Malwarebytes Anti Malware Freeware Review

You have the free or commercial antivirus software installed on your computer as the first line of the real-time protection. However, you never can rely 100% on blocking all unwanted “guests” on your computer. As you realize that your computer has been infected by malware, you start looking for the emergency cleaning solution.

Depending on the intruder, system recovery may be fast and easy, and may be difficult and tiresome. In any case, you need several utilities to remove the enemy and destroy all traces of its presence on your hard drive and registry. There are many free utilities, claiming to do the job. Do not trust the promises and advertising. There are still fake anti-malware programs, which may bring even more harm to your system. Chose only trusted solutions, and trusted downloading sources.

While I have about 10 different portable software programs on my USB toolbox, I have already established certain routine on how I approach disinfection task on affected computers. And Malwarebytes is one of the “medicines” I am running at the beginning of the recovery process.

Using Malwarebytes is simple and friendly, while the program can find intruders and do the job with exceptional quality and speed.  After you run it, click Scan, and it checks your system for infections. There are two options: you can either do a quick scan, or a more comprehensive scan. For an initial scan, it is recommended to perform a long but thorough comprehensive scan.

After the program reports its findings, it will clean the infections for you or place the dangerous files in quarantine before killing them. The software also has Ignore List, so when you are positive that Malwarebytes is over-protective and the malware definition is false, you can put it on the list, and the next time, it won't be identified as malware.

Note that you can run Malwarebytes' Anti-Malware program for free to scan and disinfect your system. But if you want to enable real-time protection to stop your PC from being infected in the first place, and to schedule scans, you'll have to register it. For consumers and personal use, it is a onetime fee of $24.95.

Details

• Operating Systems: Microsoft Windows 2000, XP, Vista, 7.
• Languages Available: English, Arabic, Belarusian, Bosnian, Bulgarian, Catalan, Chinese Simplified, Chinese Traditional, Croatian, Czech, Danish, Dutch, Estonian, Finnish, French, German, Greek, Hebrew, Hungarian, Italian, Korean, Latvian, Lithuanian, Macedonian, Norwegian, Polish, Portuguese, Romanian, Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Turkish.

Freeware Key Features

• Light speed quick scanning.
• Ability to perform full scans for all drives.
• Database updates released daily.
• Quarantine to hold threats and restore them at your convenience.
• Ignore list for both the scanner and Protection Module.
• Settings to enhance your Malwarebytes' Anti-Malware performance.
• A small list of extra utilities to help remove malware manually.
• Works together with other anti-malware utilities.
• Command line support for quick scanning.
• Context menu integration to scan files on demand.

Website: http://www.malwarebytes.org/free/

Fight Malware – Remove Fake Antivirus

Remove Fake Antivirus is а free portable software used to remove the most popular fake antiviruses from your computer.

What is fake antivirus? This is a type of virus/malwares which disguises itself to be an antivirus. It infects your computer when you accidentally click a link in a website which will download the malware into your computer and run automatically when your windows boot. It scans the infected computer and produces fake alert warnings. It convinces you that your computer is in danger and urges you to purchase a useless copy of the fake antivirus. In most cases, the malware program blocks the real antivirus on your PC and Internet access to limit your ability for recovery.

These fake antiviruses must be removed immediately. The software supports removal of the 64 malware utilities, listed below:

