Avast WEBforum
Other => Viruses and worms => Topic started by: GhosTT on February 28, 2006, 11:17:44 AM
-
Keep in mind low skill level ;)
Anyways,
I think AVAST stopped it from doing any damage,but...
Here is my problem.
When I scan with AVAST it doesn't show up anymore,but....
When I scan with ADWARESE ,I end up with AVAST popping up a window warning me of it.
Reccomends to add to the "CHEST", and I do,but still shows up in adwareSE scans.
Again remember "Keep in mind low skill level"
So, my low skilled ass is thinking this virus is not doing nothing(tell me if I'm wrong),so want to know how to stop it from showing in scans???
-
Reccomends to add to the "CHEST", and I do,but still shows up in adwareSE scans.
Maybe temporary files are being detected...
Are you using Windows XP?
Can you schedule a boot-time scanning?
Start avast! > Right click the skin > Schedule a boot-time scanning
Select for scanning archives.
Boot. ;)
-
Hello GhosTT,
Go to these links: http://www.aumha.org/a/health.htm to know how to take out the Trash on your comp. And run the script on http://www.aumha.org/a/noads.php.
If you want to do the temp files manually: delete all files "*.tmp" & search for all files "temp". Delete only the contents of them, do NOT delete the folder. But running CCleaner will surely help.
Read here: http://ww3.telus.net/dandemar/slowcom.htm where you have to forget about the online scanners suggested, use BitDefender in stead and Stinger.exe together with Spyaudit. The rest of the info there could be helpful in your situation.
After you have cleaned your comp, use it with one good resident AV solution, one software firewall only, Ad-aware, Spybot S&D, Spyware Blaster, Bazooka. Patch and update your software and surf safe.
polonus
-
Well firstly, when I run any other security scan, I pause avast's standard shield.
That way avast won't detect any unpacked virus or malware signatures. Not to mention for every file the other security program opens to scan avast will also scan it, so you almost double the scanned filed and scan duration.
-
DavidR,
" Well firstly, when I run any other security scan, I pause avast's standard shield."
How do I pause it?
And to everybody,
thanks for the replies:)
-
" Well firstly, when I run any other security scan, I pause avast's standard shield."
Risth click the 'a' blue icon and choose the last option (Stop On-Access Protection).
Or, left click the 'a' blue icon, choose the Standard Shield at left and the pause buttom at right ;)
-
Thank you Tech :D
-
I'm curious if your advice actually worked for ghosTT. My BF got it on his pc...same symptoms as ghosTT except Avast did NOT remove it. It keeps regenerating like one version of CWS did (that I had...had to wipe the hard drive for that SOB) as soon as you try to move it to chest (recommended action). Avast finds it in temp files blackbox.class...then verifier.class...then dummy.class...then beyond.class. As Avast tries to deal with it, it regenerates the files. Right now I'm trying to get rid of it in safe mode after disabling system restore. Deleted all temp files (incl offline content), cookies and history thru IE tools>internet options and made sure the trash was empty. Adaware didn't find it after that. Running Avast right now. Made the mistake of trying system restore before safe boot. Hope that didn't screw up the whole thing. Can't find any trace of it in the registry but I'm no expert there (just REALLY careful...yikes). Still considering trying to do a boot scan when I restart in normal mode? Ya think I oughtta?
-
Hi chilipeper,
Try deleting the Java cache. You can do this from the Java console via Control Panel or use CCleaner- make sure you have the Java cache option ticked and run a clean up.
Check that you have the latest version of Sun Java, Version 5 Update 6.
http://www.java.com/en/download/index.jsp
Also ensure that any older versions of Sun Java have been removed from Add/Remove programs.
-
Hi FwF,
Yes, and these things are exactly why I have my NoScript visor up inside FF or Flock. Once befallen to the byteverify scam, you'd never like to run the risk again, once bitten twice shy. Java super for me, but only at my saying, and when I checked the site.
That is why I am a strong adherent on in-browser security:
Adblock Plus updater, NoScript, DrWeb hyperlink plug-in, siteadvisor, avast webshield inside, are some of the in browser small add-ons I cannot surf without.
polonus
-
Welp...safe mode did the trick. Avast got it then. Funny thing...after it found and had deleted the infected files it then displayed, for the rest of that scan, "Scanner status: infected". The next scan after that it showed "running" as normal and everything was clean. Froze up the first time I tried to run it with puter in normal mode to double-check everything. Thought the Avast techies might find the info useful. Anyhooo...Now it runs fine and the SO's puter is clean again. yay. I've recommended he do a free online scan from another AV prog just to be sure (as you say, no AV gets EVERYthing EVERY time) Thanx for the tip on CCleaner but I don't want the Yahoo toolbar. Too bad they had to tie the two together. ::)
-
***
There is a post in here somewhere that shows how to use CCleaner without the crappy Yahoo toolbar. I think it was posted by Bob3160. Do a search for it.
***
-
Funny thing...after it found and had deleted the infected files it then displayed, for the rest of that scan, "Scanner status: infected".
It just signifies that at the time you ran that scan the system was infected, as you found it only relates to the duration of that scan.
Two temp file cleaners, etc. ClearProg - Temp File Cleaner (http://www.clearprog.de/) or CCleaner - Temp File Cleaner, etc. (http://www.filehippo.com/download_ccleaner/), if you chose to instal CCleaner, when you install it there is an option not to install the Yahoo Toolbar, see image.
-
my script host is failed to load, it was a VBS malware affected and i already deleted the files affected, is there a remedy to restore the file? and where? i need help