Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
I use Computer Associates Security for my virus, spyware and Internet protection. Several months ago, I downloaded a program. I immediately scanned it for viruses or spyware and it came up clean. I then installed it. Many scans since then have come up clean. Now, months later, an overnight scan is showing a Win32/Ilar.O virus was deleted from the setup.exe. I don't understand where this came from at this late date. BTW, every few weeks, I update CA, Spybot and Adware, turn off System Restore, go into Safemode, and run the scans just to be sure nothing remains in the restore file. These have come up clean. This is not the first time this has happened. Each time a virus is found, it is a different name. I guess I just don't understand the anatomy of a virus and how it survives repeated cleanings, but only appears randomly under different names. Would one of you experts clue me in, please.
Cleaned virus will reappear without challenge straight from the System Volume Information (SVI) folder managed by System Restore. SVI folders are off-limited to all AV programs.
If you have System Restore turned on, turn it off then rescan the PC to remove all traces.
i_Xp/VistaUser
0 
From what I read I can see that the poster turns OF system restore and scans (it may have been overlooked...np:)
**every few weeks, I update CA, Spybot and Adware, turn off System Restore, go into Safemode, and run the scans just to be sure nothing remains in the restore file. **
SweenCat, this is worth a shot. D/L Avast Free to your desktop:
http://www.avast.com/eng/download-a...Looks like you maybe had Norton installed prior to setting up CA Trust. If so, go to the Norton website and user their uninstaller to remove whatever else is lurking on your PC. Then use regcleaner:
http://www.majorgeeks.com/download4...
to clean out the rest of the previous AV.Now turn off CA and install Avast and make sure to put a check in that it does a bootscan on reboot. Move everything it finds to the chest.
If things are not running better, then go into safe mode with networking and do this free active X scan:
http://www.spywareinfo.com/xscan.php
also remove all it finds.Post back on how you are making out. There's other suggestions yet. Thanks
Some HELP in posting on Cnet plus free progs and instructions Glad to Help!
0
no problem, we all make reading mistakes....especially me at the best of times :)
To Er is human
Some HELP in posting on Cnet plus free progs and instructions Glad to Help!
0
Thank you to all who responded. I followed all the suggestions made by XpUser4Real. The Avast scan turned up three Trojans. The active X scan showed a few infestations as well. I'll monitor future CA Trust scans to see if anything comes up again now that I turned it back on. I hope it is OK for me to ask some additional questions: (1) How did you know that I used Norton's before CA Trust? (2) Why did these viruses only show up in scans every once in a while--but not every time? (3) If I had given this same program to someone on a CD, would that have infected their computer as well? Thanks again!!!!
0
(1) How did you know that I used Norton's before CA Trust?
I figured it had to be Norton or McAfee, because they get so imbedded on a PC that unless everything is removed, no other AV or firewall will work properly
(2) Why did these viruses only show up in scans every once in a while--but not every time?
That's a hard one to explain, viruses have a habit of doing that
(3) If I had given this same program to someone on a CD, would that have infected their computer as well?
It is not the CD that's infected, it was because of what was left on your PC from other AV's.
FWIW, I just finished working on a retired Army friend's laptop. He had Roadrunner as his ISP and they offered CA Trust for free. He loaded that up and suddenly his PC took 10 minutes or more to boot up. Slow as mollasses. I did the same to his PC as what you did....Then I totally uninstalled CA and loaded up:
1-Avast Free
2-Comodo Free Firewall
3-Spyware TerminatorNow his PC boots up in 45 seconds....he was amazed.
See, Avast doesn't need any maintenance or scheduled scans....with the Avast webshield it catches any viruses in real-time allowing you to abort your connection to prevent getting them. This is great for home use.
Some HELP in posting on Cnet plus free progs and instructions Glad to Help!
0
Thank you again XpUser4Real. I blew off CA Trust and installed the three programs as you suggested. So far, I like the marked improvement in speed. Not being an expert on this stuff, I ran into a few areas I'm unsure of. Would you lend me your expertise one more time, please? In Comodo Firewall, if I leave the Network Monitor on, it shows my "Protection Strength" as excellent. However, then I cannot share my desktop and laptop drives. If I turn it off, I can access all drives from either computer, but the "Protection Strength" is only good. Does this really leave me vulnerable? Secondly, under Avast, I get a pop up asking me to allow or deny an application called "svhost.exe" (Parent: services.exe). I looked this up and some web sites say it could be a malicious virus and some say it is a system file. Should I permanently 'allow' or 'deny'??? Thanks again for your "spot on" assistance!
0
Is it svhost.exe or SVCHOST.exe that Avast is asking about?
For the Comodo question, you may want to send their support a question on that, they are pretty good at getting back to you in a short time.
Some HELP in posting on Cnet plus free progs and instructions Glad to Help!
0
Sorry, I typed it incorrectly. It is svchost.exe. Good file or bad file? I'll email Comodo about my networking problem. Thanks again for your help.
0
http://forums.comodo.com/general_se...
Explains about it....Hope that helps :)Some HELP in posting on Cnet plus free progs and instructions Glad to Help!
0
Oh boy! Will it never end? Ok, when I first installed Comodo and turned off the Network Monitor on both computers, it let my desktop and laptop communicate on my home network. Then when I went back to use the laptop a second time, it only connects to my Linksys wireless router with limited or no connectivity. I followed the instructions for creating rules per the link that you so graciously provided, however, I still cannot get connected. I turned off all computers, the cable modem and the router. Then, after about 30 seconds, I turned them back on router > modem > computers thinking I would reset the router acquire a new IP address...but no luck. Since it all started after I installed Comodo, am I correct in assuming this is a Comodo problem? Also, in the instructions for creating the rules per the link, it didn't say if I was to leave all the rules already there or remove them and just use the four described. Sorry to be such a pain, but please,please, bear with me just a little bit longer. Otherwise, I'll have to blow Comodo off and just use the Windows firewall which I understand isn't too defensive. Thanks once again for your assistance.
0
Did you hear back from the Comodo techs yet?
Some HELP in posting on Cnet plus free progs and instructions Glad to Help!
0
I misunderstood. I didn't contact Comodo cause I thought you were telling me to read the info at the link you gave me instead and do that first. I'll check with Comodo now. . .
0
I just spent the last while perusing the Comodo website. I came across this link: http://forums.comodo.com/frequently...
I printed the instructions entitled "CPF Installation - Step by Step. I un-installed CPF on both my desktop and my laptop and re-installed it following these to the letter. I did not change anything or create any new rules and so far, everything appears to be working correctly. I have Internet on both computers and can file share. All seems right with the world (for now!). I guess I should have gone to the web site and looked these directions up before I installed the firewall. I didn't realize how many problems it could cause otherwise. Thank you for seeing me to the end of this.
0
You are welcome and thanks for posting back!
Let's other people know if they have the same problem.
Thanks again.Some HELP in posting on Cnet plus free progs and instructions Glad to Help!
0  |
 |
 |
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
