andoni
2006-10-05, 02:17
hi, I'm new to this forum, my name is Andoni, live in the Basque country of Spain, Bilbao is the name of the city.
My system is Windows xp, Home user, and both the Fire Wall and my Antivirus are from McAffe. Have had installed Spybot, my favourite program, for years, and I'm always trying to persuade my friends and acquaitances to install it also, since is such an awsome tool to fight malware.
Yesterday while passing the usual scan with Spybot, it found 2 bots under the one named "Microsoft Windows Redirect", both of them, apparently, change a word in the Registry, both refer to the Windows Security Centre, one to the FirewallDisableNotify, the other to the AntivirusDisableNotify.
Spybot fixed both of them first time, however they keep on appearing at every scan afterwards.
At the same time I did notice, also, that my antivirus detected the presence of one trojan, one Downloader, by the name of Downloader-AXM. Now, when I tried to fix it, McAffe said that it couldn't do it, and the two choices available were to quarantine it or to delete it, choosing the latter. By this time I wasn't aware of the fact that Windows xp doesn't delete malware unless System Restore be off, which it wasn't at the time I deleted it, so I don't know what to think about it anymore, nor I'm sure at all whether the presence of that trojan has anything to do or not with the persistence of the bot.
Any help would be appreciated,
andoni
My system is Windows xp, Home user, and both the Fire Wall and my Antivirus are from McAffe. Have had installed Spybot, my favourite program, for years, and I'm always trying to persuade my friends and acquaitances to install it also, since is such an awsome tool to fight malware.
Yesterday while passing the usual scan with Spybot, it found 2 bots under the one named "Microsoft Windows Redirect", both of them, apparently, change a word in the Registry, both refer to the Windows Security Centre, one to the FirewallDisableNotify, the other to the AntivirusDisableNotify.
Spybot fixed both of them first time, however they keep on appearing at every scan afterwards.
At the same time I did notice, also, that my antivirus detected the presence of one trojan, one Downloader, by the name of Downloader-AXM. Now, when I tried to fix it, McAffe said that it couldn't do it, and the two choices available were to quarantine it or to delete it, choosing the latter. By this time I wasn't aware of the fact that Windows xp doesn't delete malware unless System Restore be off, which it wasn't at the time I deleted it, so I don't know what to think about it anymore, nor I'm sure at all whether the presence of that trojan has anything to do or not with the persistence of the bot.
Any help would be appreciated,
andoni