Spyware, Viruses, & Security forum

General discussion

Trojan Horse

by wanness / October 19, 2006 4:02 AM PDT

I recently obtained high speed service through Charter cable. I have always had my virus protection, (AVG free) set up to scan daily. I am also using (ZA free). I also have registry mechanic running all of the time. What confuses me is the fact that this morning during AVG's routine scan, it found a Trojan horse. I don't see how, with the protection that I am running, this trojan sneaked in. Any input would help me greatly. Thanks, Bill

Discussion is locked
You are posting a reply to: Trojan Horse
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Trojan Horse
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
We need some more info......
by Marianna Schmudlach / October 19, 2006 4:18 AM PDT
In reply to: Trojan Horse
What confuses me is the fact that this morning during AVG's routine scan, it found a Trojan horse.

What DID AVG find ?? What was the name ??

Which Operating System?
Collapse -
Trojan Horse
by wanness / October 19, 2006 10:03 AM PDT

AVG found Trojan Horse generic2.EWV. I am running win XP Pro, service pack 2. If you need anything further, just ask. Bill

Collapse -
Trojan Horse generic2.EWV
by Marianna Schmudlach / October 19, 2006 11:59 AM PDT
In reply to: Trojan Horse

Hi bill,

I can't find anything regarding the above TH. To be sure it is NOT a False Positive, pls.

download TrojanHunter FREE trial version.

Install, UPDATE and then run.

I also suggest to run an on-line scan:

Please run the Housecall online virus scan located at:
Follow the prompts to scan your hard drive for viruses. Select the "Autoclean" option so that Housecall will remove any viruses from your system.
When the scan is finished, please restart your computer.

Pls. let us know how you are doing.

Collapse -
Trojan Horse
by wanness / October 20, 2006 7:49 AM PDT

Downloaded and installed Trojan Hunter, updated it and ran a full system scan. No problems found. Ran Housecall, found a few cookies, deleted them. Rebooted, no problems evident. Will see what the future brings. Will keep you updated. Thanks a bunch, Bill

Collapse -
(NT) (NT) Great job :) Yes, keep us updated :)
by Marianna Schmudlach / October 20, 2006 8:33 AM PDT
In reply to: Trojan Horse
Collapse -
Trojan Horse
by wanness / November 3, 2006 9:16 AM PST

I am still running Trojan Hunter on a trial basis and have not encountered the problem since. Bill

Collapse -
(NT) (NT) Sounds good ! Thanks for the update :)
by Marianna Schmudlach / November 3, 2006 9:55 AM PST
In reply to: Trojan Horse
Collapse -
by Langoau / November 1, 2006 8:10 AM PST
In reply to: Trojan Horse

Hi all, I also got this today, have isolated through AVG. My moniter went grey, still is and turns off, also the computer shuts down and kicks back in on reboot, have run everything I can to protect the system, and updated Lava Soft, but updates on Lave Soft wont go more than 30%, I think this may be why. I know little about computers, thought I might go and get PCillian and install, any way to get rid of this Trojan and get back to normal, what a pain..Many thanks..Langoau..

Collapse -
Which Operating System?
by Marianna Schmudlach / November 1, 2006 11:22 AM PST
In reply to: TrojanGneric2.EWV

XP ? For XP\2000 ONLY

download AVG Anti-Spyware from HERE and save that file to your desktop.

After the installation, a free 30-day trial version containing all the extensions of the full version will be activated. At the end of the trial, these extensions will be deactivated and the program will turn into a feature-limited freeware version.

Once you have downloaded AVG Anti-Spyware, locate the icon on the desktop and double-click it to launch the set up program.
Once the setup is complete you will need run AVG Anti-Spyware and update the definition files.
On the main screen select the icon "Update" then select the "Update now" link.

Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.
Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.
Once in the Settings screen click on "Recommended actions" and then select "Quarantine".

Under "Reports"
Select "Automatically generate report after every scan"
Un-Select "Only if threats were found".

Close AVG Anti-spyware, do NOT run a scan just yet, we will shortly.

Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.

IMPORTANT: Do not open any other windows or programs while AVG Anti-spyware is scanning, it may interfere with the scanning proccess:
Lauch AVG Anti-Spyware by double-clicking the icon on your desktop.

Select the "Scanner" icon at the top and then the "Scan" tab then click on "Complete System Scan".
AVG Anti-Spyware will now begin the scanning process, be patient this may take a little time.

