looking for a lightweight active antimalware program

Discussion in 'OT Technology' started by dorkultra, Feb 27, 2010.

  1. dorkultra

    dorkultra OT's resident crohns dude OT Supporter

    Joined:
    Oct 14, 2005
    Messages:
    22,743
    Likes Received:
    27
    Location:
    yinzer / nilbog, trollhio
    tired of having to reimage hard drives for friends/family members that download shit

    i've tried the full version of malwarebytes, it works well...until about 3 days later and you get an error message that it wouldn't start up with windows...then the computer is totally unprotected until it runs the scheduled scan. the fix for this on the malwarebytes forums is to uninstall, reboot, run a cleaner tool, reboot, reinstall, reboot, enter full serial. then in about a week your back with the same crap

    i've also done small things like setting the dns to opendns and having a malware/spyware filter set on the dns side
    microsoft security essentials is already installed but it does not seem to catch a lot of malware (things like browser attacks that look like fake virus scans)

    also, common sense is not an option. locking down the user can't work either because they will need me to remote desktop in so that they can install software. making them run linux/os x would be great, but not practical for me to teach some people a new operating system
     
  2. kimsland

    kimsland New Member

    Joined:
    Feb 19, 2010
    Messages:
    174
    Likes Received:
    0
    Since Malwarebytes is the best, its hard to state an alternative.

    But it is true that protecting yourself is a "platform" approach.
    Antivirus (I like free Avira)
    Antimalware (Malwarebytes is the best IMO)
    Free SUPERAntispyware is good too (but I prefer to uninstall it after use)
    Firewall (A lot of hype over 3rd party, just use Widows Firewall)
    Widows Updates and Service Packs completed (seems to me the most common missed issue)
    Updated Hosts file (read here: mvps.org/winhelp2002/hosts.htm)
    Don't use P2P software to download non official programs (I tend to say uninstall this first)
    Common sense (if you search for free porn, you basically should expect malware infection)

    Plus you can get free analysis and removal of Malware done on your system through the many online free forums (even here with me if you like ;))

    Here's a good Malware Removal Guide you can start with: www kimsland.info/home/malware
     
  3. Memopad

    Memopad OT Supporter

    Joined:
    Dec 19, 2004
    Messages:
    4,955
    Likes Received:
    15
    Location:
    Michigan
    Bit of a bump here...

    I used malwarebytes today and it seemed to work. However after it was done removing the crap i had I.E. would no longer open. I'd click on the link and shortcut and it would ask me what program i'd like to open it with.

    This morning i picked up the awesome Windows antivirus pro 2010 virus whatever the hell it is (clicked a link i shouldn't have, fawk). It totally took over my computer, couldn't run .exe's, open I.E., etc. I finally managed to get online and look up advice how to remove it. I didn't mess around in the registry because i wasn't clear one what i should be deleting. Thats how i ended up with the malwarebytes, and after using it, no more internet.

    By that point my lifeline (the internet) had been cut off and i had no idea how to restore it. So i said the hell with it and reformatted. Not a huge deal but whatever...

    Back on point, is there anyway to protect myself better? I'm running symantec antivirus, and nothing else besides the windows updates/firewall crap. And the link i clicked that fucked me over was from a website i trusted, no way i would've seen it comming.
     
  4. 5Gen_Prelude

    5Gen_Prelude There might not be an "I" in the word "Team", but

    Joined:
    Mar 14, 2000
    Messages:
    14,519
    Likes Received:
    1
    Location:
    Vancouver, BC, CANADA
    Are you running with UAC turned off?
     
  5. Workin4Jesus

    Workin4Jesus New Member

    Joined:
    Mar 3, 2010
    Messages:
    12
    Likes Received:
    0
    For the record, you don't need to open IE to access the internet, even if you do not have any other browsers installed.

    Open windows explorer by clicking "My Computer" and type in an internet address into the address bar at the top of the window...
     
  6. Graham

    Graham OT Supporter

    Joined:
    Jun 8, 2008
    Messages:
    21,139
    Likes Received:
    350
    Location:
    This close to 88mph

    If the popup is even slightly suspicious to me, I won't even trust x'ing out of the popup. I'll kill the window in task manager. Even if it means closing all my browser windows.
    Better safe than sorry.
     
  7. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    I don't even do that. If there's a two-pronged approach, terminating one process can trigger a reaction in another process monitoring the first process' status. I just hard-reset my machine.

    But that only happens rarely, because I use Firefox with AdBlock Plus installed, and I have Avast! antivirus running in the background. Haven't had an infection in...oh...six years on the same computer.
     
