Hi,

MalwareBytes is defined as an anti-malware program : it detects and removes malwares, that it to say malicious programs and files that some antivirus don't detect or can't fully remove.
You can (and should) have an antimalware program as well as a resident antivirus protection. Both are complementary, even if some malwares are detected by antivirus, and some virus can be detecteed by antimalware programs. Both database types are different and don't look for the same things, there are common detections, but the common part is not really substantial.

Where an antivirus stops detecting things, an antimalware program will take over. You need an antivirus, and an antimalware, to have a second line of defense.

+ an USB security soft to block any threats via USB drive.

My choice is USB Disk Security.

+ an USB security soft to block any threats via USB drive.

My choice is USB Disk Security.

So I find free alternatives that work for me like Autorun Eater from Old McDonald's Farm and Outpost Firewall Free:
http://oldmcdonald.wordpress.com
http://free.agnitum.com

To block all autorun.inf files from executing, which can be applied as a global policy by changing the registry keys, perform the following step:

1. Start Notepad.
2. Copy the following text below and paste it into Notepad. Everything between the square brackets should be on one line.
3.

REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\Autorun.inf]
@="@SYS:DoesNotExist"
4. Save the file with the name NoAutoRun.reg. Make sure to include the .reg extension.
5. Right click on your .reg file and choose "Merge". Confirm any warning prompts to add the information to the registry. Alternately, you can use the following command "REG IMPORT NoAutoRun.reg".
6. Restart computer.

Changing this registry key will prevent any part of the autorun.inf file to execute, even if the computer has seen the device before the registry change and has it cached in the MountPoint2 key. It also disables the autorun features without causing other negative side effects

Panda USB Vaccine is a free solution designed to protect against this threat. It offers a double layer of preventive protection, allowing users to disable the AutoRun feature on computers as well as on USB drives and other devices:

Vaccine for computers: This is a ‘vaccine' for computers to prevent any AutoRun file from running, regardless of whether the device (memory stick, CD, etc.) is infected or not.

Vaccine for USB devices: This is a ‘vaccine' for removable USB devices, preventing the AutoRun file from becoming a source of infection. The tool disables this file so it cannot be read, modified or replaced by malicious code.

This is a very useful tool as there is no simple way of disabling the AutoRun feature in Windows. This provides users with a simple way of disabling this feature, offering a high degree of protection against infections from removable drives and devices.

Yes it's cat & mouse game.

If we buy this and use the resident options of mbam (I have been using it for a while to help a lot of people solve their problems and recommending it too), AND we are using Microsoft Security Essentials (which is anti-virus and the old defender (anti-spyware) combined (I think)) - Are there any resident conflicts with MSE?

I think Anthony H (who started this topic) is busy with some other work.

YoKenny1:Thanks.

There are no issues with both on Vista x64. I was one of the beta testers for MSE, and it worked very well together with MBAM. I was also quite impressed with the first version of the beta, but I need to do some more testing on the current version of MSE just to make sure that it's still as awesome as it was.

.....(which I think used to be webroot antispyware by sunbelt software until MS bought it - initially they made a bit of a botch job after taking it over but since it has become quite stable - and now integrated into MSE)

... Malware programmers I think have fast realised mbam is a major threat to their attempts.

Yes they have, and in most cases that I come across renaming the EXE doesn't even help. Especially the one that hijacks the way EXE files launch, and prevents any security software from working. That one is easy to fix though.

I have had great success renameing the file from *.exe to *.com and that seems to help in a lot of cases.

Yea, that bypasses the exefile hijack. So does a BartPE CD. Which one I choose depends on what I'm doing (BartPE CD's don't work too well on the helpdesk).

The bootable rescue CD from Dr.Web and Avira also work well in my experience.

Hi folks,

Q: Is GeSWall Freeware good enough for the Protection that you folks are talking about?

Thanks,

G!

Just wondered - we're Avast resellers and love the general all-round protection it gives us. But we use Malwarebytes free as it does seem to detect some of the stuff that Avast doesn't. My question is: If we buy the paid-for version of Malwarebytes, does that offer us all the protection of an antivirus too? Do we need both? or should we dispense with all AV programs and just use malwarebytes?

I can't seem to find anywhere on your site where it describes how malwarebytes is "positioned" as it were.

Thanks

Anthony

MBAM is only an antimalware. It does not protect against viruses like an Antivirus does. Email protection, enhanced firewall, heuristics, and Browser Protection are thing MBAM don't have. I recommend getting yourself an antivirus product. Besides it is mandatory. MBAM is like a special trooper while the Antivirus is the Leader and commando of the squad. I recommend Kaspersky because it is very good and praised. Norton 360 is also a good choice because it offers optimization however be aware that Norton products are hard to get rid off. I recommend you keep MBAM and add an antivirus to the battle field. MBAM has definitions beyond the traditional antivirus. I am currently using Norton 2010, AVG, and MBAM! Windows Defender is useless, don't rely on it.