Ok. So I thought I knew enough to keep trojan horses at bay - however, 1 day after sending a mail about holiday apartments asking for availability and more information I got a mail with an attachment and text that looked almost exactly like a reply to the message that I sent. I didn’t look carefully or I’d have noticed that the e-mail address that it was sent to was incorrect.
So after double clicking on the attachment I heard Avast doing its job and spotting the infection. However, once cleaned, I have been infected many times since. The noticable infection is that my internet explorer homepage keeps getting set to Google and when I have been looking for web pages using Google I have selected a link and been sent to a similar site but not the site that I selected.
I tried a full virus scan several times but I did not seem to find the culprit so I searched for recently updated files and found one that looked suspicious. It was in program files / nxmcoqe and called ApiAppCfg.dll.
I’ve tried searching the web but not found any reference to it.
I searched the registry to remove any reference to the file…
It seems that during the clean-up something went wrong. For some reason MS Explorer (the directory browsing software) will not start. I get placed into XP without the explorer bar. The only way to start tasks is through the task manager. When I navigate to explorer.exe and try to start it, task manager reports that the file is not found. Changing the name allows explorer to start but not the associated task bar.
Does anyone have an idea of what I could do to restore normal service… The only advice I have so far is to “always back up the registry before you edit it”…
TIA
LS
Trojans installed : Win32:Bravix [Drp], Win32:Trojan-gen (other) and Win32:Adware-gen