I normally run a deep scan using Avast Free Edition every 10 days but due to a heavy work load I could not run it for a 3-4 months but when i ran it yesterday Avast picked up a infection in the System Volume Information folder of the C:Drive.
When I tried to move it to the chest (Quarantine) Avast tells me to reboot the computer with a boot scan.
When i doo this the bootscan log shows no infection but rescanning shows the same infection in the same file. Cleaning & deleting the file via Avast gave the resposnse of rebooting with a bootscan and still the detetction persists. Rescanned in Safe Mode using Avast and still a detection is shown.
I installed MalwareBytes Anti-Malware and did a deep scan but nothing was detected. I rescanned in Safe Mode but still MBAM found nothing.
Then I installed ESET Online scanner (as it was recommended by many). The deep scan showed no detections. I did not try this in Safe Mode.
I also installed MalwareByte Anti-Rootkit and did a scan in both normal and safe mode. Nothing was detected.
So i removed all my restore points using CCleaner and created a new restore point. Then rescanned with Avast and it still detects the same file as a rootkit. Rescanned with all other previously mentioned tools and it showed nothing.
The issue is the one underlined in Red (below image). The other detection in the memory is appararently a false-positive in this version of Avast according to a post on their forum.
My Software Specs:-
- Windows XP Pro. Service Pack 2 (unupdated)
- Avast free antivirus (program edition 7.0.1474) (virus definitions version latest)
- Visual Studio 2005 & SQL server
- Firefox 29.0.1
- Latest Flash Player update
I cannot install the latest program edition of Avast due to it giving Blue Screen of death and other errors in Windows Xp SP2. So im using an old version but updating the virus definition every day automatically. I am forced to use some pieces of outdated free software as the new versions come with adware.
Issues with overall computer running:-
Visual Studio 2005 is really slow but at times it becomes fast. I can't remember my previous experiences with VS2005.
Yesterday morning before I detected the virus upon boot I was asked if I wanted to select a debugger to debu some error which I did not select and the computer booted.
2-3 Weeks ago i had spam in my Gmail inbox. This usually never happens as all spam goes to the spam box.
My computer specs:-
Lenovo 3000 n100 Laptop
Intel Core Duo T2350 1.8Ghz
512MB ram (502MB ram due to onboard VGA)
check next post for logs