Suspected PayPal Hackers Seek Deal To Stay Out Of Prison
2 Men Arrested After Teen Was Run Over For His iPad
New rogue antivirus app has a hate-on for Malwarebytes
If there's one anti-malware application that we (and you) hold near and dear, it's Malwarebytes.
How do you know when your crapware-fighting application has really made it big? When it starts being targeted by rogue antivirus software, of course.
Protection System -- which sounds about as real as The Christopher Guest School for Mixed Martial Arts -- detects MBAM during its bogus scan procedure and declares it malicious. It then offers to remove the threat for the poor sap who doesn't realize what's happening. After clicking ok, the uninstall routine is run and the user is left without what is likely the best tool for removing this pest.
This isn't a new tactic by any means. It's pretty common for engineered nasties to disable and damage antivirus and antimalware programs and mess with your hosts file so you can't update definitions or re-download.
Keep your filthy paws off MBAM, you damn, dirty rogue.
[via Sunbelt Blog]
How do you know when your crapware-fighting application has really made it big? When it starts being targeted by rogue antivirus software, of course.
Protection System -- which sounds about as real as The Christopher Guest School for Mixed Martial Arts -- detects MBAM during its bogus scan procedure and declares it malicious. It then offers to remove the threat for the poor sap who doesn't realize what's happening. After clicking ok, the uninstall routine is run and the user is left without what is likely the best tool for removing this pest.
This isn't a new tactic by any means. It's pretty common for engineered nasties to disable and damage antivirus and antimalware programs and mess with your hosts file so you can't update definitions or re-download.
Keep your filthy paws off MBAM, you damn, dirty rogue.
[via Sunbelt Blog]
Comments
6
Subscribe to commentsSpedioneSep 2nd 2009 8:21PM
How dare they take aim at Malwarebytes!!!!
jay4Sep 2nd 2009 9:46PM
The screenshot looks exactly like 2 malware infections I took care of last month. "PC AntiSpyware 2010" & "Green AV 2009". Malwarebytes was the only s/w that was able to remove it. Looks like I'll have to keep a copy handy on a flash drive.
nitrous9200Sep 2nd 2009 9:59PM
I just dealt with this today; it also installs a rootkit which can be easily removed with Gmer. Then you can run ComboFix, SuperAntiSpyware, Malwarebytes et al to remove the rest.
TurboFoolSep 3rd 2009 1:08AM
To be fair, MBAM usually can't remove these infections alone, because they already block it from running. MBAM, Spybot, etc. all get blocked from running by the newest fake AV apps. Really, the only surefire bet for most is to boot into safe mode, run ComboFix first (usually renaming it to something like spaghetti.exe), let it do its thing, and then run MBAM to clean up the rest.
NightstarSep 3rd 2009 2:07AM
I fought one like this two week ago for a client. Mallwarebytes could NOT clean it off! Had to backup nuke and rebuild!
ThunderbuckSep 3rd 2009 3:32AM
I definitely need to find a life when any headline that contains the word "rogue" instantly makes me think it's about WoW...