Avast WEBforum
Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: SeeWhy on February 10, 2014, 09:51:00 AM
-
Hi everyone
I've seen on a few places online that Malwarebytes is a good program to have as well as Avast (I've got All-Inclusive). Is it really necessary to have both? I'm not really sure what MWB would do that Avast doesn't.
Thanks!
-
No security program have 100% detection. MBAM is designed to be a extra layer of protection to your antivirus
Also recomended is MCShield usb protector www.mcshield.net
-
Wow, three programs? I'll take your word for it, thanks for the tip.
-
If you check any malware removal help forum like geeks to go / bleepingcomputer....
You will see that malwarebytes is often the first tool they run
MCShield protect against malware that spread by removable device, there are many tools like this but they usually just disable autorun and leave the malware there.....mcshield will clean your usb device
Just surf the viruses and worms forum section here and see...
-
SeeWhy see my sig below as I have Avast side by side with Malwarebytes and MCShield with no issue or problems at all ;)
-
Totally agree......MBAM "Pro" (paid version, only $24 lifetime charge) I run side-side with Avast.....so both active shields.
To the point above I HAVE had both shields catch different things.....so it proves the point of having both to me.
I also run a scheduled scan each night from both........at different times.....while I am asleep.
I have not installed McShield but have seen the suggestion and doing some reading: http://www.mcshield.net/
The last item I have done.....and suggested by others is CryptoPrevent: http://www.foolishit.com/vb6-projects/cryptoprevent/
It is more of a run-once util that changes your group policies to prevent the CryptoLock "ransomware" programs....which frankly scare me more than A/V or Malware. Avast thread on the subject: http://forum.avast.com/index.php?topic=141429.msg1028176#msg1028176
I'll warn you if you read the thread's and links posted within it'll scare the stew out of you. :o
-
I had Avast Free but didn't have PUPS enabled but, I do now. Had Mbam free also. I got some really nasty browser Hijacker. It displayed itself as " fat2meat.com gsearch " Mbam full scan didn't even notice it at all. I had to do a complete reinstall. Adwcleaner & JRT failed to catch it as well! It was really nasty & I don't even know how I got it.!
-
Hello SeeWhy,
You can also use SuperAntiSpyware Free Edition along with MalwareBytes' Antimalware + Avast Free Edition. I have all of these programs in my laptop and in my desktop. All these 3 program works great and awesome :).
P.S.: It is recommended to do a once in every week a full system scan of your entire computer/laptop.
-
Hello SeeWhy,
You can also use SuperAntiSpyware Free Edition along with MalwareBytes' Antimalware + Avast Free Edition. I have all of these programs in my laptop and in my desktop. All these 3 program works great and awesome :).
P.S.: It is recommended to do a once in every week a full system scan of your entire computer/laptop.
OK.....so from my signature I am using Avast8 + MBAM Pro (active) + CryptoPrevent + CCleaner.
CryptoPrevent was run once to change the policies
CCLeaner I use daily to remove temp files, etc.
Only Avast8 & MBAM Pro are active protection products on my PC.
I'm looking at SuperAntispyware Free: http://www.superantispyware.com/superantispywarefreevspro.html and what I see is somthing like the MBAM Free where you run it manually.....am I correct that like the MBAM Free I would manually update the database, run manual scan, etc. from time to time ? I actually like this scenario because really don't want a third "active' AV/MW program on my PC.
Thx.
-
Simply set MBam Pro to NOT start with Windows, so it does not run as resident protection.
Your updates will still be automatic.
-
.am I correct that like the MBAM Free I would manually update the database, run manual scan, etc. from time to time ?
yes....
or if you buy the one time for life license, you can turn off realtime protection but still have the autoupdate as i did when using it
however SAS never found anything that Malwarebytes did not find, exept tracking cookies that MBAM does not target...so i just dropped it
-
Simply set MBam Pro to NOT start with Windows, so it does not run as resident protection.
why .... MBAM pro does not conflict with avast..... or any other AV i have run it with
it is designed to run with your AV
-
I think I was not clear......I run Avast8 Free & have bought MBAM Pro and run both active.......they work great.
My question is do I bother using the SuperAntispyware Free and run/update is manually from time to time ?
My assumption/reference to MBAM Free was that SuperAntispyware Free runs like you would with MBAM Free..ie. manual update and scans......since I would not plan to buy the SuperAntispyware Pro version.
I really don't want a third program/scanner on my PC, SuperAntispyware Free, but was wondering if it covers things MBAM Pro does not ?
-
Simply set MBam Pro to NOT start with Windows, so it does not run as resident protection.
why .... MBAM pro does not conflict with avast..... or any other AV i have run it with
it is designed to run with your AV
OP >>>> nd what I see is somthing like the MBAM Free where you run it manually.....am I correct that like the MBAM Free I would manually update the database, run manual scan, etc. from time to time ? I actually like this scenario because really don't want a third "active' AV/MW program on my PC.
Why did you do this on your system and give this answer ? What is the difference?
yes....or if you buy the one time for life license, you can turn off realtime protection but still have the autoupdate as i did when using it
however SAS never found anything that Malwarebytes did not find, exept tracking cookies that MBAM does not target...so i just dropped it
-
Why did you do this on your system and give this answer ? What is the difference?
since i run AV + MBAM pro i turned off SAS realtime protection.... (SAS pro) so i still got the auto signature and program updates
as i said above, it never found anything malwarebytes did not find so i dont use it anymore....
-
All, I must have confused folks on my question............I am very sorry.