Once the scan is complete do the following:
If you have any infections you will prompted, then select "Apply all actions".

Close AVG Anti-Spyware and reboot your system back into Normal Mode.

You also could download Trojan Hunter:

TrojanHunter FREE trial version.

Download - install - UPDATE and then run it.

Collapse -
From Langoau
by Langoau / November 1, 2006 4:20 PM PST

I really must say I'm sorry, I did not say that I have Windows ME, that was careless. I have bought Pcillian(on line) and am now having trouble getting that to apply it's self. I took off AVG in case there is a conflict, maybe a mistake?. Waiting to see why PCillian won't opperate, meanwhile, I have run every thing I can think of to clean up the act a bit,got Adware (Lava soft) to finally work and cleaned that side up, see if PCIllian ($112-00) will work. As an aside, would I be better off to rid WindowsME and getXP , maybe more (amatuer) user friendly?. I'm an old fellow and only been on computers for a couple of years and it's hard to catch up, but I am trying.......

Collapse -
What you could try
by Marianna Schmudlach / November 2, 2006 1:05 AM PST
In reply to: From Langoau

Download AVG FREE latest version:


Before you install -

Please run the Housecall online virus scan located at:
Follow the prompts to scan your hard drive for viruses. Select the "Autoclean" option so that Housecall will remove any viruses from your system.
When the scan is finished, please restart your computer.

What does it find?

Btw. I still have one WinMe computer up and running and ..... knock on wood...... NO problems Wink

Collapse -
trjan generic2.
by Langoau / November 3, 2006 5:55 AM PST
In reply to: What you could try

Many thanks Marianna, well, I managed to isolate the Trojan, get pcillian on, had to ring them , found out that that Trojan switched off Systems Restore, probably lot of other stuff that Im not smart enough to know about, the monitor, Sony, colour is still bad and it turns off every fifteen minutes, goe's black, so I restart it,have tried everything to fix that, the "Housecall" won't work even though I downloaded Java, Java say's it's there, "housecall" says it's not, who am I to get in the way :), but, at least it's back in buisness in a sort of way.. I'll put a distress call on the ME forum and see if I can get help with the monitor.. Many many thanks.. Langoau..

Collapse -
Do you have more info about the monitor?
by Marianna Schmudlach / November 3, 2006 6:57 AM PST
In reply to: trjan generic2.

You Are Very Welcome Wink

Also how old is the monitor?

Which version of Sun Java did you download??

The latest version is:

Make sure, you delete ALL older Sun Java versions. Have a look in Add\remove.

Collapse -
by Langoau / November 3, 2006 7:58 AM PST

In the Tools- Advanced- I notice Java console enabled is not ticked, maybe should be?, Boy am I learning some stuff in the last 48 hours, am going slightly nutty.The Java I down loaded is what Housecall said, that being Run Time Enviornment1.5.0 ,then later ,at some time a message came up saying "error in Java.DLL". Will start again , I did not have Java on prior to this I don't think, will take off all Java and put on again. Whew!The monitor seems to be getting better without my help Happy , but not as before, will borrow one and see what happens.....Is there a turn off monitor after a certain time this Trojan could have acted on, as in the Systems Restore?...

Collapse -
Latest Java version
by Marianna Schmudlach / November 3, 2006 8:43 AM PST
In reply to: java

As of October 2006 the latest version of Java from Sun is 1.5.0_09.

Is Your Web Browser Java Enabled?
Have a look here:


Keep up the great work Happy

Sorry to say, I have never heard of a trojan turning OFF a monitor. But who knows...... I "thought" maybe you had an "older" monitor and is trying to say "goodbye" ?? Good idea to try a different monitor.

Take it easy..... you are doing great !

Collapse -
Trojans, Java Etc;
by Langoau / November 3, 2006 3:05 PM PST
In reply to: Latest Java version

Marianna, tomorrow I am getting XP put on this thing and getting Disc C completly wiped, I've had enough. I finally got Java on but then housecall took about two hours to get to try to start, so I decided to start afresh. One big problem I have is living in the Australian bush, whilst being great as a life style, anything to do with computers is grim. It took two hours to download PCillian, would be quicker to go the eighty mile trip to buy and get the CD, the transfer rate is 9.5kb/sec on my down loads and that is faster than straight dial up.. here......It is 2006, isn't it. Anyway, I'll get it all set up in the next couple of days and send in a thank you and report.

