• Hello and welcome to MSFC. We are a small and close knitted community who specialises in modding the game Star Trek Armada 2 and the Fleet Operations modification, however we have an open field for discussing a number of topics including movies, real life events and everything in-between.

    Being such a close community, we do have some restrictions, including all users required to be registered before being able to post as well as all members requiring to have participated in the community for sometime before being able to download our modding files to name the main ones. This is done for both the protection of our members and to encourage new members to get involved with the community. We also require all new registrations to first be authorised by an Administrator and to also have an active and confirmed email account.

    We have a policy of fairness and a non harassment environment, with the staff quick to act on the rare occasion of when this policy is breached. Feel free to register and join our community.

[Virus] Fake Anti Virus Malware Problems and a Solution

  • Thread starter thunderfoot
  • Start date
T

thunderfoot

Deleted Due to Inactivity
Former MSFC Member
While cruizing the Interwebs early this AM, caught one of those nasty Fake Anti Virus malware apps. This one was pretty determined to hold my laptop hostage until I paid. The usual things I do, such as use System Restore from my desktop, or find and delete the offending files directly from my HDD, did not work. This one, called AntiVir 2010, just overrode anything I tried with the message, "such and such file is infected! Access denied!" Happily, Safe Mode and System Restore rode to the the rescue once more. Now I have a freeware app to prevent this. Since we cannot post links I have to tell you to Google the following: Remove Fake Anti Virus

The sad thing is this occurred on a site vetted by my AV and Windows Defender as a safe site. It is a website with some very cool pictures and videos of hot rods. Turns out there was a hidden redirect link inside one of the adverts and I was a little careless about where I was pointing and clicking. Sent an email with all the details to the webmaster in question and hopefully, it will be addressed post haste. But I'm not ever going back there again.

A suggestion, if I may. Maybe a thread pinned somewhere in this Section with problems others have experienced and their solutions. In addition, maybe a link on the home page which takes one directly to such a thread, and is one visitors and guests, as well as members, can view would be helpful. Not everyone is as computer savvy as they'd like to be all the time and if we can offer a way out of dilemmas like this and a way to prevent them from occurring to others, it would probably be bandwidth well spent, IMHO.

This is the point where someone says, "But everyone knows Safe Mode and System Restore will cure this!" Not entirely true in everyone's case. I also lost about 2.25GB of mods for A2 and MC2 because I had to go back to a Restore Point I was sure uninfected. One I specifically created about two weeks ago. Like a lot of people I do not make supplementary backups on thumb drives or such. Painful way to be reminded this is stupid as well as lazy. All I coud think about while the Restore in Progress screen was running was,

"D***! All that work I did just went for nothing!"​
 

ISS_Enterprise_D

NCC-1701-D
Joined
11 Apr 2010
Messages
537
Ah, good to know, good to know. Now a quicker way of dealing with that junk. Literally took me a month one time to figure out where the files were hidden so I could get rid of them
 

CrazyFrog1903

Boba Frog!
Joined
25 Apr 2006
Messages
1,858
I know that Syf and myself have been using a set of different programs to keep our systems safe. I'm sure Syf can post or send the list being an admin.
 

Majestic

Administrator
Staff member
Administrator
Seraphim Build Team
Joined
17 Apr 2006
Messages
18,274
Age
39
A suggestion, if I may. Maybe a thread pinned somewhere in this Section with problems others have experienced and their solutions. In addition, maybe a link on the home page which takes one directly to such a thread, and is one visitors and guests, as well as members, can view would be helpful. Not everyone is as computer savvy as they'd like to be all the time and if we can offer a way out of dilemmas like this and a way to prevent them from occurring to others, it would probably be bandwidth well spent, IMHO.

Certainly worth looking into, perhaps a module on the main page that can be updated regularly or something. Certainly worth looking into with the soon to be done upgrade. :)
 
T

thunderfoot

Deleted Due to Inactivity
Former MSFC Member
Thank You! Much appreciated.
 

Majestic

Administrator
Staff member
Administrator
Seraphim Build Team
Joined
17 Apr 2006
Messages
18,274
Age
39
You're welcome. There is also another virus going around, which Hellkite told me about, that says it's an Adobe Flash update. It has hit me today and doesn't allow me to complete transfers on MSN and signs me out.
 

Jetfreak

Filipino Expat
Staff member
Forum Moderator
Seraphim Build Team
Master of Art
Joined
22 Mar 2008
Messages
2,554
Thanks for the heads up guys, will have to definitely have to further ramp up my PC's security from now on. Yikes, my AVG expires in a month.
 

Starfox1701

Master of the Arwing
Warrant Officer
Joined
29 Jan 2008
Messages
2,558
Age
47
Thats why I keep my webroot uptodate. It eats scareware for breakfast and does a number on most malware too.
 

