Solved Trojan.Agent/Gen-FakeAlert

[VistaKing]

Layback Bear I had him run ESET online scanner it found these

D:\Users\username\Backups & Archives\Android\Droid Charge 2 GB Micro SD Card.zip	a variant of Android/Plankton.I trojan	deleted - quarantined
D:\Users\username\Backups & Archives\Android\Samsung Droid Charge Micro SD Card (11.24.12).rar	probably a variant of Android/AdMogo.A application	deleted - quarantined

   Note

Changed the actual user name to username for privacy purposes

ROBO731

Click here DDS

:ar: Click on Download Now button

:ar: When the download is complete . Drag the DDS program from the Downloads folder to your Desktop

:ar: Double click the DDS icon on the Desktop then click the Run button to run the tool.

:ar: Place a check next to attact.txt and click Start . When done, DDS will open two logs
DDS.txt
Attach.txt

:ar: Save two logs onto your desktop and upload them with your reply

 

[ROBO731]

Here's the logs.

 

[VistaKing]

Uninstall Avast and install MSE instead

Download http://files.avast.com/iavs5x/aswclear.exe save it to your Desktop

Open (execute) the uninstall utility
If you installed avast! in a different folder than the default, browse for it. (Note: Be careful! The content of any folder you choose will be deleted!)
Click REMOVE
Restart your computer

Download and install MSE do a full scan

http://mse.dlservice.microsoft.com/...4-AF60-E44F6DC28BD8/enus/amd64/mseinstall.exe

 

[ROBO731]

Can't I just disable the shields on avast temporarily or are you suggesting that I should use MSE instead of avast from now on?

 

[VistaKing]

Remove avast and use MSE from now on .

 

[Layback Bear]

VistaKing I understand that Eset remove them.
My wording wasn't as it should of been.
Let me put it this way instead.

ROBO any infection of anything that is on your computer or hooks up to your computer is and should be a concern.
A infection can and do call themselves all kinds of names to try and hide.

So when VistaKing get you all cleaned up please be concerned about such things. It will help you stay clean.
I will go away and watch.

 

[ROBO731]

Okay, the scan is running now.

 

[ROBO731]

VistaKing I understand that Eset remove them.
My wording wasn't as it should of been.
Let me put it this way instead.

ROBO any infection of anything that is on your computer or hooks up to your computer is and should be a concern.
A infection can and do call themselves all kinds of names to try and hide.

So when VistaKing get you all cleaned up please be concerned about such things. It will help you stay clean.
I will go away and watch.

Well, the very reason I made this thread was because I was concerned. I had misunderstood and didn't think that those infections would affect my computer. I'll be more wary from now on.

 

[VistaKing]

Lets see what MSE finds .

 

[ROBO731]

No threats detected

 

[VistaKing]

That's good .

1. Download TFC by OldTimer (Temporary File Cleaner)
2. Double-click TFC.exe to start it. (If you are running on Windows Vista or Windows 7, right-click on the file and choose

Click on the Start button

 

[ROBO731]

Okay it completed and removed 3777 MB.

 

[VistaKing]

Hows your PC running ?

 

[ROBO731]

Everything seems fine. The only thing that was strange before was that it would freeze occasionally.

 

[VistaKing]

Is it freezing now ?

 

[ROBO731]

Nope. It hasn't done that since I began the scans.

 

[VistaKing]

How's the PC running ?

 

[VistaKing]

Click here :ar: TDSSKILLER to download

Right-click the program and select: Extract to tdsskiller


A TDSSKiller folder is found on your Desktop.

Open the folder, and double-click the TDSSKiller application.


When the TDSSKiller console opens, click on: Change Parameters

Under Additional Options, place a check in the box next to: Detect TDLFS File System
Click: OK


Press: Start Scan


If a suspicious object is detected, the default action is Skip, leave it as is, and click on: Continue
If malicious objects are found, they show in the Scan results.
Ensure Cure (the default) is selected, then click: Continue > Reboot now, to finish the cleaning process.
(Note: If Cure is not available, select Skip, >>Do not select: Delete<<)


When done, the tool outputs its log to the disk with the Windows Operating System, normally C:\


Logs have a name like:
C:\TDSSKiller.X.X.X_12.04.2013_15.31.43_log.txt


Please post the TDSSKiller log in your reply.

 

[ROBO731]

Nothing was detected, and thus no log was created (I assume). Attached is the report though which I assume has the same information as what the log would contain.

 

[VistaKing]

You're coming out clean . That's good . How's the PC run a scan with the program that found the trojan first time around .