Hardware Canucks

Hardware Canucks (http://www.hardwarecanucks.com/forum/)
-   O/S's, Drivers & General Software (http://www.hardwarecanucks.com/forum/o-ss-drivers-general-software/)
-   -   Nod32 vs Norton vs nothing for Windows 8 (http://www.hardwarecanucks.com/forum/o-ss-drivers-general-software/59765-nod32-vs-norton-vs-nothing-windows-8-a.html)

Mark February 19, 2013 01:22 PM

Nod32 vs Norton vs nothing for Windows 8
 
Just ran Malwarebytes and was astonished that I had a number of repetitive problems in my system so I'm considering some sort of protection for the system besides a huge condom:biggrin:

What have you noticed and decided to do ?

Quote:

Malwarebytes Anti-Malware 1.61.0.1400
Malwarebytes : Free anti-malware download

Database version: v2013.02.19.05

Windows 7 x64 NTFS
Internet Explorer 9.10.9200.16484


2/19/2013 3:13:33 PM
mbam-log-2013-02-19 (15-13-33).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 469572
Time elapsed: 19 minute(s), 49 second(s)

Memory Processes Detected: 1
C:\ProgramData\Premium\MagniPic\MagniPic.exe (Trojan.Startpage) -> 2624 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 8
HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} (PUP.Adware.Magnipic) -> No action taken.
HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F} (PUP.Adware.Magnipic) -> No action taken.
HKCR\CLSID\{71DCC848-ABAF-ED44-9A40-9596E2F0F37A} (PUP.Adware.Magnipic) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\{71DCC848-ABAF-ED44-9A40-9596E2F0F37A} (PUP.Adware.Magnipic) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext \Settings\{71DCC848-ABAF-ED44-9A40-9596E2F0F37A} (PUP.Adware.Magnipic) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext \Stats\{71DCC848-ABAF-ED44-9A40-9596E2F0F37A} (PUP.Adware.Magnipic) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\{EB03EF39-C655-D560-FA95-79182B837D64} (PUP.Adware.Magnipic) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\Connect (Trojan.PornDialer) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Bad: (Google) Good: (Google) -> Quarantined and repaired successfully.

Folders Detected: 2
C:\ProgramData\MagniPic (PUP.Adware.Magnipic) -> No action taken.
C:\ProgramData\MagniPic\data (PUP.Adware.Magnipic) -> No action taken.

Files Detected: 9
C:\Users\SSPC\AppData\Local\Microsoft\Windows\Temp orary Internet Files\Content.IE5\1X5GH61Q\uninstaller[1].exe (PUP.Offerware) -> No action taken.
C:\Users\SSPC\AppData\Local\Microsoft\Windows\Temp orary Internet Files\Content.IE5\O7JP2Q0F\pvtzd_agent_setup[1].exe (PUP.Offerware) -> No action taken.
C:\ProgramData\MagniPic\51152e268ed6d.tlb (PUP.Adware.Magnipic) -> No action taken.
C:\ProgramData\MagniPic\51152e268ed6d.dll (PUP.Adware.Magnipic) -> No action taken.
C:\ProgramData\MagniPic\settings.ini (PUP.Adware.Magnipic) -> No action taken.
C:\ProgramData\MagniPic\uninstall.exe (PUP.Adware.Magnipic) -> No action taken.
C:\ProgramData\MagniPic\data\MagniPic.dat (PUP.Adware.Magnipic) -> No action taken.
C:\ProgramData\Premium\MagniPic\MagniPic.exe (Trojan.Startpage) -> Delete on reboot.
C:\Users\SSPC\AppData\Local\Microsoft\Windows\Temp orary Internet Files\Content.IE5\O7JP2Q0F\51152e26a7a2d[1].exe (Adware.MultiPlug) -> Quarantined and deleted successfully.

