Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Infected With Trojan Proxy.kjb

  • Please log in to reply
1 reply to this topic

#1 shugorei


  • Members
  • 6 posts
  • Local time:12:58 PM

Posted 10 February 2007 - 02:25 AM

I noticed an unusual amount of data uploads yesterday (even when the PC's idle) so I decided to run a scan with AVG Free 7.5. The scan result showed that I was infected with Trojan horse Proxy.KJB (file: C:/Windows/system32/helpersrvc.exe). I also found a couple of unknown files on my User folder (2.exe - sometimes 3 / 4.exe) - which I deleted immediately after killing it on Task Manager. AVG managed to heal the infected file - but when I restart my system, somehow the trojan's back.

I'm a Windows XP user, and so far I've followed the instructions here - no luck so far.

Help would be greatly appreciated :thumbsup:

BC AdBot (Login to Remove)


#2 Orange Blossom

Orange Blossom

    OBleepin Investigator

  • Moderator
  • 37,011 posts
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:01:58 AM

Posted 10 February 2007 - 02:35 AM

Welcome to BC shugorei :thumbsup:

I suggest you follow the directions in this guide. Then create an HJT log, you will find the directions in the guide.

Create a new topic in this forum, not here and give it a good descriptive title. Briefly summarize what the problems are, what you have done to try to solve it, and what worked and didn't work and paste in your HJT log.

After you post your log, DO NOT make any further changes to your computer: deleting files, editing the registry, using special fix tools, installing or uninstalling software etc. as this will make it more difficult for the HJT team to help you.

Please be patient as the HJT team is very busy. DO NOT bump your log as the team may think that someone is already helping you. If you have not had a response in five days, add a response to the five days no response topic and paste in the link to your thread.

Orange Blossom :flowers:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users