For months on a daily basis when scanning avast goes through a series of about 20 consecutive warnings about detections of the form C:\WINDOWS\TEMP\SBS_VE_AMBR_…
regardless of moving to chest or permanent delete or no action responses,on the next scan the same sequence is repeated.
any suggestions? ???
Hi rubio2005,
What was the name of the malware detected? You can find this information in the avast! log.
Try a boot time scan with avast! Right click the scanner screen, select ‘schedule a boot time scan’ and reboot when requested. (Or open the tab at the top left of the scanner screen and select the boot time option from there.)
This is part of the current warning log!
10/11/2008 01:23:18 SYSTEM 1576 Sign of “Win32:Crypt-VT [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010012317.437_09591” file.
10/11/2008 01:47:48 SYSTEM 1576 Sign of “Win32:Small-MAM [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010014747.859_09654” file.
10/11/2008 01:47:54 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010014754.515_09659” file.
10/11/2008 01:48:08 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010014808.125_09664” file.
10/11/2008 01:48:22 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010014822.859_09667” file.
10/11/2008 01:48:28 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010014828.156_09671” file.
10/11/2008 02:14:41 SYSTEM 1576 Sign of “Win32:StartPage-665 [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010021441.718_16034” file.
10/11/2008 02:14:53 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010021453.515_16139” file.
10/11/2008 02:14:59 SYSTEM 1576 Sign of “Win32:Small-MAM [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010021459.296_16143” file.
10/11/2008 02:16:23 SYSTEM 1576 Sign of “Win32:Crypt-VT [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010021622.609_16228” file.
10/11/2008 04:10:44 SYSTEM 1576 Sign of “Win32:Hacktool-AU [Tool]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010041043.562_78641” file.
10/11/2008 09:51:26 SYSTEM 1576 Sign of “Win32:Downloader-ANL [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010095124.843_84067” file.
10/11/2008 09:52:05 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010095205.703_84070” file.
10/11/2008 09:52:09 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010095209.234_84071” file.
10/11/2008 10:00:49 SYSTEM 1576 Sign of “Unix:Sendmail [Expl]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010100048.328_86823” file.
10/11/2008 10:14:25 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101424.406_87021” file.
10/11/2008 10:15:04 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101504.359_87226” file.
10/11/2008 10:15:11 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101511.015_87234” file.
10/11/2008 10:15:17 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101517.046_87242” file.
10/11/2008 10:15:41 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101541.671_87250” file.
10/11/2008 10:15:48 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101548.656_87258” file.
10/11/2008 10:15:55 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101555.140_87266” file.
10/11/2008 10:16:16 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101616.968_87291” file.
10/11/2008 10:16:25 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101625.093_87300” file.
10/11/2008 10:16:34 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101634.718_87309” file.
10/11/2008 10:16:40 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101640.218_87318” file.
10/11/2008 10:16:47 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101647.812_87327” file.
10/11/2008 10:16:53 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101653.984_87336” file.
10/11/2008 10:17:00 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101700.921_87345” file.
10/11/2008 10:17:07 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101707.296_87354” file.
10/11/2008 10:17:14 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101713.687_87363” file.
10/11/2008 10:17:26 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101726.359_87386” file.
10/11/2008 10:17:33 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101733.000_87395” file.
10/11/2008 10:17:40 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101740.437_87404” file.
10/11/2008 10:17:46 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101746.656_87413” file.
10/11/2008 10:17:53 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101753.156_87422” file.
10/11/2008 10:18:00 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101800.906_87431” file.
10/11/2008 10:19:05 SYSTEM 1576 Sign of “Win32:Trojan-gen {Other}” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010101905.609_87584” file.
10/11/2008 10:30:44 SYSTEM 1576 Sign of “Win32:Agent-ACHJ [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010103043.906_89251” file.
10/11/2008 10:33:54 SYSTEM 1576 Sign of “Win32:Rbot-ETN [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010103353.031_89339” file.
10/11/2008 10:40:13 SYSTEM 1576 Sign of “Win32:Small-JKW [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010104012.625_92804” file.
10/11/2008 10:53:05 SYSTEM 1576 Sign of “Win32:Neptunia-ACL [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010105304.187_97004” file.
10/11/2008 11:31:19 SYSTEM 1576 Sign of “Win32:Neptunia-ACL [trj]” has been found in “C:\WINDOWS\TEMP\SBS_VE_AMBR_20081010113119.765_97005” file.
I assume getting rid of temp files doesn’t help?
The files look like some sort of back-up, although why they would be in \temp and infected by so many different types of malware, I don’t know.