Can anyone give me advice on how to remove the Win32:Bamital-X virus? I did a full system scan and avast! detected three items. Posted is a screenshot of the results…
I have not noticed any problems with my computer, everything is acting completely normal however the severity level of “high” concerns me. I should also add that scans with Malwarebytes and SuperAntiSpyware did not detect anything, however after scanning with Hitman Pro, the infected files were detected. I would really appreciate help with this!
If avast is detecting malware but can’t remove them or send them to the chest a good suggestion is to try a boot scan and see if avast can dell with the malware through there. I suggest you send the malware to the chest where it do no harm and you have more options of dealing with them then just delete them.
What product of Avast did you install? Free, Pro, AIS?
If you have a 32-bit machine, please update your Avast definitions and run a Boot-time scan and post your results. If the results come out clean or you have a 64-bit machine, you can run a free Dr. Web CureIt http://www.freedrweb.com/cureit/?lng=en as another opinion (download it to your desktop) – the log will be quite log, so just report back if there are any problems and if there are, you can attach them to your post: "Additional Options > Attach > browse > post.
Important: Keep the items in the Virus Chest there; do NOT delete them.
Had you updated your MBAM and SAS definitions prior to doing the scans?
If you are still not clean, you can run an OTL log by going to this thread: http://forum.avast.com/index.php?topic=53253.0 - you already did the MBAM part, so just click on the red OTL to download the file. There will be 2 large files that you will download to your desktop and attach to your post.
Post a hijackthis log along with the MBAM log if you can.
Update all scanners definitions that you have, that are up to date.
Never have 2 real time protection anti-virus scanners that run at windows start up.
(Like AVG, and AVAST) Just one or the other…spyware scanners are fine, but if you have spybot tea timer on, turn that off now.
I can say that file running from the temp without a doubt is an infection or trojan of some kind.
Hopefully the other 2 entries don’t mean a windows file has been infected.
Do you have recovery discs yet?
If not, I would boot to safe mode and make em now if possible. Clear cache cookies and temp files while there too (First thing you do).
Then scan with everything you got that will scan in safe mode.
Because explorer.exe is vital to using things such as the taskbar and desktop icons, wont moving it to the chest disable it? Also, whenever I preform a normal startup (I’m in safe mode right now), all that I see after the welcome screen is a black screen with the mouse pointer in the middle of it. I go to the task manager to start explorer.exe and Windows tells me that it cannot start because it contains a virus.