  8. kimsland

    kimsland New Member

    Joined:
    Feb 19, 2010
    Messages:
    174
    Likes Received:
    0
    Yes you can protect yourself better:
    • Don't click on unknown links, that start downloading stuff!
    • Yes kill the service through TaskManager or hard reset if nothing works
    • Always confirm your Antivirus and Windows Updates are fully completed
    • Confirm your Firewall is on and protecting you
    • Use Firefox. As Internet Explorer is usually always the target
    • Avoid File Sharing Applications like P2P (unless downloading from a trusted source)
    • Don't click on unknown emails or their attachments (except to right click delete)
    • Removing temp files regularly. I use free CCleaner
    • Run Malwarebytes Quick updated scan regularly (the scan lasts only 5 to 10 mins)
    I'm not a huge "Symantec Antivirus fan :rolleyes:; so when it comes up for its next renewal you may want to think twice.
    I recommend and use Free Avira Antivirus, which is brilliant in my view.
     
  9. dorkultra

    dorkultra OT's resident crohns dude OT Supporter

    Joined:
    Oct 14, 2005
    Messages:
    22,743
    Likes Received:
    27
    Location:
    yinzer / nilbog, trollhio

    firefox with adblock plus is really nice. i love how it cleans up pages by removing all the ads crap. makes them readable again

    also, i see that google chrome has a built in malware and phishing protection filter
     
  10. kimsland

    kimsland New Member

    Joined:
    Feb 19, 2010
    Messages:
    174
    Likes Received:
    0
    I agree

    Plus I also > Remove Avatars
    This seems to speed the page load up a little more as well ;)
     
  11. Memopad

    Memopad OT Supporter

    Joined:
    Dec 19, 2004
    Messages:
    4,955
    Likes Received:
    15
    Location:
    Michigan
    Thanks. I didn't buy the symantec software, i got it through my university and have used it ever since. I'll check out the free one.

    I don't ever remember getting a virus before (i'm usually pretty "smart" about what i'm doing) but this bitch took me by surprise. I didn't click ok or anything like that, just followed a link to a website i thought was legit, 2 seconds later this spyware comes flying at me outa nowhere.

    Never liked firefox, buy i guess i'll try and get used to a new browser :wtc:
     
  12. Memopad

    Memopad OT Supporter

    Joined:
    Dec 19, 2004
    Messages:
    4,955
    Likes Received:
    15
    Location:
    Michigan
    No idea, i'm assuming i don't have it on.
     
  13. kimsland

    kimsland New Member

    Joined:
    Feb 19, 2010
    Messages:
    174
    Likes Received:
    0
    I was a strong supporter of Internet Explorer for many years, actually I still support Internet Explorer on specific pages, like MS Updates, and some manufacturer automatic driver scans (there are others as well)
    But I have eventually moved to Firefox for "general" browsing; downloading and forums ;) I find it much better and safer.

    The issue you had was not a Virus specifically. It was malware (in the sense of spyware etc) that is easily detected and fully removed by free Malwarebytes.
    So, in reality having Avira over Symantec would not have helped anyway!
    BUT, in saying that, I still feel that free Avira is much better that Symantec, and also less bothersome!
     
  14. kimsland

    kimsland New Member

    Joined:
    Feb 19, 2010
    Messages:
    174
    Likes Received:
    0
  15. cmsurfer

    cmsurfer ºllllllº

    Joined:
    Jun 6, 2003
    Messages:
    5,079
    Likes Received:
    0
    Location:
    NJ
    My new favorite antivirus/antimalware app is Microsoft Security Essentials.

    One of the computers at work got hit with the 'antivirus soft' spyware the other day. I couldn't kill the spyware process before I could run Malwarebytes or even open the app with the spware running.

    I ended up pulling the drive and hooking it up to my PC and and Security Essentials immediately caught the spyware and removed it.

    I put the drive back in it's PC, ran a full scan with Malwarebytes and it took the reg keys from the app out.

    I'm very impressed with Microsoft Security Essentials so far. I only wish they would create a managed one for businesses, I'd definitely consider it. I'm miserable with Symantec Antivirus here.
     
  16. Memopad

    Memopad OT Supporter

    Joined:
    Dec 19, 2004
    Messages:
    4,955
    Likes Received:
    15
    Location:
    Michigan
  17. freshie

    freshie New Member

    Joined:
    Aug 6, 2003
    Messages:
    8,208
    Likes Received:
    0
    Location:
    Royersford, PA
    windows security essentials seems to be working good for me
     
  18. kimsland

    kimsland New Member

    Joined:
    Feb 19, 2010
    Messages:
    174
    Likes Received:
    0
    Then that's why you don't have it on. UAC is not in XP.
     

Share This Page