Lately I have been getting a virus warning from my AVG software several times a day. It usually says "Trojan Downoader Horse Small 27.K" and it is always in my Local Settings/Temp folder. No matter how many times I delete them they always come back...any idea on another way to get rid of it? also, on the spyware side of things, I keep getting a spyware ad for "Access_Control" and can't seem to get rid of that either...When every i delete it or quarantine it, it keeps coming back....any else dealt with that one?

Some of these programs are very insidious; they will replicate themselves endlessly within your system and hide in many different places deep within your Windows registry. The last time I was infected that bad (courtesy of a Romanian crack site), I gave up trying to clean it out and ended up just formatting my HDD and reloading Windows as a fresh install...

- Boot to safe mode without networking

- Delete all of your temporary files, temporary internet files C:\Documents and Settings\<user>\Local Settings\ temp folders, C:\Windows\Temp folders, etc

- Delete anything suspicious in C:\Windows and C:\Windows\System32 that was modified in the last month or so (after researching to find what's legitimate and not)

- Clean anything suspicious in the registry HKLM\Software\Microsoft\Windows\Current Version\Run and its corresponding HKCU entry, and find and delete any files they reference

- View the registry HKLM\Software\Microsoft\Windows\Current Version\Explorer\Browser Helper Objects, copying each key name and running a search on the reg for them, deleting both the CLSID entries, coresponding files, and BHO entries

- Delete anything suspicious in HKLM\Software and HKCU\Software in the registry

- Delete anything suspicious in C:\Program Files

- Delete anything hiding in the Startup folder of the start menu

- On a seperate machine, download Webroot's Spy Sweeper and install it on the infected machine

- Reboot to safe mode with networking, launch Spy Sweeper, get the latest updates, and run a full scan, quarantining then deleting anything that it finds

- Reboot your machine as normal, watching the Task Manager process list during as much of the boot process as you can, watching for anything suspicious

- Subscribe to Spy Sweeper updates for a year or more and activate them

- Download the MVPS Host List and apply that per its instructions

- Download Mozilla Fire Fox and register it as the default handler for web related files

- Download some alternative media player(s) and avoid Windows Media Player (which spyware constantly hijacks)


Anti-spyware is long since a 100% necessity just like than anti-virus. I'll take my own advice one of these days, but until I do, you should. Good luck.

Perhaps something like this would help?
http://www.x-raypc.com/

Quote:
Xblock Systems is pleased to announce a new freeware product to help technical users regain control of their machines and to assist spyware researchers doing log analysis.

This tool is not meant to replace your standard anti-spyware scanner, but serve as diagnostic tool to help identify questionable processes on a machine.

When I had this problem I found that just emptying IE's temporary files was enough to get rid of it.

Be sure to turn OFF system restore when clearing out that kind of crap. Otherwise, your system will sometimes try to 'rebuild' itself using that same bum file....It took me a whole day to figure that simple thing out one time.....just a thought...

Ah yes, forgot about that. I had to turn off system restore, clear the temporary files and then turn system restore back on.

Have you tried Lavasoft's Ad-Aware ( http://www.lavasoft.com/ ). The free ed available at Download.com is very good and even performs registry scanning.

They update it fairly regularly and you can schedule it to check automatically if you want.

Good luck!