HDD Defragmenter...Avast! Pro 5 Totally ignored It

Discussion in 'other anti-virus software' started by DVD+R, Dec 12, 2010.

Thread Status:
Not open for further replies.
  1. AvinashR

    AvinashR Registered Member

    Joined:
    Dec 26, 2009
    Posts:
    2,063
    Location:
    New Delhi Metallo β-Lactamase 1
    Well i am not sure if Avira or Avast detected that nasty but i am very much sure that DVD+R detected it very well. But he was unable to remove it that is why he took Avira's and Wilder's help. :p
     
  2. Mongol

    Mongol Registered Member

    Joined:
    Jul 24, 2004
    Posts:
    1,581
    Location:
    Houston, TX
    Don't forget a cute retort for DVD+R
     
  3. 031

    031 Registered Member

    Joined:
    Sep 5, 2007
    Posts:
    187
    Location:
    Bangladesh
    This can happen with any antivirus. You were very unlucky. You should consider using a full blown HIPS like Online armor or Malware defender . Flash drives are always a pain. I always scan them with Dr. Web cure it and kaspersky AVP tool. Both of them are on demand and generates excellent detection. The only problem is i have to download them every week.

    And about Avast. . . unlike your case , it has saved me many times. Wish you have better luck next time.
     
  4. whitedragon551

    whitedragon551 Registered Member

    Joined:
    Sep 30, 2008
    Posts:
    3,264
    Location:
    USA
    Out of curiosity in the Avast settings did you have it set to alert on PUP's (Potentially unwanted programs)?
     
  5. cheater87

    cheater87 Registered Member

    Joined:
    Apr 22, 2005
    Posts:
    3,255
    Location:
    Pennsylvania.
    Comodo AV has HIPS, cloud scanning and Sandboxing so that could catch it.
     
  6. Kid Shamrock

    Kid Shamrock Registered Member

    Joined:
    Apr 3, 2007
    Posts:
    229
    Most AVs are poor at detecting and removing rogue apps. You need to be running a HIPS, sandbox or anti-executable program to stop rogues. ;)
     
  7. Boost

    Boost Registered Member

    Joined:
    Feb 2, 2007
    Posts:
    1,294
    Sandbox your browser,like already mentioned,your life will be easier in the future!
     
  8. DVD+R

    DVD+R Registered Member

    Joined:
    Aug 2, 2006
    Posts:
    1,979
    Location:
    The Antipodes
    Yes, System file shield and Web shield both set to PUP's
     
  9. DVD+R

    DVD+R Registered Member

    Joined:
    Aug 2, 2006
    Posts:
    1,979
    Location:
    The Antipodes

    No, And I dont intend to purposely execute it just to find out it doesnt :cautious:
     
  10. DVD+R

    DVD+R Registered Member

    Joined:
    Aug 2, 2006
    Posts:
    1,979
    Location:
    The Antipodes
    having painstakingly reset my whold system overnight to ensure this thing is no longer dormantly lurking in the shadows someplace, I hope that pretty soon AV companies will complete an update that can in fact totally remove this, but then again if they do or not is entirely another matter
     
  11. DVD+R

    DVD+R Registered Member

    Joined:
    Aug 2, 2006
    Posts:
    1,979
    Location:
    The Antipodes
    I had done that several times, but could never get some often used websites to fully load as sandboxing the browser prevented flash being enabled unless I disabled virtulization, which quite frankly became a pain in the ass. If Avast! 5.1 fixes that issue it would be a welcome bonus.
     
  12. Boost

    Boost Registered Member

    Joined:
    Feb 2, 2007
    Posts:
    1,294
    Sandboxie,Geswall,Bufferzone - Free version works perfect with flash.
     
  13. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,736
    Location:
    USA
    Of course one wonders also about Heuristics sensitivity settings on File System Shield and Web Shield... I believe High is not default. I have those settings cranked to max on my avast! shields.

    Glad to see you now have MBAM Pro onboard. I recommend updater scheduled to check every hour. Some days MBAM will update 6 or more times. Don't turn off the website blocking.

    I am not familiar with your firewall (I of course know Outpost is a top drawer firewall), but I would recommend that you think about DropMyRights, or Run Safer, that is available inside Online Armor. With all internet-facing apps set to open under Run Safer, I'd be very curious to see how your invader was/wasn't able to perform in that sort of a reduced rights environment.

    And finally, I am reliant upon OA's HIPS as a necessary layer. Did you respond as to why Outpost's HIPS didn't alert you?

    FWIW, I find myself beginning to lean more towards joining the Sandboxie corps of satisfied users. It seems like the best protection against what you just faced down.