Paul

Destruction Incarnate
Joined
24 Apr 2006
Messages
2,760
Age
35
The more things change, the more they stay the same...the internet is a good example of this with the usual viruses and fake products

Cheers for the Adobe warning Maj, i rarely update it unless i have to but its good to know that its been compromised for now and extra care should be taken :thumbsup:. come to think about it Nod detected afew dodgy Adobe files awhile back but they didnt interfere with anything (Info grabbers)

Best way to avoid such things without unpluggin the net is to keep the firewalls, anti virus and other programs up to date
 

Majestic

Administrator
Staff member
Administrator
Seraphim Build Team
Joined
17 Apr 2006
Messages
18,274
Age
39
Sometimes even keeping them up-to date isn't enough as in my case with Adobe. Even my virus scanner can't find it. I guess I'll have to wait till I can get Trend Micro again, that is a fantastic program and well worth the money. Hopefully by the end of the month Katala and I will have Trend again, for the time being AVG will do.
 

Hellkite

Lord of Death
Staff member
Administrator
Seraphim Build Team
Star Fighter
Joined
23 Apr 2006
Messages
7,636
data on the "adobe Virus" From trend Virus knowlage bank

SWF/LFM-926 is a pure virus, meaning the program infects files and can only spread when the compromised file is moved to another system.

Macromedia will release a workaround to disable the file association between Flash files and the local Flash player within a couple of days, Macromedia's Santangeli said. In addition, the company plans to close the hole in the player by the next version.

For the time being, e-mail users will have to add the SWF file format to their list of attachments of which to beware

---------
 
Last edited:

Syf

Lost Finder
Star Fighter
Joined
21 Apr 2006
Messages
7,129
Age
49
AntiVirus 2010...Mmm, been there, done that. Yes, I have dealt with it (Several times because I do all the local PC repair for Family and friends). It is rather simple to purge actually. Note: ALL system affected were XP home/Pro. Start by booting into safemode with nothing enabled. Then rename the main file, and directory in Program Files. Then there is one more set of file that are hidden as system files located in C:\Documents and settings\LocalService\Application Data and on a few times, I found the trouble making file in a temp Directory/temp~ Inet~ files Directory or a Download(s)/My Downloads Directory.

Yes, we could use to sticky this and other "How To" help threads.
 

Hellkite

Lord of Death
Staff member
Administrator
Seraphim Build Team
Star Fighter
Joined
23 Apr 2006
Messages
7,636
** Approved link Majestic 02-08-2010 **

HouseCall is Trend Micro's highly popular and capable on-demand scanner for identifying and removing viruses, Trojans, worms, unwanted browser plugins, and other malware.

HouseCall 7 features an intuitive interface and the ability to perform fast scans that target critical system areas and active malware. It also leverages the Trend Micro Smart Protection Networkâ„¢ to help ensure that scans catch the latest threats.

and best of all it Free

HouseCall - Free Online Virus Scan - Trend Micro USA
 

Majestic

Administrator
Staff member
Administrator
Seraphim Build Team
Joined
17 Apr 2006
Messages
18,274
Age
39
Thanks for posting Hellkite, I am using it now. :thumbsup:

Moved to the new PC Support and Maintenance section.
 
T

thunderfoot

Deleted Due to Inactivity
Former MSFC Member
This is a real find! Thank you for the link, HK. Just tried it out and found a trojan my regular AV had missed.
 

Majestic

Administrator
Staff member
Administrator
Seraphim Build Team
Joined
17 Apr 2006
Messages
18,274
Age
39
I'm 85 minutes into a scan and still nothing. I'm only about a third of the way through the progress bar.
 

Hellkite

Lord of Death
Staff member
Administrator
Seraphim Build Team
Star Fighter
Joined
23 Apr 2006
Messages
7,636
Your both welcome

Trend is the anti virus that the DOD trust with their systems and I have learned to over the years they are one of the best anti-virus programs out there hand down :cool:
 

Majestic

Administrator
Staff member
Administrator
Seraphim Build Team
Joined
17 Apr 2006
Messages
18,274
Age
39
Yeah I normally use it but with current financial difficulties Kat and I have been forced to use free scanners. However when we get our tax back we plan to use it to get Trend again. :thumbsup:
 
S

Straxus

Deleted Due to Inactivity
Former MSFC Member
I suggest Spybot Search and Destroy and Malwarebytes Anti-Malware, both are free and very effective at finding what traditional anti-virus may not find.
I run AVG, back up with spybot and if I am still not convinced my system is clean I follow up with Malwarebytes. The free version of Malwarebytes takes a long time to do a full scan but if something is hidden and needs to be eliminated it is worth the time.
 
Top