Ok, so ive used avast for some time now but its acting a bit weirder than before, i think maybe after the updates occured.
Avast keeps thinking my system files are viruses. Whenever i open my task manager it says its infected.
whenever i open NOTEPAD it thinks its a virus too.
as well as:
mspaint.exe - Paint
mobsync.exe - mobile synchronization
cmd - command prompt
opera.exe - opera internet browser
7z.exe - 7 zip file manager
u3launcher - U3 Sandisk Launcher from U3 USB device
and many other more. i cant even use my computer comfortably because of this issue
I believe there is a virus out there that is specifically aimed to destroy avast antivirus from the inside out. but im not entirely sure.
Heres my comp specs
OS - Windows 2000 Professional (The reason i need and use Avast)
RAM - 256 MB
Processor - Intel Pentium 3 1.2 Ghz
And this keeps going on for some reason, someone from this adress keeps sending Ddos attacks using tcp
Please download HijackThis from the link below, run the program but do not make any fixes, and then post the log results using the “copy & paste” method. It will probably take more than one post to be able to get the complete log posted. OR, you can post it as an attachment to your post by clicking on “Additional Options…” below left of the posting box. Do not download HJT to the desktop but instead download it into it’s own folder on the hard drive. Someone will review your log and then offer help.
Ok so heres the log file, it seems most of this stuff is system protected and some are avast services running in my background.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:37:42 PM, on 9/20/2008
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
You should create a specific folder for HJT, c:\HJT would do rather than have it dumped on the desktop. If you make any fixes you really want everything in its own folder.
This is possibly one of the smallest HJT logs I have seen in some time. I don’t know if this is because you are running win2k or some other reason. I would suggest once you have created a folder for HJT that once installed you rename the hijackthis executable to Tl12000HJT.exe incase there is malware that detects and avoids HJT.
You didn’t answer the question about the malware name as that could give us an idea if you do indeed have a file infecter at work.
If you haven’t already got this software (freeware), download, install, update and run it, preferably in safe mode and report the findings (it should product a log file). I’m not sure if it runs on win2k but I would think it might.
Also MalwareBytes Anti-Malware freeware version http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe, right click on the link and select Save As or Save File (As depending on your browser), save it to a location where you can find it easily later.
If you haven't already got this software (freeware), download, install, update and run it, preferably in safe mode and report the findings (it should product a log file). I'm not sure if it runs on win2k but I would think it might.
Yes it will. Win98-Vista.
I agree, it is a short log. Renaming hijackthis.exe may reveal a vundo infection. Though many infections have similar symptoms, this one almost sounds like the vundo file infector… notepad. exe for example.
HJT may not show much
I would like to see the MBAM and SAS logs and also Spybot Search and Destroy
With MBAM check any hits and then REMOVE SELECETED a backup will be made
with the others send to Quarantine do not remove/ delete
I would also like to see a Scan with one of the on line AV scanners AFTER the general purpose removers are run- preferably KAspersky
after seeing the logs we may want to run VUNDO fix and a double check for rootkits
File infectors are non trivial and the sooner they are addressed the better