Uncategorized

Malwarebytes Antivirus solutions

Please note

This is our all-in-one roundup reviewing every Malwarebytes consumer security solution for 2021. On this page, after our brief intro, you’ll find

(a) a full evaluation of the entry-level Malwarebytes Premium, along with our reviews of the additional features incorporated with the rest of the range:

(b) Malwarebytes Premium + Privacy, and  

(c) at the end of the article is our review of the free offering, Malwarebytes Free

You can jump to the reviews of those individual products by clicking on the links in the bar at the top of this page.

Malwarebytes is a Californian company which has been developing malware-hunting products for more than 15 years.

Its latest product, Malwarebytes 4, claims to be smarter than traditional antivirus, thanks to layers of technology like anomaly detection, behavior matching and application hardening.

There are no other major security extras, though. No firewall, parental controls, backup or anything else: Malwarebytes is just about the fundamentals, squashing malware and blocking access to malicious links.

You can sample the basics of the product anytime with Malwarebytes Free. There's no URL blocking, no real-time threat detection, but on-demand scanning for malware, spyware and rootkits could make it useful as a 'second opinion' scanner.

Malwarebytes Premium adds real-time protection, URL blocking and an extra layer of ransomware protection.

It's priced at $40 a year for a single device, one-year license ($70 for two years), or $80 to cover five devices ($140 for two years.)

A Malwarebytes Premium + Privacy bundle gets you malware protection and an unlimited Mullvad-powered VPN, also covering five devices, for an annual $100 (there's no two-year discount.)

As an antivirus, that's expensive. Bitdefender Total Security has many more features; covers Macs, Android and iOS as well as Windows, but can still cover up to ten devices for $50 in year one, $100 on renewal.

Total Security doesn't have an unlimited VPN, but if that's important, Avira Prime includes a VPN and a pile of other features, and also covers five devices for $100. Or if you've more hardware, a 25-device license is just $130, and monthly billing means you can try it out for just $10.

Malwarebytes Premium

Premium Interface

(Image credit: Malwarebytes)

Malwarebytes installs quickly and easily. We were offered the chance to have a 14-day trial of Malwarebytes Premium, and although this requires handing over an email address, there were no other hassles of any kind (we didn't even have to confirm our email.)

Checking the Malwarebytes installation folders showed a relatively lightweight package with around 400MB of files, and just a couple of significant background processes.

We run top benchmark PCMark Professional before and after installation to check for any performance impact, and Malwarebytes reduced our score by 3.8%. That's significantly more than Kaspersky (0.6%) and Bitdefender (1%), but much the same as Sophos Home (3.8%) and Trend Micro (4%), and you're unlikely to notice any difference in real-world use.

Malware may try to disable antivirus before attempting to infect a system, so a good security app needs to be able to protect itself. We test for this by launching various attacks of our own – deleting files, closing processes, disabling services, more – and checking to see if our performance remains intact.

Malwarebytes began well, with its core service beating off all our attempts to close it down, remove or disable it.

Phishing

(Image credit: Malwarebytes)

But then we managed to unload a key Malwarebytes filter driver with a single command, killing its ability to inspect files as they're accessed. Before the attack, Malwarebytes blocked a test threat and raised an alert; after we unloaded the driver, it was able to run.

This doesn't automatically mean you're vulnerable in every situation. An attacker could only launch this attack if it's able to run malicious code on your system as an administrator; Malwarebytes should detect most dangerous files before they can run anything, and if it misses something, this shouldn't have admin rights.

Even if a malware makes it over those hurdles, there's still a chance Malwarebytes could block it at the behavioral level.

Still, this is a clumsy security hole which we rarely see with top antivirus apps, and it leaves us wondering if there may be other issues we missed.

Scan Window

(Image credit: Malwarebytes)

Antivirus

If you're the hands-off, 'set and forget' type, there's not much to do after installation. Malwarebytes runs in the background and protects you immediately, with nothing else to do.

When you need to run an on-demand scan, that's as easy as double-clicking Malwarebytes' system tray icon, hitting the Scan button and waiting for the results. It's all very straightforward, and even the least technical of newbies will feel at home right away.

Malwarebytes main Scan feature quickly checks memory, startup items and key areas of your file system. It made sensible choices on our test system, examining enough areas to be useful, but not so many that we were kept waiting for results, and completed in a speedy 6 minutes. (If you're in a real hurry, a Quick Scan checks only RAM and startup objects in around 30 seconds.)

Scan Report

(Image credit: Malwarebytes)

Scan times overall proved reasonable, with Malwarebytes checking our 50GB of test executables in 23 minutes for the first scan, 12:56 for the second. Some antivirus are a little faster (ESET, Kaspersky and Trend Micro managed the first run in 16-20 minutes), but others take closer to 40 minutes, and Malwarebytes is a decent performer overall.

Scan Types

(Image credit: Malwarebytes)

A separate Custom Scan enables choosing the items you'd like checked, including specific files and folders, and gives you a little control over how they work (whether it should scan inside archives, and what to do with 'potentially unwanted programs', for instance.) It's a welcome touch, although doesn't begin to match the high level of control you'll see with more geek-friendly products from Avast, Avira and others.

