Well, in the case of my work computer- going through our secure web portal for our programs and. . . surfing the Dope. Hrmmmmmmm . . .
I recently had ANTIVIR as well. I’m an IT consultant, and so do virus cleanups on a more and more frequent basis, they’re becoming so common. So I thought I knew what I was doing. Until this one. Yes, MalwareBytes is the tool of choice but ANTIVIR left a nasty rootkit infection which required a special tool by Kaspersky to clean. You’ll know if you have this rootkit if you do a google search, click a search result link, and you get redirected to a strange site. I can provide a link to this tool if you have this problem.
Does malwarebytes play nice with AVG? I use AVG and wouldn’t mind having malwarebytes as a safety net, but not if I’d have to get rid of AVG.
Yes, they will not interfere with each other.
I always run both (among other things.) However, it seems with the new generation of viruses, AVG and other tradional antivirus products play almost no part in the cleanup. They catch a few things here and there but seem to be defenseless against the fake security suites. These things just evolve way too fast.
Is that the one that rewrites the hosts file? I had that one a while ago, it was a bitch to get out.
Slee
Most of them add proxy server address and probably also entries to the hosts file, but I’m not sure if this one did. It definitely did a proxy hijack that I couldn’t remove without finally getting the automated fix. the rootkit is called Alureon, btw.
My wife got it when using IE7 on a site for coupons. I told her before she got it to switch to something different (FF, Opera, Chrome). She has now, with the exception of her banking and employer’s websites.
You may need to disable any antivirus when Malwarebytes or similar programs try and remove malware. The antivirus will usually try and prevent access to any files it doesn’t trust, which can prevent removal.
Is this a PC thing? I’ve been on a Mac for 30 years and never seen such a thing…
Please use a dull spoon when you do. Thank you.
Welcome to the Straight Dope Message Board! This is one of the many free perks we offer. The benefits of our free malware program are currently being discussed in About This Message Board.
It was a hell of a fight but finally ignorance won. We are awaiting someone with technical know-how to change our slogan to:
Fighting Ignorance Since 1973, (we lost and gave up).
Ahhh, I think I ran into that one a while back as well. I fix too many of the damned things and start forgetting which does what.
Slee
Sorry, I was away for a bit… Because I GOT A FUCKING VIRUS WHILE TYPING A REPLY IN THIS THREAD!! No shit. Fake antivirus, immediately unplugged, ran MalwareBytes, seems clean now, but FUCK I’m getting sick of these things.
Yep, if ever there were a case to be made in favor of prison rape this is it. I just got the same thing myself yesterday. Was looking at the SDMB, coincidentally enough, when I started getting messages that my computer was infected. And when I tried opening a Word file it wouldn’t let me. And when I tried fixing it, it just brought up that fucking Security Suite shit. And no, I didn’t buy it either.
I’m with you man. If I ever run into these motherfuckers, you better bet I’m going medieval on their asses - blowtorch and everything.
Too mild - I think being hung, drawn, and quartered would be much more satisfying to watch.
I assume you got rid of it?
I want to be holding a machette when I ask "So, which hand do you do most of your programing with?
I have this rather elaborate fantasy of these guys sharing the stage during a particularly jaunty Rockette high-kick routine. If you catch my drift.
Apparently the ads here on SDMB can infect you just by browsing SDMB.
I was able to fix it by booting in Safe Mode and running Malwarebytes. You should get ADBLOCK PLUS to help prevent infections from the ads being run here on SDMB.
Maybe this is well known , but you can avoid a lot of this stuff by making sure you don’t run as a root user (administrator) on your PC. By default Windows sets up 1 account for a new PC and that account is an admin account which means you can change the system. If you only run that you can have a lot of problems. You need to setup a normal Windows user account and only use that account because a normal account cannot change the Windows system.