Avast WEBforum
Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: malko on June 27, 2010, 04:08:12 PM
-
As Subject.
I went to a website for tutorials on image editing. Java icons showed up, the malware/virus/trojan/fraud bullshit got into my PC while Avast was watching. Why did Avast not do anything?
How can something not be suspicious when it changes computer settings etc? Seems like heuristics never work on Avast.
-
This programme is changed on a regular basis specifically to avoid being detected by AV programmes. There are no AV programmes currently that will stop this in its tracks. I have seen infected systems with Norton, Kaspersky, Eset, AVG, Avira etc...
-
But there is a removal guide and it seems that all those infected with Av Security Suite get the exact same things, exact same files, exact same setting changes.
-
But the actual programmes are changed internally which is where the AV works, Malware tools work on file names and locations
You will find that MBAM releases details of a different variant near enough every day
-
Also if you haven't done so already in your " REAL TIME SHIELDS" under WEB SHIELD.. Expert settings.. ACTIONS ...set it to "Abort Connection"...
-
Yeah I got all those settings.
This is just so sad. When I ran the .exe file on virus total there were a few antiviruses that caught it. McAfee, Prevx etc. Although most of it was probably Heuristic...
How can I now be sure I haven't got any other viruses or trojans or spywares etc.... Avast finds nothing after doing a boot up scan and a regular scan. Malwarebytes is running now.
-
You can start a thread in the "virus&worms" section, after following the guide at start of this thread>>
http://forum.avast.com/index.php?topic=53253.0 (http://forum.avast.com/index.php?topic=53253.0)
Then wait for Essexboy.
If you feel more pro-active and don't feel like waiting, there is a removal guide here>>
http://www.bleepingcomputer.com/virus-removal/remove-av-security-suite (http://www.bleepingcomputer.com/virus-removal/remove-av-security-suite)
I would chose option A, but its up to you.
-
Also, follow and help here http://forum.avast.com/index.php?topic=61198.msg516972#msg516972
-
The program "Winpatrol" should detect changes to your system.
-
To minimise the happening of such cases, you should have a HIPS software as well. If you're not so experienced and want it to be concise, try ThreatFire; or you can choose Comodo.
-
Last night my computer was infected by 'AV Security Suite' but fortunately at the time I was on the phone with a friend who also got infected about two months ago with 'AV Security Suite'. He was using AVG at the time and it slipped right through. Anyway, my friend talked me through the recovery process as I was unable to access the Internet after getting the infection. I was able to restart Windows in Safe Mode then I disabled the Proxy Server in my browser and then I ran Malwarebytes Anti-Malware software which removed the infection.
-
are we talking about avast v4 or v5?