Avast and Add-Ons

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
Today Avast Free notified my sister that her PC running XP had several  
dangerous add-ons and she let Avast take care of the problem. Then MS Office  
would not work or Excel. She tried rebooting and got the message that  
Windows needed to be reinstalled.
Well, I'm not sure what she finally did to get to System Restore, but that  
worked.
Avast came up with the same warning and I told her not to let it do anything  
and tomorrow I will tell her how to disable that part of Avast./
Anyone else had those kind of problem with Avast.
I will call her tomorrow and see if I can get her to send me the add-ons  
that Avast insists of getting rid of.
Anyone else having similar problems with the free Avast?
Thanks,
Buffalo  


Re: Avast and Add-Ons

On 7/14/2014 10:42 PM, Buffalo wrote:
Quoted text here. Click to load it


Wasn't Avast.

--  
Mark Warner
...lose .inhibitions when replying

Re: Avast and Add-Ons

@speranza.aioe.org:

Quoted text here. Click to load it

Eh? Explain please....  


--  
Take it easy... Don't let the sound of your own wheels drive you crazy.  
Lighten up while you still can. Don't even try to understand.  
Just find a place to make your stand and take it easy!


Re: Avast and Add-Ons

On 7/15/2014 4:01 PM, Dustin wrote:
Quoted text here. Click to load it

What he describes is classic rogue anti-malware behavior, as described  
by his sister. Clueless users can't tell the difference between their  
legit installed AV and a rogue -- that's why rogues are as successful as  
they are.

Someone that knows what he's doing needs to do a hands-on disinfection  
routine on the machine.

--  
Mark Warner
...lose .inhibitions when replying

Re: Avast and Add-Ons



Quoted text here. Click to load it
You sure jump to conclusions without the facts.
When she emails me the add-ons (that’s what she called them) I will post  
them here.
I also had problems with the free Avast Browser Cleanup and the Grime  
Fighter and the Web Shield options. I have them disabled.
The Browser Cleanup option also caused me a problem last year with some  
Avast falsely identified  browser add-on etc, and I had to reinstall some  
program because I let it uninstall whatever it found. No, the Avast restore  
feature did not work.
Do I think the free Avast is a good program, NO, I think it is a GREAT  
program as long as you don't let it do everything automatically or agree to  
do what it says for everything,
--  
Buffalo  


Re: Avast and Add-Ons


Quoted text here. Click to load it

Avast has done the same to a number of my clients.. It's also forced an  
image reload at one point, when it wrongly removed something.. I've seen  
what you described happen before is what I'm saying.. hence my question to  
Mark.. :)

Quoted text here. Click to load it

Sound advice. :)  


--  
Take it easy... Don't let the sound of your own wheels drive you crazy.  
Lighten up while you still can. Don't even try to understand.  
Just find a place to make your stand and take it easy!


Re: Avast and Add-Ons

On 07/15/2014 06:04 PM, Dustin wrote:
Quoted text here. Click to load it

My conclusions were based on the facts offered, and my experience  
dealing with infected Windows computers in the field. With more  
facts/evidence, those conclusions can change, no doubt.

Quoted text here. Click to load it

If you say so. Personally, I've never seen such behavior from Avast (or  
any other AV for that matter), which in itself may not mean much as I  
don't claim to have seen it all, but... this is the first time I've even  
*heard* of such behavior, and I'm plugged in to a lot of security  
related groups, both public and private. If I'm wrong, I'm wrong, but it  
sure struck me as a classic rogue that had snookered a clueless user.  
I've had numerous machines described as acting exactly as the OP's, and  
in every case what they were calling their anti-virus was actually the  
rogue.

--  
Mark Warner
MEPIS Linux
Registered Linux User #415318
...lose .inhibitions when replying

Re: Avast and Add-Ons


Quoted text here. Click to load it

I hear ya! My mom's internet explorer suddenly lost her homepage and
defaulted back to About:Blank. So she did a search on google for
About:Blank and concluded that About:Blank was a virus. I told her it
was just a blank page, but some crap sites claimed it was a virus and
that they could fix it, so she believed them. Some people just don't
know how to filter information. Now imagine a fake AV poping-up on her
desktop saying she's infected (just like perhaps our OP's sister)...

--  
  _\|/_    Sylvain / B00ze64@hotmail.com
  (o o)    Member-+-David-Suzuki-Foundation-+-Planetary-Society-
oO-( )-Oo  Excited, Spock opens a box full of pointy ear tips.

Re: Avast and Add-Ons


Quoted text here. Click to load it

Okay. I still didn't see anything specific enough to make the determination  
that the Avast in question was a fake.
  
Quoted text here. Click to load it

I suppose you've never seen AV actually fuxor a mailbox file either...? I  
have. AV/AM, nice tools, but dangerous to let them make critical decisions  
without your input. One bad definition file can result in a hosed system.  

Quoted text here. Click to load it

Well, as I said, I've had it do things. It's called a false positive and it  
acted on it; It was doing it's job, removing what it thought (incorrectly  
though) was malware. Malwarebytes sadly has done the same thing. As has  
Norton/Mcafee etc. This is nothing new.

Quoted text here. Click to load it

I've seen those instances as well, but like I said, I didn't have enough  
information from the OP to make that determination. I've seen AV and AM  
fuckup and mistake good files for bad ones...it happens.
  



--  
Take it easy... Don't let the sound of your own wheels drive you crazy.  
Lighten up while you still can. Don't even try to understand.  
Just find a place to make your stand and take it easy!


