Virus removal

[classicman]

now what? Its apparently been removed.

[xoxoxoBruce]

Do you have Malwarebytes' Anti-Malware? If not, you should. I got it on mbpark's recomendation and it works great.

[classicman]

Quote:

Originally Posted by xoxoxoBruce

Do you have Malwarebytes' Anti-Malware? If not, you should. I got it on mbpark's recommendation and it works great.

Did you get the free version or the full one?
Also will this affect the Spyware Doctor I already have? I renewed my annual subscription a few months ago.

Also I have virusScan. It just ran out - Should I renew it or get a different anti-virus program? I'm on an older machine - maybe 3-4 years, a Gateway if that matters.

[xoxoxoBruce]

Quote:

Originally Posted by classicman

Did you get the free version or the full one?

I got the free version. AVG stops most everything but once in a while something sneaks in, usually because I screwed up. Malwarebytes, unlike some others I've had, hasn't found one it couldn't remove.

[classicman]

Quote:

Originally Posted by classicman

Will this affect the Spyware Doctor program I already have?

Also I have virusScan. It just ran out.
Should I renew it or get a different anti-virus program?

I'm on an older machine - maybe 3-4 years if that matters.

Where is MBPark when you need him... (taps foot)

[xoxoxoBruce]

Oh, so you don't believe me, huh? :p
Look here.

[mbpark]

Quote:

Originally Posted by classicman

Where is MBPark when you need him... (taps foot)

I would get rid of Spyware Doctor. It honestly isn't that good. McAfee is good, but only if you get the corporate version.

I'd rip those out and get MalwareBytes and AVG. Seriously. Neither of the two is that good at all.

TW, I recommend you get the book Security Warrior so you can watch every supposition you just made about detecting malware get thrown out the window. I've seen malware that hides from Task Manager, netstat, and even anti-virus programs (McAfee, Symantec, Trend, and AVG). The code's been out there for years, and it's not just for Windows. UNIX users have had this problem for years, especially with kernel-level rootkits in Linux or UNIX that will "patch" the API calls.

This is a big reason why Microsoft re-wrote the Windows Kernel for Vista and Windows 7 to include ASLR (Address Space Layout Randomization), so it would be much harder to attack known holes via static memory locations. Apple will be including this in OS X 10.6 "Snow Leopard", OpenBSD has had this for years, and Linux has additional functionality to find it.

MalwareBytes does have some "interesting" technology to get rid of malware by checking for patched APIs by executables, and a known database of it. However, most anti-spyware programs get rid of cookies because of the privacy issue. Additionally, some installers out there do install adware/spyware, or share DLLs with them. Therefore, they get flagged as a false positive. I've seen Symantec and McAfee do it.

The best thing to do is to get the Ultimate Boot CD for Windows, use the AVG plug-in, grab the latest definitions, burn it to CD or USB, and use that to scan your machine in an offline state so that the machine can't initialize itself and the offending DLLs.