This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Mal/FakeAvHm-A infection

Dear Sophos people,

my sophos anti-virus tells me I've been infected with the Mal/FakeAvHm-A. It was last updated the last time about two weeks ago and the reported malware is from March 2009. Nevertheless spam pages and unwanted dialogs are opening. In addition I am not able to open sophos, regedit, msconfig or any other program useful to get rid of this. so what can I do?

This thread was automatically locked due to age.

Parents

0 OD over 15 years ago

FakeAvs can be nasty, if you can get an autoruns log, send it to support and call in.
If it is blocking exes, rename autoruns to something else like autoruns.com or services.exe and try that.
A lot of the time it is just one bad exe running.
Nice note - to revert the taskmgr/regedit issue you can use regengui:
www.sophos.com/support/cleaners/regengui.com
Although if the malware is active, it will likely write it back (which is also a way to track the file doing it via procmon :P)
:3322
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 OD over 15 years ago

FakeAvs can be nasty, if you can get an autoruns log, send it to support and call in.
If it is blocking exes, rename autoruns to something else like autoruns.com or services.exe and try that.
A lot of the time it is just one bad exe running.
Nice note - to revert the taskmgr/regedit issue you can use regengui:
www.sophos.com/support/cleaners/regengui.com
Although if the malware is active, it will likely write it back (which is also a way to track the file doing it via procmon :P)
:3322
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data