avast cant detect this virus,
did anyone know how 2 remove these threat
Note:
-This worm is located in C:%WINDIR%\ copies itself to all removeable and shared drives as \Bha.dll.vbs and creates the file \autorun.inf. The file \autorun.inf can be safely removed
-nternet Explorer title bar shown this “Hacked by Pokemon”
About the leak detection, how do you know it is an infection or not? To know if a file is a false positive, please submit it to JOTTI or VirusTotal and let us know the result. If it is indeed a false positive, send it in a password protected zip to virus@avast.com. Thanks.
You could add the file to the User Files (File, Add) section of the avast chest where it can do no harm and send it from there (select the file, right click, email to Alwil Software). No need to zip and PW protect when the sample is sent from chest.
Or send the sample to virus@avast.com zipped and password protected with password in email body and false positive/undetected malware in the subject.
You could also check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner I feel virustotal is the better option as it uses the windows version of avast (more packers supported) and there are currently 30 different scanners. Post the results here.
Or Jotti - Multi engine on-line virus scanner if any other scanners here detect them it is less likely to be a false positive. Whichever scanner you use, you can’t do this with the file in the chest, you will need to move it out.
This will possibly be detected by other AV, these malware names can be googled to provide mor information.