NIS 2010 upgrade infected with malware?

Norton Security | Norton Internet Security
21
sbracco wrote:
Attached please find the log for Malwarebytes' Anti-Malware full scan.

 

There's nothing worrying in your log...

 

Those two keys that were deleted are not even malware!  SendOfJiveBot Obliterator reply in this thread explains it all:

 

http://community.norton.com/norton/board/message?board.id=nis_feedback&message.id=68228#M68228

 

 



SendofJive wrote:
This is just Malwarebytes' noting that your Windows Security Center was set not to inform you if your firewall or antivirus becomes disabled. Malwarebytes' then re-enabled the Security Center alerts for you. Since Norton will inform you when any of its protections are turned off, the Windows Security Center notifications are redundant and usually unnecessary, so this was not a true security issue for you. Now if you turn off Auto-Protect or the Norton Firewall, you will get two alerts in your system tray - one from Windows and one from Norton. You can change these settings in the WIndows Security Center if you desire (Control Panel > Security Center> Change the way Security Center alerts me).

 

As for you yahoo account, change your password ASAP!!!  And maybe make a new email...

22
sbracco wrote:
Attached please find the log for Malwarebytes' Anti-Malware full scan.

The two registry entries found by Malwarebytes are not in any way indicative of an infection.  They are simply a bookkeeping entry when another piece of software is monitoring these processes (in this case, Norton).  They are reported by Malwarebytes because Malwarebytes doesn't know what security software you are using and if you had no others, then this would be an indication of a possible infection.

 

Looks like a clean bill-of-health.

 

Don't forget to follow the advice about changing your Yahoo password.

 

And, by the way, you haven't yet answered the query about how you collect your email, on the web or offline on your computer?  This information will be helpful.

23

I just have the Yahoo mail account on the web. I have already changed the password.

24

@Mijar, *cough* told ya, phishing or brute force attack...

 

By the way did you click on any links in your email lately that lead to a login page?

25

No links in any recent emails. If I’ve changed the password, is the Yahoo mailbox protected now?

26
Wikipedian wrote:

@Mijar, *cough* told ya, phishing or brute force attack...

 

By the way did you click on any links in your email lately that lead to a login page?

Sounds like you're right.  Unfortunately, I don't know if the poster knows what I am asking.  Most of my clients with Yahoo accounts, collect their mail using the Yahoo toolbar and gets offline delivery.  You understand what I mean, but I am not certain of the OP.

 

If his online account was breeched, I would be more concerned about a lot more than spam/malware originating from my email account.

 

Online accounts are where we are reached by our financial institutions; it's where they send passwords when we lose them or give us the opportunity to modify them.  If the OP had (for example) a VISA account at the ABC bank and is actually using online email, the invader could examine old mail, find what bank the card is associated with, go to the log-in page, use the email, say he forgot his password, have it sent to the same email account, and use that to get entry to the VISA account.  Disaster.

 

It is because such a breech is so valuable that it is marketable information.  So if it's true that his account was violated, changing his password is the least of things he needs to do.  He needs to get to every account, department stores, credit cards, anything to do with money and privacy, and change his passwords at those businesses.

 

This is why I was so emphatic about his need to tell us where all this might have been taking place.

 

If this was offline invasion, it is bad in its way, but the time differential between this kind of sequence done offline and done online is so great that he is fairly well protected with an offline email collection account.

27

He says he have online Yahoo! mail.  As long as I know, there is no way to read yahoo mail offline unless you pay for their premier mail service (Yahoo! Mail Plus).  And does Yahoo! toolbar allow you to read mail offline????

 

Secondly, (now directed to the user) did you notice any of your old password failing at sites like Amazon or Ebay?

28
Wikipedian wrote:

He says he have online Yahoo! mail.  As long as I know, there is no way to read yahoo mail offline unless you pay for their premier mail service (Yahoo! Mail Plus).  And does Yahoo! toolbar allow you to read mail offline????

 

Secondly, (now directed to the user) did you notice any of your old password failing at sites like Amazon or Ebay?

Yes, they have Plus and use a POP3 option.

 

If you are confident he doesn't, then you need to back me up on the recommendations I made to him regarding his money accounts.

29

I've changed all my passwords and have had no problems on Amazon, Paypal.

My Yahoo mail is all online.

30

Please follow Mijar's instruction and contact your banking society.  Tell them you suspect that you are a victim of a phishing attack.  They can help you.  What they would then do is to cancel ALL your bank cards and put your account under alert.  After the initial alert is over, go to your bank again and tell them you would like to extend your cover.  Because clever hackers tend to wait until the initial alert period is over.

 

Click here to read more about phishing attacks: http://en.wikipedia.org/wiki/Phishing

 

Here is another good link about phishing: http://computer.howstuffworks.com/phishing.htm

Here is are good links explaining about brute force and dictionary attacks:

 I found this link about how to make a "strong" password.  I think it maybe helpful:

http://www.microsoft.com/protect/fraud/passwords/create.aspx

 

 

@Mijar maybe this user logged in from a public/another computer that perhaps may have keylogging/malware software installed?

Message Edited by Wikipedian on 12-19-2009 05:02 AM
Message Edited by Wikipedian on 12-19-2009 05:03 AM
31
mijcar wrote:
Wikipedian wrote:

He says he have online Yahoo! mail.  As long as I know, there is no way to read yahoo mail offline unless you pay for their premier mail service (Yahoo! Mail Plus).  And does Yahoo! toolbar allow you to read mail offline????

 

Yes, they have Plus and use a POP3 option.

 

Yes to have Plus, you have to pay extra.

32

As this thread has spilled over four pages, my advice to the user is left on page 3.

 

http://community.norton.com/norton/board/message?board.id=nis_feedback&message.id=92322#M92322