Atleast one Trojan (listed on initial post) is sitting in the AVG Virus Vault.
When an anti-virus or security program quarantines
a file by renaming and moving it into a virus vault (chest) or a dedicated quarantine folder, that file is essentially disabled and prevented from causing any harm to your system. The quarantined file is safely held there and no longer a threat
until you take action to delete it. One reason for doing this is to prevent deletion of a crucial file that may have been flagged as a "false positive
" especially if the scanner uses heuristic analysis
technology. Heuristics is the ability of a scanning program to detect possible new variants of malware
before the vendor can get samples and update the program's definitions for detection. Heuristics uses non-specific detection methods to find new or unknown malware which allows the anti-virus to detect and stop if before doing any harm to your system. The disadvantage to using heuristics is that it is not as reliable as signature-based detection (blacklisting) and can potentially increase the chances that a non-malicious program is flagged as suspicious or infected. If that is the case, then you can restore the file and add it to the exclusion or ignore list. Doing this also allows you to view and investigate the files while keeping them from harming your computer. Quarantine is just an added safety measure
. When the quarantined file is known to be malicious
, you can delete
it at any time usually by launching the program which removed it, going to the Quarantine tab, and choosing the option to delete.
Your Malwarebytes Anti-Malware log indicates you are using an older version
) of MBAM with with an outdated database
. Please download and install the most current version (v1.46
) from here
. You may have to reboot after updating in order to overwrite any "in use" protection module files.
The database shows 2421
. Last I checked it was 4129
Update the database through the program's interface (preferable method
) or manually download the definition updates
and just double-click on mbam-rules.exe
to install. Then perform a new Quick Scan
in normal mode and check all items found for removal. Don't forgot to reboot afterwards. Failure to reboot normally
(not into safe mode) will prevent MBAM from removing all the malware. When done, click the Logs
tab and copy/paste the contents of the new report in your next reply.
Note: Mbam-rules.exe is not
updated daily. Another way to get the most current database definitions if you're having problems updating through the program's interface or have already manually downloaded the latest definitions (mbam-rules.exe) shown on this page
, is to do the following: Install MBAM on a clean computer, launch the program and update through MBAM's interface. Copy the definitions (rules.ref
) to a USB stick or CD and transfer that file to the infected machine. Copy rules.ref to the location indicated for your operating system. If you cannot see the folder, then you may have to Reconfigure Windows
to show it.
- XP: C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware
- Vista: C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware[/color]