Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Should malware removal programs be renamed for security reasons?

20 Dec 2011   #1
FranzB

Windows 7 Home Premium 32bit, Linux Mint Julia, in dual boot mode
 
 
Should malware removal programs be renamed for security reasons?

On internet i have seen several times the advice to change the name by which a particular malware removal program is known since some malware recognizes the files
or the ---.exe and then prevents its installation onto an infected computer or its execution, even if the program was installed on the computer before the infection took place.
This was advised for TDSSKiller (tdss.exe should be renamed to e.g. whatever.com)
Malwarebytes AntiMalware should be renamed before using it on an infected computer.
See e.g.
How To Easily Remove Google Redirect Virus
http://www.usenetmessages.com/view.p...&id=476887&p=C

Can anyone say anything about this? And should this also be done routinely with other malware removal programs? If that would really be necessary/advisable then why wouldn't the providers give you the choice of renaming by asking if you want to, or simply give you no choice but rename their product? Probably not many people would ever think of doing it themselves.


My System SpecsSystem Spec
.
20 Dec 2011   #2
seavixen32

Windows 7 Ultimate SP1 64-Bit
 
 

I'm perhaps being rather cynical, but I'm very suspicious of articles that have a link to a 'registry cleaner' or any other so-called utility that claims to clean or speed up your computer.

I'm of the opinion that some of these can easily corrupt your registry or your system.

Microsoft Security Essentials along with Malwarebytes and ignoring suspicious web pages or links has kept my computer free of viruses so far.

As for renaming Malwarebytes, I certainly wouldn't do it. If the door is already open, the undesirable alien is already in and only its removal will suffice.

The door needs to be locked, not just have its name changed.
My System SpecsSystem Spec
20 Dec 2011   #3
marsmimar

Microsoft Community Contributor Award Recipient

 
 

I'm not a lawyer and I don't even play one on TV. So this is just personal opinion.

I think that most software companies (not just the antimalware companies) tend to err on the side of caution when it comes to their products. They "dumb down" their instructions, or lack thereof, to accomodate the average user. The default instructions apparently work for the vast majority of people. For those relatively few folks who need more advanced instructions, the specific product help forum, product customer support, or sites like this one provide additional ways to circumvent the malware.

I consider my computer knowledge to be slightly above average. I'll try using the software product "as is". If it doesn't work, then I'll dig into the bag of tricks I've learned for an alternate method. So I don't think it's necessary or advisable to routinely rename antimalware programs. IMHO.
My System SpecsSystem Spec
.

20 Dec 2011   #4
Petey7

Windows 7 Professional SP1 64-bit
 
 

The only times you need to change the names of the anti-malware program's executable is in the specific instance where a virus prevents the running of a program based solely on the executables name. I do not see the point in doing it in the case discribed in the second link since the person already advised running MBAM in safe mode (ie virus probably won't be running anyways). Also, he left out what I consider to be an important step. You can download a stand-alone update for mbam which will update the database version to the newest one without having to go online. Viruses are becoming more advanced and can know what something is even if the executable is named differently, so that method is becoming less likely to work over time anyways.
My System SpecsSystem Spec
20 Dec 2011   #5
Corrine

Windows 7 & Windows Vista Ultimate
 
 

Petey7 is correct:

Quote   Quote: Originally Posted by Petey7 View Post
The only times you need to change the names of the anti-malware program's executable is in the specific instance where a virus prevents the running of a program based solely on the executables name.
My System SpecsSystem Spec
20 Dec 2011   #6
GamePlanner

Windows 7 Professional x32
 
 

Nice and to the point answer by petey7.
My System SpecsSystem Spec
02 Jan 2012   #7
FranzB

Windows 7 Home Premium 32bit, Linux Mint Julia, in dual boot mode
 
 

With thanks to all for your information and advice.
My System SpecsSystem Spec
Reply

 Should malware removal programs be renamed for security reasons?




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
All Technicians What Virus/Malware removal programs do you use?
As it states in the head line. What programs do you use to clean a PC of Virus/Malware/Trojans.. and all that other fun stuff. I tend to use Malwarebytes NOD32 Antivirus Hitman Pro adwcleaner
System Security
Malware Removal Fighter
no thanks
System Security
malware removal report
Hi guys, i heavily infected my pc with some nasty viruses and malware. I ran a couple of Anti virus and anti malwares to clean my pc. I m happy to produce the results. 1: Kaspersky Anti virus: To my surprise, not detected anything. 2: Malware Bytes Anti Malware: Detected 234...
System Security
Malware Removal Guide 2011: How to Get Rid of All The Latest Malware
Read more at: Maximum PC | Malware Removal Guide 2011: How to Get Rid of All The Latest Malware
Security Basics
Virus, Malware Removal
There is no software that can replace the excellent excellent help that is available at the SevenForums, but it is always good to be able to try and help ourselves in the event of a crisis. I have had this article for quite a while in my favorites and decided to share with all that care to take the...
System Security
MS malware removal tool
I'm curious about mrt. Does it ever get updated? Or is it just static. Appears to be useful but it could become out of date and therefore not as effective.
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 17:23.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App