Realtime Protection Suggestions After Getting Hit

I got hit last night with a Malware scareware program called Anti-Virus Soft.

It stopped me from running all my programs. All it did was keep telling me to buy it's software to fix the problem with plenty of non-stop pop-ups.

I read that if I had Real-Time malware Protection running that this major headache would have not been able to load on to my computer.

I cleaned it out by booting into safe mode on Windows XP, using rkill first and ATF cleaner and then I could run Malwarebytes free and SAS free and now everything seems good.

So what real time malware protection would be a rock solid choice?

I use Avira for virus protection.

Also, how does this happen? Was it from an infected website? I use Firefox.

Thanks

 

Take a look to the lastest test agains Rogues:

https://www.wilderssecurity.com/showthread.php?t=264442
http://malwareresearchgroup.com/?page_id=2

You can use a HIPS, so the rogue will be intercepted before the installation starts.
Firewall+HIPS: Comodo(Free), Online Armor (Paid), PcTools, Outpost (Paid)

 

Ken7, have you considered something in the lines of Sandboxing your online browsing or possibly a Light/partition virtualization software?
Either option would offer superb added protection.

 

hi....something similar discussed here too...might help....https://www.wilderssecurity.com/showthread.php?p=1619827#post1619827

 

Malware Defender

 

I will suggest Defensewall: http://www.softsphere.com/

I personally would wait for 3.0 first though (its currently in beta) before I would buy it. 2.56 is very good but 3.0 will have better protection against these fake av's.

 

You need some kind of layered approach starting with your anti-virus and a software/hardware firewall to keep out unsolicited traffic.
You also need zero-day protection such as a HIPS program or sandbox. Maybe a blocklist (modified HOSTS file, etc.) and a backup plan for at least your data and maybe your operating system. Also, you need to keep your software up to date as a lot of malware targets unpatched systems. A good place to check for free software is: http://www.techsupportalert.com/content/probably-best-free-security-list-world.htm
A good system scanner to check whether everything is up to date (can be down online is): http://secunia.com/vulnerability_scanning/online/
Good luck.

 

If the user was running IE8 in protected mode, would this have been prevented? UAC would have prompted like a hips program and the user could have denied installing it.

Ice