You're able to scan files, folders or drives from the right-click Explorer menu. Unfortunately, the Windows client can't handle simultaneous on-demand scans, so try this when it's running a regular scan and you'll be told you must wait. This isn't a critical issue – Malwarebytes' engine still picks up threats as they appear, even if another scan is running – but it's a hassle that you don't get with the best antivirus.

URL Filtering

(Image credit: Malwarebytes)

URL Filtering

Malwarebytes also provides simple URL filtering, detecting and blocking any attempts to access malicious links. This works at the network level, with no need for browser extensions, ensuring it protects all your apps.

Results were only average in our tests, but even that's enough to be useful, and it's a worthwhile addition to the package.

The Settings dialog is mostly about toggling features on and off (updates, notifications, web filtering, malware protection and so on), but you do get some fine-tuned control over Malwarebytes' exploit protection, where the packages uses multiple techniques to protect against zero-day attacks for common applications and application types.

These options are so technical that even the most expert of users might struggle to know what to do with them. (Should you apply 'Dynamic Anti-HeapSpraying Enforcement' to all your browsers, for instance? Quickly, now.) Other options are easier to understand, though ('Disable loading of VBScript libraries'), and just having this level of control could be useful if the exploit protection breaks a particular application, and you're looking for a fix.

Real-Time Protection

(Image credit: Malwarebytes)

Extra features

If you're hoping for a pile of bonus features – or any extras at all – then you're out of luck. There's no specialist banking protection here, no password manager, none of the items you might get with some packages. This focus on the fundamentals does at least keep Malwarebytes easy to use, though, and if you don't need that kind of extra, you might appreciate its simplicity and lack of clutter.

Protection

(Image credit: AV Comparatives)

Protection

Malwarebytes has never been the best performer in conventional lab tests, and its AV-Test results over the past year are, well, inconsistent.

Its most recent October 2020 saw the company at its best, with a 100% score in three out of four tests (99.4% in the other) earning it a maximum six points for Protection. But that's the only six point rating it achieved over the year, and zero-day detection rates were under 95% in April 2020.

To put that in perspective, even Microsoft Defender scored significantly better, with three maximum six scores for Protection in its last five tests.

SE Labs' October-December 2020 report, if anything was worse, placing Malwarebytes Premium in last place out of 13.

There's a lot of detail to the report, but we'd sum it up like this. The top six products (Kaspersky, McAfee, Comodo, Norton, Avast, AVG) blocked 100% of threats; Microsoft Defender blocked 99%; the next five blocked 92-98%; and Malwarebytes blocked only 76%. It was compromised by almost a quarter of all attacks.

That's not great. Okay, it's terrible. To try to verify this, maybe get some more detail, we put Malwarebytes through a few tests of our own.

The first involved test apps which exploited common Windows tools to create processes, download malicious files and generally behave in a suspect way. Malwarebytes ignored the behavior and, initially, the files. It blocked them all on launch, though, keeping us safe.

That's a good end-result, but others are more cautious. Top performer Trend Micro spotted our test app's dodgy-looking actions, and close their processes before they could download anything. Kaspersky, Bitdefender and some others detected some of the behavior, and if they missed anything, spotted the malicious files when they were downloaded (no waiting for them to be executed.)

As a second, more high-stakes test, we pitted Malwarebytes against a simple ransomware simulator of our own creation. As the engine wouldn't have seen this before, we would see if its behavior monitoring alone could detect the threat.

The results weren't good, with Malwarebytes doing nothing at all as our simulator encrypted thousands of test documents. That's disappointing, especially as Malwarebytes 3 passed this test without difficulty during a previous review.

Other vendors score higher on this test. Trend Micro, Kaspersky and Bitdefender not only spotted our simulator by its actions alone, they also killed the process and recovered the handful of lost files, ensuring we didn't lose a byte of data.

We normally don't treat failing this test as a major black mark, because our test is a single sample, not even real malware, and it's unsafe to draw big conclusions from so little data.

In this case, though, it does broadly match what the labs are saying: Malwarebytes simply doesn't deliver the protection you'll get from the best vendors, and that has to be a concern.

Final verdict

Malwarebytes Premium is a likeable security app which will make your PC a little safer, but it's not the full antivirus replacement claimed on the website. Grab a copy of the free version (evaluated below), maybe, but run it alongside another antivirus app to ensure your safety.

Malwarebytes Premium + Privacy

VPN Interface

(Image credit: Malwarebytes)

Malwarebytes Premium + Privacy is, well, the name tells you everything: it's the commercial Malwarebytes Premium plus the company's VPN product, Malwarebytes Privacy.

Privacy uses Malwarebytes' own desktop apps (Android and iOS support is 'coming soon'), but these connect to Mullvad's network underneath, and that's fine with us; it's a solid VPN with a strong focus on privacy.

The network is a little small at 245 servers in 30+ countries. They're well spread, though, with ten locations in the US alone, so there's a good chance you'll have a server near you.

