Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Latest Version of Malwarebytes

22 Mar 2015   #831
ignatzatsonic

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium SP1, 64-bit
 
 

Quote   Quote: Originally Posted by DavidE View Post

With real-time protection, an auto-update of bad virus definitions can brick a PC immediately or within 40 seconds.
Real-time protection and auto updates are only in the PAID version.
So the "auto-update of bad virus definitions" can brick a PC, without a scan of any type, assuming vital system files are quarantined? Purely because definitions are updated?

Can brick or will brick? Only if unattended?

I was bricked in the April 2013 unpleasantness. I had left my PC running and left the house for 2 or 3 hours and came back to a black screen as I recall. Not sure what I would have seen on screen had I been at home watching.


My System SpecsSystem Spec
.
22 Mar 2015   #832
kado897

Microsoft Community Contributor Award Recipient

Microsoft Windows 7 Home Premium 64-bit Service Pack 1
 
 

Surely this is not limited to Malwarebytes. A faulty virus update to any real time AV could brick Windows.
My System SpecsSystem Spec
22 Mar 2015   #833
DavidE

Multi-Boot W7_Pro_x64 W8.1_Pro_x64 W10_Pro_x64
 
 

Quote   Quote: Originally Posted by ignatzatsonic View Post
Quote   Quote: Originally Posted by DavidE View Post

With real-time protection, an auto-update of bad virus definitions can brick a PC immediately or within 40 seconds.
Real-time protection and auto updates are only in the PAID version.
So the "auto-update of bad virus definitions" can brick a PC, without a scan of any type, assuming vital system files are quarantined? Purely because definitions are updated?

Can brick or will brick? Only if unattended?

I was bricked in the April 2013 unpleasantness. I had left my PC running and left the house for 2 or 3 hours and came back to a black screen as I recall. Not sure what I would have seen on screen had I been at home watching.
Yes, it can brick a PC if it detects valid OS system files as malware just with real-time protection (no scan needed). That's what happened in 2013.

If you have Auto quarantine turned off you get 40 seconds to respond to prevent the quarantine.

It's for this reason i changed my auto update to every 4 hours rather than every 1 hour.
I figure i have less chance of getting a bad update if I get updates less often.
It's still a crap-shoot...
My System SpecsSystem Spec
.

22 Mar 2015   #834
Seffrid

Windows 7 Home Premium 64
 
 

Quote   Quote: Originally Posted by DavidE View Post

Yes, it can brick a PC if it detects valid OS system files as malware just with real-time protection (no scan needed). That's what happened in 2013.

If you have Auto quarantine turned off you get 40 seconds to respond to prevent the quarantine.

It's for this reason i changed my auto update to every 4 hours rather than every 1 hour.
I figure i have less chance of getting a bad update if I get updates less often.
It's still a crap-shoot...
It's why I rely on MSE for real-time protection (a lot of other AV programs having bugged me with false positives and performance issues over the years) plus twice-weekly manual scans with the free version of MBAM on which basis it can't force auto-quarantine. I also do a quick forum check to make sure there are no current issues with MBAM before running the updater prior to the scans.
My System SpecsSystem Spec
22 Mar 2015   #835
ignatzatsonic

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium SP1, 64-bit
 
 

Quote   Quote: Originally Posted by DavidE View Post

If you have Auto quarantine turned off you get 40 seconds to respond to prevent the quarantine.
During that 40 seconds, what choices are offered to you on the screen?

What's the decision process as the clock ticks?

I assume that it would be best to accept the quarantine since you'd have no way of knowing in that 40 seconds that it was a false positive that was going to brick the PC. That's possible but a relatively low probability and therefore a better choice.
My System SpecsSystem Spec
22 Mar 2015   #836
DavidE

Multi-Boot W7_Pro_x64 W8.1_Pro_x64 W10_Pro_x64
 
 

I've never had this happen, so i can't say for sure.
I found this in the documentation (Notification Window Examples), so i guess this is what you would see.
Latest Version of Malwarebytes-mbamalert.png
Source: Malwarebytes Anti-Malware 2.0 Help Documentation


My System SpecsSystem Spec
22 Mar 2015   #837
Seffrid

Windows 7 Home Premium 64
 
 

Quote   Quote: Originally Posted by ignatzatsonic View Post
Quote   Quote: Originally Posted by DavidE View Post

If you have Auto quarantine turned off you get 40 seconds to respond to prevent the quarantine.
During that 40 seconds, what choices are offered to you on the screen?

What's the decision process as the clock ticks?

