Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

McAfee good?


  • Please log in to reply
8 replies to this topic

#1 Korkel

Korkel

  • Banned
  • 58 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:29 AM

Posted 15 September 2013 - 01:55 AM

No, I don't need help with cleaning this computer! I only want some advice!

 

Hello,

 

I am chekking a computer of a colleague of my mother and that PC is using McAfee, but I did an scan with Malwarebytes' Anti-Malware and a lot of junk was found.

 

Log of Malwarebytes' Anti-Malware


Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org
 
Databaseversie: v2013.09.14.08
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Admin :: DIANE-PC [administrator]
 
14-9-2013 19:27:19
mbam-log-2013-09-14 (19-27-19).txt
 
Scan type: Volledige scan (C:\|D:\|E:\|F:\|G:\|Q:\|)
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 485713
Verstreken tijd: 3 uur/uren, 27 minuut/minuten, 59 seconde(n)
 
Geheugenprocessen gedetecteerd: 1
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> 1392 -> Zal worden verwijderd tijdens het herstarten.
 
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
 
Registersleutels gedetecteerd: 8
HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SOFTWARE\SOFTWAREUPDATER (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DAEB9E85-4694-4F9B-85CB-2F28987872D7} (PUP.Optional.LyricsAd.Gen) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\CLSID\{DAEB9E85-4694-4F9B-85CB-2F28987872D7} (PUP.Optional.LyricsAd.Gen) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\TypeLib\{17F475E0-3D3C-4E09-9CCC-0B8CFFBB7A09} (PUP.Optional.LyricsAd.Gen) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCR\Interface\{3642F59E-46F9-4BC2-9FD4-E9265C52B937} (PUP.Optional.LyricsAd.Gen) -> Succesvol in quarantaine geplaatst en verwijderd.
 
Registerwaarden gedetecteerd: 2
HKLM\SOFTWARE\SoftwareUpdater|partner_keyword (PUP.Optional.SoftwareUpdater.A) -> Data: ALLFILEWINCOM -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater|ImagePath (PUP.Optional.SoftwareUpdater.A) -> Data: C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe -> Succesvol in quarantaine geplaatst en verwijderd.
 
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
 
Mappen gedetecteerd: 12
C:\Users\DIANE\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater (PUP.Optional.SoftwareUpdater.A) -> Zal worden verwijderd tijdens het herstarten.
C:\Users\DIANE\AppData\Roaming\DealPly (PUP.Optional.DealPly.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Roaming\DealPly\UpdateProc (PUP.Optional.DealPly.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Cache (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\mt_ffx\Delta (PUP.Optional.Delta.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\mt_ffx\Delta\delta (PUP.Optional.Delta.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\mt_ffx\Delta\delta\1.8.16.16 (PUP.Optional.Delta.A) -> Succesvol in quarantaine geplaatst en verwijderd.
 
Bestanden gedetecteerd: 36
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (PUP.Optional.SoftwareUpdater.A) -> Zal worden verwijderd tijdens het herstarten.
C:\Program Files (x86)\AutoLyrics\AutoLyricsUpdater.exe (PUP.LyricsAd) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater\AppsUpdater.exe (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.exe (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\instloffer.exe (PUP.Optional.VIT.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\SP8Y6LBL.exe.part (PUP.Optional.Vittalia) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\Yw1s6b1y.exe.part (PUP.Optional.Vittalia) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\ZR3hbUD7.zip.part (Trojan.FakeAlert.RGenX) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\48C61EF8-BAB0-7891-B36C-95D36A233397\Latest\MyBabylonTB.exe (PUP.Optional.Delta) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\48C61EF8-BAB0-7891-B36C-95D36A233397\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\EB9D3816-BAB0-7891-9D1A-C7B88B752052\Latest\MyBabylonTB.exe (PUP.Optional.Delta) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Local\Temp\EB9D3816-BAB0-7891-9D1A-C7B88B752052\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\Downloads\installer_messenger_English(1).exe (PUP.Optional.Vittalia) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\Downloads\installer_messenger_English.exe (PUP.Optional.Vittalia) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\Downloads\SoftonicDownloader_for_windows-live-messenger.exe (PUP.Optional.Softonic) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\Downloads\SoftonicDownloader_voor_windows-live-mail-2012.exe (PUP.Optional.Softonic) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Windows\Temp\installer.exe (PUP.Optional.Vittalia) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater\KeyGen.dll (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater\AppsUpdater.exe.config (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater\config.xml (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater\Interop.Shell32.dll (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater\translations.xml (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\SoftwareUpdater\uninstall.exe (PUP.Optional.SoftwareUpdater.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Roaming\DealPly\UpdateProc\config.dat (PUP.Optional.DealPly.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\DIANE\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe (PUP.Optional.DealPly.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.ico (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setup.dll (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll (PUP.Optional.Tarma.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\AutoLyrics\autolrcs.dll (PUP.Optional.LyricsAd.Gen) -> Succesvol in quarantaine geplaatst en verwijderd.
 
