I recently did a scan and two threats were found. One of which was a rootkit: ‘‘Rootkit:hidden file’’ and the other was a trojan (I think): ‘‘Win32: Crypt-LUQ [trj]’’.When I tried to put them in the chest, the rootkit displayed an error message ‘‘Error: the request is not supported (50)’’ and the trojan displayed the error message: ‘‘Error: the process cannot access the file because it is being used by another process (32)’’.When I tried to delete them, the rootkit displayed an error message: ‘‘Error: the system cannot find the file specified(2)’’ and the trojan said ‘‘Action postponed until the next reboot’’.
So I kept the action for both as Delete and rebooted, running a boot scan and the boot scan found no threats.
Does this mean my computer is now safe? Or is rootkit ‘hidden’ somehow as it said it was a ‘hidden file’ and has the trojan been deleted?
Thanks,
I have scanned with malwarebytes and aswMBR already as it happens, so I have pasted the logs below. I will also use OTL if these are inconclusive (I have no idea what anything in the log from aswMBR means)
No problems it seems, it is just a bit worrying that the avast scan found a rootkit and trojan (couldn’t delete) but then on restart they were gone: any ideas as to why this could be? I know that rootkits can be elusive.
Also are all of the errors in the Extras.Txt log anything to worry about?
Ah OK that is in system restore and is not a problem - I feel the other may have been a detection of another anti-malware programme on your computer. Malwarebytaes, Superantispyware or spybot
Lets clear the restore points now
Run OTL
[*]Under the Custom Scans/Fixes box at the bottom, paste in the following
Okay cheers, have done all that,
when I look in the folder D:\System Volume Information\catalog.wci all the files are still there including the one it said was a trojan but this is all right?