Downloaded 4.8 free trial Avast! Using Windows XP SP2
Have ran Avast with boot scan and found two files with Trojan Gen (other)…on both times I deleted as they were with non-system files I never use.
On start up I ran avast scan and its detected SKYNET and UAV virus types.
The problem I am facing is I cant delete anything (the system wont work) and I cannot download anything as the internet has been disabled.
I would also do a complete Windows reinstall, however my Disk drive is broken and I cannot get my hands on a removable disk drive currently.
Do you mean Skynet and ’ UAC ’ ? Can you possibly download a program from another pc and transfer by flash drive. If so download Rootrepeal, this needs no installation.Just unzip,and double click, choose filesthen run the program, then copy/paste the log
Without the report,the scan means nothing. See the link for posting a report.Click ’ report’, then scan,then files,choose drive. Sorry my fault
Also if you have your internet back please download MalwareBytes Antimalware http://filehippo.com/download_malwarebytes_anti_malware/
Sorry,try again, open the program, click on report click on scan put a tick in the files box click ok then tick C, then the scan should run and produce a txt report, that you can copy/paste
No good with MBAM UNTIL rootkit removed.Please use Rootrepeal
Sorry that report is no good. The idea is to remove the rootkit with roootrepeal then mbam should clear the rest.Without removing the rootkit, the other files will keep returning, on reboot.Can you try another rootrepeal scan exactly how i said in my last post by clicking on the report tab first etc
The file you are looking for begins with one of the following, and ends in sys
TDSS
Seneka
GAOPDX
UAC
ovsft
kungsf
Skynet
MSIVX
hjgrui
wzszx
ESQUL
geyekr
vsfoce
In you case, probably UAC or Skynet, for example UACmxegjtve.sys or SKYNEToyfjtpeo.sys
The link provides advice how to identify and remove
The necessary steps to remove Win32:Alureon are quite simpler. I found this through trial and error. Install avast! home edition trial. Let it run its heuristic scan (I didn’t see an option to do this; it just ran itself. It found the virus’s drivers in the windows/system32 directory and wanted to do a boot-time scan. I let it reboot the PC and it found all the files associated with the virus and removed them. Problem solved, no more infection.
P.S. AVG detected but couldn’t remove the virus files, OneCare allowed it to infect my PC in the first place, and the various rootkit removal programs all hung on trying to scan the system32 directory.