(einde)
 

 

 

Can someone advice me? Is McAfee good or must I get an other AV like Emsisoft Anti-Malware?


Edited by Korkel, 15 September 2013 - 01:57 AM.


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,139 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:29 PM

Posted 15 September 2013 - 07:50 AM

Although McAfee is as good as any other well known anti-virus program, it requires numerous services and running processes that consume a lot of system resources and often results in complaints of high CPU usage. Anti-virus software components insert themselves deep into the operating systems core and create files/folders/registry entries in various locations. If you do a Google Search you will find there have been numerous complaints about it affecting system performance. Those issues plus the cost factor are the primary reason many folks look for a free alternative as a replacement. McAfee is better utilized in an Enterprise system environment protecting many client computers.

Further McAfee products, like Symantec, are becoming difficult to remove. If uninstalling via Add/Remove Programs or Programs and Features in Vista/Windows 7/8 does not work properly, then download and run the McAfee Consumer Product Removal Tool (MCPR.exe) which removes all versions of McAfee products.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,139 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:29 PM

Posted 15 September 2013 - 07:56 AM

Most of the detections by Malwarebytes were related to "Potentially Unwanted Programs (PUPs)". A PUP is a very broad threat category which can encompass any number of different programs to include those which are benign as well as malicious. Thus, this type of detection does not always necessarily mean the file is malicious or a bad program. PUPs in and of themselves are not always bad...many are generally known, non-malicious but unwanted (bundled) software. PUPs are considered unwanted because they can cause undesirable system performance or other problems and are sometimes installed without the user's consent since they are often included when downloading legitimate programs.

In the past, Malwarebytes Anti-Malware detected only PUPs that were considered mostly harmful and deceiving but they revised their policy, taking a more aggressive approach to include PUPs that most users found annoying or misleading. PUPs may be defined somewhat differently by various security vendors. This is what Malwarebytes has to say: What are the 'PUP' detections, are they threats and should they be deleted?.

Many anti-virus programs and some security scanners have optional settings to include/exclude detection of PUPs because of how they are defined. If your anti-virus is not detecting any PUPs, most likely the settings are set to exclude that detection. However, I have found that in most cases when including PUP detection, they are not as aggressive as Malwarebytes.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 hbyton

hbyton

  • Members
  • 196 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England
  • Local time:04:29 AM

Posted 15 September 2013 - 09:04 AM

In my opinion McAfee is not very good, In my experience i have found it to bog down computers and I also do not like the user interface. The protection that it offers is not bad but I don't think that it is good enough for the amount of money they want you to pay for it. 

Antivirus and security can be a controversial topic and everyone has their own opinion on it but the bottom line is that if you can teach the user how to avoid getting infected by 'PUPS' I.e. checking carefully through installers and unchecking any addon tool-bars or programs they may try to install then it does not matter what antivirus is installed, they simply will not become infected.



#5 Korkel

Korkel
  • Topic Starter

  • Banned
  • 58 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:29 AM

Posted 15 September 2013 - 09:14 AM

Hello dear quiteman7,

 

Thanks for your response with information, I will read the given information asap.

 

Hi hbyton,

 

Thanks for your response! :) I self don't have any experince with McAfee, I use Emsisoft Anti-Malware, because it is easy to use and gives an awesome protection! :-)



#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,139 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:29 PM

Posted 15 September 2013 - 09:24 AM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 hbyton

hbyton

  • Members
  • 196 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England
  • Local time:04:29 AM

Posted 15 September 2013 - 09:46 AM

You're welcome, Emsisoft is awesome :)



#8 Korkel

Korkel
  • Topic Starter

  • Banned
  • 58 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:29 AM

Posted 15 September 2013 - 12:05 PM

You're welcome, Emsisoft is awesome :)

Yep, that's right! Got a 30 day trial, it is now a year trial, reffeal program ftw.



#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,139 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:29 PM

Posted 15 September 2013 - 06:12 PM

Emsisoft Anti-Malware

To catch zero-day threats that aren't yet included in the signature database, Emsisoft Anti-Malware continually monitors the behavior of all active programs and raises an alert as soon as something suspicious occurs. Combined with the live cloud-verification of the Emsisoft Anti-Malware Network it is our ultimate weapon against specialized and sophisticated malware attacks that others can't protect you from.

:thumbup2:
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users