 |
 | Trojan Problem-Pls. advice |  |
|
sureshk3018
|
|
On scanning my computer, the following messages were generated by the ClamWin
C:\WINDOWS\SVCHOST.EXE: Trojan.Agent-1914 FOUND Unloading program C:\WINDOWS\SVCHOST.EXE from memory :\WINDOWS\MDM.EXE: Trojan.Agent-1915 FOUND C:\WINDOWS\SVCHOST.EXE: Trojan.Agent-1914 FOUND C:\WINDOWS\SVCHOST.EXE: Trojan.Agent-1914 FOUND What to do? Please advise  |
|||||||||||
|
|||||||||||||
 |
| |
|
GuitarBob
|
|
This is what I would do. First of all, I have my ClamWin General Preferences set to Report Only when it finds a virus. You can also select to Quarantine or Remove infected files, but I do not do that in case ClamWin has a "false positive" and erroneously identifies an important file as having a virus. In that case, you will lose the file if you Remove it, and you will lose access to that file if you Quarantine it. This could be a big problem if it is a Windows system file. So you must first determine if it is a false positive.
The ClamWin scan report will tell you the location of an infected file on your computer. "Paint" the location with your mouse and right click and select Copy. Then visit the Jotti malware online scanning service at https://virusscan.jotti.org/ and upload a copy of the file for a free scan. At Jotti, you can Paste the location in the box to the left of Browse box and then Submit the file--you could type it in if you remember the location on your comptuer, but I would rather paint, copy, and paste. Wait until Jotti scans your file with all of its scanners (about 30) (it might take a while) and tells you it is finished and gives you a report. If at least four or five of the scanners find a virus in your file, it probably is infected and is not a false positive. In that case, Delete the file from your computer and replace it if it is an important file. If it is a Windows system file, you should probably get some expert help before you delete it. ClamWin doesn't do any disinfecting/cleaning of viruses, but there are some places on the Web where you can get some help with disinfection if you want to try it. Be aware that disinfection is not successful in all cases. On-line Automated Scanning/Disinfection: A-Squared (Emsisoft) malware scan at https://www.emsisoft.com/en/software/ax/ ESET (NOD32) malware scan at https://www.eset.com/onlinescan/index.php Microsoft Live One Care Scan for malware at https://onecare.live.com/site/en-us/default.htm?s_cid=sah/?s_cid=sah Panda NanoScan for malware at https://www.nanoscan.com/ Trend Micro Housecall scan for malware at https://housecall.trendmicro.com/ Expert Help With Manual Disinfection: A-Squared (Emsisoft) (with initial self help) at https://forum.emsisoft.com/Default.aspx?g=topics&f=38 Bleeping Computer Dot Com (with initial self help) at https://www.bleepingcomputer.com/forums/topic34773.html Castle Cops (with initial self help) at https://wiki.castlecops.com/Malware_Removal_and_Prevention:_Introduction Malwareteks (same personnel at Emsisoft) (with initial self help) at https://www.malwareteks.com/forum.html Spyware Warrior has free help and a good list of rogue antispyware products at https://www.spywarewarrior.com/index.php Regards, |
|||||||||||
|
|||||||||||||
|
 | Trojan Problem-Pls. advice | |
|
||
|
|
|
Powered by phpBB © phpBB Group
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.