This content has been marked as final. Show 8 replies
Firstly the info on the found virus is shown here
Check and see if the changes mentioned were made .
You should hear from Avert soon re if the other 1 is infected
See if someone more experienced in virus removal can help further.
BTW your choice of a name might be vetoed it could be confusing to other users. Will pass this up the line sorry.
extract the file and then run the .exe file.
Click on reports tab ensure that all options are checked and then you allow it to doa full scan
once done copy th econtents of the log that gets created and paste it to
www.pastebay.com and refer a link here.
Note: if the scan does not complete in normal try that in safe mode
Thanks for your help vinod_r2! I have downloaded it and run the scans today. The first download using Internet Explorer was not successful, it shows that the page corresponding to this link can not be directed. Firefox allowed me to download it.
Please note that, in the "Settings" manual, I ticked the check boxes of some options which are not selected by deflaut. The details of these settings are pasted below & the options which I checked before running the scans are labeled with a green word "checked" here.
Disk Access Level-High
Only show suspicious objects in report-checked
Enable advanced options-checked
Handle built-in Windows objects-checked
Verify digital signatures (experimental)-checked
Check for file size differences-checked
Exclude common file types-checked
Use lowest level for MBR check.-checked
Check for locked processes-checked
Ssdt & Shadow Ssdt:
Check for hooked SYSENTER/INT 2E (SSDT page)-checked
Only display hooked functions.-unchecked
Exclude .NET modules-checked
Exclude Microsoft signed modules-checked
Before the first scan, I clicked the "Report" tab as you said in your message above, but the dialogue with options of what to scan for didn't pop up. It only pops up a dialogue of what drives of my PC to scan, in my case, which are only C and D drives.
I therefore run the scans separately by clicking the different tabs each by each, and until I came to "Report" again, the dialogue with options of what to scan pops up this time. Then I checked all boxes in that dialogue and run a full scan there.
Here are links to the scan logs:
Please let me know if you think I should uncheck/check some of the options in the current "Settings", I'll change it & run the scan again.
Hi, sorry to butt in. I have altered your User Name to Averter as the one you had before is the trade name of our Threat Center.
I believe the Forum Administrator emailed you about it. If the one I chose isn't suitable say so and I'll alter it again.
The username is ok, but do you have any ideas what's going on inside my PC from the scan logs I posted out earlier?
As vinod_r2 asked better get him to return. will chase him up
Flash drive infections usually involve malware that loads an autorun.inf file into the root folder of all drives (internal, external, removable). When the removable media is inserted, autorun looks for autorun.inf and automatically executes another malicious file to run on your computer. When a flash drive becomes infected, the Trojan will infect a system when the removable media is inserted if autorun has not been disabled.
Please insert your flash drive before we begin!
Download Flash_Disinfector by sUBs and save it to your desktop.
* Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear.
* The utility may ask you to insert your flash drive and/or other removable drives. Please do so and allow the utility to clean up those drives as well.
* Wait until it has finished scanning and then exit the program.
* Reboot your computer when done.
Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every USB drive that is plugged in when you ran it. Don't delete this folder...it will help protect your drives from future infection.