ok heres it. my Avast crashed while scanning a pendrive. The log error is
Appname: ashquick.exe
appver:4.8.335.0 Modname:ntdll.dll
Mod ver:5.1.2600.5512
Offset:0000120e
C:\DOCUME~1\Admin\LOCALS~1\Temp\1eb2_appcompat.txt
this file was involved
oh me god!!! :o :o :o :o :o :o :o :o :o Avast crashed… Avast shell extension error encountered a bug… after which i had to reformat my pendrive…
this problem is quite synonymous with one earlier post
its a virus named Win 32 Sality
I think you made a smart move. However, you could try Flash Disinfector or Dr. Web CureIt. Second, I’m not happy to say that, but you may have to back up your personal (Non-PE) files, format, and reinstall Windows because Win32:Sality is widespread and can infect the whole hard drive, external hard drives, and flash USB drives.
Win32:Sality is a very dangerous virus. Take care.
But my Pc is quite normally functioning… Ive even scanned my Pc with avast anti rootkit… found one hidden driver file only nothing else
Can it somehow breakthrough Avast’s self protection module?
Somehow the AA variant of Win32:Sality can.
Like I said in my post, 3 things: Backup + format + reinstall.
Dr. Web CureIt is fairly effective against file infectors.
Ok I think you should frist change avast’s name to something else then scan in safe mode. If this doesnt work reformat using disk partioning or even better a restore disk.
Hi Pranau\y,
You should also harden your USB stick with Flash_Disinfector.
Get it here: http://www.techsupportforum.com/sectools/sUBs/Flash_Disinfector.exe
and download it unto your desktop.
* Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear.
* The utility may ask you to insert your flash drive and/or other removable drives
including your mobile phone. Please do so and allow the utility to clean up those drives as well.
* Wait until it has finished scanning and then exit the program.
* Reboot your computer when done.
Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every USB drive plugged in when you ran it. Don’t delete this folder…it will help protect your drives from future infection.