Why Didn't Bitdefender Stop An Attack

rodlovely
edited December 2007 in Malware talk

I'm using Bit Defender Antivirus 2008 on my Windows XP computer and it is completely up to date. Yesterday I clicked on a link from a Google search result - and the next thing I knew was that something was installed on my computer without my knowing. I'm not even sure what to call it - but it made changes to the system registry, changed Internet Explorer 7 settings, and disabled Task Manager without any notifications from Bit Defender as to what was going on (usually BitDefender pops up messages when registry changes are made when I install programs). I knew something was going on when I started to get bombarded by messages stating I had been attacked through a new icon in my system tray, a new yellow messagebar message in IE, a new IE toolbar, and various pop-up messages. The messages were telling me that I had been attacked and that I needed to install System Defender, Ultimate Cleaner, and /or Ultimate Defender anti-spyware on my computer. It also installed a dll called emlkdvo in the Windows folder. The worst part was when it activated active desktop and posted it's own bright red web page on my desktop - so any click on my desktop would bring me to one the anti-spyware sites. Knowing that these are not legitmate spyware products I commenced to find out what was going on and how to stop it. First thing I did was search your site for the things I knew - 'emlkdvo', 'Ultimate Defender', and 'System Defender'. But your site had nothing on them. I deleted emlkdvo.dll and got rid of all references to it in the registry on my own - but that had little affect. I purchased Webroot spy sweeper and that seemed to get rid of some of the issues - but it was Spyware Doctor from PC Tools that seems to have completely eradicated the problem (I found them by seaching on 'emlkdvo'). I'm still not sure what to call the thing that attacked me but Spyware doctor got rid of things called Trojan-Downloader.VB.AXA, RogueAntiSpyware.SystemDefender, and the like.


So why didn't Bit Defender stop this thing? Remember it changed registry settings and more without any Bit Defender pop up notifications!!

Comments

  • Hi I got the same virius you just posted about but had Nortons installed never detected it, but as soon as I installed BitDefnder 2008, It nailed it and removed it and about a ton of spyware it did how ever take me 3 times of running deep scan to remove all of it, what I found out after the 2nd scan, I had to check the box scan boot sec. after that and the 3rd deep scan it removed all of it.


    This virius seems to like the google tool bar if you added it to windows internet explore. I got it while looking up reviews for laptops and click a link for a review after a few mins. my computer was running real slow so I rebooted and Boom there is this crap on my screen and these pop-up same as you posted. Nortons never did anything or did it even found it on my computer.


    From what I found out about this attack is, it's 90% found on crack sites or hacker web pages most of the time it's in there crack program, NOT saying you was down loading cracks or hack programs.


    I tried to refind the link I clicked on but was unable to find it. hope this helps B.T.W this virius was a pain in the butt.

  • maybe the new type of behavioural software would have prevented this like prevx or mamutu