« previous next »
Pages: [1]   Go Down

Author Topic: Help! D:  (Read 2972 times)

0 Members and 1 Guest are viewing this topic.

ichigo8809

  • Guest
Help! D:
« on: September 11, 2010, 09:47:13 PM »
I picked up a virus, I didn't download anything suspicious or go on a suspicious website. The virus says it's an "Antivirus software", so I used Avast to scan my computer, and Avast said there weren't any threats.

Details: The virus isn't allowing me to open anything such as Microsoft Paint, Windows Media Player, my picture files, and my music/sound files. When I open one of these up, the virus claims that the program/file is infected.
« Last Edit: September 11, 2010, 09:55:08 PM by ichigo8809 »
Logged

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67194
Re: Help! D:
« Reply #1 on: September 11, 2010, 09:49:45 PM »
I suggest:

1. Clean your temporary files.
2. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
3. Use MBAM (or SUPERantispyware or even Spyware Terminator) to scan for spywares and trojans. If any infection is detected, it is better and safer to send the infected file(s) to quarantine (Chest), rather than simply deleting them.
4. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
5. Make a HijackThis log to post here or this analysis site. Or even submit the RunScanner log to to on-line analysis.
6. Clean your Hosts file (replacing it) with HostsMan tool.
7. Disable System Restore and then reenable it again.
8. Immunize your system with SpywareBlaster.
9. Check if you have insecure applications with Secunia Software Inspector.

Fake antivirus could be better processed by MBAM.
Logged
The best things in life are free.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37581
  • Not a avast user
Re: Help! D:
« Reply #2 on: September 11, 2010, 10:05:38 PM »
you are infected with a rogue security program.
Does the program have a name ?
Logged

ichigo8809

  • Guest
Re: Help! D:
« Reply #3 on: September 11, 2010, 10:16:32 PM »
Quote from: Pondus on September 11, 2010, 10:05:38 PM
you are infected with a rogue security program.
Does the program have a name ?
It just says "Antivirus Software" and "Windows Security"
I don't think it really has a name in particular.
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37581
  • Not a avast user
Re: Help! D:
« Reply #4 on: September 11, 2010, 10:35:18 PM »
Is it this ?
Remove Antivirus Soft (Uninstall Guide)
http://www.bleepingcomputer.com/virus-removal/remove-antivirus-soft

anyway the removal guides for these rogues are very similar

so you have to download and run MBAM

Malwarebytes Anti-Malware 1.46 http://filehippo.com/download_malwarebytes_anti_malware/
always run update before you scan so you have the latest database
click the remove selected button to quarantine anything found
you may post the scan log here

if the malware is blocking install/run of MBAM, try this first

Hitman Pro 3 - Second Opinion Malware Scanner
http://www.surfright.nl/en/hitmanpro

Hitman Pro in Force Breach Mode
http://hitmanpro.wordpress.com/2010/03/16/hitman-pro-in-force-breach-mode/
Logged
Pages: [1]   Go Up
« previous next »