Let me try again.
I use Avast8 FREE in Active protection......and nightly scans.
I bought lifetime license of MBAM Pro and run Active protection.....and nightly scans (different time than Avast).
Avast & MBAM Pro work fine together.
Avast & MBAM Pro obviously allow for schedule scans and auto updates.
I also use CryptoPrevent + CCleaner.
CryptoPrevent was run once to change the policies
CCLeaner I use daily to remove temp files, etc.
My question on SAS in that I would not plan to buy the Pro, but rather use the FREE.
I'm only researching this because people elude to that SAS covers thing MBAM Pro does not.....true ?
Since I would be using SAS FREE.....not Pro....it appears the scheduler & updater are not included.
So.....my question was that SAS FREE seems to be like MBAM FREE in that you have to manually update/scan ?
Hope that clarifies my question(s).
-
Why did you do this on your system and give this answer ? What is the difference?
since i run AV + MBAM pro i turned off SAS realtime protection.... (SAS pro) so i still got the auto signature and program updates
as i said above, it never found anything malwarebytes did not find so i dont use it anymore....
Thx.....you posted as I was typing........this answers my "main" question.
-
I'm only researching this because people elude to that SAS covers thing MBAM Pro does not.....true ?
yes... tracking cookies.... if that worry you. ;)
Are cookies really spyware and are they dangerous? http://superantispyware.com/supportfaqdisplay.html?faq=26
-
I'm only researching this because people elude to that SAS covers thing MBAM Pro does not.....true ?
yes... tracking cookies.... if that worry you. ;)
Are cookies really spyware and are they dangerous? http://superantispyware.com/supportfaqdisplay.html?faq=26
Thx, I just use CCLeaner.........instead of "empty" recycle bin I just use CC.
I do make sure within CC to uncheck a lot of things I don't want it to clear.....eg, dump logs.
-
Wednesday, February 12th, 2014 @ 9:2 AM, [GMT-0800], Day of year = 43
Hi,
As has been said elsewhere, NO one program, no matter how GOOD many think it is,( like our avast program), can protect you on-line from all possible problems. You need a variety of tools to even come close.
I use avast as my #1 running full time, followed by Malwalbytes, Spybot, & Spyware Blaster. They work well together and cover a wide range of possible troubles.
Also, to keep things clean, i use Registry Clean Expert, CCleaner, and Piriform Defraggler. I do a full avast scan daily, and scan & clean my registry weekly, and do a backup.
In addition, i have a huge HOSTS file. If yer not familiar with it, do a search. The Microsoft HOSTS file, tied to use of "Google Alerts," which sends daily info on browser hi-jackers, malicious sites, etc to me, rounds out my overall protection scheme.
Still nothing is perfect, except YOU and ME, and i wonder about YOU? :)
Linda
-
Wednesday, February 12th, 2014 @ 9:2 AM, [GMT-0800], Day of year = 43
Hi,
As has been said elsewhere, NO one program, no matter how GOOD many think it is,( like our avast program), can protect you on-line from all possible problems. You need a variety of tools to even come close.
I use avast as my #1 running full time, followed by Malwalbytes, Spybot, & Spyware Blaster. They work well together and cover a wide range of possible troubles.
Also, to keep things clean, i use Registry Clean Expert, CCleaner, and Piriform Defraggler. I do a full avast scan daily, and scan & clean my registry weekly, and do a backup.
In addition, i have a huge HOSTS file. If yer not familiar with it, do a search. The Microsoft HOSTS file, tied to use of "Google Alerts," which sends daily info on browser hi-jackers, malicious sites, etc to me, rounds out my overall protection scheme.
Still nothing is perfect, except YOU and ME, and i wonder about YOU? :)
Linda
Wow, you are my type of girl.....safety first. :)
Seriously thx.....and LOL on: Still nothing is perfect, except YOU and ME, and i wonder about YOU?
-
I run Winxp sp3 pro, Avast 8, Malware bytes free, Windows defender, spyware blaster, superantispyware free and Malwarebytes anti-exploit never had any issues whatsoever. Pondus thanks for the McShield thingy I installed and looks great. I tried to install CryptoPrevent but won't install properly ( Zipped or installer ) so I guess I'll give it a miss. Does anybody know anything about Crystal Anti - exploit ? http://www.crystalaep.com/
About McShield :
" Pros: Good program
Cons: But there is better way to block infections.
Other Thoughts: I am told that Windows 7 (and I assume Vista/8 as well) do not have to worry about autoruns viruses because of how Microsoft changed the way it works.
That leaves only XP.
XP has a driver that can READ but not WRITE back to UDF formatted drives.
If you want 100% autoruns virus protection in XP, just format your flash drive to UDF under Windows 7 using Rufus or similar.
Add the programs you want.
XP can READ your programs from it, but it cannot write back, so 100% viruses are blocked!!! "
Link : http://www.freewarefiles.com/MCShield_program_78429.html
Is that right ?
-
I tried to install CryptoPrevent but won't install properly ( Zipped or installer )
Really ?....obviously you to this link and chose the down (EXE) on the bottom ?
http://www.foolishit.com/vb6-projects/cryptoprevent/
Also, Avast Thread on the subject: http://forum.avast.com/index.php?topic=141429.msg1028176#msg1028176
-
I currently use Avast free and MBAM free.MBAM will catch malware and other malicious files that Avast misses, I would totally go ahead and get it. Just for the added protection.