    Good luck with what you decide to do differently. :)
     
  14. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    5,995
    Location:
    Nicaragua
    Do so, you wont be dissapointed.

    Bo
     
  15. egomoo

    egomoo Registered Member

    Joined:
    Aug 28, 2007
    Posts:
    115
    Avira or Avast,even MBAM do will miss something because they are based on database signature.

    Every signature based anti-malware product or anti-virus product is always later then the Zero day threat happen.

    But if you use Autoruns or other manual removal tool(even anti rootkit tool ),you will do best to against all the malwares.
     
    Last edited: Dec 13, 2010
  16. Boyfriend

    Boyfriend Registered Member

    Joined:
    Jun 7, 2010
    Posts:
    1,070
    Location:
    Pakistan
    I will recommend a simple solution for threats from USB/Internet: DefenseWall Personal Firewall (3.09).
    -Flash work flawlessly in all browsers irrespective of virtualization.
    -Installation from USB is allowed in its own policy-based sandbox. Whenever dangerous actions are detected, it warns you and you can rollback (built-in feature) easily with few clicks. You can even use this feature for software testing.
    -Due to policy-based sandbox and silent firewall, you are well protected against keyloggers, rootkits, spyware, adware, and other threats. It is just like set and forgets solution.

    In all my personal tests against internet/0-day threats, DWPF always shines like star and easiest solution available to date.
     
  17. DVD+R

    DVD+R Registered Member

    Joined:
    Aug 2, 2006
    Posts:
    1,979
    Location:
    The Antipodes
    Only 1 problem for me if I wished to try defensewall, I'm running win 7 64 and it only supports 32
     
  18. Dwarden

    Dwarden Registered Member

    Joined:
    Apr 11, 2003
    Posts:
    177
    Location:
    Czech Republic
    DVD+R
    i hope You sent the offending file/installer w/e to Avast team so they can 'learn' :D
     
  19. Saraceno

    Saraceno Registered Member

    Joined:
    Mar 24, 2008
    Posts:
    2,404
    If you were led to believe the file is safe, basically, your nephew convinced you to run a file you didn't need in the first place?

    Problem if avast and others detect this, another 'new named' program will spring up a day later. You can lock your system down, until basically, it's functioning as if a virus were running full time.

    A few simple methods with avast can work well. For example, Virus Total uploader on .exe files. All you do is right-click and send the file to be scanned at virus total. Install emsisoft free version, update it each day, and scan USB drives with avast and emsisoft for example.

    Avast + MBAM pro should work well though.
     
  20. Gauchoo

    Gauchoo Registered Member

    Joined:
    Aug 15, 2010
    Posts:
    83
    Location:
    Scotland
    Well, it's a bit harsh blaming Avast for not protecting you against this malware when perhaps the likes of avira etc might not even protect you against it.

    So you've not done an on-demand scan with avira and the malware to see it if it detects it ?

    I wasn't really meaning to run the malware on your main installation, thats why there is virtualbox and vmware etc to test these things outside your main installation.
     
  21. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,102
    Location:
    North Carolina USA
    DVD+R, trust me, Avast has issues. It will probaly get very good though in 2011. If they can deliver on what they stated.
     
  22. ReverseGear

    ReverseGear Guest

    i hope they do coz so many of us has got avast license now :cool:
     
  23. zfactor

    zfactor Registered Member

    Joined:
    Mar 10, 2005
    Posts:
    6,103
    Location:
    on my zx10-r
    i do removal all the time. probably every day from systems which use every av out there (just about except for some VERY small unknown ones) ALL the major players miss rouges at times. i have seen norton, mcafee, eset, avira, bitdefender, avg, dr web, etc etc etc my point is they all miss certain things. i use avast myself and it has saved me on numerous occasions. BUT i do prefer a av that uses more... like hips, cloud ratings etc.. the biggest problem is the common pc user has no idea what to answer to those types of questions.

    my point is avira will miss things just like avast does... it sucks but it is the truth
     
  24. DVD+R

    DVD+R Registered Member

    Joined:
    Aug 2, 2006
    Posts:
    1,979
    Location:
    The Antipodes
    Christ! ok cool off already, the problem has gone, lets not get into who has issues and who hasnt. just a few pointers to earlier replies,I dont get persuaded to run files, i do so of my own choce,and thanks to all the positive replies on what others found also on this particular malware. I wont be switching and changing every 2 minutes I've made a secondary choice to my first set of security apps, and they're staying put for sometime.
     
  25. Boost

    Boost Registered Member

    Joined:
    Feb 2, 2007
    Posts:
    1,294
    Go towards the light man,it's worth it! :thumb:
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.