Win32:Banker-EPP[Trj] detected

Hi,

Avast detected this virus in the following 2 files and has moved them to the virus chest:
Sign of “Win32:Banker-EPP [trj]” has been found in “C:\Program Files\Alwil Software\Avast4\DATA\moved\ACID KEY CRACK 4.0.exe.2.vir” file.
Sign of “Win32:Banker-EPP [trj]” has been found in “C:\Program Files\Alwil Software\Avast4\DATA\moved\ACID KEY CRACK 4.0.exe.vir” file.

I have deleted all temp files, turned off system restore, scanned again with Avast and MBAM, and am now scanning with SuperAntiSpyware.

If all the latest scans show as clean am I safe?

Thanks, Peter

If you continue to download cracks, probably not! :-\

I suggest:

  1. Disable System Restore and reenable it after step 3.
  2. Clean your temporary files.
  3. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
  4. Use SUPERantispyware, MBAM or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.
  5. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
  6. Make a HijackThis log to post here or, better, submit the RunScanner log to to on-line analysis.
  7. Immunize your system with SpywareBlaster or Windows Advanced Care.
  8. Check if you have insecure applications with Secunia Software Inspector.

Tech, thanks for your helpful reply - I’ll try scanning with DrWeb CureIT now and post a HiJackThis log too.

FreewheelinFrank - I didn’t knowingly download any cracks.