-
I tried to install CryptoPrevent but won't install properly ( Zipped or installer )
Really ?....obviously you to this link and chose the down (EXE) on the bottom ?
http://www.foolishit.com/vb6-projects/cryptoprevent/
Also, Avast Thread on the subject: http://forum.avast.com/index.php?topic=141429.msg1028176#msg1028176
That's the one. I tried them both. Installed it , then clicked on apply it asked me to reboot and then when I click on test it won't run. I get a message saying that there is something wrong or not installed properly. Can't remember exactly. Go figure.
-
I've used Malwarebytes Pro as added protection with avast! Internet Security on all of my machines for years without conflicts.
IMHO, it's the perfect insurance policy! Go for it!
-
I tried to install CryptoPrevent but won't install properly ( Zipped or installer )
Really ?....obviously you to this link and chose the down (EXE) on the bottom ?
http://www.foolishit.com/vb6-projects/cryptoprevent/
Also, Avast Thread on the subject: http://forum.avast.com/index.php?topic=141429.msg1028176#msg1028176
That's the one. I tried them both. Installed it , then clicked on apply it asked me to reboot and then when I click on test it won't run. I get a message saying that there is something wrong or not installed properly. Can't remember exactly. Go figure.
I would suggest to take the time and go to their Forum and post the issue: http://foolishtech.com/index.php?sid=56b9b4db487d49e341fa8ff324c1f6fe
For me a "virus" or "malware" is a PITA but at least it doesn't cripple you forever.
CryptoLock if it hits you locks everything on your PC and everything your PC is connected to......and there is NO recovery.
Some of the versions corrupt System-Restore too.
Your only fallback is offline image of your PC or offline file backups.
The cryptolock itself is easily removed but by the time it is seen it already has encrypted your files....damage is done.
CryptoPrevent is one-time run util that prevents this........to me worth getting it to work.
Want to be really scared....read this article from Kaspersky: http://blog.kaspersky.com/cryptolocker-is-bad-news/
Article from MBAM: http://blog.malwarebytes.org/intelligence/2013/10/cryptolocker-ransomware-what-you-need-to-know/
-
I run Winxp sp3 pro, Avast 8, Malware bytes free, Windows defender, spyware blaster, superantispyware free and Malwarebytes anti-exploit never had any issues whatsoever. Pondus thanks for the McShield thingy I installed and looks great. I tried to install CryptoPrevent but won't install properly ( Zipped or installer ) so I guess I'll give it a miss. Does anybody know anything about Crystal Anti - exploit ? http://www.crystalaep.com/
About McShield :
" Pros: Good program
Cons: But there is better way to block infections.
Other Thoughts: I am told that Windows 7 (and I assume Vista/8 as well) do not have to worry about autoruns viruses because of how Microsoft changed the way it works.
That leaves only XP.
XP has a driver that can READ but not WRITE back to UDF formatted drives.
If you want 100% autoruns virus protection in XP, just format your flash drive to UDF under Windows 7 using Rufus or similar.
Add the programs you want.
XP can READ your programs from it, but it cannot write back, so 100% viruses are blocked!!! "
Link : http://www.freewarefiles.com/MCShield_program_78429.html
Is that right ?
autorun is just one way the malware spread....
those who are interested in MCShield may read this topic. http://forum.avast.com/index.php?topic=104046.0
see posts from argus, magna86 and dr_bora the creator of the program
Other Thoughts: I am told that Windows 7 (and I assume Vista/8 as well) do not have to worry about autoruns viruses because of how Microsoft changed the way it works.
hmmm.....you need to check the viruses and worms forum section here. ;)
-
Hello SeeWhy,
You can also use SuperAntiSpyware Free Edition along with MalwareBytes' Antimalware + Avast Free Edition. I have all of these programs in my laptop and in my desktop. All these 3 program works great and awesome :).
P.S.: It is recommended to do a once in every week a full system scan of your entire computer/laptop.
OK.....so from my signature I am using Avast8 + MBAM Pro (active) + CryptoPrevent + CCleaner.
CryptoPrevent was run once to change the policies
CCLeaner I use daily to remove temp files, etc.
Only Avast8 & MBAM Pro are active protection products on my PC.
I'm looking at SuperAntispyware Free: http://www.superantispyware.com/superantispywarefreevspro.html and what I see is somthing like the MBAM Free where you run it manually.....am I correct that like the MBAM Free I would manually update the database, run manual scan, etc. from time to time ? I actually like this scenario because really don't want a third "active' AV/MW program on my PC.
Thx.
MBAM PRO and FREE has the similar functions, but different in design. PRO version has features that the FREE doesn't have such as automatic updates for malware definitions and program updates, real time protection, automatic scheduler for scans, anti-phising and identity protection, and etc. For me I don't want the risk of running two active antimalware protection. I always run only 1 active antimalware protection and that is Avast and avoid running 2 active malware protection and causing conflicts with one another and causing all sorts of issues on your computer.
Answer to your question is yes, you can do a manual malware definition update and manual quick/full scan of your computer
Like me, just do a weekly scan and manual update for MBAM FREE, SuperAntiSpyware Free, and Avast Free + don't download pirated stuffs, or dangerous downloads, and browse safe and you will be fine :). Glad I got to help you answering your question. :)
Any questions/queries you may have, feel free to ask :)
-
Hello SeeWhy,
You can also use SuperAntiSpyware Free Edition along with MalwareBytes' Antimalware + Avast Free Edition. I have all of these programs in my laptop and in my desktop. All these 3 program works great and awesome :).