1. Security Tool
2. My Security Shield
3. Antivirus 7
4. Antivirus GT
5. Defense Center
6. Protection Center
7. Sysinternals Antivirus
8. Security Master AV
9. CleanUp Antivirus
10. Security Toolbar
11. Digital Protection
12. XP Smart Security 2010
13. Antivirus Suite
14. Vista Security Tool 2010
15. Total XP Security
16. Security Central
17. Security Antivirus
18. Total PC Defender 2010
19. Vista Antivirus Pro 2010
20. Your PC Protector
21. Vista Internet Security 2010
22. XP Guardian
23. Vista Guardian 2010
24. Antivirus Soft
25. XP Internet Security 2010
26. Antivir 2010
27. Live PC Care
28. Malware Defense
29. Internet Security 2010
30. Desktop Defender 2010
31. Antivirus Live
32. Personal Security
33. Cyber Security
34. Alpha Antivirus
35. Windows Enterprise Suite
36. Security Center
37. Control Center
38. Braviax
39. Windows Police Pro
40. Antivirus Pro 2010
41. PC Antispyware 2010
42. FraudTool.MalwareProtector.d
43. Winshield2009.com
44. Green AV
45. Windows Protection Suite
46. Total Security 2009
47. Windows System Suite
48. Antivirus BEST
49. System Security
50. Personal Antivirus
51. System Security 2009
52. Malware Doctor
53. Antivirus System Pro
54. WinPC Defender
55. Anti-Virus-1
56. Spyware Guard 2008
57. System Guard 2009
58. Antivirus 2009
59. Antivirus 2010
60. Antivirus Pro 2009
61. Antivirus 360
62. MS Antispyware 2009
63. IGuardPC or I Guard PC
64. Additional Guard

Web Site: http://freeofvirus.blogspot.com/2009/05/remove-fake-antivirus-10.html

Autorun.inf Malware Threat: Protect and Remove it from your Computer and USB Drives

Autorun.inf flash drives malwares spread these days through various portable USB portable devices like iPod, external drives, pen drives.

While autorun.inf malwares are not specifically destructive to your computers, there are nasty and annoying. They cause various types of computer malfunctions, like your hard drive fails to open on double click, or double clicking on drive opens search or even your computer restarts when you try to open USB drive, infected by autorun.inf malware.

The autorun.inf virus is a common kind of virus that infects most computer systems. Tips on how to detect and remove the virus are of essence. Computer users should note that most of the times, this type of virus is spread through the mostly used removable storage devices like Memory Sticks, External HDD’s and USB drives. The spreading of this virus can be clearly illustrated in the steps it usually takes. Firstly, the virus infects the removable drive and as a following step places an autorun.inf file that contains a number of DLL files. In addition, in a few instances the autorun.inf makes a copy onto each and every partition that is on the hard disk of the user. Then, any time that the drive is plugged on a particular system, the autorun file goes on to execute itself and then copy the dlls. In actuality, it makes changes on the registry and then edits a number of startup entries. The next time a user goes to their computer; the activities of the virus will be shown when they restart their PC.

The files usually stay on the PC of the user as hidden files and the user is not in a position to enable the option of the Show Hidden File if the virus has infected the system. At the same, the virus goes on to disable other computer components as well. Such components that are likely to be disabled as well are the Registry Editor and Task Manager.

How to Protect Computer from Autorun.inf malware?

One popular way of protecting removable drives is by creating a folder or file and renaming it as AUTORUN.INF. It could enable the malware to automatically run on the system even without the users executing it. By creating this file beforehand, ideally, worms would not be able to run in this way.

However, this method is not perfect. Worms can delete the existing AUTORUN.INF file or folder, and then replace it with a malicious version. This would negate any protection placed by the user on the said file. However, by using file permissions to restrict changes, the AUTORUN.INF file can be protected more effectively.

Note: Make sure that your external drive is formatted using NTFS, as this procedure uses a specific feature of NTFS. If your removable drive is formatted using either FAT or FAT32, back up any data on the said drive first and reformat using NTFS. This may require Windows Vista or Windows 7.

1. Create a new folder in the root directory of the removable disk and rename it as “AUTORUN.INF.”
2. Create four more folders in the same location and named it as “recycle,” “recycler,” “recycled,” and “setup” respectively.

Note: The folders recycle, recycler, recycled and setup are optional but it is recommended for users to create these as malware often use these names/titles.

