| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 85506 | 2007-12-12 12:28:00 | Trojan Horse | bk T (215) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 620621 | 2007-12-12 12:28:00 | My Chinese neighbour's computer has XP Pro installed with AVG anti-virus. It's working fine for quite a long time untill this evening. His AVG updated the virus definitions when he turns on the PC, as usual. When he launched IE, AVG immediately detected a Threat: "Trojan horse, iexplorer.exe - Downloader.Generic6.ZAG" He clicked 'Heal' and that's it, he cannot use IE anymore! I uninstalled AVG and installed AVAST and performed a scan but couldn't find any nasties. I even scanned his XP installation CD and AVG detected the above Trojan Horse!? He has been using this computer for about 3 years already without any problems with AVG. It only happens when he updated AVG this evening. Could this be a false detection by AVG? However, my English ver of XPs (a laptop and a desktop) have no problems with AVG's latest updates. Anyone in this Forum uses Chinese ver of XP with the same problem? |
bk T (215) | ||
| 620622 | 2007-12-12 13:12:00 | Is system restore on? Can it be restored to an earlier date *EDIT* There seems to be quite a number of false positives by AVG on Trojan Horse Generic6.xxxx from reports I just been reading |
bevy121 (117) | ||
| 620623 | 2007-12-12 15:00:00 | I have seen many PC have this problem today. and I also notice this only virus only works on Simple Chinese version Windows XP, | bathor (13142) | ||
| 620624 | 2007-12-12 15:19:00 | I have simplified Chinese XP. I have the exact promblem described above.... I ve been using avg for a long time and although it reports trojan downloader from time to time (my xp is not updated with new patches) but this time i cant use IE, it just happened a few hrs ago. I thought there was a serious virus or something so i formated my drive and reinstal my windows, but as soon as i got online and updated avg i got the same problem. Hopefully its just AVG messing it up, now i m using firefox it works perfectly fine. :waughh: :waughh: |
nicholasquall (13143) | ||
| 620625 | 2007-12-12 15:50:00 | I have the exact promblem described above | chrisbox (13144) | ||
| 620626 | 2007-12-12 16:03:00 | I have encountered the same problem today. Simplified Chinese version of XP with AVG on my desktop and notebook. Firewall(Kerio/Comodo) did not raise any alarms but IE is completely screwed up. I have made a post on the AVG free forum. Maybe we should check there if someone could help. forum.grisoft.cz |
Philharmania (13145) | ||
| 620627 | 2007-12-12 20:25:00 | oh oh, it seems that China has encountered another "attack", this time by AVG. Remembered not too long ago there was an "attack" by Norton Antiviurs. :D | bk T (215) | ||
| 620628 | 2007-12-12 21:59:00 | Hi bk T This will help to identify any malware on your system . Please download Combofix from any of these locations: Here ( . bleepingcomputer . com/sUBs/ComboFix . exe" target="_blank">download . bleepingcomputer . com) or Here ( . forospyware . com/sUBs/ComboFix . exe" target="_blank">www . forospyware . com) Save ComboFix to the desktop . 1 . Double click on combo . exe & follow the prompts . 2 . When finished, it will produce a logfile located at C:\ComboFix . txt . 3 . Copy and Paste the contents of that log in your next reply with a new hijackthis log . Do not use Code or html unless asked for . Note: Do not mouseclick combofix's window while it is running . That may cause your system to stall/hang . Caution . . . Never run and remove files using ComboFix without being supervised by a security analyst . |
Pancake (6359) | ||
| 620629 | 2007-12-13 01:09:00 | do all of you use the chinese version? | nerd (109) | ||
| 620630 | 2007-12-13 01:47:00 | Further to my first post, I have looked at more reports and am now more convinced this is not a virus, but in fact a "false positive" from AVG However, whether you choose "heal" or not to still seems to result in the same outcome - IE no longer functions... The only suggestion (currently) seems to be turn off hueristic scanning for the time being. When Grisoft adjusts the virus defintions you can turn it back on. and replace the IE file I think the file needed for replacement can be downloaded here (http://61.151.247.2) Yes nerd, it only seems to be the Simplified Chinese versions that are affected |
bevy121 (117) | ||
| 1 2 3 | |||||