How-To: Configure exclusions with Malwarebytes 3

Version 6

    Not everything that Malwarebytes 3 detects is a malicious program. Sometimes programs that we use daily get flagged and Malwarebytes 3 will try to remove it. To avoid this, we will create exclusions for these programs to have these skipped during the next and subsequent scans that will be executed. The Malwarebytes 3.0 Exclusions tab allows additions to, or deletions from a list of items to be excluded from scans. The list may include files, folders, websites, applications which connect to the Internet, or previously detected exploits. A screenshot is shown below.

    To access the exclusions in Malwarebytes 3:

    1. Click on the Settings tab in the left pane.
    2. Click on the Exclusions tab.


    Clicking the Add Exclusion button allows an exclusion to be added to a list of items which will be excluded from scanning.  Each item type is defined by criteria as follows:

    Exclude a File or folder: Its location on the file system, and whether it should be excluded from malware and ransomware, only malware or only ransomware. Please note that selecting a folder for exclusion will also cause every file in that folder as well as any sub-folders and files contained within those sub-folders to be excluded.  While you may have your own reasons for excluding files or folders from scans, the primary reason for doing so is to prevent potential conflicts with anti-virus software.  Malwarebytes works well alongside most anti-virus software, but anti-virus updates by some vendors may occasionally be flagged as a threat.  For this reason, we offer the provision for you to exclude certain disk content from scanning.  This is commonly offered by anti-virus vendors as well.
     

    1. Select Exclude a File or Folder from the Exclusion type window.
    2. Click the Select Files button to the right to add individual files or the Select Folder button to add a folder.
    3. Under How to Exclude, select the criteria desired to include in the exclusion being added then click OK.
    • Exclude from both malware and ransomware protections
    • Exclude from malware protection only
    • Exclude from ransomware only


    Exclude a Website: Click the Add IP button to exclude an IP address, or the Add Domain button to exclude an Internet domain.  When adding a domain manually, please add it both with and without the "www." prefix.  Depending on several external factors, the domain may still be blocked if only one variation is entered.  Also, domain exclusions are only functional on Windows Vista Service Pack 2, Windows 7, Windows 8.x and Windows 10.  Please note: Exclusions can also be added by clicking the link in the notification message when the website is blocked by Malwarebytes Website Protection.
     

    1. Select Exclude a Website from the Exclusion type window.
    2. Enter the web domain (www.example.com) being blocked or the IP address as it displays on the block notification. Click OK.


    Exclude an Application that Connects to the Internet: Specify the name of the application.  This is most applicable if the detection is a false positive (legitimate application with some similar characteristics to malware).
     

    1. Select Exclude an Application that Connects to the Internet from the Exclusion type window.
    2. Click the Browse button and navigate to the program executable file that is being blocked. 
    3. Select the blocked program executable and click Open. Click OK.


    Exclude a Previously Detected Exploit: Specify the MD5 hash of the exploit.  This is most applicable if the detection is a false positive (legitimate application with some similar characteristics to malware).  The hash guarantees uniqueness of the file in question.
     

    1. Select Exclude a Previously Detected Exploit from the Exclusion type window.
    2. Click the Select button.
    3. Choose the detected exploit from the Add Exclusion pop up. Click OK.
    1. Enter the name of the associated application and click OK.