Solved

I am getting a virus alert from Avast saying "A Trojan Horse Was Found" whenever I try to open a webpage

Posted on 2008-10-23
6
4,253 Views
Last Modified: 2013-12-09
I am getting the below attached alert message whenever I am trying to open a new webpage. For very few sites, for example, expert-exchange, I am not getting any alert. But for most of them (including some common websites like Yahoo and Rediff) I am getting this alert. I am using Windows XP, IE6 and Avast Free Home Edition. When my Internet connection is off I do not get any such alert. My computer is "not" running slow.

I would appreciate if anyone can inform me why this is happening and how to fix this problem. I am ready to provide further information if needed.

Thanks
virus.JPG
0
Comment
Question by:sstampf
  • 2
  • 2
  • 2
6 Comments
 
LVL 8

Accepted Solution

by:
Bradley Haynes earned 250 total points
ID: 22789974
Download and run Malwarebytes'.
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button

Also from the 'RUN' textbox input "%temp%"  which will open your Temp directory. Once that is open delete all that is in there. A couple of files will not allow deletion because they are being used by another process or app. That is OK.
After that has been done your PC will run faster and possible BHO's will be gone. You may download HijackThis;
http://www.download.com/HijackThis/3000-8022_4-10379544.html 
Run it and post the results here if you don't understand the log info.
Usually all the BHO (browser helper objects) can and should be deleted.
0
 
LVL 47

Assisted Solution

by:rpggamergirl
rpggamergirl earned 250 total points
ID: 22790407
If problem persists, use Smitfraudfix or FixIEDef.


1.  Please download SmitfraudFix, and select Option 2. Clean (Safe mode recommended)
http://siri.geekstogo.com/SmitfraudFix.php


2.  Download FixIEDef by ShadowPuterDude to the Desktop.
http://downloads.malwareteks.com/FixIEDef.exe

You need to first Disable real-time protections that can interfer with FixIEDef:
Windows Defender, SUPERAntsipyware, Spybot's Tea Timer, etc.

Double-click FixIEDef
Click 'OK'
Click 'Scan'
Click 'OK' FixIEDef requires Adminstrator Privileges to run correctly. This box tells you that FixIEDef successfully elevated it's privileges to that of Administrator.
Wait for the scan to finish. It won't take very long.

WARNING: FixIEDef will kill all copies of Internet Explorer and Explorer that are running, during removal of malicious files. The icons and Start Menu on your Desktop will not be visible while FixIEDef is removing malicious files. This is necessary to remove parts of the infection that would otherwise not be removed.
0
 
LVL 8

Expert Comment

by:Bradley Haynes
ID: 22790479
So we meet again!!!   ;-) rpggamergirl

How ya doing?
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 12

Author Comment

by:sstampf
ID: 22795204
I have heard that its not good running two antivirus programs simultaneously on a computer. There can be some confliction. Does the same hold true for Antispywares also? Should I uninstall my Avast first before installing FixIEDef or Malwarebytes (because Avast also has some Malware detection features)? Is it safe to delete files from the "%temp%" folder? I saw some MS Office (and also some other software's) log files there. Also, I haven't used HijackThis before (but have heard a lot about it). I have heard that a novice user should avoid using HijackThis.....
Please advice.
Thanks
Shashank
0
 
LVL 47

Assisted Solution

by:rpggamergirl
rpggamergirl earned 250 total points
ID: 22805829
Hi there b_haynes!  nice to see you, :)


Shashank,
That's right, it is never good to have 2 antivirus running in the system, it can only cause lockups and inefficiency to protect the system, not to mention it's a waste of resources.
Similar also applies with anti-spyware, it is not a good idea to have 2 anti-spyware running with both having a real-time protection.
But it is okay to have 2 anti-spyware installed( I have both Spybot and SUPERAntispyware and also MBAM at some stage) but only one should have a real-time protection, the other one can be used as an on-demand scanner which works extremely well with SUPERAntispyware as updates are free.


And if you ask whether having 2 antivirus with only one having a real-time protection okay?
No, that is still not good, an online scan is the better way of checking what your resident antivirus may have missed than installing a second antivirus.

 
>>>Should I uninstall my Avast first before installing FixIEDef or Malwarebytes (because Avast also has some Malware detection features)? Is it safe to delete files from the "%temp%" folder?< <<
No you don't need to uninstall Avast to run FixIEDef or MBAM, you just need to disable it while running the scan.
Yes, it is safe to delete files inside the temp folders, it's advisable to clean out all your temp folders now and then.
The only time that you shouldn't delete files in the temp folders is when you just installed a program/or updates and you have not rebooted yet. But after you've rebooted it should be okay. Some tools/scanners also needs files from the temp folders while scanning but after you've done with the tool it is then safe to delete any files there.
 

>>> I have heard that a novice user should avoid using HijackThis.....<<<
Yes, a novice should be careful what entries to fix in Hijackthis as fixing a crucial entries that the system need could cause system instability or applications to stop running. But some entries in hijackthis are not so crucial e.g. R's, 09, 016 entries which can be safely fixed. You can also safely fixed an 04 lines if you want to stop certain programs from running at bootup, fixing their entries only disable them, it doesn't affect that particular program when you need to run it.

Here's a good Hijackthis tutorial if you like to check out.
http://www.bleepingcomputer.com/tutorials/tutorial42.html

0
 
LVL 12

Author Closing Comment

by:sstampf
ID: 31509386
Solution by b_haynes was sufficient to heal my computer, but comments by rpggamergirl immensly helped me improve my knowledge on spywares. Thanks both of you.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Malware seems to be getting smarter and smarter. If you are having trouble being able to launch your malware removal tools such as (and recommended): MalwareBytes, HiJackThis, ComboFix, etc. you can try some of the workarounds listed below. 1. Ma…
In this article we have discussed the manual scenarios to recover data from Windows 10 through some backup and recovery tools which are offered by it.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
I designed this idea while studying technology in the classroom.  This is a semester long project.  Students are asked to take photographs on a specific topic which they find meaningful, it can be a place or situation such as travel or homelessness.…

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now