General Question

Dr_Dredd's avatar

Is this a virus?

Asked by Dr_Dredd (10523points) February 6th, 2010

A few weeks ago, my antivirus program found and got rid of a Trojan (Trojan.FakeAlert). Ever since then, I’ve been getting random error messages about buffer overflow, such as “McAfee has automatically blocked a buffer overflow. File C:WINDOWS\system32\services.exe.” Can this be caused by a virus?

The antivirus program also is removing something called Rootkit.Agent, which keeps coming back. Can that be part of the viral infection as well?

Observing members: 0 Composing members: 0

10 Answers

phoebusg's avatar

Many people have stopped using the term virus altogether due to the different kinds of ‘malware’ out there. If it is a rootkit, McAfee will not be able to remove it. Give prevx a try, it’s not free, but the scanner is free. Cloud-based analysis, they’ll give you some more input on the detection for an exchange of—well if you do have a “new” malware they’ll upload it for analysis.

sweethottaco's avatar

Sounds like what you may need to do is have your computer cleaned off completely, and start from strach. That is what I would suggest.

jaytkay's avatar

Different programs catch different things, so one program is not enough.

The two I run are Malwarebytes and Microsoft Security Essentials

I think Malwarebytes is essential. Good alternatives to Microsoft Security Essentials are Avira and Avast.

The free programs are actually the best ones right now. All the not-free programs might as well be viruses – they bog down your system and beg for money.

phoebusg's avatar

It is about time Microsoft did something about their extremely vulnerable system. MSE is pretty decent, but still far from perfect. Prevx is a solution that is not signature/database (virus list) based. Rather, realtime analysis of the executable. Functions and patterns in memory.

I used to use the free scanner, then use other solutions to clear machines, very reliable and quick.

That said, yes, if you go searching for “anti-malware software” you’ll end up with a whole bunch: old now sometimes irrelevant packages, adware, and more malware than you started with.

This is definitely worth checking out: http://wiki.lunarsoft.net/wiki/Anti-Malware_Toolkit
A utility for downloading the latest software and definitions. Many recent malware programs like to stop any action toward un-infection ;)

SeventhSense's avatar

I second the Malwarebytes and I would download Ad-Aware by lavasoft as a one two punch to knock out almost anything. They were the first anti spyware and along with malwarebytes these two products are the best.

Dr_Dredd's avatar

Thanks! I did try Malwarebytes, and it removed a lot, but there is one thing that keeps popping back up. Someone suggested “cleaning off the computer completely.” How would that be done?

phoebusg's avatar

@Dr_Dredd
a)Use prevx CSi for the free scan
b) use the linky I posted.
c) try things, re scan (scan is quick).

You can get into safe mode by hitting F8 repeatedly at boot, usually follows the motherboard splash-screen. Try disinfecting things from there. If that doesn’t work.
Download one of the many boot cds out there freely provided by anti-virus software.
Bitdefender and F-secure being two of them. You need to enable boot from cd in the bios. You get in the bios by hitting del key repeatedly. In the bios look through the options and find something mentioning boot drive sequence or such. Follow the on screen info, it’s easy.

Best of luck ;)

SeventhSense's avatar

@Dr_Dredd
Try the Ad-Aware.

Response moderated (Spam)
Response moderated

Answer this question

Login

or

Join

to answer.

This question is in the General Section. Responses must be helpful and on-topic.

Your answer will be saved while you login or join.

Have a question? Ask Fluther!

What do you know more about?
or
Knowledge Networking @ Fluther