, but this one was first and I like it.

One thing not directly mentioned by the other posters:

We recommend malwarebytes in extreme circumstances.  A poster HAS a virus on his computer at the moment.  So we know it slipped by Norton.  It may even have found a way to interfere with Norton, especially if Norton's Tamper Protection is not on.  (The powerful malware out there deliberately searchs for and attacks the most well-known and popular security programs, which means that Norton would be an early, probably first, target for such malware).

With the clock ticking and Norton help currently out of the picture, we grab at another powerful resource hoping it too has not been disabled.  If you read a lot of the pleads for malware-removal help, you will see that even backup resources like Malwarebytes might be blocked on the infected computer.  So then we suggest other freebies, hoping they are still operable or might recognize a signature of the infecting malware in a different way than Norton currently does.

And because the clock is ticking and time is important, it is a good idea to keep a copy of Malwarebytes on your computer and to regularly update it.

It's also a good idea to read how new infections are dealt with.  One such post showed the importance of NOT rebooting when you think you are infected, because rebooting further propogates the virus.  My own strategy in the past -- if I think the virus is active and doing damage while the clock ticks -- is to do a forced power off, even at the risk of losing some data or damaging a file.  The intention is the same, to keep whatever bombs have been put in place for a reboot from detonating when I turn the computer back on.  Sometimes, but not always, a power off accomplishes that.

Another idea might be this.  If you can live without your computer for a day or two, put it into hibernation or suspend it.  When you turn it back on, there might be a lot more fixes available if this is a new infection.

Message Edited by mijcar on 11-25-2009 12:57 PM
mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware
Kudos0

Re: Why, do we need to use, "Malwarebytes".

hi,

I ahave beeen using malwarebytes way before i bought Norton NIS. it is free and traps alot of Malware that others can't.

That's why!

Kudos0

Re: Why, do we need to use, "Malwarebytes".

Moved to own thread for better exposure.
Kudos0

Re: Why, do we need to use, "Malwarebytes".

I know it's easy to install Malwarebytes, but how easy is it to uninstall?  Is there a removal tool like Norton provides if something goes wrong?
Kudos0

Re: Why, do we need to use, "Malwarebytes".

The free version Malwarebytes is tiny (<4mb), installs easily and has its own uninstaller.

So far as I know there is no removal tool equivalent to the NRT.

Kudos0

Re: Why, do we need to use, "Malwarebytes".


Brubaker wrote:

The free version Malwarebytes is tiny (<4mb), installs easily and has its own uninstaller.

So far as I know there is no removal tool equivalent to the NRT.


I get the idea that MWB is sort of free-standing. That is, you could delete its folder and launcher and that would be it.  Or almost.  I haven't checked it out.

Okay, just ran through the registry and MWB is well entwined therein.  So, nope, it's not free-standing.

Message Edited by mijcar on 11-25-2009 03:10 PM
mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware
Kudos0

Re: Why, do we need to use, "Malwarebytes".

Hi

Malwarebytes is listed in Add/remove in control panel in XP Pro. I would assume it would be listed in the other operating systems under the equivalent of add/remove. I would think using the add/remove would clear out the program, but you can always double check with a program like ccleaner if you know how to use it and are comfortable using that program.

Success always occurs in private and failure in full view.
Kudos0

Re: Why, do we need to use, "Malwarebytes".


floplot wrote:

Hi

Malwarebytes is listed in Add/remove in control panel in XP Pro. I would assume it would be listed in the other operating systems under the equivalent of add/remove. I would think using the add/remove would clear out the program, but you can always double check with a program like ccleaner if you know how to use it and are comfortable using that program.


Who is this for?  I didn't realize anyone was having concerns about removing Malwarebytes?

mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware
Kudos0

Re: Why, do we need to use, "Malwarebytes".

 know it's easy to install Malwarebytes, but how easy is it to uninstall?  Is there a removal tool like Norton provides if something goes wrong?


Question was asked in the thread, so I answered it.Car825 asked the question.

Message Edited by floplot on 11-25-2009 05:45 PM
Success always occurs in private and failure in full view.
Kudos0

Re: Why, do we need to use, "Malwarebytes".


floplot wrote:

 know it's easy to install Malwarebytes, but how easy is it to uninstall?  Is there a removal tool like Norton provides if something goes wrong?


Question was asked in the thread, so I answered it.


