An antivirus story: Me and My Neuroses

[jpub]

So, last night Avast! comes up with a detected threat that it cleaned up.

I tell it to quick scan, and it finds a couple registry entries related to it too, as well as another file.

I immediately freaking PANIC, and start scanning the crap out of my computer, a process I continued this morning.

Avast! Full scan with *everything* on max

MSE Full scan

Windows Defender Full scan

Malwarebytes full scan.

According to all of these, my computer is clean. Nothing to worry about.

Yet I'm still freaking out.

Someone help talk me down, here.

[Black Aeronaut]

Well, first of all it would be greatly helpful if you could tell us exactly what was found, that way we can tell you whether or not to relax.

[jpub]

2 Files in C:Users
ameAppDataLocalTemp, that have been deleted, but had these in them:
Win32:FakeAlert-MZ [trj]
Win32:Alureon-HA [trj]

And the following:
Registry Keys Infected:
HKEY_CURRENT_USERSoftwareavsoft (Trojan.Fraudpack)
HKEY_CURRENT_USERSoftwareavsuite (Rogue.AntivirusSuite)

Registry Values Infected:
HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRunxzomrykp (Rogue.AntivirusSuite.Gen)

All it *said* were Quarantined and Deleted successfully.

What do y'all think? Nuke and reinstall? I'm noticing no problems, but I'm still freaking out.

[Black Aeronaut]

Well, folks at bleepingcomputer.com mostly report issues with internet access whenever Trojan.Fraudpack and Rogue.AntivirusSuite come up.

Simply put, if your computer is behaving normally, then I wouldn't worry. If you want to be paranoid, though, you can go over to bleeping computer and ask for help there.  Though it might take a while, because sometimes the people that provide the assistance get swamped.  Oh, and they're big about following directions to the letter, so don't leave anything out.  In return, they give the kind of help that even the most computer illiterate can understand.

[jpub]

I ran it by the Avast! people, adn they say if MWAB and Avast *and* MSE *and* Windows Defender all say I'm clean, I'm safe. I'm still going to watch this box like a hawk, but what else can I do? I'd rather not nuke and rebuild if I don't have to.

[Sofaspud]

What else can you do?  Relax.
No, seriously.  That's the first step.  A virus, even *if* you had one, is not the end of the world, and it's certainly not worth getting stressed over.  Take a deep breath, chill out, and if you're still feeling anxious, burn your important documents to CD and store that in a safe place.
But seriously... if all those packages tell you you're safe, trust them.  That's what they're for.  That's what they do.  If they're all in agreement, then you're fine.

--sofaspud
--"Listening to your kid is the audio equivalent of a Salvador Dali painting, Spud." --OpMegs

[The Wanderer]

Yep.

If you want to be paranoid, there are various other free tools you can also run (Spybot , AVG Free, and ClamAV - especially the live-CD version - being the ones which come to my mind), and more coverage never hurts. But if you've tried that broad a swath already, you're very likely safe. I work in IT, mostly desktop support, and I would not consider wiping a computer which was reported clean by that many different tools unless it was still displaying symptoms.

[Star Ranger4]

concurage with the last two posts.
Hear that thunder rolling till it seems to split the sky?
That's every ship in Grayson's Navy taking up the cry-
NO QUARTER!!!
-- "No Quarter", by Echo's Children

[Jinx999]

I'll have to throw in my two cents as well (if someone from a country that uses them will lend me some). I'll have to agree with the crowd. The last time I paniced over a virus report, I decided to delete the hidden recycle bin sub-folder that the virus scanner had reported the virus being in. After that, I did need to reinstall windows - my panic had done more damage than the virus did.

[Wiregeek]

grab another chunk of disc, slurp a copy over and lock it in a box, then have a beer.
"No can brain today. Want cheezeburger."
From NGE: Nobody Dies, by Gregg Landsman
http://www.fanfiction.net/s/5579457/1/NGE_Nobody_Dies