Avast WEBforum
Other => Viruses and worms => Topic started by: Tockken on March 19, 2009, 01:19:34 PM
-
Hi, have a difficult problem.. I found a trojan in my system files some time ago, unfortunately i have thrown away the note with its name and when i scan my computer again Avast cant find it. This trojan changes the time to six hours earlier and everytime i change back my internet goes down, i restart my computer and after some time the time changes back again.. I know this isnt very easy to get help with but still. Its called Win32.... something and its a trojan..
-
I suggest:
1. Clean your temporary files.
2. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! (http://www.freedrweb.com/cureit/) instead.
3. Use SUPERantispyware (http://www.superantispyware.com), MBAM (http://malwarebytes.org/mbam.php) or Spyware Terminator (http://www.spywareterminator.com/) to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete them. After that, into Windows, you can see the Chest to know the file names and paths and the virus names.
4. Test your machine with anti-rootkit applications (http://www.antirootkit.com/software/index.htm). I suggest avast! antirootkit (http://files.avast.com/files/beta/aswar.exe) or Trend Micro RootkitBuster (http://www.trendmicro.com/download/rbuster.asp).
5. Make a HijackThis (http://www.bleepingcomputer.com/files/hijackthis.php) log to post here or this analysis site (http://www.hijackthis.de/#anl). Or even submit the RunScanner (http://www.runscanner.net/) log to to on-line analysis.
6. Disable System Restore and then reenable it again.
7. Immunize your system with SpywareBlaster (http://www.javacoolsoftware.com/spywareblaster.html).
8. Check if you have insecure applications with Secunia Software Inspector (http://secunia.com/software_inspector/).
-
Hi, have a difficult problem.. I found a trojan in my system files some time ago, unfortunately i have thrown away the note with its name and when i scan my computer again Avast cant find it.
Check the avast! Log Viewer (right click the avast 'a' icon), Warning section, this contains information on all avast detections. C:\Program Files\Alwil Software\Avast4\ashLogV.exe
So what is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ?
-
Hi, have a difficult problem.. I found a trojan in my system files some time ago, unfortunately i have thrown away the note with its name and when i scan my computer again Avast cant find it.
Check the avast! Log Viewer (right click the avast 'a' icon), Warning section, this contains information on all avast detections. C:\Program Files\Alwil Software\Avast4\ashLogV.exe
So what is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ?
Thats one more thing, unfortunately i uninstalled avast home when i bought the pro edition, and when i tried to check the virus chest it wasnt there.. I will try Dr cure, and get back, thanks!
-
Yes the chest and its contents would also have been removed when you uninstalled the Home version.
You could simply have entered the Pro licence key into the Home version and if you were on-line it would have converted it to the pro version retaining the chest and any other settings you had made.