Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hidden Trojan horses?


  • Please log in to reply
2 replies to this topic

#1 Veridis Quo

Veridis Quo

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:33 PM

Posted 01 February 2009 - 03:17 AM

:thumbsup: Hi guys this is my first post in this forum, and I hope the last in security. But I need your help, around the middle of last week I contracted the Zlob and vundo Trojan horses. Besides the two of these a few viruses found their way on, but I've taken care of them. I've done everything rigel has told Kerley to do
here
, along with running Combofix and AVG's Vcleaner. AVG 8 still says I have a Trojan horse(s) in my volume settings. I'm at a loss now and any help would be welcomed. Thanks

My report from F-Secure

Scanning type: Scan system for malware, rootkits
Target: C:\ D:\
Result: 0 malware found
Statistics
Scanned:

* Files: 39490
* System: 3738
* Not scanned: 7

Actions:

* Disinfected: 0
* Renamed: 0
* Deleted: 0
* None: 0
* Submitted: 0

Files not scanned:

* C:\HIBERFIL.SYS
* C:\PAGEFILE.SYS
* C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
* C:\WINDOWS\SYSTEM32\CONFIG\SAM
* C:\WINDOWS\SYSTEM32\CONFIG\SECURITY
* C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE
* C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM

Options
Scanning engines:

* F-Secure USS: 3.0.0
* F-Secure Hydra: 3.6.8511, 2009-01-31
* F-Secure AVP: 7.0.171, 2009-01-31
* F-Secure Pegasus: 1.20.0, 1969-11-31
* F-Secure Blacklight: 0.0.0

Report from mbam-log

Malwarebytes' Anti-Malware 1.33
Database version: 1712
Windows 5.1.2600 Service Pack 3

2/1/2009 1:58:49 AM
mbam-log-2009-02-01 (01-58-48).txt

Scan type: Full Scan (C:\|D:\|)
Objects scanned: 161390
Time elapsed: 2 hour(s), 56 minute(s), 48 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Edited by The weatherman, 01 February 2009 - 03:53 AM.
Moved to a more apropriate forum~TW


BC AdBot (Login to Remove)

 


#2 DaChew

DaChew

    Visiting Alien


  • BC Advisor
  • 10,317 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:millenium falcon and rockytop
  • Local time:05:33 PM

Posted 01 February 2009 - 06:56 AM

You shouldn't be running combofix except under the supervision of a trained helper

An infection found in "volume setting"

http://www.bleepingcomputer.com/forums/ind...t&p=1105475
Chewy

No. Try not. Do... or do not. There is no try.

#3 Veridis Quo

Veridis Quo
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:33 PM

Posted 01 February 2009 - 08:55 AM

You shouldn't be running combofix except under the supervision of a trained helper


Quite sorry, as I said I'm new here and I'm still learning my way around. Thank you very much for your help




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users