Home > Trojan Horse > Trojan Horse That AVG Can't Get Rid Of

Trojan Horse That AVG Can't Get Rid Of

Back to top #6 wevsspot wevsspot I'm trying to be helpful.... Please post the "C:\ComboFix.txt" **Note 1: Do not mouseclick combofix's window while it's running. The only other advise I could give would be to use other software to remove it. The last report I read said that MSE was somewhere in the neighborhood of 91% accurate / effective. weblink

Many AVG update problems have been attributed to a corrupted Winsock/TCP-IP stack. NOTE: Recent updates to some versions of Windows won't allow this util to backup the registry so ignore any errors you may get and perform the registry backup manually if needed. Run Combofix from Safe Mode (How to...) 2. It has done this 3 time(s). 12/11/2011 11:30:53 AM, Error: Service Control Manager [7031] - The McAfee VirusScan Announcer service terminated unexpectedly.

Completion time: 2011-12-11 14:25:02 ComboFix-quarantined-files.txt 2011-12-11 19:24 . You can not post a blank message. Dec 11, 2011 #2 marcd603 TS Rookie Topic Starter Posts: 18 Malwarebytes Anti-Malware log Thank you so much for your help. As suggested by our technician "Avinash Seshaiah", did you try to fix the issue by deleting your temporary files?

Immediately AVG recognized it as a virus but the forum members on a site advised me that it was a false positive. I contracted the trojan when I downloaded "John the Ripper" password cracker. Thanks for voting! Other useful tools; TDSSKiller from Kaspersky and NPE from Norton.

See if you can download a clean copy of VipreRescue. What do I do? It is important that it is saved directly to your desktop** Please, never rename Combofix unless instructed. If nothing is detected, reboot your computer and run the scan again after booting normally.

All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.  Apple Support Communities More ways to shop: Visit an Apple These kinds of threats, called Trojan horse, must be sent to you by someone or carried by another program. IF REQUESTED, ZIP IT UP & ATTACH IT . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2011-12-11 14:21 Windows 6.0.6002 Service Pack 2 NTFS .

aswMBR will create MBR.dat file on your desktop. If an incident renders your system problematic or unbootable, you can use System Restore to return it to a previous working state. If the tool does not run from any of the links provided, please let me know. You can try using System Restore to see if that helps or not and since you can always undo that action...

really I am Moderator 16179 posts Gender:Not Telling Location:Between Here and There Posted 13 February 2014 - 08:25 AM Two recommendations for you if AVG won't kill it in safe mode; http://songstersoftware.com/trojan-horse/trojan-horse-generic-11-av-trojan-horse-dropper-generic-aamd.html Close any open browsers. The individual view shows the most prevalent threat types individually. uStart Page = hxxp://www.google.com/ uWindow Title = Microsoft Internet Explorer provided by Cox Communications uInternet Settings,ProxyOverride = *.local uURLSearchHooks: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\ie\4.7\pdfforgeToolbarIE.dll uWinlogon: Shell=c:\users\marc\appdata\local\165ab364\X BHO: Adobe PDF

The computer with the IP address did not allow the name to be claimed by this computer. 12/8/2011 8:09:12 AM, Error: netbt [4321] - The name "MARC-PC :0" could not I realize how valuable your time is. are prime vectors for very bad infections. check over here Dec 11, 2011 #7 marcd603 TS Rookie Topic Starter Posts: 18 Deleted McAfee and ASWMBR and Combofix Thanks for your help.

I'm about ready to move to BitDefender. Any thoughts there? Co-authors: 34 Updated: Views:471,300 Quick Tips Related ArticlesHow to Remove a VirusHow to Avoid Scareware (Anti Virus Software)How to Remove Adware ManuallyHow to Get Rid of Adchoices Home About wikiHow Jobs

So you would think it's probably a false-positive, but it actually IS a type of malware, so AVG was actually one of the VERY few who got it right.

  1. Flag as duplicate Thanks!
  2. The names of the Viruses as labeled by AVG are as follows -- "C:\Windows\explorer.exe (2804):\memory_00890000:\shell.exe";"Trojan horse Downloader.Generic12.AGZJ";"Infected" "C:\Windows\explorer.exe (2804)";"Trojan horse Downloader.Generic12.AGZJ";"Infected" "C:\Windows\explorer.exe (2804):\memory_00890000";"Trojan horse Downloader.Generic12.AGZJ";"Object is inaccessible." Attached Files: hijackthis_v1.txt
  3. Turn on the cable/dsl modem. 6.
  4. Ask a question and give support.
  5. DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
  6. Took the actions suggested by rdsok.
  7. After reboot, (in case it asks to reboot), please post the following reports/logs into your next reply: Combofix.txt Dec 11, 2011 #9 marcd603 TS Rookie Topic Starter Posts: 18 ComboFix.txt
  8. Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers.
  9. Once the computer is totally clean, I'll certainly let you know.

It's free, and does a fair job of eliminating spyware. Rate webpages on safety or reputation. Let us help you PC Threats Mobile detections Check File for Viruses Is a file safe? This is why I wonder about the AVG installation as mentioned in my question - are they trying to force a user to use paid AVG is worthy of consideration.The key

As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged I wouldn't be satisfied until I verified via other virus/trojan/malware utilities. Uninstalled Ashampo firewall and up dates now work. this content AVG Reporting Trojan, can't remove it Started by johngeetar , Aug 14 2010 03:11 PM Please log in to reply 1 reply to this topic #1 johngeetar johngeetar Members 1 posts

It has done this 1 time(s). You don't even need to download anything to get infected, just visiting the site can cause an infection. This is a copy of your MBR. Sign Up Have an account?

Powered by Mediawiki. Javascript Disabled Detected You currently have javascript disabled. Privacy Policy Rules · Help Advertise | About Us | User Agreement | Privacy Policy | Sitemap | Chat | RSS Feeds | Contact Us Tech Support Forums | Virus Removal Even if your computer appears to act better, it may still be infected.

Please try to clear your temp folder, restart your PC and check if the issue is resolved. DDS (Ver_2011-08-26.01) . It has done this 2 time(s). Therefore believe there must be some conflict between AVG8 and Ashampoo Firewall.

The following corrective action will be taken in 60000 milliseconds: Restart the service. 12/11/2011 11:29:03 AM, Error: Service Control Manager [7031] - The McAfee Personal Firewall service terminated unexpectedly. Yes No Not Helpful 2 Helpful 7 How can I tell how many viruses are on my Mac computer? Back to top Page 1 of 2 1 2 Next Back to Software Reply to quoted postsClear OverclockersClub Forums → Operating Systems & Software Support → Software Privacy Policy Forum ASUS M5A97 R2.0 Motherboard AMD FX 8350 (4.0GHz 16MB Cache 8-Core) XFX R7970 Black Edition Video Card Mushkin Enhanched 16GB RAM PC Power and Cooling 610w PSU Back to top #4

Advanced users For advise on more specific situations, please visit our Virus Removal FAQ section and learn how best to deal with your infection. Turn off the cable/dsl modem. 4. Further, using password crackers, keygens, etc. I click to remove it, AVG says it has been removed successfully, and then exactly 5 minutes later AVG finds one again.This is the said Trojan: http://www.avgthreatlabs.com/gb-en/virus-and-malware-in...When I run a system scan