P.S.: It is recommended to do a once in every week a full system scan of your entire computer/laptop.
OK.....so from my signature I am using Avast8 + MBAM Pro (active) + CryptoPrevent + CCleaner.
CryptoPrevent was run once to change the policies
CCLeaner I use daily to remove temp files, etc.
Only Avast8 & MBAM Pro are active protection products on my PC.
I'm looking at SuperAntispyware Free: http://www.superantispyware.com/superantispywarefreevspro.html and what I see is somthing like the MBAM Free where you run it manually.....am I correct that like the MBAM Free I would manually update the database, run manual scan, etc. from time to time ? I actually like this scenario because really don't want a third "active' AV/MW program on my PC.
Thx.
MBAM PRO and FREE has the similar functions, but different in design. PRO version has features that the FREE doesn't have such as automatic updates for malware definitions and program updates, real time protection, automatic scheduler for scans, anti-phising and identity protection, and etc. For me I don't want the risk of running two active antimalware protection. I always run only 1 active antimalware protection and that is Avast and avoid running 2 active malware protection and causing conflicts with one another and causing all sorts of issues on your computer.
Answer to your question is yes, you can do a manual malware definition update and manual quick/full scan of your computer
Like me, just do a weekly scan and manual update for MBAM FREE, SuperAntiSpyware Free, and Avast Free + don't download pirated stuffs, or dangerous downloads, and browse safe and you will be fine :). Glad I got to help you answering your question. :)
Any questions/queries you may have, feel free to ask :)
Don't change the "Subject" heading
This is not your Thread.
-
Subject title changed back.
I would purchase MBAM Pro lifetime license even if I wasn't going to use it at this time. MBAM 2.0 will be a yearly subscription and when MBAM 2.0 is released I have read that the MBAM Pro lifetime license will still be honored.
-
I would purchase MBAM Pro lifetime license even if I wasn't going to use it at this time.
MBAM 2.0 will be a yearly subscription and when MBAM 2.0 is released I have read that the MBAM Pro lifetime license will still be honored.
Great heads-up......I just posted the question to see direct response: https://forums.malwarebytes.org/index.php?showtopic=142173
-
All play nicely together, avast! residential av solution, MBAM, Malwarebytes-Anti-Exploit and SAS non-resident anti-malware solutions.
A square set!
And apart from the occasional tracking cookie nothing has been found during quick scans.
Top this off with NoScript and RequestPolicy extensions and a decent ADware Blocker in the browser and you're quite secure.
For venturing out where one was never before use the browser inside a VM or inside a sandbox.
Do a complete scan of your user files once in a fortnight and you are as secure as you can be.
Safe-hex is the way to go and folks, do not forget to use your common sense, it was given to you to be used ;D
Stay safe and secure on those Interwebs,
polonus
-
I would purchase MBAM Pro lifetime license even if I wasn't going to use it at this time.
MBAM 2.0 will be a yearly subscription and when MBAM 2.0 is released I have read that the MBAM Pro lifetime license will still be honored.
Great heads-up......I just posted the question to see direct response: https://forums.malwarebytes.org/index.php?showtopic=142173
The answer is here. https://forums.malwarebytes.org/index.php?showtopic=141268
-
Don't change the "Subject" heading
That was my fault.....did not know that mattered within a thread if the subject extended a little....but still on main subject too.
My apology..........
-
I would purchase MBAM Pro lifetime license even if I wasn't going to use it at this time.
MBAM 2.0 will be a yearly subscription and when MBAM 2.0 is released I have read that the MBAM Pro lifetime license will still be honored.
Great heads-up......I just posted the question to see direct response: https://forums.malwarebytes.org/index.php?showtopic=142173
The answer is here. https://forums.malwarebytes.org/index.php?showtopic=141268
Thx....anyone try the BETA with Avast2014 ?.......I see they have rootkit, etc.....so wondering if any gotchas.
With the launch of 2.0, we'll also be moving to a subscription licensing model, $24.95 per year. As more and more people have come to rely on us for malware protection and cleanup, our costs in bandwidth, hosting fees, infrastructure, salaries of our researchers, QA department, and more have grown immensely. Though our company is about more than just making money, we are a company and we do have to make money to pay our staff to continue doing what they love, which is fighting malware. The subscription model will help us to be sustainable for the future while staying true to our roots that we will always make malware cleanup free for everyone. We will continue to honor existing lifetime licenses, meaning any users that already have a lifetime license for 1.x will continue to have a lifetime license for 2.x. We'll be offering a few thousand more lifetime licenses during launch as well. On top of all of that, new subscription licenses will be valid for 3 PCs, not just 1. We could have gone other routes to make our business more financially sustainable, like adding toolbars or advertisements like many other security products have, but that's not the company we are. We believe that products should be nag-free and cleanup shouldn't cost our users a dime, and we're going to stay true to that. Scanning for and removing malware will be free in version 2.x and beyond! You didn't pay to get infected, you shouldn't pay to clean it up!
-
Don't change the "Subject" heading
That was my fault.....did not know that mattered within a thread if the subject extended a little....but still on main subject too.
My apology..........
Well it matters as it breeds confusion when reading a lot of Threads/Posts and the reference showing on the Forum has changed. ???
-
@ TheKochs : I tried to install again everything went nice and smooth I followed all the correct procedures but when I try to test it CryptoPrevent that is once again I get the following message.
Prevention not applied or unsuccessful. Be sure to reboot the PC after applying protection before testing.
