So the other day I was just doing my normal thing on my computer when all of a sudden AVG popped up a warning telling me that C:\System Volume Information\_restore{A1CE9995-9866-4EA2-A9ED-29AE9B90E174}\RP98\A0005563.exe was infected with Trojan horse BackDoor.Blarul.A. I immediately cleared all system restore points to get rid of whatever it was, and then ran a virus scan and found nothing. I Googled around and found almost no information on the virus, other than most companies started adding protection for it between Oct. 31 and Nov. 2 of this year. I checked Symantec's Virus Encyclopedia and found nothing, and even checked AVG's encyclopedia without finding anything. I figured whatever it was it must not be anything important, so I forgot about it.
Skip ahead to today. I'm sitting here talking to people on IRC, when suddenly I notice a jump in my timestamps. All my timestamps moved backwards about a minute and a half, meaning the Windows clock changed. I have all time-synchronization stuff in XP disabled, and I don't run any other software for keeping my time right. The only explanation for why my time would've changed is if I had manually changed it or something else had changed it. So, I began examining things. Nothing in the registry's startup that looked odd, and nothing under the standard Windows startup menu. I then looked at my services, and found a service named "Lictsvfpa" with no description. I checked it out, and it has no dependencies, and doesn't show anything for the path to executable. It's set to startup manually, and it's currently not running. Windows' Event Log shows that this service has never started, and doesn't show anything weird. I also haven't seen anything out of the normal on my firewall. Google turns up nothing when I search for the name of that mystery service.
I don't use P2P programs or do anything like that that would invite viruses onto my machine. I keep both Windows and my AV software up to date, and I don't run any of the standard vulnerable software like IE or Outlook. I'm using Windows XP SP1 with all critical updates installed. I'm just simply trying to figure out exactly what's going on, and why I'm getting weird behavior like my time changing and such. I'm currently running a virus scan through Panda Activescan since if I am infected with something, it would probably disable AVG. I've run Spybot S&D and it hasn't found anything on my machine.
If anyone could offer me any help at all, I'd really appreciate it. Thanks so much.
Skip ahead to today. I'm sitting here talking to people on IRC, when suddenly I notice a jump in my timestamps. All my timestamps moved backwards about a minute and a half, meaning the Windows clock changed. I have all time-synchronization stuff in XP disabled, and I don't run any other software for keeping my time right. The only explanation for why my time would've changed is if I had manually changed it or something else had changed it. So, I began examining things. Nothing in the registry's startup that looked odd, and nothing under the standard Windows startup menu. I then looked at my services, and found a service named "Lictsvfpa" with no description. I checked it out, and it has no dependencies, and doesn't show anything for the path to executable. It's set to startup manually, and it's currently not running. Windows' Event Log shows that this service has never started, and doesn't show anything weird. I also haven't seen anything out of the normal on my firewall. Google turns up nothing when I search for the name of that mystery service.
I don't use P2P programs or do anything like that that would invite viruses onto my machine. I keep both Windows and my AV software up to date, and I don't run any of the standard vulnerable software like IE or Outlook. I'm using Windows XP SP1 with all critical updates installed. I'm just simply trying to figure out exactly what's going on, and why I'm getting weird behavior like my time changing and such. I'm currently running a virus scan through Panda Activescan since if I am infected with something, it would probably disable AVG. I've run Spybot S&D and it hasn't found anything on my machine.
If anyone could offer me any help at all, I'd really appreciate it. Thanks so much.