IPB

Welcome Guest ( Log In | Register )

 
Closed TopicStart new topic
> New Heur Trojan
deon627
post 2.12.2008 11:50
Post #1


Newbie
*

Group: Members
Posts: 3
Joined: 1.12.2008




this trojan made its way onto my computer yesterday
not sure if it was when i was diagnosing my network problems and was playing around with the firewall or when i downloaded winrar.
dash1.gif

comes up with annoying msg every so often " intervalhehehe intervalhehehe"
and limits what i can do.
Scanner picks it up but cant disinfect it.
Can i please get a quick fix before the new update?

This post has been edited by deon627: 2.12.2008 11:58
Attached File(s)
Attached File  sysinfo.zip ( 17.89K ) Number of downloads: 0
 
Go to the top of the page
 
+Quote Post
richbuff
post 2.12.2008 11:58
Post #2


Oldtimer
****************

Group: Moderators
Posts: 48504
Joined: 14.06.2007




Welcome. Wrong file. Please attach the zipped avz sysinfo.zip; instructions, see: http://forum.kaspersky.com/index.php?showtopic=69276


--------------------
Please see the Important topics, located at the top of this section, and at the top of other sections of this forum.
Go to the top of the page
 
+Quote Post
deon627
post 2.12.2008 11:59
Post #3


Newbie
*

Group: Members
Posts: 3
Joined: 1.12.2008




QUOTE(richbuff @ 2.12.2008 10:58) *
Welcome. Wrong file. Please attach the zipped avz sysinfo.zip; instructions, see: http://forum.kaspersky.com/index.php?showtopic=69276

yea sorry just realised that, try the new one..
Go to the top of the page
 
+Quote Post
deon627
post 3.12.2008 16:50
Post #4


Newbie
*

Group: Members
Posts: 3
Joined: 1.12.2008




hmmm, Ive followed the instructions, is this the right file?
Attached File(s)
Attached File  sysinfo.zip ( 17.89K ) Number of downloads: 5
 
Go to the top of the page
 
+Quote Post
richbuff
post 4.12.2008 04:28
Post #5


Oldtimer
****************

Group: Moderators
Posts: 48504
Joined: 14.06.2007




Run this script, instructions in thread linked in my previous post, PC will reboot:
CODE
begin
SetAVZGuardStatus(True);
SearchRootkit(true, true);
DelBHO('{92780B25-18CC-41C8-B9BE-3C9C571A8263}');
DelBHO('{2670000A-7350-4f3c-8081-5663EE0C6C49}');
DelBHO('{7E853D72-626A-48EC-A868-BA8D5E23E045}');
ClearHostsFile;
QuarantineFile('C:\Windows\System32\Drivers\spzo.sys','');
DeleteFile('C:\Windows\System32\Drivers\spzo.sys');
BC_ImportDeletedList;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.


--------------------
Please see the Important topics, located at the top of this section, and at the top of other sections of this forum.
Go to the top of the page
 
+Quote Post

Closed TopicStart new topic

 



Lo-Fi Version Time is now: 24.07.2014 21:43