shadowylynx Posted July 23, 2009 hi folks, Yesterday when I ran SAS it picked up this Trojan-see subject. I had SAS quarantine it and restarted computer. However I started getting messages saying essentially start up couldn't happen because of missing files. I kept clicking on the error message until it stayed away and the computer booted up fine. For every program I tried to start I got the same error message about missing files and when I clicked on error message, the program would start just fine. The scan by SAS found Trojan.Agent/Gen-Uphov-A in two files-weirdly identical. E:\WINDOWS\SYSTEM32\MSMUFXFYQWH.DLL. When I ok'ed quarantining, SAS said it was removing and quarantining these two files 1. PID[23114856]E:\WINDOWS\SYSTEM32\MSMUFXFYQWH.DLL and 2. E:\WINDOWS\SYSTEM32\MSMUFXFYQWH.DLL and would require restart of system. After the problems of error messages and interference with startup of software, I reinstalled two files and had no trouble with startups. I scanned the computer with Spybot and it showed clear, then I ran MBAM and it picked up a different trojan and removed it easily. When I rescanned with SAS last night, it didn't find anything. This morning the scan once again showed this same trojan. This seems similar to a post I read on Gen-Uophov-B. Is this the same trojan, how do I remove it, if it is a trojan, without disrupting start up of OS and any other software? thanks for any advice you can give, shadowylynx Share this post Link to post Share on other sites
shadowylynx Posted July 23, 2009 this is the scan log from this morning: SUPERAntiSpyware Scan Log https://www.superantispyware.com Generated 07/23/2009 at 05:26 AM Application Version : 4.26.1006 Core Rules Database Version : 3959 Trace Rules Database Version: 1901 Scan type : Complete Scan Total Scan Time : 00:57:00 Memory items scanned : 525 Memory threats detected : 1 Registry items scanned : 5802 Registry threats detected : 0 File items scanned : 27584 File threats detected : 1 Trojan.Agent/Gen-Uphov-A E:\WINDOWS\SYSTEM32\MSMUFXFYQWH.DLL E:\WINDOWS\SYSTEM32\MSMUFXFYQWH.DLL I have cleaned anything yet, since I would just have to reinstall again to get computer software running ok. but this is the clean log from yesterday: UPERAntiSpyware Scan Log https://www.superantispyware.com Generated 07/22/2009 at 11:43 AM Application Version : 4.26.1006 Core Rules Database Version : 3959 Trace Rules Database Version: 1901 Scan type : Quick Scan Total Scan Time : 00:15:34 Memory items scanned : 504 Memory threats detected : 0 Registry items scanned : 481 Registry threats detected : 0 File items scanned : 5942 File threats detected : 1 Adware.Tracking Cookie E:\Documents and Settings\lilly\Cookies\lilly@stats.paypal[2].txt this is the scan that first showed the trojan, prior to clean scan above: SUPERAntiSpyware Scan Log https://www.superantispyware.com Generated 07/22/2009 at 05:02 AM Application Version : 4.26.1006 Core Rules Database Version : 3959 Trace Rules Database Version: 1901 Scan type : Complete Scan Total Scan Time : 00:57:06 Memory items scanned : 501 Memory threats detected : 1 Registry items scanned : 5800 Registry threats detected : 0 File items scanned : 26971 File threats detected : 1 Trojan.Agent/Gen-Uphov-A E:\WINDOWS\SYSTEM32\MSMUFXFYQWH.DLL E:\WINDOWS\SYSTEM32\MSMUFXFYQWH.DLL thank for responding so quickly-I really appreciate your advice and help! shadowylynx Share this post Link to post Share on other sites
