Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with the virus named "Antivirus Action"


  • Please log in to reply
8 replies to this topic

#1 Sinsante

Sinsante

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:07 AM

Posted 18 November 2010 - 01:02 AM

As you can see if you read the topic description i'm in safe mode while posting this. Earlier today when i was watching tv i saw something pop up on my computer screen and i knew what it was the second i saw it, it was a virus i've tried multiple programs like MBAM and SAS (Super Anti Spyware) and RKILL. The virus just wont let me open up anything and it started up a proxy on my web browser Mozilla Firefox so i cant go to pages unless i turn off the proxy. So i cant open anything i fixed the proxy problem and i cant close the malware process with RKILL, MBAM and SAS wont detect the virus so i'm confused and kinda hopeless.

BC AdBot (Login to Remove)

 


#2 AustrAlien

AustrAlien

    Inquisitor


  • BC Advisor
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:03:07 PM

Posted 18 November 2010 - 01:17 AM

Hello and :welcome: to the BC forums.

Please follow the removal guide at the following link:

Remove Antivirus Action (Uninstall Guide)

The MBAM log is automatically saved and can be viewed by clicking the Logs tab in MBAM. Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.

Please post the log and let us know how the system is running now.
AustrAlien
Google is my friend. Make Google your friend too.

Posted Image

#3 Sinsante

Sinsante
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:07 AM

Posted 18 November 2010 - 01:20 AM

Hello and thanks for the welcome.

I am scanning right now and i will edit this post with the logs.

#4 AustrAlien

AustrAlien

    Inquisitor


  • BC Advisor
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:03:07 PM

Posted 18 November 2010 - 01:30 AM

Hello and thanks for the welcome.

I am scanning right now and i will edit this post with the logs.

A pleasure. Please always make a new post rather than edit with new material ... that way your helper is notified when you make the post.

Thank you.
AustrAlien
Google is my friend. Make Google your friend too.

Posted Image

#5 Sinsante

Sinsante
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:07 AM

Posted 18 November 2010 - 02:32 AM

Alright here goes. The MBAM scan results. I'm still in safe mode and i havent rebooted into the normal windows xp yet.

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4052

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702

11/18/2010 1:30:55 AM
mbam-log-2010-11-18 (01-30-55).txt

Scan type: Full scan (C:\|D:\|)
Objects scanned: 279943
Time elapsed: 1 hour(s), 10 minute(s), 13 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

As you can see nothing is detected. But i'll wait for further instructions.

Edited by Sinsante, 18 November 2010 - 02:37 AM.


#6 AustrAlien

AustrAlien

    Inquisitor


  • BC Advisor
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:03:07 PM

Posted 18 November 2010 - 03:40 AM

Malwarebytes' Anti-Malware 1.46
Database version: 4052

MBAM has not been updated. The latest I have seen is database version 5124.

Please update MBAM's database definitions and then proceed to follow the guide from the beginning again. (No need to download and install MBAM again though.)

That should succeed in removing Antivirus Action completely.

Edited by AustrAlien, 18 November 2010 - 03:40 AM.

AustrAlien
Google is my friend. Make Google your friend too.

Posted Image

#7 Sinsante

Sinsante
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:07 AM

Posted 18 November 2010 - 03:41 AM

Oh ok. And when i restarted my computer the virus didnt start up at all.... It was weird i didnt do anything it just baiscally went away. I'll still update.

#8 Sinsante

Sinsante
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:07 AM

Posted 18 November 2010 - 04:11 AM

Alright. The virus is gone i checked almost everything. That update really did the trick... Cant believe it was so simple. Thanks for the help i appreciate it.

#9 AustrAlien

AustrAlien

    Inquisitor


  • BC Advisor
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:03:07 PM

Posted 18 November 2010 - 04:17 AM

That update really did the trick... Cant believe it was so simple. Thanks for the help i appreciate it.

A pleasure.

Take care and good luck.
AustrAlien
Google is my friend. Make Google your friend too.

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users