Hey everyone...Well, apparently I got this virus from a friend that I momentarily lent my jump drive to, so that he could get some files off of me. My laptop, which received the infection, did not say anything. It wasn't until recently that I remembered to install ad-aware to all my computers that I found a worm, the W32.Imaut.AA. My msconfig was disabled and it wouldn't let me choose show hidden files in explorer. Well, the weird thing however, is that I have not used my jump drive in this computer for awhile, which would mean that the worm has been there for awhile, but I have not had the show hidden files function disabled on me until this pas Wednesday, when I ran ad-aware. The good thing was that Ad-aware was able to remove the virus and I ran it once again in safe-mode and it found some restore files that it seems to have deleted. Then I ran trendmicro and they found something that affects jumpdrives, and I deleted all those things as well. After the initial scan from as-aware, I could not click on my C: drive through my computer. It would tell me that it could not run the process in win32 or something, but I was able to browse to my c: drive through the drop down address box in explorer. I do not know if it was after the second scan in safe mode or if it was trendmicro that did this, but I am able to click on the C: icon again to get in. So I just want to make sure that everything is clean, and then I plan on doing a format just to be safe (I don't want to run the chance of a re-installing virus if you remember from my first post!). Ok, on to why I think it was in my jump drive...when I put that jump drive into my desktop, Norton found the funny ust scandal virus and was able to delete it immediately. I think it worked, because ad-aware was not able to find anything and trendmicro found a trojan_generic and it deleted it, but I do not know how long that has been there. I will be scanning that computer fully to just to make sure, so should I be putting that in this thread or a new one?
Panda antirootkit found nothing and neither did combofix.
finally, a few questions/concerns that I have:
-I have had combofix on my desktop for awhile and all of a sudden yesterday, norton said that it detected a trojan horse in combofix what could have happened?
- I don't remember this about smitfraud, but whenever I started it, it would say "input error, there is no script engine for file .vbs. System cannot find specified." but the program worked fine (to my knowledge)
- when I installed AVG, it detected NOT.A.VIRUS.Monitor.W32.AKL.25, and another file like that, it is in my AVG scan log. I did select quarantine items but for some reason it did not quarantine, and my log file says no action taken. So I really do not know what happened there.
- I forget which program notice this, but there was a Toshiba file that was affected. I forget which one, I apologize, but I believe it was through my first ad-aware scan
If you need anymore information please let me know! I apologize for the lengthy message, but there was so much that happened. Thanks in advance everyone, you guys are the best!
Panda antirootkit found nothing and neither did combofix.
finally, a few questions/concerns that I have:
-I have had combofix on my desktop for awhile and all of a sudden yesterday, norton said that it detected a trojan horse in combofix what could have happened?
- I don't remember this about smitfraud, but whenever I started it, it would say "input error, there is no script engine for file .vbs. System cannot find specified." but the program worked fine (to my knowledge)
- when I installed AVG, it detected NOT.A.VIRUS.Monitor.W32.AKL.25, and another file like that, it is in my AVG scan log. I did select quarantine items but for some reason it did not quarantine, and my log file says no action taken. So I really do not know what happened there.
- I forget which program notice this, but there was a Toshiba file that was affected. I forget which one, I apologize, but I believe it was through my first ad-aware scan
If you need anymore information please let me know! I apologize for the lengthy message, but there was so much that happened. Thanks in advance everyone, you guys are the best!