Hi,
I might have been fooled by a fake Adobe Shockwave player update site. I use Windows XP and normally run with a non-admin account but a couple of days ago I logged in as admin and got a message that I should update Shockwave player since it was an old version. I was stupid and did that without checking the site properly and the day after when I was searching for a file on the computer my antivirus program Antivir said that the file C:\Windows\system32\Macromed\Shockwave 10\download.exe was infected with a virus. I think Antivir called it Luder.A.42.
I uninstallled Shockwave player and installed it again and this time I went to the Adobe site manually to download it. Now I don't have a download.exe file in the Shockwave 10 directory anymore. Antivir has also detected the virus in System restore files so I am going to disable/enable System restore.
But I am still not sure if my computer really was/is infected with a virus. I ran Kaspersky online scanner on the file that Antivir said contained a virus but Kaspersky didn't find any virus in it. I deinstalled Antivir and installed AVG Free instead and AVG doesn't think the file contains a virus. Is it possible that Antivir is wrong and there is no virus? I have sent the possible "virus" to Antivir through their Send function but I haven't got any reply.
I have run HijackThis and as far as I can tell it looks fine. I have attached hijackthis.log. There is one entry in the log file that might look suspicious, KnurtLogoutHandler.dll, but this is no virus. It is part of an application I have written myself.
Should I be worried and reinstall my computer or am I safe?
Regards,
kollo23
I might have been fooled by a fake Adobe Shockwave player update site. I use Windows XP and normally run with a non-admin account but a couple of days ago I logged in as admin and got a message that I should update Shockwave player since it was an old version. I was stupid and did that without checking the site properly and the day after when I was searching for a file on the computer my antivirus program Antivir said that the file C:\Windows\system32\Macromed\Shockwave 10\download.exe was infected with a virus. I think Antivir called it Luder.A.42.
I uninstallled Shockwave player and installed it again and this time I went to the Adobe site manually to download it. Now I don't have a download.exe file in the Shockwave 10 directory anymore. Antivir has also detected the virus in System restore files so I am going to disable/enable System restore.
But I am still not sure if my computer really was/is infected with a virus. I ran Kaspersky online scanner on the file that Antivir said contained a virus but Kaspersky didn't find any virus in it. I deinstalled Antivir and installed AVG Free instead and AVG doesn't think the file contains a virus. Is it possible that Antivir is wrong and there is no virus? I have sent the possible "virus" to Antivir through their Send function but I haven't got any reply.
I have run HijackThis and as far as I can tell it looks fine. I have attached hijackthis.log. There is one entry in the log file that might look suspicious, KnurtLogoutHandler.dll, but this is no virus. It is part of an application I have written myself.
Should I be worried and reinstall my computer or am I safe?
Regards,
kollo23