smart fortress 2012 protection?

Avast Free Antivirus / Premium Security
1

I got hit with the Smart Fortress 2012 virus, even with Avast Internet Security v7 ! Wasted a half day trying to get rid of it.

Anybody else got it? Is Avast not geared up for this one? :-\

2

Interesting… Did the autosandbox not show a message that this was trying to install? Between FileRep and autosandbox, I figured that avast users would be fully protected from rogues.

3

Thanks for the reply.

It could have. I was chatting on the phone, while surfing some sites and it happened so fast. I do recall a message popping up, but it looked like the warning for blocking a site. Before I knew it, the virus started displaying the popup windows and shutting down my browsers.

I had to use MalwareBytes to get rid of it.

Will try to pay closer attention in the future.

4

I keep Avast Pro running and updated at all times. I went to a web-site (candacepert.com) and Avast started blocking numerous items (e.g., trojan horses), but Smart Fortress 2012 slipped past Avast and infected the computer. So Avast neither protected me or gave me any choices before the computer was infected.

Unfortunately, I been doing something on a trusted website that needed interactive speed that is unavailable when Firefox is running within the sandbox, and I had not yet put Firefox back into the sandbox. So at that moment (of all times!) I was only depending on the auto-sandbox as protection. However, I had thought Avast was enough to protect me from a ‘drive-by’ threat that has been known for months – live & learn! :frowning:

One of the reference links provided on the same topic previously in this forum says that Smart Fortress 2012 will even stay active in Safe Mode, and I find it hard to believe that the makers of the rogue have not already counter-acted the fake activation code that has been on the web since at least 3/1. That means I am going to reformat that hard drive and reinstall the OS.

Would an Avast expert please explain why Avast let the rogue get through? Was it overwhelmed with the other stuff coming almost simultaneously from the infected site? Should I continue to trust Avast (which I have used and loved for years)?

–Martha

5

its not about why avast did not block the rogue. yes, it is definitely unfortunate…but do note that no antivirus block every malicious applications. (u can check all the lab tests conducted on antiviruses. none of them ever hit 100% (and thats just with the limited test set the labs have, wat about the actual amount in the world?)

so avast has filerep → autosandbox, behaviour shield to give extra zero day/heuristics protection, but never expect every malicious stuff to be caught by it. it will catch some, it will miss some. it may improve as avast fine tune the autosandbox and filerep overtime.

basically, there is never 100% protection. as long as we connect the computer to the internet or other removable devices, there is always the chance of infection. it is about reducing that chance.

on a side note 1. u should try using safezone to do sensitive stuff like banking on the net. this is because that zone is an inverted sandbox, isolated away from ur system. (so even if ur system is infected, there is a better chance to protect sensitive infomation from the bad guys)

                    2. try not to use browsers for sensitive stuff and casual surfing at the same time (in case u suspect an infection, u can safe urself by not imputing the sensitive stuff then)