I have a problem with Win32:Malware-gen, which Avast still tells me that I have on my system displaying pop ups every 5 minutes or so, but for some reasons full scan cannot detect it at all now.
What happened so far:
- After Avast pop ups started appearing, first full scan was done on 2010-07-12 around 1:27pm, with results (from log):
c:\windows\temp\4B3.tmp - Threat: Win32:Malware-gen - Action: Delete - Result: Error: system cannot find the file specified (2)
c:\windows\temp\BdeUlSrvb.exe - Threat: Win32:Malware-gen - Action: Delete - Result: Successful
c:\windows\temp\4B3.tmp - Threat: Win32:Malware-gen - Action: Delete - Result: Error: system cannot find the file specified (2)
Pop ups were still displayed after this.
-
On 2010-07-12 7:58pm I did another full system scan, with result “no virus found”
-
Then I downloaded Malwarebytes’ Anti-Malware and did a full scan, with result “No malicious items detected” everywhere (log attached)
-
On 2010-07-13 12:01am I did boot-time scan, again with result “no virus found”
-
As suggested in http://forum.avast.com/index.php?topic=53253.0 I downloaded OTL and did a custom scan - logs attached too.
Avast still displays pop ups about Win32:Malware-gen being found in c:\windows\temp*, like this one:
Object: c:\windows\temp\wjnm.tmp\svchost.exe|>[UPX]
Infection: Win32:Malware-gen
Action: Moved to chest
Process: c:\windows\System32\svchost.exe
The thread was detected and blocked when the file was created or modified.
Which would mean that it still sits somewhere there…
Any help with getting rid of this bastard would be highly appreciated!
