More than an hour and a half ago I’ve received this alert from CIS when I’ve turned on my pc (see attached pic). I’ve hit Quarrantine but when I tried to submit it, I saw that was already submitted. I’ve restored the file back from Quarrantine, reseted my pc and again the alert popped up but this time I’ve hit Disinfect. I’ve reseted again but this time the alert didn’t popped up.
I didn’t installed any software this passed week, my last installed software was Need For Speed World but I’ve uninstalled it. I didn’t had this alert when I’ve turned on my pc earlier today or until now but almost two hours ago when I’ve turned on the pc again, I’ve received this alert.
This makes me think that it could be a fp caused by today’s db update but if it’s really a malware than I will restore my system…
Anyone else had this or knows something bout it ? Thx
It seems that even if I manually add the file to quarrantine, at the next reboot I still get the pop-up. If I put the file back, reboot and do a full pc scan with everything set to max, CIS doesn’t detect any threat. I guess this av alert is only present when I reboot and ctfmon.exe process starts…
I initially received Antivirus Alert 'trojware.win32.trojandropper.paradrop.t[at]14120 at 12.50 (BST) on 5 December.
Infected file is c\windows\system32\ctfmon.exe
I have tried Clean,Disinfect and quarantine but the alert occurs each time I reboot.
Scans with Comodo and Malwarebytes do not show anything.
I have WinXP 32 bit Comodo Internet Security Premium.
The Antivirus Event log reports status: success each time
Can this trojan be removed with Comodo ?