Collapse -
I understand......
by Marianna Schmudlach / November 3, 2006 11:28 PM PST
In reply to: Trojans, Java Etc;

thanks for posting back and fingers crossed everything goes well Happy

Collapse -
Langoau back in buisness
by Langoau / November 8, 2006 3:12 PM PST
In reply to: I understand......

Well, after some dollars and help, I have put on Windows XP Pro, wiped my C drive completely to get a new start, also bought a new flat screen monitor , now have to get some new gear that XP won't say hello too.
Many thanks to everyone for their help, especially appreciated by someone as myself who's a babe in the woods when it comes to this stuff. Langoau........

Collapse -
Re AVG antivirus and trojans
by JonathanCase / November 8, 2006 4:56 PM PST

For what it may be worth, I had to reinstall the OS after getting a trojan several months ago.(Zolob downloader, gave me SpywareQuake, related to SpyAxe and virusburst.) AVG alerted me to it, but couldn't clean it. Ended up having to use some specialist tools like smitrem.exe. Anyway, I changed to Avast, (though apparently Avira is the best of the freebies with trojans, reference here http://www.av-comparatives.org/ ) but also keep a resident antispyware program on the go, and have downloaded Asquared, which (like AVG antispyware) is a good trojan hunter.
Seems a layered security application is the best to go for, with a small bag of specialist tools at the ready! Good luck.

Collapse -
help with Trojon Horse Generic 2 EWV
by dlfair / September 12, 2007 10:57 PM PDT
In reply to: Trojan Horse

I have a Dell Dem. 4500. I have been running AVG free and I have been keeping it updated. Troj. horse Generic 2 EWV is keeping me from updating. What do I do. Can I download a Free patch or something. Help!


Collapse -
Trojan Horse Generic 2. EWV
by Carol~ Moderator / September 13, 2007 12:37 PM PDT


Have you looked through any of the other posts in this thread? It would be important to know, where AVG shows it located. IF it happens to be the same location, as is within this thread at the AVG Forum, titled "Trojan horse Generic2.EWV", you can follow their instructions and it should get rid of it. If part of the path, where it shows the trojan to be located on your computer, doesn't include "System Volume Information", as in the above linked thread, the instructions may not apply.

If it IS elsewhere, I would follow the instructions in the post above by Marianna. Keep in mind, the thread at AVG's forum, is as old as this one you posted in. You might want to make sure it's not a false positive, as Marianna suggested to "wanness". While I don't see it recently reported as a false positive, at the AVG Forum, it doesn't mean it's not a possiblity.

Good luck, Dale

Collapse -
Possbile causes of Trojan Horse Generic 2.EWV
by elliswyatt / February 24, 2008 1:58 AM PST

I found this forum trying to figure out if a TH my AVG found was a false positive. Let me explain:

A couple of days ago, I signed up for an online course that teaches how to make money advertising for online products (clickbank.com). The site (profitlance.com) sets up a handful of pages for you and helps you learn how to drive traffic to those sites where there's legitamate accounts set up with clickbank.com to earn profit sharing.

The first page I set up to try and figure this all out was an adware software review and trial page < http://grebra.bezoogle.com/pp/adware/ >. After a few days of paying for people clicking to the site and seeing no results, I went to the site in order to check out what they were offering. All the products were free downloads, with no actual cost involved. I'm not sure where my profit comes from with this kind of system, but I wanted to see if any of these products were any good.

Upon downloading any of the six products listed, my AVG virus scan window popped up saying that the file was a Trojan Horse Generic 2.EWV. Some adware removal program...

Does anyone know how to analyze this file, perhaps in linux or on a mac, to see what the file really is and if it is truly a page full of links to viruses?

I'd greatly appreciate it!

Ellis Wyatt

Popular Forums

Computer Newbies 10,686 discussions
Computer Help 54,365 discussions
Laptops 21,181 discussions
Networking & Wireless 16,313 discussions
Phones 17,137 discussions
Security 31,287 discussions
TVs & Home Theaters 22,101 discussions
Windows 7 8,164 discussions
Windows 10 2,657 discussions


Your favorite shows are back!

Don’t miss your dramas, sitcoms and reality shows. Find out when and where they’re airing!