cvasds.dll looks to be a variant of Win32/PSW.OnLineGames.NNU
and has just this morning been reported to sUBs at Malwarebytes who is investigating it.
Finding that temp folder is normal in docoment and setting\local settings. Did you try deleting the file in in "safe mode
"? If not, please try to do so. If that does not work then there probably are other malicious files related to the infection on your system and one of them may be protecting the dll from being removed. If so, you can also try this:
Please download TFC
(Temp File Cleaner) by Old Timer and save it to your desktop.alternate download link
Note: It is normal for the computer to be slow to boot after running TFC cleaner the first time.
- Save any unsaved work. TFC will close ALL open programs including your browser!
- Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
- Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
- TFC will clear out all temp folders for all user accounts (temp, IE temp, Java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder.
- Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
Since Eset appears to be detecting the infection, please perform a scan with Eset Online Antiivirus Scanner
.(Requires Internet Explorer to work. If given the option, choose "Quarantine" instead of delete.)Vista users need to run Internet Explorer as Administrator. Right-click on the IE icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.Note: Some online scanners will detect existing anti-virus software and refuse to cooperate. You may have to disable the real-time protection components of your existing anti-virus and try running the scan again. If you do this, remember to turn them back on after you are finished.