Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cant get rid of Trojan Horse BHO.BHJ 2

Status
Not open for further replies.
mba14

mba14

Technical User
Oct 4, 2007
1
US
PLEASE HELP. I have a virus that I have not been able to get rid of -- Trojan Horse BHO.BHJ in the file c:\windows\system32\dsdmopr.dll. I have turned off system restore. I have run the following programs to try to get it off (in safe mode and boot-time): AVG Antivirus and Spyware, Avast antivirus, Spybot, and Adware all to no avail. These programs did get rid of the W32 Beagle worm, and the Trojan Horse Generic8.ECG viruses. However, this last one will not come off. I even tried to logon as admin and delete the dll file with the virus but got access denied. Can anyone help?
 
Sort by date Sort by votes
Have you tried "HijackThis" or the free online scanners, faq760-3862?


Anyway, access is usually denied because "explorer.exe" is running and using it.

Open the command window, then close Explorer:

Task Manager>Processes>explorer.exe <End Process>

Delete the file or rename it to eg "dsdmopr.dllBAD" using the command line.


However, there may be other related files. So I'd do a search for "dsdmopr" first. Note that it will return "dsdmoprp.dll" which is legit. Any other results are at least suspicious.

You will also have to delete the registry entries. Don't forget the backup!

There's a free utility called "Resource Hacker" (ResHacker.exe) to open and read *.exe, *.dll and more files. No installation required and it might be useful for you. I know that it was an invaluable help when I had a problem with the "YellowPages" BHO.


TomCologne
 
Upvote 0 Downvote
Probably unnecessary: Backup your files before doing anything!

TomCologne
 
Upvote 0 Downvote
First off download avg anti spyware from the link below.

(delete anything it finds)

second, download killbox below and use it to delete the stubborn file


3rd, download ccleaner and remove all temp junk

(if you have nero, uncheck it from the applications part of the program)

4th, download hijackthis (like tom said) from the link below and post the logfile on here. Unless you are sure of what you are doing do not attempt to fix anything as not everything it shows is bad.


There is a point in wisdom and knowledge that when you reach it, you exceed what is considered possible - Jason Schoon
 
Upvote 0 Downvote
Thanks for the star :)

There is a point in wisdom and knowledge that when you reach it, you exceed what is considered possible - Jason Schoon
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

shivajiboss
  • Locked
  • Question
I am getting a problem while opening up my windows
Replies
1
Views
260
2ffat
2ffat
SantaMufasa
  • Locked
  • Question
How can I get rid of &quot;PC Fix Speed&quot;, a particularly nasty PC malware infection. 2
Replies
18
Views
295
kjv1611
kjv1611
BionicJohn
  • Locked
  • Question
URUASY.A Ransomware Trojan - Help needed with removal
Replies
6
Views
194
BionicJohn
BionicJohn
diogenes10
  • Locked
  • Question
anti virus-futher abusing &quot;dead horse&quot; topic-rising?
Replies
1
Views
108
kjv1611
kjv1611
riobogmedacaliaires
  • Locked
  • Question
how to exclude folders in trend officescan 11 client side
Replies
0
Views
111
riobogmedacaliaires
riobogmedacaliaires

Part and Inventory Search

Sponsor

Back
Top