BleepingComputer.com: Olmarik/Kryptik trojan

Jump to content

Forum Rules

When posting your problem, do not run and post a ComboFix log. ComboFix is a tool that should only be run under the supervision of someone who has been trained in its use. Using it on your own can cause problems with your computer. Any posts containing CF Logs will be ignored.

To receive help, you should instead provide a detailed description of your problem, detailed word-for-word error messages that you are receiving, screenshots of strange behaviour, and your operating system. This information is much more useful to our helpers than a ComboFix log.

If you have not received help after three days, please post a link to your topic HERE.
Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Olmarik/Kryptik trojan

#1 User is offline   Johnny88 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 9
  • Joined: 17-November 10

Posted 31 March 2011 - 04:52 PM

ESET found the following:

31-3-2011 23:10:02 Real-time file system protection file C:\DOCUME~1\AKO\LOCALS~1\Temp\ensmxwoarc.tmp a variant of Win32/VB.PGX trojan cleaned by deleting - quarantined 1D0608FA3A6C471\AKO Event occurred on a new file created by the application: C:\WINDOWS\system32\mshta.exe.

31-3-2011 23:09:52 Real-time file system protection file C:\WINDOWS\TEMP\2113.tmp a variant of Win32/Olmarik.APS trojan cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred on a file modified by the application: C:\WINDOWS\system32\spoolsv.exe.

31-3-2011 23:09:00 Real-time file system protection file C:\DOCUME~1\AKO\LOCALS~1\Temp\xarcwoesmn.tmp a variant of Win32/Kryptik.MCY trojan cleaned by deleting - quarantined 1D0608FA3A6C471\AKO Event occurred on a new file created by the application: C:\WINDOWS\system32\mshta.exe.

31-3-2011 23:08:42 Real-time file system protection file C:\DOCUME~1\AKO\LOCALS~1\Temp\ecxaonmwrs.tmp a variant of Win32/Olmarik.ARE trojan cleaned by deleting - quarantined 1D0608FA3A6C471\AKO Event occurred on a new file created by the application: C:\WINDOWS\system32\mshta.exe.

Malwarebytes found "Trojan.Hiloti.Gen".

I'm not sure whether my computer is clean or not. Please help.

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users