Trojan? or not

  • Thread starter Thread starter learning
  • Start date Start date
L

learning

I am very new to this an need help. My virus software has reported
W32/Behavior:SelfStarterInternetTrojan!Maximus (it is located in c
:\system volume information \restore- it is an exe file) so I am not
sure if this is there beacause I or the system created a restore point
or if it is a bad thng that needs to be deleted. I appreciate any
information. Thanks!
 
Which antivirus program are you running? Please tell us its name & version.
Make sure your AV is up-to-date with definitions.

I'd suggest your restart your pc, and start it up in Safe mode. (Tap & retap F8 key as soon as pc powers up).
Once in Safe mode, have your AV do a full scan. Write down the locations of any viruses/trojans.
When finished, restart the system normally.

Submit any suspect file to Virustotal website
http://www.virustotal.com/en/indexf.html

Point your browser to that site, Click the Browse button and then navigate to folder containing that file, then the file, then click the Submit button. The various virus scanners will identify the file and if it is not identified, the AV vendors will then have a copy of it for analysis.

Post back with your findings.
 
Thank you for your help. I am using Freedom (anti virus/ spyware) it
is provided through adelphia cable company and i have done all updates.
I will proceed to do what you suggested and let you know the results.
Thanks again for the help.
 
From: "learning" <[email protected]>

| I am very new to this an need help. My virus software has reported
| W32/Behavior:SelfStarterInternetTrojan!Maximus (it is located in c
| :\system volume information \restore- it is an exe file) so I am not
| sure if this is there beacause I or the system created a restore point
| or if it is a bad thng that needs to be deleted. I appreciate any
| information. Thanks!
|
| --
| learning

There are anti virus News Groups specifically for this type of discussion.

microsoft.public.security.virus
alt.comp.virus
alt.comp.anti-virus

You didn't mention the name of the anti virus software but since the sufiix is Maximus this
is a Heuristic detection by F-Prot, Authentium or an OEM version.

It was found in the System Restore Cache which gives you two options.

1. Dump the contents of the cache and all restore points and recreate the cache so you
will not re-infect the computer if you Restore from a previous period.

2. Forget about it and hope the Trojan will cache-out.

No Trojan is a good things there are just levels of just how bad it is.

Have you scanned the entire system and made sure it isn't infected ?
That is other than... C:\system volume information\_restore
 
From: "learning" <[email protected]>

| Thank you for your help. I am using Freedom (anti virus/ spyware) it
| is provided through adelphia cable company and i have done all updates.
| I will proceed to do what you suggested and let you know the results.
| Thanks again for the help.
|
| --
| learning

Freedom IS a OEM of the F-Prot/Authentium engine and signatures.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Back
Top