im finish with avira..... after heavy infection

Why would you expect anyone to listen to you?
You haven't responded to the suggestions about how to *avoid* the infection and have a back up image....

Plus as you also said:

So you went on (in that quote) to blame Avira for not getting you out of the hole you dug for yourself.

 

The only way I'd feel confident of removing that type of agressive malware completely would be to run AM tools from within the UBCD4Win to ensure complete access to all files,anything run from the infected system would always leave some doubt for me.

 

^^^true, i sure hope i never get this virut sh\t, looks nasty, just goes to show even the big almighty avira doesnt stop the virus, but im curious as to how come it didnt catch it in real-time before it got into his system.

 

It must have been stealthed well to avoid Avira's real-time scanner until the damage was done.

 

While all AVs can fail, I can see why people would get mad and change if their AV fails - especially if it wasn't something careless that the user did.

I agree with a LAYERED approach, even if it adds programs: AV, software firewall (and preferably router, too,) HIPS and/or behavior blocker.

 

If you are going to change av programs when they miss something, you are going to be doing it often.
None of them are perfect.

 

also, i thought this virut isnt like a new malware, i thought it was an old one, so surely avira would of got it cracked by now but meh, is this virtual-machine thing anygood what im hearing about?

 

I suggest you to not use an AV if you are serious about performance e.g., instead use good HIPs or all sorts of system analyzing software. As you said against virut and other specialized virus variants most avs fail. AVs are a relic from the past, stealth malware likely evades most of them with ease, not to mention the meany stego that travels outthere in www.

Think so, I am sure there are sophisticated variants outthere which nobody really knows or is able to detect. I suggest a virut topic to collect all sorts of information and how to clean the net from this evil.
I really would like to know who is responsible for this polish monster.

 

Not necessarily, if you are a safe user. I can't tell him not to change.

 

It still has new variants, but yes, Virut is an old virus family

... and a darn bugger to get rid of without any files being corrupted or damaged may I add.

 

I don't lash out on anybody, I gave a general advice to somebody regardless of the the AV they were using and you pick up my post to make sure that the Avira name came out as the culprit. As I said you are not subtle, and make sure to pass on anything next time starting off with your own private war against people using Avira.

 

Good idea. There should be a topic only for virut where everyone can share its experiences with this evil.

 

No, that's not what I did, what I did was show that no one cares if he ditches Avira, I did not state that it was Avira's fault, you just assumed that and proceeded to lash out at me in some sort of defense.

Now, if he phrased hes post something like "Virut got past Avira, need help please", instead of "Virut got past avira, it's obviously a pile of crap" it would have motivated more people to reply. You see, in your short sightedness, I was actually sticking up for Avira, you obviously missed that entirely.

If you wish to continue this pointless debate further, PM me and stop posting your crap on this thread, bending mine and your words.

 

How did you get infected?

Ice

 

Hi,

Do you mind sharing with us how did your computer get infected by that nasty piece of malware?

I strongly believe that 99% of the malware infections happen because of users careless and POOR browsing habits and NOT because the AntiVirus XYZ failed to detect the virus.

I'm NOT by any means a computer expert but I've been using computers since Windows 3.11 and I have NEVER got infected by a single piece of malware in all these years (KNOCK ON WOOD).

Even against the advaice given here by a user nick named “Sully” I never had the need of running my PC as a Restricted User or run Sofware Restrictions Policies at all while I used Windows 2000 Pro/Windows XP Pro.
I not a paranoid and I just use an AntiVirus and a firewall on my PC. That's it!

However, I see people using Threatfire, Sandboxie, Malwarebytes Antimalware, SuperAntispyware, Prev-x, Geswall, ALL TOGETHER !....WOW !
That's what I call PARANOIA at its highest level.
It' seems to me that people who run TOO MANY applications know better what their surfing habits are and...if the need all that to be protected, then their surfing habits are RISKY. Period !

Now, I just use Windows Vista Business SP-2 all patched and I only run AV+ software firewall+router (hardware firewall) and I run as Administrator (under UAC) and so far, haven't had any problems.

All this brings memories to my memory back in AUGUST 2003 when our computers at work got hit by Slammer worm because our IT Dept. forgot to apply a patch addressing a vulnerability on Win XP and the RPC service. MS had released a patch to address this problem back in JULY but our IT guys did NOT apply it and they had to face the consequences.

Bottom line: 99% of PC infections are related to USERS, not software (AV's, etc.)

Best regards,

Carlos

 

If somebody has a real history of posting crap about Avira it is your venerable name. I advised the OP to get a backup program, regardless of what AV he might be using in the future. Using my post you told him to post in the Avira forum, as if this forum wasn't appropriate enough. Who was constructive? And who was picking on names?

 

Not paranoia IMO; I do not have risky surfing habits, but the malware writers are sophisticated, and sometimes seemingly legit sites and files are infected. Plus, computers can hold some important info. I will always use layered security.

That said, we don't know if Avira is at fault here.

 

i dont have nothing with antivir is a good antivirus propably i have infected from a usb drive... i dont know how and is my fault . i just say antivir must protect me. thats all

 

This is where a good hips type program would come into play, if it gets by the AV. I'm always tempted to just use Avira AV and SBIE but something like an infected usb drive or any external device connecting to the computer could possibly get past any AV and your history. Unless you set all external devices to run sandboxed that is. But I'm not sure I would want to do that.

Thanks for posting, I will keep OA pro on my PC now!

Ice

 

The thread title gave me some concern but after two page I wonder if the OP's problem is not with Avira's detection/prevention capabilities, but rather its virus cleaning prowess?

I would like to add a follow-up question to the previous question, "How were you infected":
Was real time guard off at the time of infection?

If this is true, then for me is no concern and I will still use Avira, since I never clean virus, I only restore from backup if I discover infection.

 

hmm, but if your antivirus now suddenly said, virut detected, cannot remove, yeah its better than not finding it, but your still pretty stuffed.
im waiting for av-comparitives to do their cleaning test, thatll really put a spanner in the works for all those people who look at it and say, im going for avira or avast because theyre the best, not looking at other qualities.
id like to see who would fair the best in that test, im thinking maybe dr.web.

 

Virut is updated almost daily and usually gets past all AVs with it's latest variant - until the AV programs update. AV programs do not replace backups. You need those anyway. If your HDD blows up, you are going to blame it on your AV aswell?

 

Thank you for this information!
For me this risk factor is too great to rely heavily on real time scan feature of Avira, so I will uninstall this feature and create some type of weekly on-demand scan routine.

I think I will try again the Sandoxie, in addition to reading more about this Virut.

 

I think he said avira detected it, but could not remove it. What does that have to do with detection/updates?.

He is mentioning avira's inability to remove it. I had a fight with some people over this about how even though avira can detect, what's the point if it can't remove. Their response was an av should be tested on a clean machine. Well here is proof it can be bypassed on a clean machine as well.

Although once again i am not sure if he installed avira when he was infected or before.

Avira may not have the bad reputation like COMODO, but its developing a big fanboy population due to its always excellent test results, as if detection is everything.

If avira needs removal updates to remove tricky malware fair enough, but im just trying to prove its detection won't save you all the time. I also mentioned the average user won't format just because they have a virus.

 

Since you have a serious failure at reading threads, try reading your PMs instead.