My friend uses Windows Mail, as do I, for her email program. She also has Avast, although I’m not sure which version. She says that every time she brings up one of my emails she gets a window that tells her that Avast has either blocked a Trojan, or detected a Trojan. She does a lot of messing around with her computer that she shouldn’t do because she does not have the technical knowledge for it, so I am wondering if it’s a problem I have or if it’s on her end.
I have the paid versions of Avast Internet Security, Malwarebytes and SUPERAntiSpyware. Although I am no computer expert, I am very security conscious. I have all three of these programs set up to scan several times a week. I can’t hardly believe that I have a Trojan and none of these programs is detecting a thing.
If there is something I am missing here, please advise so I know what I need to check out.
I have Vista Home Premium. She has Windows 7. She says she has no Snipping Tool. She downloaded something she was trying to use, but she was having lots of trouble getting it to work so I very much doubt it is possible for me to attach a screenshot for you. She said it was saying a Trojan had been blocked, and then the next time it said a Trojan had been detected.
I have contacted a group of my email friends. So far I’ve heard back from 3 of them, all using different security programs, and they report no problems. I think it’s something on her end. The only thing that puzzles me is why this Trojan deal pops up when she opens MY email.
She emailed me back later and said when I sent my last email she didn’t get that message and “maybe it was that Black Friday site I went to.” :o
I really feel pretty confident it can not be my computer, but I thought I would run this through the virus forum as an extra precaution.
While I’m in here, do you know of a simple program she could use with her Windows 7 to take screenshots?
My friend got the Trojan warning again. Here is a small screenshot of what popped up when my friend opened my email. I had started to move forward with the steps you sent for checking out my system, but thought I would show this to you first.
from the screenshot i see what your friends problem is…
she has the visicom antiphishing toolbar installed…(many here with same problem this week)
this toolbar is using signatures from Panda wich is know to not encrypt its malware signatures, and that is whats detected by avast
so your friend must run AdwCleaner…and click the delete button to remove this…
then also run Malwarebytes quick scan…and click the remove selected button…if anything is found
post the logs here…when you have done yours first
way over bedtime here, will check back tomorrow
Hope you have a restful night. In the meantime, here are the final results. Please note that after I ran the awsMBR, there was a file on my desktop by the same name. I assume that’s normal. Can I just delete it?
And what about getting rid of the OLT.exe and the awsMBR.exe files? I see that the adwcleaner has an uninstall included on the face.
One more question. I still wonder why the only time this maroon Trojan blocked/detected box shows up is when she opens one of my emails. She insists that is the only time it pops up.
And what about getting rid of the OLT.exe and the awsMBR.exe files? I see that the adwcleaner has an uninstall included on the face.
OLT and aswMBR needs to be used for fixing.......based on what is found in the logs, if anything
now we have just done diagnostic logs with them
the removal expert will remove all tools used when done. ;)
I had my friend run that AdwCleaner also. It’s so hard to talk to her and make myself understood and then understand what she’s saying. This is why I didn’t just suggest that she post here herself.
She says that she received 3 more pop ups last night after I had run the AdwCleaner, but I can’t be positive they were caused by my emails. Before running AdwCleaner herself this morning, she got a Trojan pop up while I was on the phone with her, but it was when she opened an email SHE had sent to me with a picture attached. So what does that mean for me since I received that email and opened the picture?
I attached all the logs and reports below. Did you look at those and if so, were there any problems found?
I wasn’t aware that I had any toolbars, but when I ran AdwCleaner it appeared there was something in Firefox. Those logs are kinda’ Greek to me so I can’t be sure what was found there. I use my Chrome now unless I’m having a problem with it.
If I don’t need the MBR, OLT and AdwCleaner files any longer how do I get rid of them? I think the Adw file has an “uninstall” button right on the bottom of that box, but I’m not sure about the others.