Rogue antivirus

[bigcitycat]

Not aloud to talk about it but blocking stops a lot of this

Firefox with noscript stops this in it's tracks.

 

[madtownidiot]

True, but a lot of less skilled users don't like firefox, and noscript automatically blocks every site until explicitly enabled, and the average user isn't savvy enough to differentiate between legitimate and malicious sites..

 

[Keiichi25]

The problem with sticking a neophyte user with Firefox and NoScript, the first complaint they will have is, "Why doesn't know to allow this?!?" And even I trip over once in a while on sites to remember to try and enable NoScript to allow the site to allow me to enter in things or see content when I know it is safe to do so.

Most users are the, "It's broken... Fix it..." or "It should work without me having to tell it." And again, this is why I consider human users to be the ultimate malware/virus program, because they will always have the ultimate control, and often times they will find ways to muck it up more than the virus itself.

 

[madtownidiot]

If you know enough to know how to use noscript effectively, you're probably smart enough to avoid sites that are likely to serve up malware anyway.. the logical progression being that noscript is basically useless. I have never encountered a rogue AV in my personal internet use except when I deliberately went looking for one.

 

[Keiichi25]

I've actually stumbled upon Rogue AV ware twice... Once on my laptop looking for information on the local wildfire. And another time due to a feedreader that was looking at a site directly, I believe.

And FYI, just cause you are 'careful' with the net, doesn't necessarily mean that one of the sites you go to won't have an issue. Again, there are some sites that are well meaning, but get hacked.

 

[bobsmith33]

I know this is an old thread, but I know an easy removal for most rogue antivirus...set the date a few years into the
future. It should be gone, it's worked for me 4 times. Instead of going into safe mode, installing Malwarebytes or Spyware Doctor, etc. Just do this. It's much easier.

 

[ICIT2LOL]

Hmmmm

Anyone tried this one |MG| RogueKiller 6.1.4.0 Download if you are looking for fake stuff?

 

[tom982]

I know this is an old thread, but I know an easy removal for most rogue antivirus...set the date a few years into the
future. It should be gone, it's worked for me 4 times. Instead of going into safe mode, installing Malwarebytes or Spyware Doctor, etc. Just do this. It's much easier.

That isn't a removal as such, it's more of a workaround. I don't know how, or if, this works but I can assure you this wont delete the malicious files - probably leaving you in a false sense of security. There are much more effective methods of removing a rogue

Anyone tried this one |MG| RogueKiller 6.1.4.0 Download if you are looking for fake stuff?

RKill is great little tool but, like most malware removal tools, it shouldn't be used unless under instruction from a trained professional

 

[Borg 386]

The problem with sticking a neophyte user with Firefox and NoScript, the first complaint they will have is, "Why doesn't know to allow this?!?" And even I trip over once in a while on sites to remember to try and enable NoScript to allow the site to allow me to enter in things or see content when I know it is safe to do so.

When I fix/upgrade someones PC, I recommend NoScript & FF, usually putting it on their machine so they can "give it a spin". The biggest complaint I get is that "You have to click on the button to allow things, take it off!".

Even though I explain to them that this gives you an added advantage by stopping things you DON'T see in the background of a web page (possible fly by viruses, malicious downloads, etc.), they still want it off their system. Just because it takes then an extra click or 2.

Yes, it may be an inconvenience to some people (why, I have NO idea), but I think the extra seconds it takes to do 2 clicks is well worth the extra security you get in return.

 

[Corrine]

RKill is great little tool but, like most malware removal tools, it shouldn't be used unless under instruction from a trained professional

As an FYI, RKill isn't a malware removal tool. It is a tool developed by Grinler (Bleeping Computer) to stop rogue processes, enabling a tools such as MBAM and SAS to run. More information: RKill - What it does and What it Doesn't - A brief introduction to the program

 

[tom982]

RKill is great little tool but, like most malware removal tools, it shouldn't be used unless under instruction from a trained professional

As an FYI, RKill isn't a malware removal tool. It is a tool developed by Grinler (Bleeping Computer) to stop rogue processes, enabling a tools such as MBAM and SAS to run. More information: RKill - What it does and What it Doesn't - A brief introduction to the program

Oops My mistake. Thanks for clearing that up for me!

 

[jimbo45]

Hi there
IF you are unfortunate enough to get your computer infected IMO you only have two choices to make.

1) Re-install the whole OS again.
2) restore an image from the last known Virus Free date.

Disinfecting a computer using the same infected computer makes utterly NO SENSE. For starters can you be sure that the dis-infection process is reported correctly --who knows what the Virus has done --.

Would you say you are suffering from flu allow a doctor to visit you when the doctor himself is suffering from say another highly contagious disease -- I hope not.

Again this makes it imperative you keep REGULAR BACKUPS and ideally separate the OS / apps from your data via separate partitions.

Cheers
jimbo