I assume that it would be best to accept the quarantine since you'd have no way of knowing in that 40 seconds that it was a false positive that was going to brick the PC. That's possible but a relatively low probability and therefore a better choice.
I think it's always preferable when prompted to quarantine a file to do a little research before allowing it, on a different machine if possible. Any quarantine tends to break whatever program/application it relates to, which is a nuisance even without it relating to the operating system which is clearly disastrous, therefore you really want to be sure it isn't a false positive by reference to the forums so long as you can establish that safely. However, 40 seconds doesn't really allow anything more than a mild panic attack at being told that your machine is compromised, and then the timer's up and the file is quarantined anyway. In any event, it would take me the full 40 seconds to read and inwardly digest either of the two notification boxes DavidE displayed!
My System SpecsSystem Spec
22 Mar 2015   #838
ignatzatsonic

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium SP1, 64-bit
 
 

David:

I note that those pix from Macrium say "detected as a function of real-time protection". I wonder if that necessarily includes downloaded definition updates.

Maybe the ideal config would be to auto-quarantine the "malware detected" classification and not quarantine the "non-malware detected", but that's not available in the controls.

A 40 second window is so short as to be useless. No one can research anything in that time. It may as well be 5 seconds, to better avoid what might happen in that 35 second differential.
My System SpecsSystem Spec
22 Mar 2015   #839
jonnyhillow

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 

Has Mbam released a stable version thats newer than 2.04.1028 or is it still a beta ?

Thank you
My System SpecsSystem Spec
22 Mar 2015   #840
MoxieMomma

OEM Windows 7 Ult (x64) SP1
 
 

A few points of clarification:

1) It is absolutely NOT the case that default update checks occur in "realtime" and "every 5 minutes". The default settings are "Hourly" and randomized +/- 15 minutes in a new installation. If a user sees any other configuration, then those changes were made by a user with access to the computer and the MBAM installation/settings. If they were retained after a version upgrade, then it would be because the previous version was not completely inactivated and was not completely, cleanly removed prior to the upgrade. (On-top upgrades will retain settings.) "Realtime", "Every 5 Minutes" update checks, by default, on millions of home computers, would unnecessarily bring the update servers to their knees. It simply is not configured that way by default.

2) The illustrations posted here are actually for the current version 2.1.4.1018, not for 2.0. But, as shown, there is an option to "Allow Once", if the user chooses to prevent the automatic quarantine one time, in order to research the detection, or to "Exclude Always" (IOW "Allow Always").

3) The reason for the 40-second timeout is explained in great detail by the former MBAM Product Manager here and in many other threads at the Malwarebytes forum.

4) If users are uncomfortable with the real-time protection or automatic updating of MBAM Premium, then opening the dashboard > "My Account" > "Deactivate" will convert the program to the free, manual, on-demand scanner.

Here are links to the User Guide for the current build:
HTML
PDF

Thank you,


Attached Images
Latest Version of Malwarebytes-scheduler-1-2015-03022.jpg Latest Version of Malwarebytes-scheduler-updates-2015-0322.jpg 
My System SpecsSystem Spec
Reply

 Latest Version of Malwarebytes




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Malwarebytes Pay Version
I have the pay version and have it set under "Settings" > "Updater Settings" > have "Download and Install Program Updates If Available" checked and also "Notify Me When Update is Ready for Installation" checked. I am not getting any updates. I have to manually get the program updates. Is there...
System Security
Malwarebytes version 1.61
Malwarebytes released version 1.61 today. I tried to update using the auto update on a W7 x64 PC and it failed. I ran the mbam-clean uninstall utility and downloaded/installed version 1.61 without issues. Had to re-register and reconfigure the options. I'll wait a few days to see if others...
System Security
Upgrading to a Pro version of Malwarebytes... advice please!
If I go to the company site https://store.malwarebytes.org/342/purl-inproduct?x-source=inproduct&x-action=bottom_button it costs 19.95. and includes a backup CD and something called Extended Download. There are what seem to be similar products from Amazon DSOLUTION Malwarebytes'...
System Security
Malwarebytes Database Version
I just ran the updater in Malwarebytes, and was surprised at the change in version numbers, as can be seen in the screenshot. I suppose they may just have decided to use a different system, but I'm wondering if it might indicate something more nefarious, like someone else slipping into the picture?
Software
Full retail version of Malwarebytes & Comodo.. anyone using both?
I recently purchased the retail version of Malwarebytes just to see if it's any good. It seems almost mindless how people talk about Malwarebytes but and I have yet to try it. However, the only computer I have that I am absolutely determined to keep for more than a few months already has comodo...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 22:03.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App