i noticed at the bottom right hand corner of my screen it said my firewall was turned off, strange i thought, so i turned it back on. it was then avast! warnings were popping up about viruses(around 3 or 4), so i pressed the delete button for all of them but then, 2 internet explorer pages popped up and i closed it immediately, then my mozilla suddenly had an error and closed, then my bitorrent program suddenly encountered an error and closed too.

this is getting crazy, this has happened at least 3 times during the past month and i thought it wasn’t a big deal but everytime i clear it, it always comes back somehow.

yes i scan on the daily and it usually finds nothing, but something is triggering my firewall to go off and my antivirus programs cant find it. i’m currently running malwarebytes scan and it has found 16 malwares.

here is 1 of the malwares avast! picked up in the warning:

• win32:rootkit-gen [rtk]

i’ll type more down once avast! finds it.

this is really strange though, does anyone know why this is happening? one day its clean then after a few days it happens again, but it all starts with something turning off my firewall…

Try a boot time scan with avast! Right click the scanner screen, select ‘schedule a boot time scan’ and reboot when requested. (Or open the tab at the top left of the scanner screen and select the boot time option from there.)

Try a scan with DrWeb CureIT!
Try a scan with Kaspersky Virus removal Tool

http://img291.imageshack.us/img291/1355/93482975gh1.jpg

clearing those up now and re-scanning w/ avast!

Which program are you using for cleaning?

i used malwarebyte’s anti-malware to clean those up

Ok. Good program. Do you think you’re clean now?

i don’t think i’m exactly clean, because i rescanned today and it found 2 more malwares. i’m going to scan again now.

I suggest:

1. Clean your temporary files.
2. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
3. Use SUPERantispyware, MBAM or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete them.
4. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
5. Make a HijackThis log to post here or this analysis site. Or even submit the RunScanner log to to on-line analysis.
6. Disable System Restore and then reenable it again.
7. Immunize your system with SpywareBlaster.
8. Check if you have insecure applications with Secunia Software Inspector.

Looking at the MBAM log, it shows “No action taken”. ???

Make sure that everything is checked, and click Remove Select or the infection will remanin.