Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't Delect one threat


  • Please log in to reply
1 reply to this topic

#1 besuki

besuki

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:13 PM

Posted 03 February 2013 - 07:19 PM

i just see this for many days and i don't know how to solve it! Please Help!!!
this is the log files from eset.
What should i do?
Big Thanks



4/2/2013 8:02:38 Real-time file system protection file C:\Users\su\AppData\Local\Temp\WW_7zip_Temp\2654013\datca43.tmp.exe a variant of Win32/Injector.ACAK trojan cleaned by deleting - quarantined su-PC\su Event occurred on a new file created by the application: C:\Program Files\AliWangWang\AliIM.exe.
4/2/2013 7:20:31 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean
4/2/2013 0:18:11 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean
3/2/2013 16:46:56 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean
3/2/2013 15:45:23 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean su-PC\mama
3/2/2013 3:17:33 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean
2/2/2013 21:17:33 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean
2/2/2013 17:17:39 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean
2/2/2013 14:43:42 Startup scanner file Operating memory c:\users\su\appdata\local\temp\datca43.tmp.exe a variant of Win32/Rootkit.BlackEnergy.AC trojan unable to clean
31/1/2013 22:56:11 HTTP filter file http://xxreofz.portrelay.com/ntedbove.php JS/Exploit.Pdfka.QCL trojan connection terminated - quarantined su-PC\su Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:13 AM

Posted 03 February 2013 - 07:25 PM

These are serious and difficult infections ... Rootkits and Injectors...

To remove these we need a deeper look. Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users