problems with win32/autorun.agent.nj

[Mettzal]

hello and thanks

im runnin´with avast pro actualized
my pc is infected with win32/autorun.agent.nj. this infection appears after work with mi pendrive.
avast don´t recognize the infection localizated in pendrive/system/files/army.exe

i did an online scan to the files quarintined by ***Combofix.exe*** with virustotal.com, results of scan: 65% of antivirus motors identified the virus. ¿why avast dont?, if this virus is very older (2005)

what can i do?

to fix the problem i used the *****Combofix.exe**** this tool delete 5 files from my system, but, i dont know if the infection continue in my pc.

[Lisandro]

Let your USB drive plugged and run Autorun Eater or Flash Disinfector, allowing them to clean up all drives. They would create hidden folders named autorun.inf in each partition and every USB drive plugged in when you ran it. These folders protect your drives from future infection. After that, reboot your computer.

I suggest:

1. Clean your temporary files.
2. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
3. Use MBAM (or SUPERantispyware or even Spyware Terminator) to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete them.
4. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
5. Make a HijackThis log to post here or this analysis site. Or even submit the RunScanner log to to on-line analysis.
6. Disable System Restore and then reenable it again.
7. Immunize your system with SpywareBlaster.
8. Check if you have insecure applications with Secunia Software Inspector.

Hope they improve detection soon :'(

[Mettzal]

ok thanks for answering

here is the antimalmare log and the HJT log.

***********************
first antimalware, quick scan
***********************

Malwarebytes' Anti-Malware 1.36
Database version: 2118
Windows 5.1.2600 Service Pack 3

12/05/2009 11:16:17 p.m.
mbam-log-2009-05-12 (23-16-17).txt

Scan type: Quick Scan
Objects scanned: 88430
Time elapsed: 11 minute(s), 0 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ForceClassicControlPanel (Hijack.ControlPanelStyle) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\system32\DirectXRuntimes32Bit-200811.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\Fonts\FUENTES (1300).exe (Worm.Archive) -> Quarantined and deleted successfully.


*************************
The Second, full scan
***********************
All is clear