Virus Attack Leads To Change Of A/V

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
Friday A.M. hard drive was seized by a virus which stated I could get
a fix it for $$.  Asked my tech if I should fire Norton A/V 2012 - up
to date and in use - and he said his experience was that the viruses
of this nature were changing faster than A/V folks could keep up with
it.  Nonetheless, he took out Norton and installed Micrsoft Security
Essentials.  Now, I can easily take it out and re-install Norton, but
thought I would give it a go.  Any thoughts, opinions. I'm reading
mixed reviews - which is what I read for most A/V.  I've been a reader
in this group for years
I have had Norton since my first P/C in 94, and this is the first
virus problem that I have had.  Am on the PC daily as a news editor,
using sites all over the world

Re: Virus Attack Leads To Change Of A/V


Quoted text here. Click to load it

You likely clicked on a link that contained a Fake Antivirus...a common
issue for a while from folks PC's I've had to clean for them.
http://www.softpedia.com/get/Antivirus/Remove-Fake-Antivirus.shtml

MSSE is not the best free AV IMO. avast! or Comodo Internet Security is
much better.

However, none of those actually preclude safe hex as to what the user
clicks to allow.

https://docs.google.com/document/d/14Hh-sPdQMwmxj9 -
VWG6lbpZfqrIjl9Kn024jegcWw_w/edit

shortened link:
http://goo.gl/nTr23 +

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-
mail

Re: Virus Attack Leads To Change Of A/V

On 3/4/2012 9:52 AM, starrin wrote:
Quoted text here. Click to load it

Sounds like the fake virus routine...

They don't really infect you but make you think they did so they can
charge you $$ for nothing.

MSE is not a bad program. I wouldn't pay for Norton.

To be safe, if you haven't already done so, download a free copy of
Malwarebytes...install it..update the anti-virus files and run it.
If it finds something, it will move it to quarantine.

Re: Virus Attack Leads To Change Of A/V

starrin wrote:
Quoted text here. Click to load it

It's true, there are just too many ways to alter the form in which these
"trojans" (not viruses) take.

Quoted text here. Click to load it

I hear that it is better than nothing. :o)

Quoted text here. Click to load it

I wouldn't jump from AV to AV just because of a missed sample. They will
*all* miss some. Better is to enhance your protection by supplementing
an anti-malware or anti-spyware application alongside your choice of
anti-virus application.

Quoted text here. Click to load it

The choice is yours alone, different strokes and all. I used NAV 5.0 for
a long time and then went the free AV route AVG, Avast!, and Avira. All
of the free ones were adequate for my computer usage.




Re: Virus Attack Leads To Change Of A/V

Quoted text here. Click to load it

this is going to sound like petty semantics, but what you had wasn't a
virus.

the reason this is significant is that while automated defenses like
anti-virus programs are good enough against automated threats like
viruses, the threat you encountered had a person behind it no doubt
making sure that it could bypass automated defenses. automated
defenses aren't particularly good against people.

switching from one av to another isn't going to change the basic
problem that you face, which is that the threat (a sentient being) is
smarter than the defense (a dumb program).

there are other types of security software that can accept more input
from the user and in so doing add the user's own intellect to the
defense. software such as application whitelists where you decide
what's allowed to execute, or behavioural control systems where you
can decide what behaviours various programs are allowed to perform.

i fully expect many people to balk at the notion that they can't just
install something and have that take care of everything for them, but
there's really no way around the fact that people are better able to
outsmart machines than vice versa.

Re: Virus Attack Leads To Change Of A/V

wrote:

Quoted text here. Click to load it
      SNIP

What I got was three simultaneous versions of:  
       Exploit: Java/CVE-2010-0842.AN
                                         -0094.ER
                                         -5353.ABB.
He indicated the text in the exploit said it was coming from
Reuters, the European news provider. I have no reason to
believe that, but I sent the info to Reuters just in case.
In any case, Thanks to all for the input.  At least no one screamed
too loud about MSE.  And I have no illusions that there is one
ultimate soution to the problem.


Re: Virus Attack Leads To Change Of A/V

starrin wrote:
Quoted text here. Click to load it

It is good to inform them that their name is actively being used in such
attacks.

Quoted text here. Click to load it

Did MalwareBytes' Anti-Malware fix it up for you?

Quoted text here. Click to load it

I've heard that they have improved somewhat, but there are still some
that are consistently better.

Quoted text here. Click to load it

There is, but burying the computer in concrete isn't a particularly
*useful* solution.

Re: Virus Attack Leads To Change Of A/V

On Sun, 04 Mar 2012 17:08:20 -0500, FromTheRafters

Quoted text here. Click to load it

A Tech fixed it for me. The hard drive was completely tied up.  I
couldn't do a thing. I think he installed the MSE and used it.  I say
that because the log for MSE is where I got the info above.  It
indicated the exploits had been destroyed
Quoted text here. Click to load it
I don't want to start a war, but what's better, free and paid.
The engineer who keeps our site up and who sent me to the tech, says
he uses AVG.  As I said initially, I have been using Norton for years
and would have been (and may still) happy to continue with it.

Re: Virus Attack Leads To Change Of A/V

starrin wrote:
Quoted text here. Click to load it

This is a good source for professionally run test results.

http://www.av-comparatives.org /

But still, personal preferences rule.

My opinion, I'd stick with Symantec/Norton since you have been happy
with them thus far.


Site Timeline