Results 1 to 7 of 7

Thread: mystery virus     submit to reddit submit to twitter

  1. 2010-08-04 20:19 #1
    fishstix
    fishstix is offline
    E. Body
    Join Date
    Jun 2007
    Posts
    2,065
    BG Level
    7
    FFXI Server
    Phoenix

    mystery virus

    I know this is a nightmare, not knowing all of the information... but I'll do the best I can. Last week, I got a virus, I had temporarily turned off Avast since it was annoying me (I know, dumb.) at some point, I a program popped up, some fake anti-spyware/virus program saying I had a virus and to go to x site to download the fix. It wouldn't let me go into task manager or open up avast, any attempt would make the fake scanner pop up.

    I restarted into safemode and cleaned it with avast and spybot s&d. Upon restarting, none of my browsers (safari, firefox 3/4, chrome, IE) worked. AIM and Peerblock would work fine however. I didn't pay attention to what was cleaned since I thought things would be dandy afterwards. Looking at the log now, it could be either:
    JSFakeWarn-D
    Win32:FakeAV-AMX

    anyone have any ideas on how to get the browsers back working? I checked my HOSTS file and didn't see anything out of the ordinary. Right now, I'm running on an old dual-boot install that I never got around to deleting. I'm ok with it, but now the exact same thing happened to a friend of mine.
  2. 2010-08-04 20:22 #2
    Odesseiron
    Odesseiron is offline
    Art Connesseur of Blue Gartr
    Join Date
    Jul 2007
    Posts
    5,833
    BG Level
    8
    FFXIV Character
    Odess E'iron
    FFXIV Server
    Balmung
    FFXI Server
    Ragnarok

    BG XIV Crew

    Simple and most effective answer, back up what you have to and format.
  3. 2010-08-04 20:26 #3
    Knyghtmayre
    Knyghtmayre is offline
    Relic Shield
    Join Date
    Jan 2009
    Posts
    1,646
    BG Level
    6
    FFXI Server
    Bismarck

    SuperAntiSpyware.
  4. 2010-08-04 20:28 #4
    fishstix
    fishstix is offline
    E. Body
    Join Date
    Jun 2007
    Posts
    2,065
    BG Level
    7
    FFXI Server
    Phoenix

    I looked up the virus given in the logs and yeah ppl said to get SAS, downloading that now. formatting would be no problem for me, but my friend lives several hundred miles away and is kinda computer inept -_-
  5. 2010-08-04 21:28 #5
    fishstix
    fishstix is offline
    E. Body
    Join Date
    Jun 2007
    Posts
    2,065
    BG Level
    7
    FFXI Server
    Phoenix

    ok scanned with SAS and it only came up with cookies to delete. I figured it out though, I should've known, but I was too preoccupied at being annoyed. The fake scanner changed my internet settings so that websites would go into a proxy. Changing those back to normal fixed it.
  6. 2010-08-04 21:41 #6
    Crowort
    Crowort is offline
    New Merits
    Join Date
    Sep 2006
    Posts
    207
    BG Level
    4

    In I.E. Tools > Internet options > > connection tab > LAN Settings > tick automatic detect settings.

    Might not be the case but this worked for me on a friends PC after removing a virus like this.

    Wow really should have read the last post lol
  7. 2010-08-04 23:41 #7
    fishstix
    fishstix is offline
    E. Body
    Join Date
    Jun 2007
    Posts
    2,065
    BG Level
    7
    FFXI Server
    Phoenix

    hehehe thanks anyways, to be fair, I was an idiot myself for several reason. lastly because I didn't pay attention to the error message I was getting. When I'd try to load a webpage, it'd say the proxy wasnt detected or something. All I did was check my HOSTS file, then the TCI/IP and DNS settings and gave up. >.>

    but yeah, FIXED!