Jump to content

Archived

This topic is now archived and is closed to further replies.

Guest

How do I get help removing a tough trojan

Recommended Posts

Guest

Hi

Have a trojan that keeps comming back. Tried to log into you form that appears to discuss it but am being blocked because I am not a member of you Hunt Club.

In anyevent here is a recent log.

SUPERAntiSpyware Scan Log

https://www.superantispyware.com

Generated 06/10/2007 at 10:28 AM

Application Version : 3.8.1002

Core Rules Database Version : 3251

Trace Rules Database Version: 1261

Scan type : Custom Scan

Total Scan Time : 00:36:15

Memory items scanned : 632

Memory threats detected : 1

Registry items scanned : 5926

Registry threats detected : 4

File items scanned : 23421

File threats detected : 2

Trojan.Downloader-Gen/SK

C:\WINDOWS\SYSTEM32\EBZHZNMXSX.EXE

C:\WINDOWS\SYSTEM32\EBZHZNMXSX.EXE

[ebzhznmxsx] C:\WINDOWS\SYSTEM32\EBZHZNMXSX.EXE

HKLM\System\ControlSet001\Services\eheo2yiheeeaiyed

HKLM\System\ControlSet003\Services\eheo2yiheeeaiyed

HKLM\System\CurrentControlSet\Services\eheo2yiheeeaiyed

C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\TLWGV43T\THREE[1].EXE

I can clean it (with several utilities but it keeps returning (with different file names) upon reboot. Yes, I do have systam restore disabled. Even have had some success by removing the pagefile.sys and hyberfile.sys.

Share this post


Link to post
Share on other sites
Guest

Thanks for your prompt reply.

Yes I have rebooted (multiple cycles) and done full proceedures in safe mode (multiple cycles)

Share this post


Link to post
Share on other sites

×
×
  • Create New...