Run atleast one Anti-trojan Scanner:
AVG Anti-Spyware Free (formerly ewido anti-spyware) runs on Windows 2000, XP and Vista (32 and 64 bit)
Only if you already have either
AVG Anti-Spyware version 7.5.0.50 or the Vista compatible version 7.5.1.43,
installed, then: (Otherwise proceed to
Step 1)
- Open AVG Anti-Spyware, make sure it is fully updated and then close it.
- Do NOT run a scan yet.
- Proceed to Step 2 below, so you may perform your ewido scan in safe mode.
Step 1 - Download, Install, and Update AVG Anti-Spyware Free - Please download the AVG Anti-Spyware Free v.7.5.1.43 installer to your desktop.
- After the download is complete, double-click on the ewido install file to launch the installation process.
- Follow the prompts and be sure that Launch AVG Anti-Spyware Free is checked.
- Once the AVG Anti-Spyware Free main program screen has opened, click on Update now.
- You will see an update progress bar, followed by an Update Succesful message when updating is complete.
- After the database is installed, Click Scanner | Settings
- Under How to act?
- Select Recommended Actions and choose Quarantine to set the default action for detected malware
- Under the Reports section:
- Select Automatically generate report after every scan
- De-select Only if threats were found
Once updating is 100% complete close AVG Anti-Spyware, so you can perform the AVG Anti-Spyware scan in safe mode as described in Step 2. Safe mode is preferable because often malware programs which run in normal Windows mode will not be running in safe mode. This makes it easier to safely quarantine these threats because they will not be "in use". Another advantage, is some rootkits may not run in safe mode, and if this is the case, AVG Anti-Spyware will be able to detect them and the malware they are hiding. If you have trouble starting your computer in safe mode, just perform the scan in normal Windows mode as outlined in Step 2.
Note: This new version of AVG Anti Spyware (7.5.1.43) corrects the inability to run in safe mode that was present in the recently released v.7.5.1.36. If you previously installed AVG Anti Spyware v.7.5.1.36, please uninstall it and replace it with this newer version (v. 7.5.1.43). Then proceed to Step 2.
Step 2 - Perform AVG Anti-Spyware scan in safe mode and save the scan report
- Boot into Safe Mode
- Restart the computer
- Watch the screen while it is black. After the BIOS memory check is done, start tapping the F8 key
- If done correctly, the Windows Advanced Options Menu will appear.
- Select Safe Mode from the options menu. Starting Windows in Safe Mode may take several minutes
- Logon on using your usual account name
- Perform the AVG Anti-Spyware scan
- Select the Scanner icon at the top
- Click the Scan tab
- Select Complete System Scan.
- If a threat is found, make sure Quarantine is set as the action to apply, and then click Apply all actions
- Allow the scan to complete
Note: Do not, proceed to Step 3 - Save the scan report until you have clicked the Apply all actions button. If you do, the log that is created will indicate "No action taken", making it more difficult to interpret the report. So be sure you save it only AFTER clicking the Apply all actions button.
- Save the scan report
- Select the Reports icon at the top.
- Select the Save report as button in the lower left hand corner of the screen
- Save the report to a location which you will remember, so it is readily available if a staff member requests to see it. If you post a hijackthis log, please include it in your topic. By default, the scan report is saved to a reports sub-folder within the AVG Anti-Spyware 7.5 folder:
On Win 2k and XP systems, the default scan report location for both AVG AS v. 7.5.0.50 and v.7.5.1.43 is:
- C:\Program Files\AVG Anti-Spyware 7.5\Reports\
On Vista platforms, the default scan report location for AVG AS v.7.5.1.43 is:
- C:\Users\<user name>\AppData\Roaming\Grisoft\AVG Antispyware 7.5\Reports\
- Close AVG Anti-Spyware and reboot your system back into Normal Mode
For more detailed instructions regarding AVG Anti-Spyware setup and scanning features, please consult the Ewido Quick Guide(pdf) by DieHard
++++++++++++++++++++++++++
TrojanHunter Trial
Note: TrojanHunter runs on Windows 95, 98, ME, NT, 2000, XP and Vista.
- Download and Install the 30-day trial ofTrojanHunter v. 5.0
Note: If you already have TrojanHunter v. 5.0, please update it and configure to match the settings we recommended in Step 3.
- There is no updating feature available within the trial version of TrojanHunter itself, so you must download a compressed ruleset and unzip all the files within it to the TrojanHunter folder, as outlined in the Manual Update Instructions.
- To set up TrojanHunter Click Options and check mark everything except Display log messages & Log NTFS Alternate Data Streams. Then close TrojanHunter, because the scan can be performed more effectively in safe mode.
- Now, boot into safe mode, by restarting your computer while tapping the F8 key. Once the Windows Advanced Options Menu appears, select Safe Mode and wait until the Safe Mode desktop appears.
- Once in safe mode, reopen TrojanHunter and check all the boxes (green) beside your main hard drive folders, then click on Full Scan.
- When the scan is finished, click File | Save Scan Report on the Main Menu. The scan report will be saved to the TrojanHunter Program Folder.
- Reboot normally.
Note: If Nod32 Antivirus's active protection is running during your scan, AMON (the Nod32 file system monitor) will detect and quarantine a randomly named EXE file in your user profile temp directory. This file is SAFE and created during TrojanHunter's execution. Please disable AMON during your TrojanHunter scan, or run the scan in safe mode as suggested. The program is fully functional and free to first time users for only 30 days.
For more detailed instructions regarding TrojanHunter setup and scanning features, please consult the TrojanHunter Online Help Guide