This morning I did a scan on one partition of my hard drive. Avast found several things and I quarenteed them. This afternoon I tried to scan the other partition of my hard drive. Avast started scanning, then appeared to stall out or freeze. Any ideas on what I can do to fix this problem?
What is your firewall (strange as this might seem) ?
What was found ?
e.g. what is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ?
Check the avast! Log Viewer (right click the avast ‘a’ icon), Warning section, this contains information on all avast detections. C:\Program Files\Alwil Software\Avast4\ashLogV.exe
- Or check the source file using notepad C:\Program Files\Alwil Software\Avast4\DATA\log\Warning.log and copy and paste the entry.
I am using XP’s firewall.
Here is what was found this morning.
11/30/2009 4:45:09 PM 1259617509 Charlie H Zuck 3368 Sign of “JS:Downloader-EX [Trj]” has been found in “D:\Removed Items\Local Settings\Temporary Internet Files\Content.IE5\UB76YU0D\hacker[1].htm” file.
12/1/2009 7:47:56 AM 1259671676 Charlie H Zuck 2900 Sign of “Win32:Induc” has been found in “D:\System Volume Information_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP137\A0036709.exe” file.
12/1/2009 7:50:54 AM 1259671854 Charlie H Zuck 2900 Sign of “Win32:Malware-gen” has been found in “D:\System Volume Information_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP158\A0047816.exe” file.
12/1/2009 10:12:50 AM 1259680370 Charlie H Zuck 2900 Sign of “Win32:Trojan-gen” has been found in “D:\WINDOWS\gfokiy.tmp” file.
OK, XP’s firewall shouldn’t be an issue (zone alarm can on occasion freeze scans), but what it does tell me is that your firewall protection isn’t 100%
Whilst the windows XP firewall is usually good at keeping your ports stealthed (hidden) it provides no outbound protection and you should consider a third party firewall.
Any malware that manages to get past your defences will have free reign to connect to the internet to either download more of the same, pass your personal data (sensitive or otherwise, user names, passwords, keylogger retrieved data, etc.) or open a backdoor to your computer, so outbound protection is essential.
Please ‘modify’ your post change the URL from http to hXXp or www to wXw, to break the link and avoid accidental exposure to suspect sites, thanks.
e.g. this one: “hXXp://www.java-free.org/java/index.php?source=CCN-CD242-YAH9033-US-java-3-promo&ovid=KRISTYUS”
I think there might be something else on your system as the 00000005 scanning error (Access is denied.) could be an indication of protected malware, given the locations D:\d8af67799a0c07882c\mrtstub.exe, what is the D:\ partition ?
If you haven't already got this software (freeware), download, install, update and run it and report the findings (it should product a log file).
- 1. MalwareBytes Anti-Malware, On-Demand only in free version http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe, right click on the link and select Save As or Save File (As depending on your browser), save it to a location where you can find it easily later. - 2. [url=http://www.superantispyware.com][b]SUPERantispyware[/b][/url] On-Demand only in free version.
Don't worry about reported tracking cookies they are a minor issue and not one of security, allow SAS to deal with them though. - See http://en.wikipedia.org/wiki/HTTP_cookie.
Thanks for your help!
I think I already deleted what you wanted me to modify.
Could you recommend a good third party firewall?
I tried to run Malwarebytes and it locked up on a temp folder in documents and settings under my name. I deleted that folder and it locked up when scanning the recycler. I then emptied the recylcer and then Malwarebytes would run and found nothing. I can only get Malwarebytes to scan C drive. I tried to run Avast and it still locked up when scanning C drive. I am now scanning D drive and so far it has not locked up. There must be something on C that Malwarebytes does not pick up.
My hard drive is partitioned. I recently had a hard drive failure and the fellow who retrieved my data, put in a much larger hard drive and partitioned it. D drive has all my old data and some software. I am in the process of reconstructing C drive as my main drive.
This post is from another computer, not the one with the current problem.
The two inabilities to scan are sometimes indicators of malware blocking I believe.
You could also try running MBAM from safe mode.
Have you tried the second program I suggested SAS ?
The scan I did using Avast on D & F(external hard drive) went without incident. I then tried to scan C again. It stalled out at one point for some time. I went about doing things on the computer and late noticed the scan restarted and completed without further incident.
I have not tried SAS, but intend to do so. I will let you know how that goes.
I downloaded, updated, and ran SAS. It found a couple of things on D drive and nothing on C drive. I have since ran Avast on C drive without any problems. Thanks for the info on SAS.
You’re welcome, thanks for the update.