W32:AbusableSystemUtility

[metgold]

I have been badly hit during the last several days by a virus, which Avast labels "W32:AbusableSystemUtility."  It keeps infecting a file in Windows called SVHOST32.EXE.   Does anyone know anything about this virus?

[igor]

This is a (ordinary) system utility that has been packed by UPX - and in this form, it is used by several trojan horses. So, the presence of this file means that you probably have another malware on your system that avast doesn't detect (at least I understand from your post that avast! doesn't report anything else, only this AbusableSystemUtility).
I would recommend to check your running processes and startup items and try to spot anything suspicious. If you find the real dropper (and if avast! really doesn't detect it), we would appreciate if you could send it to us (virus(at)avast.com) - so that we can add its detection.

[metgold]

Thanks ofr the info.  However, why would Avast know there was a virus infecting the computer without knowing which virus?

[raman]

Avast does not know it, but Igor do!;) The W32:AbusableSystemUtility is a utility that several other Malware uses( say need to spread/run), but if avast only find "your" Malware, there has to be an other one. You could make an Onlinescan Mcafee, RAV are good ones or post an Hijackthislog, too.

[igor]

Yes, as Raman said - a number of malwares are "carying" this utility with them; when they are activated, they extract this tool to your disk and use it. However, the main file (that dropped this tool) must be somewhere else.
Do you startup items contain anything unusual?

[Lisandro]

Besides what raman and igor said, why don't you try some security links to scan and fix your system here.
See, specially, the section Ad-aware and Trojans Tools and System Security.
Good luck