Do I have a virus?

Yesterday, the computer switched itself off. I suspected trouble and tried to scan, first with SpyBot, then twich with BitDefender. I am unable to complete the scans because the computer turns itself off. Yet,<if I jsu leave it alon, it does NOT switch itself off.

I guess I got infected and whatever arraived installed itself when I rebooted.

Help!!!

qim

could be a hardware issue or an OS problem, you should change your thread title to “do I have a virus?” :wink:
More info are needed: can you boot in safe mode?

ps: what’s your Windows version?

I’m sorry! I did think of over-heating, but it does not esvplain why it only switsched itself off during scans, and not when left alone for long tomes not scanning. Having said that I now managed to scan with Malwarebytes and the report is clean:

Malwarebytes’ Anti-Malware 1.46
www.malwarebytes.org

Database version: 4053

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

30/04/2010 12:27:27
mbam-log-2010-04-30 (12-27-27).txt

Scan type: Quick scan
Objects scanned: 132422
Time elapsed: 14 minute(s), 38 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

OK so try to troubleshoot with MSconfig, disabling start up items one by one…there’s probably something going wrong with a driver. Look into your Windows events too, look for anything labeled “warning” or “critical”.
You can also try to monitor your system temps and see if anything’s overheating, check the fans.

Sorry again. Here goes the rest of the reports. The first thing that I did after rebooting following the first switch-off was to llook into Event Viewer, and there awas nothing unusual. I will try to run SpyBogain and see what happens.

I could not paste OTL files for being too long. I hope the attachments show up.

Try again…

I tried to run BitDefender again with the same resul: the computer shuts off after some 20 mins, even though I am at the computer and using mouse to make sure the system does not go to sleep. The same happened with SpyBotin SAFE Mode.

Meanwhile I had a look at Event Viewer and notice that over the pastr few months Avast has logged some warnings about 'Sign of JSFakeAV-DX[trj] has been found in … That was in February. There are similar entries before that. More recently the warnings including one TODAY is about Function setiface UpdatePackages() has failed.

Please let me know if you found anything in the logs that I sent and if these entries in EventViwere mean anything to the current problem.

Thank you very much

qim

I read your logs…
Sorry, but refering to the entries in your hosts file section, it seems you got infected. :frowning:
If you still can download and install use this: http://www.emsisoft.com/en/software/free/
asyn

If you can’t download, install and run properly on the infected machine:

Thanks. I managed to download and run quick scan. IT found a few atiems and dealet with them. I am now doing a deep scan and it found already Trojan Atrapsik (the i in sick is an inverted exclamation mark). I googled and read elesewhere about a-squared finding this trojan but that it keeps reappearing. Any ideas what I should do?

Thank you very much

qim

I am attaching the two scan reports. I quaranteed the trojan files.<I would be grateful for further help.

Many thanks

qim

…and the other report attached.

qim

Go to PROFILE then Modify Profile then Forum Profile Information then Please select your country: then Signature: and put information about your system just like my signature about your system just like my signature so that the helpers can offer pertinent advice.

;D

http://www.cnn.com/WORLD/Bosnia/updates/dec95/12-02/soldier_saluting.jpg

You’re welcome…! :slight_smile:
If the threat couldn’t be fully removed, please read/post here for further instructions:
http://support.emsisoft.com/forum/6-malware-removal-help/
asyn

why are you so sure these are threats, anyway?

a-squared still has a lot of false positives, no?

Thank you very much.

I restarted after a2 and ran SpyBot and BitDefender without any problem and all seemed clean. However, now I find that if I go into ControlPanel/Java and press the Update Now button, nothing happens.

I wonder if the trojan disabled Java. What should I do? Inistall Java and reinstall? I tried reinstalling without uninstalling and the button still does not work.

Help…!!

Thanks

qim

Read his logs…!! ::slight_smile:
asyn

You’re very welcome… :slight_smile:
If possible uninstall your old java versions first.
Download the appropriate java (latest today should be 6 update 20) for your OS here:
http://www.java.com/en/download/manual.jsp?locale=en&host=www.java.com
Please post back your results.
asyn

eh, mbam logs show nothin’