I have scheduled a boot scan with Avast and performed it, same result detects C:\windows\explorer.exe is infected with malware called win32:malware.gen and being explorer.exe I cannot move to chest or do anything.
I have done full scans with MBAB and SAS and they are clean. Any direction from this point would be much appreciated, thanks.
If i remeber correct someone else just had the same problem, and it was solved by running
Dr.WebCureit http://www.freedrweb.com/cureit/?lng=en
you are running WinXP SP2. SP3 was released in 2008 with A total of 1,174 fixes + all later
I ran this and it detected C:\windows\system32\cmdow.exe was tool.hidewindows
The results from Secunia were as follows:
Scan Now
The Secunia Online Software Inspector will inspect your operating system and software for insecure versions and missing security updates. A default inspection normally lasts 5-40 seconds, while a thorough inspection may take several minutes.
Detection Statistics:
8 Applications Detected in Total
1 Insecure Version Detected
7 Patched Versions Detected
Running For:
0 Minutes, 52 Seconds
Errors with the scan:
1 Error Detected
Scan Options:
Enable thorough system inspection
Display only insecure programs
Status / Currently Processing:
Detection completed with 1 error
Programs / Result Version Detected Status
Macromedia Flash Player 6.x Macromedia Flash Player 6.x 6.0.79.0 Macromedia Flash Player 6.x
This installation of Macromedia Flash Player 6.x is insecure and potentially exposes your system to security threats!
The detected version installed on your system is 6.0.79.0, however, the latest patched version released by the vendor, fixing one or more vulnerabilities, is 6.0.88.0.
Update Instructions:
Apply updates.
Flash Player 9.0.45.0 and earlier (update to version 9.0.47.0):
http://www.adobe.com/go/getflashFlash Player 9.0.45.0 and earlier - network distribution (update to version 9.0.47.0):
http://www.adobe.com/licensing/distributionFlash CS3 Professional (update to version 9.0.47.0):
http://www.adobe.com/support/flashplayer/downloads.htmlFlash Professional 8, Flash Basic (update to version 8.0.35.0):
http://www.adobe.com/support/flashplayer/downloads.htmlFlex 2.0 (update to version 9.0.47.0):
http://www.stage.adobe.com/support/flashplayer/downloads.html#fp9Flash Player version 7.0.70.0 for Linux and Solaris reportedly fixes vulnerability #2 for Opera and Konqueror browsers.
Installed on Your System in:
C:\WINDOWS\SYSTEM32\Macromed\Flash\flash.ocx
I suspect I picked up this naughty from torrent sites the other day.