Trojan.W32.Looksky

This is a bit strange with Startup Manager - I can't find it anywhere. When I download it, it doesn't ask me for a location, it just goes straight into the Start Up Tool - any thoughts?

 

Should I just right click and delete these Imesh icons/folders then or do I have do do something more in depth?

 

No, I didn't and I did a new download and it did exactly the same thing with no download destination and I still can't find it (incidentally, I unticked what I didn't want and it still worked). I will try downloading from a different site and see if that works.

 

Sometimes if I had a brain cell I'd be a plant!! I was clicking run on the startup manager instead of save!! Doing it too late at night and too tired to realise what I was doing.

I have removed the iMesh stuff and the Steam Install.

Just one more quick question - I went into the Control Panel to adjust the User A/cs and noticed a user (n addition to the four of us and Guest a/c) called:

ASP.NET Machine A..

Do you know what this is please??

 

I have uninstalled AntiVir and installed Avast! Home Edition instead. This did a scan before loading windows and found some adware and some trojans. The first couple of adwares I deleted, the other 6 I moved to the chest .

3 of these came up with an 'are you sure message' about moving because they were in a windows folder. They were:

C:\Windows\context.exe (infected by Win32:Trojano-1481)
C:\Windows\SYSYEM32\4lxRes.dll.bak (infected by Win32:Spyware-gen)
C:\Windows\specialoffers.exe (infected by Win32:Trojano-1481)

The other 3 I moved just let me move them without an 'are you sure' message. These were:

A0000184.exe (infected with Win32:Adware-gen)
A0000184.exe (as above)
A0000186.exe (infected with Win32:Trojan-gen)

Have I done the right thing in moving these to the chest?

 

I am extremely cautious. After speaking to my son as to exactly what happened (he is 17 after all and is aware of the do's and don'ts), he did what he thought was the right thing - he got an apparent security alert that looked like it was coming from our antivirus software, saying a trojan had been detected, that it was serious, and yes or no to clean. I wasn't home, he clicked yes and that started the problem. He now knows just to exit the window and tell me what has happened and I will deal with it .... hopefully!!!!

I would like to say thank you very much for your help and skill in removing this ... once again majorgeeks (and their experts!) has been an invaluable asset. And to all you 'first-timers' out there with problems, I cannot recommend these guys highly enough, they know what they are doing and just be patient and don't panic ... it may take a few days, a week, or more (with the time difference!) but they will fix it!!!

Thanks again