Uninstalled it again ! :(
I will ask about it at the Foolishit site shortly.
Has anyboby heard of Crystal Anti - exploit ? http://www.crystalaep.com/ Sounds interesting could find some reviews only of their b version.
-
Has anyboby heard of Crystal Anti - exploit ? http://www.crystalaep.com/ Sounds interesting could find some reviews only of their b version.
If you want an Anti-Exploit program that is proven, Malwarebytes Anti Exploit offers just that
https://forums.malwarebytes.org/index.php?showforum=126 (https://forums.malwarebytes.org/index.php?showforum=126):)
-
Has anyboby heard of Crystal Anti - exploit ? http://www.crystalaep.com/ Sounds interesting could find some reviews only of their b version.
If you want an Anti-Exploit program that is proven, Malwarebytes Anti Exploit offers just that
https://forums.malwarebytes.org/index.php?showforum=126 (https://forums.malwarebytes.org/index.php?showforum=126):)
Thanks Schmidthouse, Malwarebytes Anti Exploit is the one I have been using for a couple of weeks now I was just bit curious about this Crystal thing. ;)
-
Thx....anyone try the BETA with Avast2014 ?.......I see they have rootkit, etc.....so wondering if any gotchas.
Been running the beta with Avast since it came out, absolutely no problems at all.
-
Has anyboby heard of Crystal Anti - exploit ? http://www.crystalaep.com/ Sounds interesting could find some reviews only of their b version.
If you want an Anti-Exploit program that is proven, Malwarebytes Anti Exploit offers just that
https://forums.malwarebytes.org/index.php?showforum=126 (https://forums.malwarebytes.org/index.php?showforum=126):)
Thanks Schmidthouse, Malwarebytes Anti Exploit is the one I have been using for a couple of weeks now I was just bit curious about this Crystal thing. ;)
No worries, You're welcome. ;D
-
MNAM 2.0 BETA with Avast2014 ?
Been running the beta with Avast since it came out, absolutely no problems at all.
Crusher, thx.....good to hear.
-
@ TheKochs : I tried to install again everything went nice and smooth I followed all the correct procedures but when I try to test it CryptoPrevent that is once again I get the following message.
Prevention not applied or unsuccessful. Be sure to reboot the PC after applying protection before testing.
Uninstalled it again ! :(
I will ask about it at the Foolishit site shortly.
Dumb question.......I assume you rebooted ?...it requires to implement the policy changes.
Let me know the thread you post.....would like to follow along there.....
....perhaps it is a post here.....not sure: http://foolishtech.com/viewtopic.php?f=5&t=851&start=60
-
Thx....anyone try the BETA with Avast2014 ?.......I see they have rootkit, etc.....so wondering if any gotchas.
Been running the beta with Avast since it came out, absolutely no problems at all.
The MBam Beta v.2 test #2 is extremely stable, MBam has always been the Second of Choice for Avast side by side. :)
-
Thx....anyone try the BETA with Avast2014 ?.......I see they have rootkit, etc.....so wondering if any gotchas.
Been running the beta with Avast since it came out, absolutely no problems at all.
The MBam Beta v.2 test #2 is extremely stable, MBam has always been the Second of Choice for Avast side by side. :)
Great to hear.....I had previously posted on MBAM site and they said: https://forums.malwarebytes.org/index.php?showtopic=142176
Question.....Avast's anti-rootkit is part of scheduled or boot-time scan, correct ? It sounds like the Avast and MBAM 2.x active shields play nice and the scheduled scans if run at different times would be OK ?.....in other words, no where for rootkit scans from each to run into each other ? Sorry if this is dumb question.......just trying to get my head around it.
-
That's correct. :)
-
@ TheKochs : I tried to install again everything went nice and smooth I followed all the correct procedures but when I try to test it CryptoPrevent that is once again I get the following message.
Prevention not applied or unsuccessful. Be sure to reboot the PC after applying protection before testing.
Uninstalled it again ! :(
I will ask about it at the Foolishit site shortly.
Dumb question.......I assume you rebooted ?...it requires to implement the policy changes.
Let me know the thread you post.....would like to follow along there.....
....perhaps it is a post here.....not sure: http://foolishtech.com/viewtopic.php?f=5&t=851&start=60
I thought the site is a tad confusing . Anyway here you go !
http://foolishtech.com/viewtopic.php?f=5&t=1248
-
@ TheKochs : I tried to install again everything went nice and smooth I followed all the correct procedures but when I try to test it CryptoPrevent that is once again I get the following message.
Prevention not applied or unsuccessful. Be sure to reboot the PC after applying protection before testing.
Uninstalled it again ! :(
I will ask about it at the Foolishit site shortly.
Dumb question.......I assume you rebooted ?...it requires to implement the policy changes.
Let me know the thread you post.....would like to follow along there.....
....perhaps it is a post here.....not sure: http://foolishtech.com/viewtopic.php?f=5&t=851&start=60
I thought the site is a tad confusing . Anyway here you go !
http://foolishtech.com/viewtopic.php?f=5&t=1248
Yeah, me too.
FYI....I noticed from your signature/info on other thread you have Windows Defender enabled ?
You really need to disable it since you have Avast.....go into it under Optiions/Admin and uncheck option to use this program.
It can cause issues with Avast and it is worthless in terms of A/V anyway.
You also mention you think it could be the problem with Crytoprevent so worth trying/disabling on that count too.
-
Question.....Avast's anti-rootkit is part of scheduled or boot-time scan, correct ?
avast does a rootkit scan 8min after boot....