3. Open a command prompt (cmd.exe) and go to the root directory of your removable drive.
4. Set the folder attributes using the following DOS command:
   attrib autorun.inf /s /d –a +s +r
5. Set the privilege level of the folder using the following DOS command:
   cacls autorun.inf /c /d administrators
6. Select ‘Y’ and press enter when the message, “Are you sure (Y/N)?” is prompted.
7. To test it, try to delete, modify, rename, copy, or open the created folder. If you cannot perform any of these functions, then the procedure is successful.

In addition to the above procedure, users may also choose to use hardware means of protection. Certain removable drives have an external switch that prevents the device from being written to. This would prevent malware from making any modifications to the drive, including the AUTORUN.INF file. However, as this may prove to be somewhat inconvenient, it is still a good idea to use the procedure shown above.

How to Remove Autorun.INF malware with Autorun Eater?

Autorun Eater is a tool to scan and remove suspicious ‘autorun.inf’ files found in the root directory of all drives, A-Z, in real-time. Autorun Eater will remove any suspicious ‘autorun.inf’ files even before the user attempts to open the drive.

Note: It will remove all the suspicious ‘autorun.inf‘ files from the virusinfected pen drives but will not remove any other virus files so you would have to remove them manually or with some anti-virus tools.

It also fixes the three common problems caused by the viruses (as shown in the image below).

1. Task Manager disabled.
2. Registry editing disabled.
3. Hidden Folder Options.

If you have removed all the suspicious ‘autorun.inf’ files from all your drives, you will be able to open all your drives easily including your pen drive with double click.

Note: Some antivirus and antispyware programs flag Autorun Eater as being infected / malware, although the application is perfectly safe and does not pose a threat to your system. This is called a 'false positive'. The term false positive is used when antivirus software wrongly classifies an innocuous (inoffensive) file as a virus. The incorrect detection may be due to heuristics or to an incorrect virus signature in a database. Similar problems can occur with antitrojan or antispyware software.

Download Autorun Eater: http://download.softpedia.com/dl/fffb57bedbb3f5b9482304b8235e4106/4ae5ce1a/100085585/software/security/aesetup2.4.exe

How to Remove Autorun.INF malware with Flash Disinfector?

Flash Disinfector is free autorun.inf trojans and USB/Flash disks trojans remover. The program has been designed by sUBs (author of famous utility combofix) to clean autorun.inf trojans that are running on the system.

Flash Disinfector will perform the following operations on your computer:

* Clean up the junk files spread by flash malwares.

* Delete the suspicious autorun.inf files from the root directory.

* Fix the damages done by the virus.

* Create an autorun.inf folder in root directory of your system drives.

Flash Disinfector will target the following Flash malwares (in general):

• W32/Perlovga (copy.exe | host.exe)
• VBS_RESULOWS.A (Hacked by Godzilla, Hacked by Moozilla)
• Bha.dll.vbs
• w32automa worm (Autorun.vbs)
• Trojan.Win32.VB.atg | Win32/Dzan | Worm_vb.bnr (tel.xls.exe | mmc.exe)
• W32/RJump.worm (RavMonE)
• Worm.Win32.Delf.bf | W32.Fujacks (spoclsv.exe)
• W32.Fujacks.BH (Fucker.vbs)
• WORM_AGENT.PGV (soundmix.exe)
• W32/Hakaglan.worm (RVHost.exe)
• Trojan.Win32.VB.ayo [AVP] (Macromedia_Setup.exe)
• Trojan.VBS.DeltreeY.b#1 (Destrukto!!! | destrukto.vbs)

How to use Flash Disinfector?

Download Flash Disinfector from the link below and save it to your Desktop. When Flash Disinfector has finished downloading you will now see a new icon on your desktop. Double-click Flash_Disinfector.exe icon to run it and insert your flash drive and/or other removable drives including your mobile phone and click OK button. Wait until it has finished scanning. Reboot your computer when done.

Note: Flash_Disinfector will create a hidden file named autorun.inf in each partition and every USB drive plugged in when you ran it. Don’t delete this folder. It will help protect your drives from future infection.