That's what I was looking for.  Now I need to backtrack and find the poster.

mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware
Kudos0

Re: Why, do we need to use, "Malwarebytes".


mijcar wrote:

floplot wrote:

Hi

Malwarebytes is listed in Add/remove in control panel in XP Pro. I would assume it would be listed in the other operating systems under the equivalent of add/remove. I would think using the add/remove would clear out the program, but you can always double check with a program like ccleaner if you know how to use it and are comfortable using that program.


Who is this for?  I didn't realize anyone was having concerns about removing Malwarebytes?


I asked the question because I had problems with other free programs in the past. It's good to know what to expect. 
Kudos0

Re: Why, do we need to use, "Malwarebytes".

I use Revo uninstaller (free) to remove stuff. It does a great job.
&quot;If it ain't broke, fix it 'til it is&quot;
Kudos0

Re: Why, do we need to use, "Malwarebytes".


car825 wrote:
I know it's easy to install Malwarebytes, but how easy is it to uninstall?  Is there a removal tool like Norton provides if something goes wrong?

Malwarebytes is extremely user-friendly.  I've never seen any problems uninstalling it.

Kind of a general policy, though, for removing a program that seems to have difficulty being uninstalled.  Reinstall it with the original installer if you can, or a later one if you don't have the original.  Then uninstall that program.  Nine out of ten times, that will fix any uninstallation problems you have.

mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware
Kudos0

Re: Why, do we need to use, "Malwarebytes".


MPSAN wrote:
I use Revo uninstaller (free) to remove stuff. It does a great job.

I keep seeing it mentioned in these parts.

Is it usable on a program that isn't listed in ADD/REMOVE?  Or one that ADD/REMOVE gets stuck on?

mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware
Kudos0

Re: Why, do we need to use, "Malwarebytes".


MPSAN wrote:
I use Revo uninstaller (free) to remove stuff. It does a great job.

Love your signature line!

Kudos0

Re: Why, do we need to use, "Malwarebytes".


mijcar wrote:

MPSAN wrote:
I use Revo uninstaller (free) to remove stuff. It does a great job.

I keep seeing it mentioned in these parts.

Is it usable on a program that isn't listed in ADD/REMOVE?  Or one that ADD/REMOVE gets stuck on?


Yes, and I just bring Revo up and it shows a list of programs. It removes programs, DIRS, and reg entries and you select if you want it to do what it is proposing. It also creats a system restore point before the removal(s)..

&quot;If it ain't broke, fix it 'til it is&quot;
Kudos0

Re: Why, do we need to use, "Malwarebytes".


Brubaker wrote:

MPSAN wrote:
I use Revo uninstaller (free) to remove stuff. It does a great job.

Love your signature line!


At work I also had one..."If it ain't on fire, it is a software issue"!

&quot;If it ain't broke, fix it 'til it is&quot;
Kudos0

Re: Why, do we need to use, "Malwarebytes".

@Mij

I used it to remove Age of empires 3 when I stuffed up installing it and had a little mess on my hands.It worked well,Only used it with extreme caution.

Cheers MoXP home,SP3NIS2012
Kudos0

Re: Why, do we need to use, "Malwarebytes".

Guess I'll chime in on Revo. I've been using it regularly for roughly the past year (memory fails).

It's extremely effective at removing annoying orphans so often left during uninstalls. I install and remove a lot of software, and I almost always use Revo, so it gets a fair workout. It's easy to use and, at least in my experience, very safe to use. I'm never had it delete anything that should not have been deleted (fingers crossed for next time).

Of course it's not perfect. I've had times when I've run it and then followed up with manual checks of the registry. Occasionally obscure entries have been overlooked, but that's surprisingly rare.

All in all, it's a great tool -- and you can't beat the price.

Kudos0

Re: Why, do we need to use, "Malwarebytes".

Hi boneidle:

The reason I use MBAM and SAS, with other specific online security scans, is not that I don't trust Norton.

What it does come down to is this -

Don't put all your eggs into one basket. If you do... better keep a close eye on on the basket!

 

Plankton :0)

Message Edited by Plankton on 11-25-2009 10:49 PM
      Plankton - MCSE, CSQE     - NIS 2009 • NIS 2010 -Windows XP • Vista • 7 • IE 8
Kudos0

Re: Why, do we need to use, "Malwarebytes".


Plankton wrote:

Hi boneidle:

The reason I use MBAM and SAS, with other specific online security scans, is not that I don't trust Norton.

What it does come down to is this -

Don't put all your eggs into one basket. If you do... better keep a close eye on on the basket!

 

Plankton :0)

Message Edited by Plankton on 11-25-2009 10:49 PM

But if all you have is one large egg and you have two baskets, the only way you can use both of them is to make a mess of the egg.  

mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware
Kudos0

Re: Why, do we need to use, "Malwarebytes".

