The latest generation of Rogue Anti-Virus changes your internet connection settings, specifically the proxy settings. On an infected PC all traffic is routed through a local proxy on your pc (which is malware based). Currently these settings are usually:
The 127.0.0.1 is your PC and the 5555 is an open port on your pc listening for instructions (and possibly capturing traffic). Why do the rogues do this? To intercept ALL internet activity initiated by you (no matter if you’re using IE, FireFox or Chrome).
Once you remove the rogue the proxy settings stay in place and that means you can’t get to the internet. Fixing this is really easy.
- Open Internet Explorer
- Click Tools
- Internet Options
- Click Lan Settings
- Uncheck the first proxy server setting
- Click OK twice.
You should be able to get on the internet with any browser now.