Download: http://download.bleepingcomputer.com/sUBs/Flash_Disinfector.exe

Freeware anti-virus and anti-spyware utility from Dr.Web

The April 1 present from unknown hackers has increased consumers interest in anti-virus and anti-spyware utilities. This morning, I have confirmed that my home computer was infected with Conficker.C malware as well.

I would like to recommend again the list of actions promoted in the previous post. Try to update all the Microsoft updates first. If you see that you cannot perform them automatically, your computer might be already affected by the worm, who prevented you from healing your PC. If so, you will need to apply the medicine manually. Visit Microsoft explanation website http://technet.microsoft.com/en-us/security/dd452420.aspx and download Microsoft® Windows® Malicious Software Removal Tool (KB890830) on your Hard Drive. Run it and perform the Quick scan first. If at the first glance, you PC look clean, ensure the fact by running full scan. Depending on how large your HDD, this scan might take from an hour to several hours. So be patient.

In this post, I want to present one more, free anti-virus and anti-spyware scanner and cleaner from one of the best anti-virus fighters Dr. Web.


What is Dr.Web CureIt!?

This is a FREE anti-virus and anti-spyware utility based on Dr.Web Anti-virus scanner, which will help you quickly scan and cure, if necessary, a computer operated by MS Windows 95OSR2/ 98/Me/NT 4.0/2000/XP/2003/Vista without installation of the Dr.Web Anti-virus.

Dr.Web CureIt! automatically detects the language of the OS it is installed to and sets the scanner interface accordingly (if the local language is not supported, English is enabled). The utility supports the following 35 languages: Russian, Arabic, Armenian, Belarusian, Bulgarian, Chinese (Simpl.), Chinese (Trad.), Czech, Dutch, English, Esperanto, Estonian, Finnish, French, Georgian, German, Greek, Hungarian, Italian, Japanese, Korean, Latvian, Lithuanian, Norwegian, Persian (Farsi), Polish, Portuguese, Slovak, Slovenian, Spanish, Thai, Turkish, Ukrainian, Uzbek, Vietnamese.

The utility contains the most up-to-date add-ons to the Dr.Web virus databases going up to twice per hour frequency at periods of high malware submissions.

Dr.Web CureIt! detects and removes

* Rootkits * Mass-mailing worms * E-mail viruses * Peer-to-peer viruses * Internet worms * File viruses * Trojans * Stealth viruses* Polymorphic viruses * Bodiless viruses * Macro viruses * MS Office viruses * Script viruses * Spyware * Spybots * Password stealers * Keyloggers* Paid Dialers * Adware * Riskware* Hacktools * Backdoors * Joke programs * Malicious scripts * Other malware*.

How do I use Dr.Web CureIt!?

Download Dr.Web CureIt! from our website. Run the utility and press the "Start" button in the opened window. Confirm the launch by pressing the "OK" button and wait for the scanning results of the main memory and startup files. If you want to scan all or just some drives of a computer, select the Complete scan or the Custom scan mode (in the latter case, select the necessary objects you want to scan) and press the "Start scanning" button on the scanner right.

When you call the utility, you can specify parameters for the scanner in the command line, i.e. to specify the objects for scanning or/and modify the scanning modes different from the default ones.
When being scanned, infected files are cured, incurable files are moved to the quarantine directory. When the scanning is finished, the log file and the quarantine are not deleted.

How do I update Dr.Web CureIt!?

This utility can quickly clean an infected system, but it is not a permanent tool to cure your computer in case of infection. Its distribution on our web-site is always armed with the hottest add-ons to the Dr.Web virus database, but it does not include the Dr.Web Automatic Updating utility. Dr.Web CureIt! stays actual until the next release of the add-on. To scan your computer with the most up-to-date Dr.Web virus databases next time you should download new Dr.Web CureIt! package.

Access website and download fresh package: http://www.freedrweb.com/cureit/