The lack of mobile support is disappointing, but there are some technical pluses underneath. Malwarebytes Privacy connects via the fast and secure WireGuard protocol, for instance, and its apps include a kill switch to protect you if the connection drops.

Pricing isn't bad at $100 to protect five devices and antivirus and VPN for a year – Mullvad charges $70+ for its VPN alone – but other top suites give you many more features.

Norton 360 Deluxe, for instance, includes antivirus, a VPN with mobile support, parental controls, Dark Web monitoring, a password manager, webcam protection, hosted backup with 50GB of cloud storage, and more, and a five device license costs $40 in year one, $105 on renewal. If you're looking for than just antivirus and a VPN, that looks a significantly better deal.

VPN Locations

(Image credit: Malwarebytes)

Malwarebytes Privacy

Malwarebytes Privacy has a simple but familiar interface. The dashboard displays your current location; you can choose another from a simple text list, then connect and disconnect with a click. Easy.

Desktop notifications tell you when you're protected and when you're not, and the dashboard updates to display your new IP, and highlight its location on a world map.

Switching servers is convenient as there's no need to close the active connection, first. Just choose a new location from the list and the app reconnects. 

VPN Settings

(Image credit: Malwarebytes)

The client doesn't have many features. There's no Favorites system to group your most commonly used locations. No ping or load figures to help you choose the best servers. You can't switch protocols, and configuration options are kept to a minimum.

The client can auto-connect when it launches, for instance, but not when you access insecure networks. There's no reconnect option to automatically restore operations if the VPN drops. And the kill switch is the extreme type, which blocks your internet traffic entirely if the VPN is disconnected (until the app is closed.) That's so likely to be inconvenient that Malwarebytes leaves the kill switch off by default, and it won't protect anyone unless they browse Settings and realize there might be a problem.

Performance

While most VPN apps try to connect to your nearest server by default, Malwarebytes Privacy doesn't have an 'Automatic' or 'Fastest' option, leaving you to choose your preferred location manually. That wouldn't be important if the app always remembered your choice, but for some reason it would occasionally switch to a new location. Initially we assumed we'd accidentally done it ourselves, but by the third time we realized something else was going on.

The client frequently refused to connect, and we're unsure why. Checking the logs, it first seemed to be a local issue. But then it worked with some locations, but not others, so maybe it was a server problem. Whatever the cause, it was annoying.

When the client connected, it did so quickly. Speeds were reasonable at 65-68Mbps for UK-to-UK connections on a 75Mbps line, and 50Mbps when connecting from the UK to the US.

The core VPN engine scored well in some areas. If you're connected to location A and switch to location B, for instance, most VPN apps close the first connection, leaving you unprotected until they establish the new one. Malwarebytes Privacy seems to use a temporary kill switch, blocking internet traffic for just those few unprotected seconds until the VPN is restored. Smart.

Kill Switch Issues

(Image credit: Malwarebytes)

Unfortunately, the actual kill switch was less useful. We regularly found that when the kill switch was on, the app couldn't connect: it blocked our internet access so thoroughly, it couldn't even get online itself. Not so smart.

The bad news continued with our final unblocking tests, too, with Privacy failing to get us into BBC iPlayer, US Netflix, Amazon or Disney+.

Final verdict

Malwarebytes Premium + Privacy looks cheap, adding a VPN for just $20 more, but Privacy's technical troubles and lack of mobile support make it impossible to recommend. Check out a specialist VPN provider, instead – you can get a much better service for under $40 a year.

Malwarebytes Free

Free Interface

(Image credit: Malwarebytes)

The free edition of Malwarebytes has no real-time protection and won't prevent a malware attack, but it can usually detect and remove any existing threats, from annoying adware to the stealthiest of rootkits.

Free Scan In Progress

(Image credit: Malwarebytes )

This makes for a very limited application. You don't have to worry about scan types, or scheduled scans, or all the regular Malwarebytes shields (web filtering, and malware, ransomware and exploit protection) – there's little to do beyond click Scan when necessary and wait for the report.

Mobile Apps

(Image credit: Malwarebytes)

The Android app is slightly more useful, as even the free edition includes a privacy audit. In a couple of taps you can see which apps can monitor your calls, track your location or exploit other permissions you might not realize you've given away.

Malwarebytes free iOS offering is even simpler, with just a couple of functions: ad blocking for Safari, and automatic filtering of fraudulent texts.

Malwarebytes is supposed to be about malware protection, of course, and recent Windows testing shows it's far less effective at this than most of the top competition.

Free Settings

(Image credit: Malwarebytes)

Malwarebytes Free isn't intended for use as your regular antivirus, though. With no real-time protection, you should be able to install and run it alongside your preferred antivirus as a second opinion, backup scanner.

Final verdict

At a minimum, you can use Windows Defender as your main protection, a fair choice as it outperforms some commercial apps. Then run a daily Malwarebytes scan to catch and remove anything else. You still won't have the protection you'll get from the best and most full-featured suites, but you'll be safe from most threats, and this setup won't cost you a penny.

 

Source: https://www.techradar.com/reviews/malwarebytes-antivirus-solutions/

Related posts