-
FYI....I noticed from your signature/info on other thread you have Windows Defender enabled ?
You really need to disable it since you have Avast.....go into it under Optiions/Admin and uncheck option to use this program.
It can cause issues with Avast and it is worthless in terms of A/V anyway.
Defender on XP is only spyware so it wont conflict with avast but Defender has an absolutely terrible detection rate and is a waste of resources imo, I'm pretty sure that Defender can be uninstalled in XP.
-
@ TheKochs , @ Graigb : I have been using WD for three years now never had any conflicts. I am aware that is kind of " useless " this is why sometimes I turn it off then after a while I turn it back on just pissing about really. Don't ask me why I do that to be honest I do not have a good answer. ;D I'll try installing crypto again with WD disabled and I'll report back
Cheers
PS. That site seems to be like a ghost town.
-
disabled WD. Installed CryptoPrevent still get the same message.
Prevention not applied or unsuccessful. Be sure to reboot the PC after applying protection before testing.
Anyway let's wait and see what they've got to say on this other thread.
-
Prevention not applied or unsuccessful. Be sure to reboot the PC after applying protection before testing.
What Windows version are you exactly using? As far as I know, "group policy editor" is only a feature for Windows Pro, Ultimate, Enterprise or Server
versions, so I don't know whether using an application which creates rules in gpedit will work with "Home" versions, since I'm only using "Pro" versions.
If you're using Windows 7 Home you might try to get gpedit first: http://www.w7forums.com/threads/install-gpedit-on-win-7-home-editions.10839/ (http://www.w7forums.com/threads/install-gpedit-on-win-7-home-editions.10839/).
however SAS never found anything that Malwarebytes did not find, exept tracking cookies that MBAM does not target...so i just dropped it
The same here + you can just run the cleaner you trust to regularly clean the c:\users\your_username\cookies and the c:\users\your_username\appdata\roaming\microsoft\windows\cookies\ folder, though it was thanks to SAS that I figured it out, so I didn't have to run it again anymore.
Though after using mvps HOSTS file (http://winhelp2002.mvps.org/hosts.htm) and automatically removing LSOs with BetterPrivacy (https://addons.mozilla.org/en-US/firefox/addon/betterprivacy/) (except for the Flashplayer settings that I want to keep), I practically haven't encountered tracking cookies at all.
@ topic:
In theory, Windows MSE/Windows Defender in 8/8.1 with the Windows FW+Router FW should suffice if you're using "brain 2.0". Avast or any other third party AV programm might add a little bit more "active protection" and/or "detection", but it does not replace "brain 2.0".
On the other side, there are cases where neither "brain 2.0" nor Avast or any other AV program helps. For example, drive-by downloads, which often happen by exploiting programs coming from infected ads.
For that reason, I'm always checking whether Flash, browser or any other security relevant program is up to date and I consequently block any ad on the net as well as third party JS with NoScript (I only turn on the scripts I really have to for the site to work properly after I checked any unknown website at http://urlvoid.com/ (http://urlvoid.com/) and/or https://www.virustotal.com/ (https://www.virustotal.com/). BTW: VT has a nice utility to directly upload files <20MB from your computer and check it with over 40 AVs (https://www.virustotal.com/en/documentation/desktop-applications/) or <64MB if you're using the website ).
There are more things for active and for passive protection.
Active protection is for example your AV. Another would be HIPS from third party firewalls. It's up to you how many active protection you really want, since they might slow your Computer and/or create more problems for example with Blue Screens or with having to click more messages away, especially during new installations which aren't in the HIPS rules yet.
Passive protection is more like a check to see whether everything's still O.K. and here lies the answer to the question:
Malwarebytes is a great tool to check for potential unwanted programs (PUPs, especially Adware/toolbars bundled with installers) and newer trojans. While it is not mandatory, especially if you're having a good active protection, I would recommend using Malwarebytes as a "second opinion" to your main AV-scan.
Additionally, you could scan your computer with programs such as Farbar Recovery Scan Tool (http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/), though you might not be able to find traces of malware if there is shown, but you can check every unknown entry with Google and VT like I do or just ask for help, though you need to be aware that you're sharing potentially private information which might show in those logs, for example which programs are installed.
Also, you might try out SARDU (http://www.sarducd.it/) to create a multiboot USB/CD with many bootable scanners to scan once in a while, which are more effective than any started within Windows where potential rootkits could still be hiding from your AV. You might need to pay attention for Adware bundled in this installer and turn Avast protection off while creating the USB stick to format it correctly.
While we're on the topic of adware: Adwcleaner (http://general-changelog-team.fr/en/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner) and Junkware Removal Tool (JRT) (http://thisisudax.org/) do a great job in removing browser hijackers, adware, toolbars and any other "junk programs".
And last but not least: It doesn't matter which and how many "security programs" you're using, since you won't get 100% protection anyways. For that reason, I would also recommend to regularly backup your important files and/or use image recovery software in a worst case scenario, for example with Macrium Reflect (http://www.macrium.com/reflectfree.aspx) or with Paragon Backup & Recovery (http://www.paragon-software.com/home/br-free/download.html), so that you can get back to a properly working state without wasting hours of time to re-install and set-up all programs, updates and settings again.
-
Prevention not applied or unsuccessful. Be sure to reboot the PC after applying protection before testing.
What Windows version are you exactly using? As far as I know, "group policy editor" is only a feature for Windows Pro, Ultimate, Enterprise or Server
versions, so I don't know whether using an application which creates rules in gpedit will work with "Home" versions, since I'm only using "Pro" versions.
