Jump to content
Sign in to follow this  
iamthewalrus

braviax.exe - can't make it go away!

Recommended Posts

Running SAS pro, did something stupid and got infected. The first thing was PC_Antivirus2010 which I managed to get rid of, but now every time I boot I get a SAS alert, and I clean and it still comes back.

SUPERAntiSpyware Scan Log

https://www.superantispyware.com

Generated 09/03/2009 at 07:29 PM

Application Version : 4.27.1002

Core Rules Database Version : 4084

Trace Rules Database Version: 2024

Scan type : Quick Scan

Total Scan Time : 00:16:51

Memory items scanned : 606

Memory threats detected : 0

Registry items scanned : 639

Registry threats detected : 3

File items scanned : 10146

File threats detected : 4

Trojan.Unclassified/BraviaX

HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run#braviax

HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run#braviax

HKLM\Software\Microsoft\Windows\CurrentVersion\Run#braviax

C:\WINDOWS\SYSTEM32\BRAVIAX.EXE

C:\WINDOWS\Prefetch\BRAVIAX.EXE-0B81BFC9.pf

Trojan.Agent/Gen-FakeDrop[braviaX]

C:\WINDOWS\TEMP\BNB.TMP

C:\WINDOWS\Prefetch\BNB.TMP-032A30C8.pf

Share this post


Link to post
Share on other sites

Wow...did I speak to soon. After a few days of running clean, I run another scan, and it finds a rogue folder under local settings and a registry entry. I have them cleaned, re-boot and then I get a c:\windows\system32.exe services terminated with status code 1073741819 and the pc shuts down. I start it up and looks ok. This morning I turn the machine on, and I see on my taskbar that windows firewall has been disabled. I re-enable and then re-scan. Everything is back and infecting me again. PC_Antispyware2010 and all of the braviax stuff. My guess is that there is still some rogue file hiding somewhere that shuts off my firewall, contacts the mother ship and downloads this crap on my PC again. Logs will be uploaded. This sucks.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×
×
  • Create New...