Hi

Turn the baskets upside down and cover up the egg. Then you can move the baskets around and play a game without messing up the egg.

Guess which basket has the egg under it.???  Do a run of MBAM and SAS just to make sure nothing is hiding when you least expect it and then you won't have any messy eggs to contend with.

Success always occurs in private and failure in full view.
Kudos0

Re: Why, do we need to use, "Malwarebytes".

 Thanks everyone for putting forward your points of view.

As I consider you are the experts out there, I decided to try Malwarebytes.

Have now loaded, updated and run Malware on 3 m/c's

All m/c's were clean.

Did find 1 Trojan Downloader on an old ext. hard drive though, which is now deleted/quarantined.

Question,

When I left Malware running, Norton kicked in with a Full System Scan, would there be any conflict between the two ?

Talking about Eggs,

Always listen to the eXperts, not the eGGspurts.

Message Edited by boneidle on 11-26-2009 11:51 AM
Kudos0

Re: Why, do we need to use, "Malwarebytes".

The free versions of Malwarebytes' AntiMalware and SUERAntiSpyware do not have resident (in memory) scanners.  They only scan when you want them to.  Both products developement teams work very hard to make sure that their products do not interfere with known AV scanners as their products are not a total AV solution.  Having both processes running at the same time will of course slow the system down some but there should be no problem with both scanners running at the same time.  What carefully for any malware; if Norton and Malwarebytes discover the same malware, let Norton take care of it.  This will keep Norton's Risk's resolution routines clean.  You can have MBAM do whatever cleaning Norton did not do (usually registry values that will not harm anything but nice to have gone none the less).Message Edited by dbrisendine on 11-26-2009 05:59 PM
Win7 x32 SP1
Kudos1

Re: Why, do we need to use, "Malwarebytes".

Hi All,

Please allow me to add my two cents in as well. I am a software engineer and in the past 20 years since my first IBM compatible computer I have only been hit with two viruses in all that time (knock on wood! ). I play it very careful as we all should but sometimes the inevitable  happens and I've gotten hit a couple of times - one was particularly nasty but I was able to get rid of it. The other was just a minor spyware which was pretty easy to get rid of. My partner on the other hand is not so careful and he has gotten hit at least 8-10 times in the last 6 years, but the last time was the final straw for him. He got hit with a particularly nasty virus (somehow the name escapes me at the moment) and it was so bad that I was stumped. Ended up having to pay for Symantec Anti Virus removal service (to the tune of $99) which of course I made him pay for! Since that time (about a year or so ago) he has learned his lesson and has not been hit with anything further. Again knock on wood!

The point I really want to make is that in all that time and all the viruses and spyware that I have removed (numerous times for friends as well) there has never been any single tool which has done the trick! I have probably removed at least 50 or more viruses for different associates and in that time I've used no less than a dozen different tools to accomplish this. Not to mention simple brute force!

However, until about 6 months ago I had not used Malware Bytes. I then used it for the first time on my computer and it was able to find two orphan entries sitting in the registry for who knows how long? Now I'm pretty certain that I did not have any sort of active infection at that time but I was impressed that it was able to find this so easily and none of the other tools I have used was able to detect them.

In the end, the point is that every tool has it's own area of expertise so to speak and is better at certain things than others tools.

Malware Bytes has now become a permanent tool of my anti-virus arsenal!

Allen

Windows 7 Ultimate SP 1, 64 bit, 32 GB * NIS Vers. 21.5.0.19 * Ghost 15 * IE 9, Firefox, Safari. Test laptop with W7 Home Premium 64 bit * NIS Vers. 21.5.0.19
Kudos0

Re: Why, do we need to use, "Malwarebytes".

Hi all,

I have so far not encountered any issues with installing or uninstalling Malwarebytes. But that does not mean that it never could. Most security software install a kernel-mode driver and so do Malwarebytes. This driver is one of the things to check first of all in case of any issues.

Here you have a ThreatExpert analysis of the mbam installer.

http://www.threatexpert.com/report.aspx?md5=8e382c4f14d6f302f0ca1fd48fd613c4

Regarding the two items found on the Malwarebytes scan. Many systems have the notification from security center regarding firewall and antivirus set to 0 (no notification). Malwarebytes will report on this and prompt to set them back to 1 (on). It could of course have been something else, but this is a quite common thing to see in Malwarebytes.

Regards

jAW

Message Edited by jAW on 11-27-2009 03:30 PM

Replies are locked for this thread.