Blindsided by Win 7 Security 2012

About 12 hours ago, I was working at my computer and right before my eyes all of my browser windows closed (open to several tech sites working on an Exchange problem) and they were replaced by the dreaded Win 7 security nag screens.

The Avast! tray icon still worked and Avast! said my system was fully protected. I ran a full scan with Avast! (Avast! Free btw) and it finished finding NO infections!

Well if any of you have had to deal with this nasty specimen, you know the drill–Delete the registry hooks, kill the running process, check for rootkit infection, and finally scan the system (This time with MalwareBytes) which did find 2 trojan infections.

My question is where was Avast! all this time? My signatures were up to date and Win 7 Security has been around for a while.

Windows 7 Security may have been around a while, but different variants are being made all the time.

It would help avast detection if you sent the files MBAM detected to avast.

See:
Remove Win 7 Home Security 2012
http://www.bleepingcomputer.com/virus-removal/remove-win-7-home-security-2012

having MBAM as well as avast! would have protected you from this malware.

I did have MBAM but the free version does not offer real time protection and the malware got in and hooked it as well.

I will send copies of the files to Avast!

I did have MBAM but the free version does not offer real time protection and the malware got in and hooked it as well
Can you spare $20 - $25 US for a lifetime license with unlimited updating? Then buy MBAM Pro and you won't get infected again.

Probably can and proably will get a subscription to MBAM Pro. However, I’m not sure how that explains why Avast! didn’t catch this malware.

In a dream world, MBAM Pro will stop everything ever made. In reality…it is indeed very good at complimenting a resident AV…but it is not a panacea.

Which leads me to your question…as Avast! is not a panacea either. Why didn’t it catch this specific infection? Well, simply (but cryptically) stated, it probably did not have the signature to detect it. And by the time they do get the signature and release it to you, it might well be irrelevant as the signature will be different by then.

So they are playing a game of reaction, just like police vs. crime…its hard (but not impossible) to stop crimes that have not been committed yet, and even if they catch most of the bad, a little will always get through.

Everyone wants pro-active detection (meaning Avast! would be able to catch more malware without the aforementioned signatures), but few are willing to live with the common drawbacks (slowdowns, more false positives, etc.)

Good luck. My story is identical. The only difference being the Win 7 virus keeps coming back . . . :-[ 3 times now. Each time I go through the same steps, only to have it return within 24 hours.

I have no issue purchasing the full version of Mbam, although I’m not convinced that’s getting to the root kit. After resolution, scans of both Avast and Mbam come up clean.

Could somebody be ‘pushing’ the virus back to me after cleaning? Wouldn’t seem possible, as how can it get past my router?

Hope you avoid the same issues.

MBAM will not cure all variants of this malware

You may well have an MBR infection

An aswMBR and OTL scan would confirm or deny that premise

As I have stated elsewhere no AV has been able to stop all the variants of this malware

Could somebody be 'pushing' the virus back to me after cleaning? Wouldn't seem possible, as how can it get past my router?
You have anything other than a printer connected to a USB port when you boot?

Also reset your router, reapply any previous settings mods. you made, and change your admin password to a stong one.

Norton DNS may contribute to your security. It’s free.