"Cloud protection" virus/malware/adware etc

Discussion in 'ESET NOD32 Antivirus' started by validus, Oct 17, 2011.

Thread Status:
Not open for further replies.
  1. validus

    validus Registered Member

    Joined:
    Oct 17, 2011
    Posts:
    1
    Hello not sure how it happened but i have been infected with this cloud protection virus... i am very careful with what sites i visit.... it wont let me download any secrity products.. i was going to get smart security 5 but it wont let me saying my security setting wont allow it ... i need help anyone beat this?
     
  2. piranha

    piranha Registered Member

    Joined:
    Mar 21, 2005
    Posts:
    623
    Location:
    Laval, Qu?bec, Canada
    with any AV you can be infected but....

    dont understand your question....

    you are infected BEFORE installing Eset product or while download/installing it o_O

    How do you know you are infected ? ESS notified you or not ?

    need more details
    thanks
     
  3. RJK3

    RJK3 Registered Member

    Joined:
    Apr 4, 2011
    Posts:
    854
    Cloud Protection is just your standard fake.AV, but like some of the fake.HDD malware it generally comes with a rootkit (TDSS).

    Information and removal advice here:
    http://xylibox.blogspot.com/2011/10/cloud-protection.html
    http://www.bleepingcomputer.com/virus-removal/remove-cloud-protection

    Might be easier to use one of the registration codes from the Xylibox page first to disable the Fake.AV, then use something like TDSSkiller, aswMBR, and HitmanPro to remove the rootkit.
    http://support.kaspersky.com/downloads/utils/tdsskiller.exe
    http://public.avast.com/~gmerek/aswMBR.htm
    http://www.surfright.nl/en/hitmanpro

    After removing the rootkit, followup with a quick scan from Malwarebyte's Anti-Malware to remove the rest of the fake.av. Alternatively log a support request with Eset and they can help.

    It's a cunningly named Fake.AV, as most people don't know what the asker is even talking about when they say 'cloud protection'.
     
  4. piranha

    piranha Registered Member

    Joined:
    Mar 21, 2005
    Posts:
    623
    Location:
    Laval, Qu?bec, Canada
    fake AV.....ho my god

    never install apps you dont know unless it is recommended to reliable sources.

    please submit "Cloud protection" to Eset or may be Eset live Grid will help to protect all Eset users in future againts this crap

    good luck
     
  5. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    4,947
    Location:
    USA
    Piranha, I believe he got infected before he installed ESS 5 so they may already detect this.
     
  6. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Does it look like this.:D
     

    Attached Files:

Thread Status:
Not open for further replies.