Link to home
Start Free TrialLog in
Avatar of samiam41
samiam41Flag for United States of America

asked on

Preventing Security Tool (fake AV) style viruses from infecting pc's

Hi Experts.  I have been trying different methods of protecting myself and customers from these fake anti-viruses with mixed results.  Whether I use Avast, CA AV 2009 or 2010, McAfee or Symantec anti-virus coupled with ThreatFire or ZoneAlarm, there doesn't seem to be a magic combination to stop the infections from popping up.  The computers are running Windows XP or Vista (I haven't tried much with Windows 7) and are up to date including IE7 or IE8.

So, the question I have for the experts out there is what have you found to be the most secure in preventing these kinds of infections?  Is Chrome, FireFox or Opera better/safer to use in regards to preventing infections versus IE 8?  How about having a hardware firewall (Linksys, Belkin, Nortell) in the environment?  Will the user having admin rights on the local box make a difference when it comes to these kind of infections?

Thanks for your time with this.  I understand that it will be difficult to award points so I will go by the answer that seems to be the most economical, easiest to implement and less combursome.  
SOLUTION
Avatar of jakethecatuk
jakethecatuk
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of samiam41

ASKER

@jakethecatuk, thanks for the quick reply.  I hadn't put much thought into that service so great suggestion.  How does that work with websites that may have malicious scripts?  Does it block the script from running or provide a warning?
So that I don't give you the wrong answer, I'd suggest you pose that question to them.
SOLUTION
Avatar of Steve Smith
Steve Smith
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
@sgsm81, thanks for the suggestions.  I typically use MWB along with ComboFix once the pc is infected.  Does running MWB along with a full AV app like Symantec/CA/McAfee enhance security?  Or are you suggesting that you run MWB full version as your only AV?
I will read more on the Astaro appliance/app as it seems very secure but slightly combersome to setup an additional pc at a customer's house with this app.  Not sure they could manage it and if they were unable to get to a website or had problems connection their Wii to the internet, they would be calling non-stop.  I do like it for small business clients.
[quote]I will read more on the Astaro appliance/app as it seems very secure but slightly combersome to setup an additional pc at a customer's house with this app.  Not sure they could manage it and if they were unable to get to a website or had problems connection their Wii to the internet, they would be calling non-stop.  I do like it for small business clients.[/end quote]

Ah...I didn't realise your customers were home users.  Forget Astaro then.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Agree with paid version of Mbam. Will run alongside current AV and be a better deterrant against these rogue av programs.

K9 is very good content/site blocker but maybe too much unless pc owner requests something like that.
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Thank you for all of the suggestions and information.  From what I am reading, MWB full version is the way to go.  Match that up with a hardware firewall (linksys, etc.) and give the user the least amount of rights to the computer and they are less likely to get that rogue, fake AV bug.

Also, for home users, K9 is effective and for small business, Astaro.
Thanks modularity for adding the zones and vee_mod for keeping the thread clean.

I am awarding points now.
Great suggestions/explanations as I have a much better idea as to how to reduce the chances of my customers being infected or at least explaining to them what needs to be done.  I appreciate your help!

Regards,
Aaron
Thank you for using Experts-Exchange!