When is an antivirus really a virus?
Today I received a call from one of my external users that was unable to access any websites because some new antivirus was saying he was unprotected and every website had malicious code.
Since I know that we have McAfee 8.5 deployed to our users, I knew that this was not a McAfee issue. As we discussed it a little further he was mentioning that the Antivirus wanted him to purchase the software.
This isn’t the first I have heard of this. There is a software company Innovagest 2000 that is producing this software. They advertise it as an antispyware application, but it is the spyware. On some less then savory websites you will get a pop up that says that your computer maybe infected and they offer a free scan.
The fear of being infected motivates a lot of people to run this free scan. Unknown to them this application installs underneath and now you are stuck. On that note, I do recommend only doing the online scans from reputable sites. I personally recommend the following: Symantec, Panda, and McAfee.
This application is extremely hard to get rid of. It reregisters and installs if it is not completely uninstalled correctly.
I hate programs like this. But it is a fact of life out there. The modern day snake-oil salesman.
While the program is running you will see the following undesirable behavior:
- A “Windows Security Center” stating that you should purchase Personal Antivirus.
- Numerous alerts stating that your computer is under attack or that you have malware running on your computer. If you click on these alerts, Personal Antivirus will be installed, or you will be brought to the purchase page for the program.
- Your Internet Explorer browser will be hijacked to show security warnings when browsing the web that stop you from reaching your desired page.
As I mentioned before this bugger is very hard to get rid off. But not impossible. I found these instructions at BleepingComputer.com.
- Print out these instructions as we will need to close every window that is open later in the fix.
- Download Malwarebytes’ Anti-Malware, or MBAM, from the following location and save it to your desktop:
Malwarebytes’ Anti-Malware Download Link - Once downloaded, close all programs and Windows on your computer, including this one.
- Double-click on the icon on your desktop named mbam-setup.exe. This will start the installation of MBAM onto your computer.
- When the installation begins, keep following the prompts in order to continue with the installation process. Do not make any changes to default settings and when the program has finished installing, make sure you leave both the Update Malwarebytes’ Anti-Malware and Launch Malwarebytes’ Anti-Malware checked. Then click on the Finish button.
- MBAM will now automatically start and you will see a message stating that you should update the program before performing a scan. As MBAM will automatically update itself after the install, you can press the OK button to close that box and you will now be at the main program.
- On the Scanner tab, make sure the the Perform quick scan option is selected and then click on the Scan button to start scanning your computer for Personal Antivirus related files.
- MBAM will now start scanning your computer for malware. This process can take quite a while, so we suggest you go and do something else and periodically check on the status of the scan.
- When the scan is finished a message box will appear. You should click on the OK button to close the message box and continue with the PersonalAntivirus removal process.
- You will now be back at the main Scanner screen. At this point you should click on the Show Results button.
- A screen displaying all the malware that the program found will be shown. Please note that the infections found may be different than what is shown in the image.You should now click on the Remove Selected button to remove all the listed malware. MBAM will now delete all of the files and registry keys and add them to the programs quarantine. When removing the files, MBAM may require a reboot in order to remove some of them. If it displays a message stating that it needs to reboot, please allow it to do so. Once your computer has rebooted, and you are logged in, please continue with the rest of the steps.
- When MBAM has finished removing the malware, it will open the scan log and display it in Notepad. Review the log as desired, and then close the Notepad window.
- You can now exit the MBAM program.
[…] See the original post here: When is an antivirus really a virus? | Your Home PC Helpdesk […]
[…] See the rest here: When is an antivirus really a virus­… […]
Recently i purchased my Dell Laptop and with it came Mcafee Antivirus and when the trial period ended i also had similar experience of being pestered with such behavior. Really ridiculous.
I personally recommend Kaspersky Internet Security as an antivirus program..
There are many good free antivirus programs out there. Kaspersky is very highly recommended by many people I know.