Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan in "C:\WINDOWS\system32\scrnrdr.exe'' AVG


  • Please log in to reply
2 replies to this topic

#1 JamieLawther

JamieLawther

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:32 PM

Posted 01 January 2010 - 12:39 PM

Hi :flowers:

Long time since I've been here !

Well , Anyway , I went back to XP recently because Vista didn't a program I need to run.
I missed the Vista look :thumbsup: So my friend recommended that I install Vista Inspirat 9
I took his advice and when the installer started it gave me an error about "C:\WINDOWS\system32\scrnrdr.exe''
Then AVG (9.0 - Updated) popped up with a trojan , not sure which though :S in the file Inspirat was trying to reach.
I moved it the Virus Vault and looked up the virus on another PC. Apparantly it is a False Positive,
So I sent the file to AVG and they gave me this result back in an email;

This e-mail is an auto-response message. Please do not reply.

AVG Research Lab has analyzed the file(s) you have sent from your AVG Virus Vault. Below you can find the results for each file. The final verdict on the file is either a correct detection or a false positive detection.

Further information about the verdicts are available at our website:
http://www.avg.com/faq-1184

"C:\WINDOWS\system32\scrnrdr.exe" - detection is correct


Best regards,

AVG Customer Services
AVG Technologies
website: http://www.avg.com


Should I do a scan to see if it is fully gone ?
I don't mind posting logs or uploading files if it helps :trumpet:
Just want my PC back to normal :inlove:
And are there any other steps I should take ?

Thanks In Advance,
Jamie Lawther

BC AdBot (Login to Remove)

 


#2 garmanma

garmanma

    Computer Masochist


  • Staff Emeritus
  • 27,809 posts
  • OFFLINE
  •  
  • Location:Cleveland, Ohio
  • Local time:12:32 PM

Posted 01 January 2010 - 01:15 PM

Use Jottiscan or virustotal to scan certain files
A little more complete
http://virusscan.jotti.org/en
http://www.virustotal.com/
If you wish to discuss this problem further, I suggest you post in our Am I Infected forum
http://www.bleepingcomputer.com/forums/f/103/am-i-infected-what-do-i-do/
Mark
Posted Image
why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter

#3 JamieLawther

JamieLawther
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:32 PM

Posted 01 January 2010 - 01:32 PM

Fixed , Thanks ;)

I installed Avira AntiVir and it found the infection.

Are there any other anti spyware/malware with Memory Resident.. Spyware Blaster seems to be good.. but I prefer one running in the notification area so I can see whats happening lol

I know about MBAM , And might purchase it soon, But untill then , Are there any others ??

Once again
Thanks,
Jamie




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users