(end)

Nodscene February 19, 2013 03:31 PM

Looks like it's just adware, probably something that was installed with another program/toolbar but doesn't look severe. I'd vote for Microsoft Security Essentials as it's a fantastic program and light on resources. If you want to actually pay for something then I'd vote NOD32 ahead of Norton. I actually wouldn't put Norton on any list of things to install free or not. If you want to do some further cleaning then download and run Combofix. That will get rid of pretty much anything else that's on your system. Be warned though that it doesn't ask if you want a file to be deleted and it will just do it. I haven't seen that cause any real problems though and I've used it hundreds of times. If it's a business computer make sure to go through the log as it will remove some valid startup shortcuts like Copitrak etc.

Edit: If you want to download Combofix, only get it from Bleeping Computers.

Mark February 19, 2013 03:33 PM

Quote:

Originally Posted by Nodscene (Post 691590)
Looks like it's just adware, probably something that was installed with another program/toolbar but doesn't look severe. I'd vote for Microsoft Security Essentials as it's a fantastic program and light on resources. If you want to actually pay for something then I'd vote NOD32 ahead of Norton. I actually wouldn't put Norton on any list of things to install free or not. If you want to do some further cleaning then download and run Combofix. That will get rid of pretty much anything else that's on your system. Be warned though that it doesn't ask if you want a file to be deleted and it will just do it. I haven't seen that cause any real problems though and I've used it hundreds of times. If it's a business computer make sure to go through the log as it will remove some valid startup shortcuts like Copitrak etc.

Edit: If you want to download Combofix, only get it from Bleeping Computers.

Thanks for the advice. I thought Microsoft security essentials was no longer available for WIndows 8 ?

I don't think combofix works in compatibility mode and there's nothing available for Windows 8

ipaine February 19, 2013 05:27 PM

Microsoft security essentials does not exist for windows 8. Instead it has been rolled into windows defender and that is installed by default in Windows 8.

ccm001 February 19, 2013 05:59 PM

Eset NOD works well with Windows8 and is very light on resources. I'm using it on a Win8 laptop, and so are a couple of my friends. I highly recommend NOD32 for any system, but especially for Win8.

Nodscene February 19, 2013 08:33 PM

That's right. My mistake, completely forgot about that.

Mark - If you haven't disabled Defender then I wouldn't add a second virus scanner. Either disable Defender or just stick with it. The main reason it's not picking that stuff up is that it's basically a grey zone when it comes to adware. You can try a full system scan with it to see if it picks those up. I'd just run Malwarebytes again and put a check mark beside all the items it finds to clean up your system.



Quote:

Originally Posted by ipaine (Post 691608)
Microsoft security essentials does not exist for windows 8. Instead it has been rolled into windows defender and that is installed by default in Windows 8.


ShinraCorp February 20, 2013 07:05 AM

It's funny because Defender was the default program for Vista, when 7 came out it was there... somewhat but they made Security Essentials and now Windows 8 is out and it's back to Defender, you can't install Security Essentials with windows 8, I just hope that Defender is as good as Essentials.

Nodscene February 20, 2013 07:08 AM

That's where the confusion lies, Defender for Win7 is crap and should be disabled. Defender for Win8 is Security Essentials but was renamed and is a great antivirus.

sswilson February 20, 2013 08:33 AM

This just popped up on my radar.....

Microsoft Safety Scanner - Antivirus | Remove Spyware, Malware, Viruses Free

Does anybody have experience with it? Looks to be a stand-alone post-infection program from microsoft.

Shadowmeph February 20, 2013 10:41 AM

I my personal opinion you don't need any of those just as long as you keep all of your software up to date with the newest security patches or updates. I used to get infected allot and thought that I needed all of that stuff but as I became more knowledgeable from some white and black hats I realized that the only thing that you can do is watch which websites you go to and don't open anything from anyone at all that has attachments unless they actually tell you either by pm phone call messenger ( not email) and watch what you download. usually the only things that get infected are companies gamers that use hacks things to that nature


All times are GMT -7. The time now is 05:18 AM.