Your last two post gentlemen, are exactly what I’ve been trying to emphasize. I can’t imagine either. But the Netstat -ab report is there. I’m not wasting my time on forums with false Netstat reports. The IP was there and using that Avast! .exe, and it remained there and listened to epmap, microsoft-ds, netbios-ssn, etc and other process, with the SAME IP, even after uninstalling.
I will mention one last time how I uninstalled.
Initially I did it through Control Panel Add/Remove Programs, which seems to have worked fine. I REBOOTED after uninstalling.
Then I did the netstat and found it was still there, just this time, not using Avast’s Ashweb.exe or whatever the exe is called. But it was still listening. Same IP
Then I posted here and someone told me to run “aswclear.exe” - Avast!'s own uninstall program. Now, with basic experience, I’ve been taught that if somehow you’ve wrongly uninstalled a program, it’s best to re-install it if you can, before doing the “proper” uninstall. So I did. I re-installed avast, but this time, I uninstalled Avast! with aswclear.exe. I then REBOOTED.
I did netstat and the connections were using again, multiple DLL files and alg.exe and what not.
The trojan is called Trojan.Win32.Patched.m
Avast! didn’t catch it. Actually, according to netstat when Avast! was installed and running, the IP was attached to the files that Avast! used. (I could be completely wrong.)
The p2p program that I used was utorrent. I’ve been playing Unreal tournament and all it’s latest versions, ut2k3, ut2k4, UT3, since UT99, I’m currently making a movie and I had downloaded a bunch of oldschool UT movies that I could only find through torrents. I’ve learned a long time ago to keep my programs as legit as possible.
Could anyone suggest a program that is free that could remove this particular trojan ?