Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Recent Trojan Infection?

Status
Not open for further replies.

wagraphics

IS-IT--Management
Nov 3, 2006
25
US
Hi all... the network at work started to seem a little slow, so I started snooping. I think I found a source being this fun little trojan that is renaming its self of course. I am able to end task the process then delete the .exe but it simply reappears next reboot. It is displaying a brown terrier type logo also .. any advice?
 
That almost sounds like a virus. Either way you might want to use this to locate the target of it.

Process explorer


Also if you can post a logfile from hijackthis on here.


There is a point in wisdom and knowledge that when you reach it, you exceed what is considered possible - Jason Schoon
 
Is this just located on one machine, or are you talking about multiple machines? If just one machine, and if possible, try booting into safe mode to get rid of the problem. My guess is that if it's loading up, it is a registry file, and/or maybe something you can disarm in the startup/services section of MSCONFIG.

Also, generally, you can clear out a whole lot of bad stuff without trying to pinpoint each individual problem with these programs from Adaware 2007
Spybot Search and Destroy
AVG Antispyware
AVG AntiRootkit

And it wouldn't hurt do try a couple of freeware Antivirus Apps for scanning: AVG Antivirus, Avast, and/or Antivir are all good.

And then I'd still run at least one free online virus/spyware scanner if possible.

is one I use frequently.

Also, I saw that there were 2 others that should be good just the other day: Kaspersky free online scan, not the actual installation product... and bitdefender.

Also, if you use a program like ccleaner (also can get from ) to clean out temp files that may also help, considering some viruses and spyware apps do hide in the temp folders...

--

"If to err is human, then I must be some kind of human!" -Me
 
Sorry for the hassles... it seems that it is not a trojan. Trendmicro Client/Server Agent now replicates its "watch dog" into a random 4alpha2numeric.exe program so it cant be ended by virus's. I just wish they would have sent me a notice.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top