I am using W7 64-bit Home Premium on all my PCs and CryptoPrevent works fine.
However, Tangy is on Win XP SP3 Pro by his post on FooloshTech.com: http://foolishtech.com/viewtopic.php?f=5&t=1248
.....but the site shows "CryptoPrevent is a tiny utility to lock down any Windows OS (XP, Vista, 7, 8, and 8.1)"
-
I am using W7 64-bit Home Premium on all my PCs and CryptoPrevent works fine.
However, Tangy is on Win XP SP3 Pro by his post on FooloshTech.com: http://foolishtech.com/viewtopic.php?f=5&t=1248
.....but the site shows "CryptoPrevent is a tiny utility to lock down any Windows OS (XP, Vista, 7, 8, and 8.1)"
I've thought it had to do something with the group policy editor feature. Nevermind, then.
-
I am using W7 64-bit Home Premium on all my PCs and CryptoPrevent works fine.
However, Tangy is on Win XP SP3 Pro by his post on FooloshTech.com: http://foolishtech.com/viewtopic.php?f=5&t=1248
.....but the site shows "CryptoPrevent is a tiny utility to lock down any Windows OS (XP, Vista, 7, 8, and 8.1)"
I've thought it had to do something with the group policy editor feature. Nevermind, then.
It does: http://www.foolishit.com/vb6-projects/cryptoprevent/
Prevention Methodology
CryptoPrevent artificially implants group policy objects into the registry in order to block certain executables in certain locations from running. The number of rules created by CryptoPrevent is somewhere between 150 and 200+ rules depending on the OS and options selected, not including whitelisting! Note that because the group policy objects are artificially created, they will not display in the Group Policy Editor on a Professional version of Windows — but rest assured they are still there! Executables now protected against (starting with v2.6) are *.exe *.com *.scr and *.pif, and these executables are blocked in the paths below where * is a wildcard:
%appdata% / %localappdata% / Recycle Bin - These locations are used by Cryptolocker and other malware as launch points.
◦%appdata% and any first-level subdirectories in %appdata% (e.g. %appdata%\directory1, %appdata%\directory2, etc.)
◦%localappdata% (and on Windows XP, any first-level subdirectories in there.) NOTE beginning with v2.2, any time %localappdata% is referred to on this page, it also refers to %userprofile%\Local Settings\Application data on Windows XP, where %localappdata% is not an actual environment variable.
◦The All Users application data and local settings\application data paths on XP.
◦The Recycle Bin on all drives, and multiple nested subfolders.
%userprofile% / %programdata% / Startup Folder
◦the %userprofile% and %programdata% paths (no nested subfolders.)
◦the Startup folder located in the Start menu > All Programs > Startup
Fake File Extension Executables: (ex. document.docx.exe)
◦*.x.y where: ◦x = pdf, doc, docx, xls, xlsx, ppt, pptx, txt, rtf, zip, rar, 7z, jpeg, jpg, png, gif, avi, mp3, wma, wmv, wav, divx, mp4
◦y = exe, com, scr, and pif.
◦with v4.1, now includes RLO (Right to Left Override) exploit protection.
Temp Extracted Executables in Archive Files:
◦%temp%\rar* directories
◦%temp%\7z* directories
◦%temp%\wz* directories
◦%temp%\*.zip directories
The final four locations above are temporary extract locations for executables when run from directly inside of a compressed archive (e.g. you open download.zip in Windows Explorer, WinRAR, WinZip, or 7zip, and execute an .EXE from directly inside the download, it is actually extracted to a temporary location and run from there – so this guards against that as well; however this option may interfere with certain program installations (e.g. Firefox) and for this reason this option is NOT recommended for most people.)
NOTE the variable %temp% is no longer used, and instead the actual temp file path is expanded after %userprofile%. There is an apparent bug in Microsoft’s software prevention policies that does not allow for the %temp% environment variable to be used in the rules (as it does allow %appdata% or %userprofile%)… so protection for %temp% folders is now applied by expanding the full path to the user’s temp folder (after %userprofile%) in each rule set. In prior versions, CryptoPrevent attempted to use the %temp% environment variable to protect all user accounts, but it was later discovered that methodology wasn’t working on all systems. If you applied protection with prior versions and want temp extracted exes blocked, you may want to reapply protection with v2.2 to ensure it will work for you.
Protection does not need to be applied while logged into each user account, it may be applied only once from ANY user account and it will protect all user accounts on the system.
-
I should have read the first paragraph more precisely, thanks for the copy paste.
-
Well, I was referred to this topic here:
http://www.foolishtech.com/viewtopic.php?f=5&t=868
I skimmed through it but to be honest I can't really be arsed to look into all the things suggested. Anyway my win copy is not in English. I guess I can't do without Cryptoprevent even though I quite like the concept.
Cheers
;)
-
Well, I was referred to this topic here:
http://www.foolishtech.com/viewtopic.php?f=5&t=868
I skimmed through it but to be honest I can't really be arsed to look into all the things suggested. Anyway my win copy is not in English. I guess I can't do without Cryptoprevent even though I quite like the concept.
I would post on the FoolishTech thread with your details and perhaps they will provide a patch to V4.3.
-
@ thekochs : Thank you for being so kind.
My OS in Brazilian Portuguese. Hard to get an OS in English down here, some times the natives give thumps down to really good and functional software just because there is no version in local language.
