Hi there (I’m tempted to say it’s me again :-[…)… I was wondering if any of you guys could kindly help out again…
I’ve had this new computer for about 3 weeks or so. I’ve installed most things I needed right-away (which was when I got in touch last time - but that’s been sorted), and a few missing programs well over a week ago. Everything has been running fine - until Friday, when the computer blue-screened.
(This might not be important: worked on comp. most of the day, installed a Firefox-update, but nil else. Downloaded a Windows-update, but did not install. Blue screened when shutting down and then after trying to turn it on again the next day. Would boot 'til “loading preferences” and then blue-screen. Ran hardware-test which was o.k., asked for help and heard the suggestion that this could either be a software prob or a virus. It was suggested to reinstall a previous backup).
So reinstalled previous backup (with some difficulty since Acronis not running the way it should), updated Avast, and found virus. Went through all my previous backups I had done in the process of installing the computer while online. And all of them have a virus. So this is something I must have caught very early on, and also something that was there when I contacted you last time, just hadn’t been detected then.
Why it was only activated now, I don’t know. But the question is: can I get rid of it or do I need to re-install from scratch ?
What I have done now is re-installed the latest backup I have, updated only the Avast VPS (to version: 081161-1,16.11.2008) and started Avast. And here is what it showed:
During Memory test, the following virus was found: File name: c:\windows\system32\dpcdll32.dll Win32:Trojan-gen (other)
Action: moved to chest.
During further Memory test, the following was displayed:
Avast has found a virus in the operating memory. … recommended that you restart the computer and let avast scan all data in the boot phase… → yes
During boot test: File C:\System Volume Information_restore{tons of numbers}.dll is infected by win32:Trojan-gen (other)
Action: moved to chest.
During further boot test: File C:\Windows\system32\trz97.tmp is infected by win32:Trojan-gen(other)
Action: attempted"move to chest" but warning: File is in Windows-folder, are you sure ? So I pressed “No” (although I think it’s a temporary folder and should be o.k., but really not sure), so tried option “repair” and received: “error 42060 (file was not repaired)”, therefore chose “ignore”.
Now before I do anything else, I’d just love to know whether I can move this last file to the chest ??
If yes, I can then do another Avast-scan, send the file off and go from there…
If no, I don’t know.
Oh, and just in case someone is going to suggest to “turn off system restore” etc - unfortunately, I have no clue how to do that ??? So sorry, but not very computer-literate, still getting to know my new laptop and fighting its “childhood illnesses”, let alone struggling with Windows XP (coming from 2k). I know this does not help. Once again, sorry. But will need step-by-step guidance. Thanks so much. Sydney.
Windows XP SP3, Avast 4.8, File Version 081161-1 from 16 Nov 08, Core 2 Duo, 2.4 GHz, 3 GB RAM