I was just online, and I noticed an icon popping up in the system tray. It said it was an Avast mail scanner. It would pop up, and then go away. Now, as of this moment, it hasn’t come back. The logo looked like either an envelope or a computer, I forget which.
Sorry if this is vague. I was wondering if this is something to be concerned about?. Or does Avast have this icon? I’ve never seen it before. I usually just have the “a” icon for the on-access scanner and the “f” icon for the Virus Recovery Database.
Is it this one? http://forum.avast.com/index.php?topic=19794.0;topicseen
If so, it’s ok, avast is scanning emails.
Are you sending/receiving emails at that time? If not, hmmm, maybe your computer is infected.
In this case (infection), I suggest:
Disable System Restore and reenable it after step 3.
Clean your temporary files.
Schedule a boot time scanning with avast with archive scanning turned on.
Use SUPERantispyware and/or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.
But no, I wasn’t checking my mail at all. On Saturday, I had found a Trojan virus, while starting up Avast. It found it while it did the memory test. The virus description is Wini32:Trojan-gen{other}. I sent it into the chest. Avast then told me I should do a boot scan, which I did. I ran another scan, and no other infections were found. Scans done with SpyBot and Ad-Aware also found nothing.
Incidentally, I have recently received an email from my internet provider telling me my computer might be infected. It had found an unusually high number of emails being sent, unsuccessfully . It told me it could be a bot, and that I should scan with anti virus, anti spyware. I’m not sure when it detected the problem, because I had found the virus as I said, and had sent it to the chest. Unless I’m still infected? ???
The likelihood is you have an undetected/hidden trojan spambot on your system, so start working through Tech’s steps. Hopefully you will see some results with step 4.
What is your firewall ?
It should be capable of blocking unauthorised outbound Internet Connections.
The thing is…I don’t have a firewall :-[. Yeah, I know I need one, but I’m using Windows 2000, and that doesn’t have one. I had been using the free Comodo firewall, but had to uninstall as I was having problems with it. I think I’ll have to try to install it again. Although I have read that it’s better to clean the computer first before downloading it. Is this true?
A few questions/comments for Techs advice:
Since my OS is Windows 2000, I don’t think it has a System Restore.
I’ve cleaned the temp files as suggested.
I’ll try the boot scan again, although I’ve done that once before, and I think it was unable to scan the archives. I’ll try again later, and tell you the results.
Are SUPERantispyware and Spyware Terminator better or different than Ad-Aware 2007 and SpyBot Search and Destroy? I always get the feeling Ad-Aware 2007 is not very effective. And SpyBot has not found anything in a while. Should these programs be able to detect something like this, or am I better off trying the ones suggested?
Also, would it be a good idea to try Trend Micros Housecall? I think that’s the free scanner. If I use it, do I have to disable Avast first?
Thanks for the help. The Avast forums are always good at offering speedy advice!
You’re right. Ad-aware is not ‘effective’ anymore (too low detection rate).
Some people recommend disabling the resident antivirus before running on-line ones.
Full computer on-line scanning: Kaspersky (very good detection rates) ESET NOD32 Trendmicro housecall F-Secure BitDefender (free removal of the malware)