Think i have a virus or worm?

Yesterday i tried to download something that i thought was genuine from a website, but as i did avast my antivirus told me i had a virus or a worm??

Everytime i boot up now spybot asks about a registry change??

What should i do now? I guess you may say download high jack this? But you are the pro's and i await to hear what you think i should do!

Thanks in advance.

Flip.

 

Do a scan thorough scan with Avast if it finds a bug send it to chest and repair. Whats the warning message ?

 

Right the first two questions are easy!! Damm the second two i should of written down the answers to those as i saw them!!

Anyways i'm using XP and the file i went to download was mp3DirectCut v2.08. When the avast thing popped up to say i had a virus or a worm i kept preesing move to chest and another window kept popping up, basically not letting me do it. I'll reboot and see what the spybot registry change says and re post in a mo.

Cheers so far.

Flip.

 

Right i rebooted and the spybot window appeared again, I have attached a screen shot to show you what i says, if it's too small to read i have written it down so just let me know and i'll post it. As for what avast said I can't remember, is there anyway I can find out by looking through avast?

Anywyas check the attached pic and get back to me, thanks in advance.

Flip.

 

I just checked the pic and you can't see what it says!!

Here is the info:

Category: Session Manager
Change: Value Changed
Entry: BootExecute
Old data autocheck autochk *\aswboot.exe/M:157d7
New data: autocheck autochk*\
Tick Box Remember Decision

Box: Allow Change Box: Deny Change

I clicked deny change but didn't click the check box

 

well i never actually downloaded it in the end because all these windows were popping up from avast! So you rekon it was just doing all that as a precation? So what should i doi with spybot, click the check box and click allow or deny? I I haven't actually downloaded it yet why is the spybot window popping up? Has it changed something in the registry even though it hasn't actually arrived at my computer to put it that way?

Thanks for your help thus far....

Flip.

 

I was trying to download it from the developers site. I have just checked the log viewer and in the warning section it has two different logs both yesterday when i tried to download it and they both say

"Sign of "Win32:Trojen-gen {Other}"has been found in "C:\Documents and Settings\User|Local Settings|Temporary Internet Files\Content.IE5\AXKRG2AX\mp3DC208[1].exe"file.

Hope this helps?

Flip.

 

Since you say you didn't change anything on your system then deny the request to change the registry and get the app from the link Halo posted, I'm just going here by general principles not that I know what the request is. Basically, if you didn't ask for something then deny as a rule of thumb until you know what it is. If my AV squawked and I get an unknown and unexpected request to change the registry...

 

Well, I just downloaded MP3DirectCut from the link Halo provided (here http://majorgeeks.com/mp3DirectCut_d4668.html) and scanned the downloaded file with AntiVir and SUPER Antispyware; both said it's clean. I then extracted the downloaded file and scanned the individual files and folders; again, all clean. Then I launched the .exe just to see if it set off any warnings, it did not. When I exited the program, it created an .ini file in the MP3DirectCut folder. So I scanned that too (after I looked at it in Notepad) and that was clean. I would say Avast is giving you false positives or you downloaded the file from a shady web site. If possible, always download a desired program from Major Geeks (or a site like Major Geeks, but there aren't many). MG checks each and every file before it's hosted and posted here; they look for viruses, trojans, spyware, and even sneaky stuff like how some programs will install a toolbar or some programs 'require' that a certain something be installed (WhenUSave adware is good example of this). Anyway, Major Geeks checks for all this stuff in each program listed here; if something isn't right, it isn't hosted or posted. So, whilst you're out surfing the web and you come across a program that looks good to you, check here first to see if MG has it. Then you know what you're getting.

BTW- Avast is fairly well known for an abundance of false positives.

(sorry for the way-too-long post I've had way-too-much coffee today :hyper)

 

Thanks for all the help thus far, you have all been a great help. I have just done a CClean and I guess that any rubbish that need not be there is not anymore.

Whilst we are on the subject of CCleaner there are a few things that I have often wanted the answers for.

In the "Cleaner" section there are two tabs at the top "Windows" and "Applications" under applications everything is ticked off as standard, but under the "Windows" section there are quite a few check boxes that are not checked.

They being:

1: Auto complete form history
2: Start menu shortcuts
3: Desktop Shortcuts (I think I understand what this one is for, but if somebody could confirm for me)

Under the "Advanced" section none of them are checked

1: Old Prefetch Data
2: Menu order catch
3: Tray notifications catch
4: Window size / Location catch
5: User assist history
6: IIS Log Files
7: Hotfix uninstallers
8: Custom files and folders

Could somebody explain what these check boxes are for and if any of them would improve the clean up of my system.

Many thanks in advance.

Flip.

 

The ins-n-outs of CCleaner should probably be discussed in a new thread, or, better yet, visit the following link for answers to your CCleaner questions http://www.ccleaner.com/help/faq and if your concerns are not addressed there, go here http://forum.piriform.com/ and join the forums and post your particular questions.

I hope this helps! :-D

[dlb]
:major

 

Right i have used CCleaner and another tool called clean up, CCleaner is set up to leave the cookies for the sites i use often and so when i used clean up it erased all the cookies for the sites i use often, so i have had to try and remember all my log ins and passwords!! Arghh, anyways i don't know weather anybody would suggest that one of the above mentioned progs is better than the other? I don't guess i need both?

But to the point even though i have cleaned up my system i still get the spybot registry change window after every boot up? What do i need to do to get rid of that?

Do i need to hit the check box (remeber this decision, or something similar) and hit deny change? And once i have done this will this mean that my comp is back to original state before itried to download this prog? Do you recommend any freeware progs that look after the registry on my system and make sure everything is running ok?

And back to the original prog that i went to download the mp3 splitter, are there any other ecommendations from you lot, basically i want it to chop and split up different music files, mainly for tracking up long mixes that come as one track if you get me? Also i want to chop up tunes to make suitable ringtones for my phone, anyone got any recommendations?

Cheers once again, the advice and help on this site is second to none!

Phil