Re: Avast and Add-Ons

"Dustin"  wrote in message  
Quoted text here. Click to load it
I realize it is very difficult to come to the proper conclusions without the  
proper facts.
I was just wondering if others here had similar problems with the free  
Avast.
I will post the items that Avast found as soon as I get her to send the  
names to me.  Hopefully.  :(
After she did the System Restore, Avast found the same items which she did  
ignore this time. She hasn't got back to me yet with the names she said she  
copied down and I think the part of Avast that detected them.
Sorry for the lack of info. Since she doesn't install new programs much, I  
just figured that perhaps Avast (I use it also) might have had a problem  
that affected a lot of users with their last updates.
--  
Buffalo  


Re: Avast and Add-Ons


Quoted text here. Click to load it

If you get the list of files Avast thinks are bad, please post them..  


--  
Take it easy... Don't let the sound of your own wheels drive you crazy.  
Lighten up while you still can. Don't even try to understand.  
Just find a place to make your stand and take it easy!


Re: Avast and Add-Ons

On 7/16/2014 1:17 PM, Dustin wrote:
Quoted text here. Click to load it

No argument here. I just tend to go with what I think is the more likely  
occurrence. Yes, I know an AV false positive from a bad update can wreak  
havoc, but I also know they are rare and usually are reported almost  
immediately. This report is the only one I've seen of Avast supposedly  
causing problems.

Based on the information provided I thought it *much* more likely that  
the sister had been "rogued". What was described is familiar, and in my  
experience has always been the result of an infection, not the AV gone  
amok.

JME. YMMV.

--  
Mark Warner
...lose .inhibitions when replying

Re: Avast and Add-Ons

After serious thinking Mark Warner wrote :
Quoted text here. Click to load it

Some of these rogue's have enlisted traffic diverters (redirecting  
services) that send to landing pages which load JS that detects which  
OS and which AV one is using so that the 'come on' looks right to the  
user.

Some don't, and you end up with an unfamiliar AV/AM program pop-up  
dialog framed in XP looking windows on Windows 7. Not convincing to the  
discerning eye, but surprisingly effective anyway.

This particular scenario sounded to me like one of those "fluff" extra  
features going awry, but I am unfamiliar with Avast!'s extra stuff.



Re: Avast and Add-Ons

On 7/16/2014 3:19 PM, FromTheRafters wrote:
Quoted text here. Click to load it

Ayup. Seen those. They're pretty impressive.

Quoted text here. Click to load it

The home users I support are extraordinarily naive, to put it kindly.  
Most will click on anything; others are so paranoid they won't do  
*anything*, like install Adobe updates or run scans when alerted. In  
either case, my chronic repeat infection people will end up with the pro  
version of MBAM along with their AV, or on occasion they'll get moved to  
Linux. Either way, that's usually the last I hear from them, at least  
concerning malware.

Quoted text here. Click to load it

I'm not as familiar with Avast as many (it's not my AV of choice on the  
machines I support). I've installed it on a handful of machines recently  
after XP went EoL and MSE no longer installs. I do not install/enable  
all the extra Shield nonsense -- just the base resident AV. OTOH, my  
very tech savvy wife uses it on her machines and is quite happy with it.  
If there were widespread problems with any recent updates that effected  
her, I would know about it.

--  
Mark Warner
...lose .inhibitions when replying

Re: Avast and Add-Ons

Quoted text here. Click to load it

Look here for some interesting facts in the Avast forum about letting the  
Avast Browser CleanUp program remove browser add-ons.
Seems like my sister is not alone.
https://forum.avast.com/index.php?topic=151506.0
Any more info or suggestions would be appreciated.
Hey, Dustin, you said you use that Avast function since you don't use MBAM  
to do it. Any problems?
Thanks to all.  :)

--  
Buffalo  


Re: Avast and Add-Ons

Buffalo wrote on 7/16/2014 :
Quoted text here. Click to load it

Looks like quite a mess for them. Ths sort of thing happens from time  
to time, could be any vendor not just Avast! - sucks to be them right  
now though I bet.



Re: Avast and Add-Ons


Quoted text here. Click to load it

hehehe.. I really don't hate being right. Honest.  


--  
Take it easy... Don't let the sound of your own wheels drive you crazy.  
Lighten up while you still can. Don't even try to understand.  
Just find a place to make your stand and take it easy!


Re: Avast and Add-Ons

On 07/16/2014 04:45 PM, Buffalo wrote:
Quoted text here. Click to load it

Interesting. Looks like I very well may have been wrong, and that Avast  
really is the problem. It happens.

It does seem odd that there are only a total of three people reporting  
this on the forum since June 30. I know when MBAM pushed out a bad  
update and borked a bunch of systems the forums exploded. Avast has a  
huge user base, so you'd think there would be more reports. <shrug>

--  
Mark Warner
MEPIS Linux
Registered Linux User #415318
...lose .inhibitions when replying

Re: Avast and Add-Ons

Quoted text here. Click to load it
Hey Mark,  
Thanks for looking at that link. :)
Appreciate your input.
I am still waiting for my sisters response.
--  
Buffalo

Re: Avast and Add-Ons

@speranza.aioe.org:

Quoted text here. Click to load it

Ayep... I know I'm not exactly the most well liked person posting here, but  
honestly, I really don't spend my time trying to bullshit people when I do  
try to help. I told you I've already seen Avast fuck a machine up, you  
doubted me. lol.

My detractors in the vx days doubted me once too. It only encouraged me,  
though.
  
Quoted text here. Click to load it

Which time are you referring in regard to MBAM? It's happened more than  
once.   heh...
  



--  
Take it easy... Don't let the sound of your own wheels drive you crazy.  
Lighten up while you still can. Don't even try to understand.  
Just find a place to make your stand and take it easy!


Site Timeline