Hi, to cut a long story short:
Computer crashed, restored system with Acronis, updated Avast and found virus (Win32:Trojan-gen, other) in 3 different folders:
during memory test: c:\windows\system32\dpcdll32.dll
during boot scan: C:\System Volume Information_restore{tons of numbers}.dll and C:\Windows\system32\trz97.tmp
Moved all of them to chest. Disabled system restore.
Sent infected files off to virustotal, all 3 showed the same result:
File msxmlr32.dll received on 11.18.2008 00:04:39 (CET)
Current status: finished
Result: 5/36 (13.89%)
Compact Compact
Print results Print results
Antivirus Version Last Update Result
AhnLab-V3 2008.11.18.0 2008.11.17 -
AntiVir 7.9.0.31 2008.11.17 TR/Hijack.AE
Authentium 5.1.0.4 2008.11.17 -
Avast 4.8.1281.0 2008.11.17 Win32:Trojan-gen {Other}
AVG 8.0.0.199 2008.11.17 -
BitDefender 7.2 2008.11.17 -
CAT-QuickHeal 10.00 2008.11.17 -
ClamAV 0.94.1 2008.11.17 -
DrWeb 4.44.0.09170 2008.11.17 -
eSafe 7.0.17.0 2008.11.17 -
eTrust-Vet 31.6.6210 2008.11.14 -
Ewido 4.0 2008.11.17 -
F-Prot 4.4.4.56 2008.11.17 -
F-Secure 8.0.14332.0 2008.11.17 -
Fortinet 3.117.0.0 2008.11.15 -
GData 19 2008.11.17 Win32:Trojan-gen {Other}
Ikarus T3.1.1.45.0 2008.11.17 Trojan-Dropper.Agent
K7AntiVirus 7.10.526 2008.11.15 -
Kaspersky 7.0.0.125 2008.11.17 -
McAfee 5437 2008.11.17 -
Microsoft 1.4104 2008.11.17 -
NOD32 3619 2008.11.17 -
Norman 5.80.02 2008.11.17 -
Panda 9.0.0.4 2008.11.17 -
PCTools 4.4.2.0 2008.11.17 -
Prevx1 V2 2008.11.18 -
Rising 21.04.02.00 2008.11.17 -
SecureWeb-Gateway 6.7.6 2008.11.17 Trojan.Hijack.AG.1
Sophos 4.35.0 2008.11.17 -
Sunbelt 3.1.1801.2 2008.11.14 -
Symantec 10 2008.11.17 -
TheHacker 6.3.1.1.155 2008.11.15 -
TrendMicro 8.700.0.1004 2008.11.17 -
VBA32 3.12.8.9 2008.11.17 -
ViRobot 2008.11.17.1472 2008.11.17 -
VirusBuster 4.5.11.0 2008.11.17 -