TechSpot

Recent Trojan Horse infection

By guojilin
Nov 28, 2008
  1. First of all, thanks a lot for looking at my logs. My computer got infected by the Trojan Horse at C:\WINDOWS\system32\msansspc.dll. I followed the 8-step instructions and got these log files. Do you think I have got rid of it? Thanks!
     

    Attached Files:

  2. rf6647

    rf6647 TS Maniac Posts: 829

    Welcome to TS. Your description is helpful. The protections on the computer prevented serious harm. Your logs show found and removed items. Subsequent scan will confirm no other infection was uncovered. We will proceed along a typical path.


    Proceeding along a typical path.
    • Update both MBAM & SAS. Rerun them both.
    • This effort is complete when logs report NO infections/threats, or reporting something it can not clean.
    • Restart the computer. Scan with HJT.
    • Posts logs. Report progress & what changes are observed.

    Current Observations:
    • possible false positive; Files Infected; any aggreement from Symantec?
      • D:\Program Files\Thunder Network\Thunder\Components\ExplorerHelper\regxpcom.exe (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.
    • Open to debate, foistware; ThunderBHO - d:\Program Files\Thunder Network\
    • Cleanout infected System Restore achive after completion of procedure
      • Start > run > control sysdm.cpl
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...