Categories
News

How To Remove The Troubleshooter Malware That Generates Fake BSODs And Asks Users To Buy A Non Existent Windows Defender AV

According to Myce, the security researchers from Malwarebytes have discovered a malware called Troubleshooter, which generates fake Blue Screen of Deaths (BSODs) and asks the user to buy Windows Defender Essentials (fake Windows Defender version) to clean the computer.

The malware inserts a BSOD image and disables the key combinations that permit the user to close the windows (e.g. ALT+F4) and asks for 25$ on Paypal, for buying the fake version of Win Defender.

How To Remove The Troubleshooter Malware That Generate Fake BSODs And Asks Users To Buy A Non Existent Windows Defender AV

How To Remove The Troubleshooter Malware That Generate Fake BSODs And Asks Users To Buy A Non Existent Windows Defender AV

How To Remove The Troubleshooter Malware That Generate Fake BSODs And Asks Users To Buy A Non Existent Windows Defender AV

A security researcher found out that if the user pays for the fake software, the website http://hitechnovation.com/thankyou.txt gets opened and the malware kills himself. If you get in this situation, just use the CTRL + O combination and navigate to the website yourself (without paying the ransom).

Apparently, this type of malware spreads with cracked software, so if you are a good samaritan and use only genuine software or open-source alternatives, you should be safe.

To remove this software completely, you need to reboot in safe mode, delete the Troubleshooter.exe file from %temp%, disable the csrvc service and scan your computer with Malwarebytes. More detailed instructions can be found on this Malwarebytes forum thread.

Categories
Security solutions and antivirus software

Malwarebytes 3.0.6 Component Update 1.0.75 Brings Fixes and Web Protection Enhancements

As you may know, Malwarebytes is among the best anti malware software that permits the users to perform virus cleanup, even when the real time protection is disabled because the license expired.

Starting with Malwarebytes 3.0, the security solution has integrated more modules, including Anti Rootkit, Web Protection, Anti Ransomware, and became a full fledged antivirus software. Compared to the 2.0 version, Malwarebytes 3.0 performed the virus scanning a lot faster.

Recently, Malwarebytes released a component update for Malwarebytes 3.0.6, updating the Component Package to version 1.0.75.

From the official changelog:

  • Fixed issue with imaging programs (such as Macrium Reflect) where large artifact files were left in the System
  • Volume Information folder if a backup is created with anti-ransomware protection enabled
  • Fixed problem where Web Protection and Anti-Ransomware may fail to start properly
  • Fixed problem where Web Protection detections were failing on Windows 10
  • Fixed problem where DNS was not resolving properly with Web Protection enabled
  • Fixed problem where Web Protection did not show the proper block page when Bitdefender 2017 was also installed
  • Fixed an issue where certain drivers were not stopped and unloaded in Free mode
  • Fixed memory leak
  • Improved overall malware detection and remediation

To check if you have the latest version of Malwarebytes, you have to open the program and go to the Settings Menu. Next, click the About button from the interface. If you did not have the last version, go back to the Dashboard and click Updates and it will perform a manual update scan.

Malwarebytes 3.0.6 Component Update 1.0.75 Brings Fixes and Web Protection Enhancements

If this does not work either, go to the official Malwarebytes website and install the newest version of the antivirus software by hand.

Categories
Editorials and informational articles News

2016′ best antivirus was Avira Antivirus Pro, while Kaspersky Virus Removal Tool is the best for cleaning infected computers

The folks from AV-Test have conducted a 12-month endurance test, involving 897 evaluations for each security software for Windows 10 and took a conclusion.

They performed their research on two different stages: installed virus removal tools on infected systems and evaluated the results and disabled the security software so that the systems can get infected and again, evaluated the results.

Four of the tested solutions were capable of eliminating all the malware samples: Avira Antivirus Pro, Kaspersky Internet Security 2016/2017, Malwarebytes Anti-Malware and Avast! Free Antivirus 2016. Avira Antivirus Pro has also managed to remove all the registry keys so it scored best in all the tests.

Bitdefender Internet Security 2016/2017, Symantec Norton Security and G Data Internet Security have provided good performance as well, but missed malware in a few cases.

Among the bootable antimalware/recovery software, Kaspersky Virus Removal Tool ruled them all and managed to remove all the malware samples, while the others failed.

The screenshots below are self explanatory.

2016' best antivirus was Avira Antivirus Pro, while Kaspersky Virus Removal Tool is the best for cleaning infected computers

2016' best antivirus was Avira Antivirus Pro, while Kaspersky Virus Removal Tool is the best for cleaning infected computers

Personally, I am a fan of Malwarebytes Anti Malware when it comes to cleaning up infected computers, but I also use AdwCleaner, Zemana and HitmanPro, hoping to remove all the leftovers that were not spotted by my first virus scan. My favorite free antivirus is Avast!, because it is lightweight and has a lot of features.