Can you tell me exactly where and what AVG is finding - file name(s) and file path(s) are very helpful.One thing I noticed is every now and then the AVG antivirus pops up saying it found a trojan.zlob or something like that.
Serious problem with computer!
#16
Posted 20 May 2008 - 12:43 PM
Register to Remove
#17
Posted 20 May 2008 - 11:03 PM
Edited by tabasco, 21 May 2008 - 01:31 AM.
#18
Posted 21 May 2008 - 01:42 PM
Cheack out the file path - this is one of the files that Combofix has removed from your system and has stored it in Quarantine for examination, should that be necessary.It did find this: Trojan horse Vundo.j C:\QooBox\Quarantine\catchme2008-05-16_152206.20.zip
System Volume Information is where Windows stores it's Restore Points. This detection is a potential risk in that if you restore the PC to this time, you also restore the infected file. That's not something to be overly concerned with as you aren't likely to do that anyway, and the last of the ionstructions that i'll post will flush these Restore Points and all will be well.This just popped up from AVG as well:
Trojan horse agent.VHF
C:\System Volume Information\_restore{47E7117B-18F3-4A10-B47C-105BED1BFF9B}\RP12\A0002484.dll
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
You need to deal with the multiple anti-virus issue sooner rather than later, and also ensure that you have afirewall up and running too.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Ad-Aware SE Personal is out of date and can be uninstalled. The latest version is available here.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
You are running an old version of Sun Java which needs updating:
- Go here and click on the Download button to the right of Java Runtime Environment (JRE) 6u6.
- Accept the license agreement by clicking the appropriate radio button and then continue.
- Under Windows Platform - Java SE Runtime Environment 6 Update 6, click the Windows Offline Installation, Multi-language link.
- Go to Add/Remove Programs and remove any entries that refer to Java 2 Runtime Environment and then reboot your PC.
- Navigate to and delete the following folder, if it exists: C:\Program Files\Java.
- Finally double click the installation file that you downloaded earlier.
I want you to run your PC as normal for a few days and when you are happy that everything is fine, do the following:
Go to Start > Run, enter the following into the textbox and click OK: combofix /u
This will uninstall Combofix and do a little housework besides.
Create a new Restore Point - this will give a clean one should you need it in the future.
A tutorial for System Restore is available here.
The reason for waiting is that if removing the malware has caused a problem, which it occasionally does, you can put your PC back to how it was before the fix. This will re-install the malware, but an infected PC is better than an expensive paperweight!
Some bedtime reading: This is a very good tutorial about keeping your computer safe and secure on the internet.
#19
Posted 21 May 2008 - 04:09 PM
#20
Posted 21 May 2008 - 04:37 PM
#21
Posted 21 May 2008 - 11:33 PM
Try it in Safe Mode - that usually gets the job done.
Yep, that did the trick. Ok well now I guess I'll follow your instructions and wait a couple of days and hopefully everything will be fine. Thanks again for all your help. What you guys are doing here is selfless and admirable and you have my respect.
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users