Instead of " I guess I can't do without Cryptoprevent even though I quite like the concept. " you see typing is not my forte What I was tying to say was " I guess I can do without Cryptoprevent even though I quite like the concept " but yeah why not if it can be done I'll be more than :)
Thanks !
-
Some compatibility issues might be resolved if you change system locale:
http://windows.microsoft.com/en-us/windows/change-system-locale#1TC=windows-7 (http://windows.microsoft.com/en-us/windows/change-system-locale#1TC=windows-7)
You can give it a try.
edit: you could also try to change everything (date, time, etc.) in English format first, restart and then test whether it helps or not.
However, even if you don't get it to work, It isn't a major problem, because imho, having a good (image) backup strategy is more important than having to run different tools to create a thick active protection layer.
-
@Randissimo : Thank you so much for your trouble !
I absolutely agree with your last statement :
" However, even if you don't get it to work, It isn't a major problem, because imho, having a good (image) backup strategy is more important than having to run different tools to create a thick active protection layer. "
I have a question though. Which firewall would you install ? Comodo 5.12 or Private firewall 9.0.333.0 ? That is the last software that I would like to install or of course if you have something else to recommend. Do you guys think that it is a must or should I give it a miss and keep using winxp firewall.
Win XP SP3 Pro Ram 4GB CPU 2.81 GHz HD 500 GB video card 500 MB
Avast 8 free
Windows defender
SpywareBlaster
MalwareBytes Free
SuperAntispyware Free
MalwareBytes Anti-eploit
McShield
KeyScrambler
Any suggestions anyone !
Thanks in advance
-
First of all: You only need an Anti-Virus, up-to-date programs/Windows and an advertising blocker for the minimum active protection imho.
Secondly: You're better of switching to Windows 7/8.1, as the support for Windows XP will end in less than 2 months.
Thirdly: any third party firewall can make problems and I don't remember Windows XP being a stable OS compared to Windows 7 or 8.
Fourthly: the Windows firewall is enough protection against incoming intruders, actually the integrated firewall in the router does the main part already and it's more important to have the firmware version of it upgraded than to have a third party FW with optional protection.
Fifthly: I can't say anything about Private Firewall, because I've never used it, so I would suggest you make an image backup first and try it out for yourself. Though, if you want to use Comodo in the future, I'd get used to the latest version since the program version 6 is still being updated and there have been many improvements compared to version 5.
-
Disclaimer. I haven't read all 5 pages, so this suggestion may have already been offered.
On any installation, the first security I install is Avast. The second, which I believe is most important is SpywareBlaster: https://www.brightfort.com/spywareblaster.html. Update about once a week and Enable All Protection. Doesn't need to run in background. If this is kept up to date the odds are that the others will have less to find when scanning.
Then another anti-malware. I have been using Emsisoft, but my subscription is about to run out, so I will be switching to paid Malwarebytes, which is a one-off lifetime payment, and in my opinion a good investment, with one caveat. Malwarebytes is very (overly?) aggressive re PUPs. You do need to consider whether all the PUPs it offers to remove are actually unwanted.
I also have SAS Pro, but don't run it in background. But it's still useful as a manual scanner
Thanks to this thread, I shall also be installing CryptoPrevent
-
so I will be switching to paid Malwarebytes, which is a one-off lifetime payment,
then you better hurry. https://forums.malwarebytes.org/index.php?showtopic=141268
With the launch of 2.0, we'll also be moving to a subscription licensing model, $24.95 per year. As more and more people have come to rely on us for malware protection and cleanup, our costs in bandwidth, hosting fees, infrastructure, salaries of our researchers, QA department, and more have grown immensely. Though our company is about more than just making money, we are a company and we do have to make money to pay our staff to continue doing what they love, which is fighting malware. The subscription model will help us to be sustainable for the future while staying true to our roots that we will always make malware cleanup free for everyone.
-
Wednesday, February 12th, 2014 @ 9:2 AM, [GMT-0800], Day of year = 43
Also, to keep things clean, i use Registry Clean Expert, CCleaner, and Piriform Defraggler. I do a full avast scan daily, and scan & clean my registry weekly, and do a backup.
Why? Registry Cleaners are snake oil which achieve nothing. And why another program? If you really MUST do it, the one in CCleaner is probably the safest one around.
-
so I will be switching to paid Malwarebytes, which is a one-off lifetime payment,
then you better hurry. https://forums.malwarebytes.org/index.php?showtopic=141268
With the launch of 2.0, we'll also be moving to a subscription licensing model, $24.95 per year. As more and more people have come to rely on us for malware protection and cleanup, our costs in bandwidth, hosting fees, infrastructure, salaries of our researchers, QA department, and more have grown immensely. Though our company is about more than just making money, we are a company and we do have to make money to pay our staff to continue doing what they love, which is fighting malware. The subscription model will help us to be sustainable for the future while staying true to our roots that we will always make malware cleanup free for everyone.
Thanks for the heads-up. I note they will honour existing lifetime licences. Heading there now.
-
MBAM PRO and FREE has the similar functions, but different in design. PRO version has features that the FREE doesn't have such as automatic updates for malware definitions and program updates, real time protection, automatic scheduler for scans, anti-phising and identity protection, and etc. For me I don't want the risk of running two active antimalware protection. I always run only 1 active antimalware protection and that is Avast and avoid running 2 active malware protection and causing conflicts with one another and causing all sorts of issues on your computer.
That statement needs clarification.
Specifically are you running Avast Free or Avast Pro? If Free, your statement is totally and utterly wrong.