Recent Trojan Horse infection

Status
Not open for further replies.
G

guojilin

First of all, thanks a lot for looking at my logs. My computer got infected by the Trojan Horse at C:\WINDOWS\system32\msansspc.dll. I followed the 8-step instructions and got these log files. Do you think I have got rid of it? Thanks!
 

Attachments

  • mbam-log-2008-11-28 (20-53-37).txt
    1.6 KB · Views: 6
Welcome to TS. Your description is helpful. The protections on the computer prevented serious harm. Your logs show found and removed items. Subsequent scan will confirm no other infection was uncovered. We will proceed along a typical path.


Proceeding along a typical path.
  • Update both MBAM & SAS. Rerun them both.
  • This effort is complete when logs report NO infections/threats, or reporting something it can not clean.
  • Restart the computer. Scan with HJT.
  • Posts logs. Report progress & what changes are observed.

Current Observations:
  • possible false positive; Files Infected; any aggreement from Symantec?
    • D:\Program Files\Thunder Network\Thunder\Components\ExplorerHelper\regxpcom.exe (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.
  • Open to debate, foistware; ThunderBHO - d:\Program Files\Thunder Network\
  • Cleanout infected System Restore achive after completion of procedure
    • Start > run > control sysdm.cpl
 
Status
Not open for further replies.

Similar threads

A
Microsoft explains how to detect a BlackLotus UEFI bootkit infection
Replies
7
Views
742
Hotlynx16
H
D
Solved Malwarebyte pop-up at random times showing "Website blocked due to Trojan" Type: Outbound, c/windows/syswows64/dllhost.exe
2
Replies
25
Views
5K
allant
A
Z
Microsoft Edge under fire for stealing Chrome browser tabs
Replies
18
Views
373
Bamda
Bamda

Latest posts

Back