请看以下这段:
1. Does Malwarebytes Anti-Malware replace antivirus software?
Malwarebytes Anti-Malware is not meant to be a replacement for antivirus software. Malwarebytes Anti-Malware is a complementary but essential program which detects and removes zero-day malware and "Malware in the Wild". This includes malicious programs and files, such as virus droppers, worms, trojans, rootkits, dialers, spyware, and rogue applications that many antivirus programs do not detect or cannot fully remove. That being said, there are many infections that Malwarebytes Anti-Malware does not detect or remove which any antivirus software will, such as file infectors. It is important to note that Malwarebytes Anti-Malware works well and should run alongside antivirus software without conflicts. In some rare instances, exclusions may need to be set for your specific antivirus product to achieve the best possible system performance.
MBAM does not target script files. That means MBAM will not target JS, HTML, VBS, BAT, CMD, PDF, PHP, etc.
It also does not target documents such as; DOC, DOCx, XLS, XLSx, PPT, PPS, ODF, etc. As an adjunct anti malware solution, MBAM leaves that to the traditional anti virus application to deal with.
Until MBAM, v1.75 MBAM could not access files in archives but with v1.75 came that ability so it can unarchive a Java Jar (which is a PKZip file) but it won't target the .CLASS files within. Same goes with CHM files (which is a PKZip file) but it doesn't target the HTML files within. MBAM v1.75 specifically will deal with; ZIP, RAR, 7z, CAB and MSI for archives. And self-Extracting; ZIP, 7z, RAR and NSIS executables (aka; SFX files).
MBAM specifically targets binaries that start with the first two characters being; MZ
They can be; EXE, CPL, SYS, DLL, SCR and OCX. Any of these files type can be renamed to be anything from TXT, JPG, CMD and BAT and they will still be targeted just as long as the binary starts with 'MZ'.
Today's cyber criminals build software designed to slip past antivirus programs undetected. Malwarebytes Anti-Malware Premium crushes these threats with innovative technologies designed to defend you while keeping your online experience fast and hassle free.
也就是说,MBAM是专门且只扫描和监控传统杀软所不查杀或不擅长的那部分危害文件,例如木马,而感染性病毒这类传统杀软所擅长的领域,MBAM是不参与的,这也就是为什么有人说MBAM查杀很高、有人说这货查杀巨低的原因,如果样本包都是传统感染性病毒(例如针对DOC和PDF的宏病毒),那么MBAM的查杀率几乎为零,但只要样本包都是木马(例如fakeAV等),那么MBAM的查杀就高的吓人。也就是以上的差别领域查杀设计,使得MBAM在开启监控(免费版只有扫描功能,收费版可实时监控)时,也可以和其他传统杀软的监控并行,而且根据官方的意思,也不光是可以,更是应该和推荐。当然,在某些情况下,也是需要一定排除设置的。 |
楼主: 东方石
[复制链接]
发表于 2014-3-30 11:50:23
楼主
杀软这么多,最终也只能用一个。最近综合症犯了,折腾的太累了。刚过了劲,宁愿错过也不想勾起病。
