Hi. I have a couple of questions to ask so I'll just tell you what happened. I was looking through google images, and suddenly AVG tells me it's detected a trojan. I end the process straight away (i got it through some flash.exe thing idk). Later on, all my quick launch buttons have gone to hell along with all my desktop icons etc you know the story. So I open up Task Manager, lo and behold, a weird nonsense program called WinHex.exe is running, as well as some apparently safe (so the internet told me) unfamiliar program called attrib.exe (i'd checked the internet with this before and they said it was safe, but i later realised if it's not familiar it shouldn't be there). There was also some suspicious looking file called img0ing2eaTurc0mput3rz.oat or something
This program kept restarting periodically, and went FULLBLOWN into action after i restarted the computer, and that's the first time i saw the name "Vista Repair". So I decided to Open File Location and then went into safe mode to delete it ('twas in the Program Data folder). I restarted, deleted registry edits using this source
(please tell me this was right because I have only ever used regedit to make bubbles appear on my screensaver and I understand the perils of being a n00b), and used unhide.exe successfully.
In between this, I ran AVG about 1478934257 times and it would detect nothing. Not even before I went into safe mode and deleted the original trojan exe files in the Program Data folder. Question1) Why?
I practise Safe Internet. I have a million adblocks on firefox, and I'm always warned about malicious stuff before I hit a website. I was seriously only on google images when this happened. I have a few other tabs open all the time, like twitter, gmail, and youtube, which can't have been the source of this attack. I NEVER pressed accept on anything. Question2) How did this virus download itself? Did it just download automatically? I never accept anything that is undue.
and of course Question3 - is there anything left to do? any residual files that have remained from this Trojan battle? I'm currently 51 minutes into running a full-on fully sick full scan on MBAM, and nothing so far.
Danke in advance.