Trojan horse Collected.5.x

Four days ago, after using eTrustEZ anti-virus, I installed AVG free edition.
Today, during an automatic scan, AVG found two files infected with "Trojan
horse Collected.5.x"; (1) "C:\System Information Volume\_restore..." and
(2) "autodown.exe", the auto download of eTrustEZ itself. (I still had the
program on a back-up HD.) Being inside of eTrustEZ it could have been
there for some time. AVG deleted both and put them in its vault.

I find no useful information on Google or known virus lists as to how
dangerous this could be. Any help would be appreciated.

 

Looking at the locations where you found the files:
- System Restore Point
- Virus Vault of the previous AV

I would guess at first sight you are OK.

But I would advise you to try this free program to see if the rootkit is still active:
http://www.greatis.com/unhackme/

Regards,

Pieter

 

Pieter,

Thanks for the link. UnHackMe found nothing further. A note though, the file
(512kb) was not in the eTrstEZ vault, but in the automatic download file.
That, and the name "Collected", makes me nervous.

 

Of course any file you download to your desktop goes into the system restore folders.

Send me a personal message and if you still have the file , I would be happy to look it over for ya.

controler