THERE ARE FIVE FILES INFECTED WITH WIN32:Trojan-gen {Other}.
THERE ARE TWO FILES INFECTED WITH WIN32:AGENT-AAWF [trJ].
THERE IS ONE INFECTED WITH WIN32:ADWARE-GEN [ADW].
LOCATIONS FOR FOUR OF THSES ARE C:\ AND D:\ SYSTEM VOLUME INFORMATION\RESTORE_{ETC…}MORE NUMBERS, - - - - -A0266719.dll
AO266799.DLL
A0266824.exe
A0266825.exe
D:\WINDOWS\TEMP\ZUM2BC.TMP - - - - -UPGRADE.EXE
C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCALSTEETINGS
TEMPORARY INTERNET FILES\CONTENT.IE5\LETTERS AND NUMBERS. - - - - - - - -UPGRADE[1].CAB
C:\PROGRAM FILES\WYYO ----- WYYO.DLL
C:\Program Files\Wyyo ------WYYO.DLL - - - - I DO NOT HAVE TWO PROGRAM FILES FOLDERS IN C:\ SO I DUNNO WHAT THIS MEANS WITH THE TWO FOLDERS.
ON SOME OF THE FILES IVE SCANNED WHEN I TRY TO MOVE THEM OR SOMETHIMG IT SAYS IT CANT FIND THE NAME OR SOMETHING LIKE THAT.
WHEN I AM AT MY DESKTOP AFTER REBOOTING MY DOCUMENTS FOLDER POPS UP FOR SOME REASON. - I FOUND NOTHING INFECTED IN THIS FOLDER.
A FEW DAYS AGO IT FOUND A VIRUS IN TWO DIFFERNT PROGRAMS I HAD INSTALLED NOT BUT A WEEK AGO A PROGRAM CALLED DIGSBY AND SOMETHING CALLED WYYO WHICH HAS SOMETHING TO DO WITH THE DIGSBY {BUNDLED DOWNLOAD
] IT CAME WITH MULTIBLE PROGRAMS ANYWAY I UNINSTALLED THESE.
BUT IM NOT SURE IF I CAN DELETE CERTIAN FILES FROM MY P.C. LIKE THE .DLL’S AND THE .CAB OR EVEN THE .EXE’S I DONT WANT MY P.C. TO STOP WORKING. MABE IF I DELETE ONE OF THE SORCE FILES THE WYYO FILES IT WILL ALL GO AWAY.
IM NOT SURE WHAT TO DO I NEED HELP WITH THIS.
THANX .M.
Well, Id be curious as to where you got the bundled Digsby download from. The process “wyyo” (in several file versions) is reported as very malicious, and basically appears to be spyware.
Recommendations: Perform a disk cleanup, or if you have Ccleaner or ATF cleaner installed, use it. Clean all temporary files and temporary internet files.
Have Avast quarantine all malware items found. Then I’d be looking at scheduling a boot scan, reboot, and let it run.
If anything else is found, post the results, then scan again, normally.
If all comes up clean, turn off system restore on all drives (this relates to those files found in “system volume information”, which is now, basically useless in terms of the affected restore points), reboot and turn it back on again.
Scan again. Anything found?
Get a second opinion. MalwareBytes AntiMalware is an extremely capable antispyware demand scanner. Get it here: http://www.malwarebytes.org/mbam.php
Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
Use SUPERantispyware, MBAM or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete them.
here what i’ve done i deleted the wyyo files then did a couple scans no viruses found.
i deleted my tepm and temporary internet fils. i did not do anything to my restore points at all should i??
when i startup my computer the first thing that pops up at my desktop is my documents folder what could be causing this to happen??
I got digsby from dap. the digsby icon still appeares on my startup menu and i cant seem to remove i can remove other icons from there just not that one does this mean i still have viruses? i like avast i think i can trust it plus i am careful about downloading unknown stuff i try to download things that are trust worthy who know mabe the virus came through my wireless connection its been acting funny for a while now. do i still have a virus? is there anything more that i need to do? i still feel something is wrong with my pc.
the viruses are gone i believe. but my documents folder keep poping up at startup and i don’t know why.
Also my computer keeps restarting by itself sometimes for no reason.
I dont think i should turn off the restore because if i do still have a virus in the background i’ll have to use my restore there is a piont on my p.c. that is before the viruses stage So i might need it.
im leary about downloading the things that are listed on this page like the maleware remover cuz ive tryed that BEFORE and it had a virus so how do i know i cant trust all of those maleware removers and what-not?
my virus scan is clean for right now but im still leary.
im still leary about downloads i thought my virus program would take care of it all including the maleware does it?
m
Marlana, links to tools recommended by members of the forum will be safe.
Nobody here would actually stand for it if somebody started posting recommendations for dubious or rogues software; the posts are read fairly frequently (look at the “number of views” for each thread) and anything dodgy would be responded to in minutes, or maybe seconds.
There is no way that MBAM has a virus. Whatever you tried that you think did, was not MBAM. Maybe it had a similar name. Rogue antispyware programs often have names chosen to be similar to reputable apps, in the hope of tricking a few more users into downloading their rubbish. (Works, too.)
Same applies to Superantispyware, and the other programs listed above.
Try the procedure Tech advocates.
Turning off (then on) System restore is usually the last step in a malware removal procedure, to remove infected restore points. It’s done after the computer is fixed and running well. The malware in the system restore points can only activate if system restore is used, so there is no rush to delete those infected points. Just make sure that after you are happy everything is running well, that it is done.
Re your last sentence, it’s well known that no one program can get all the malware every time. And some types of malware need advanced and sometimes tailored tools to remove. Your comment is typical of the expectations of millions of users who have installed an AV (any AV) and then been infected with something it couldn’t remove. Reality hits: it doesn’t always do what it says on the box. IMO Avast is a lot better in this regard than some of the others.
Yes, you are in good hands here, we have some qualified anti malware experts on these forums (geek2go, and trained elsewhere or in training), these folks had a thorough online bootcamp to learn the programs and tools of the trade, before they were set loose on the removal of malware for victims of malware (virus, exploits, adware, spyware etc) that come here.
The people active in the virus and worms normally know what to do, because they have quite some experience and it is an ongoing training and learning. If I was confronted with a removable malware infection, this sure was one of the places to turn to. And yes if anyone makes a mistake or overlooks something in the safe malware removal procedures, he or she is immediately corrected (sometimes behind the scenes in the form of a PM), so do not panic. It is good to not trust anyone online, but this place does not hurt one bit or byte, I can assure you,
