[inactive] Trojan Gen Heur

miros
miros
edited January 2010 in Bitdefender 2008 products

I am running Windows XP on Dell inspiron 9200. My system is infected with multiple versions of Trojan Gen Heur. Since BF cannt clean it, can anyone help me, please?


Here is BD log file


Remaining issues:Object Name Threat Name Final Status


[system]=]HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\FCI\ImagePath=]C:\WINDOWS\SYSTEM32\SVCHOST.EXE:EXT.EXE Gen:Trojan.Heur.GM.000C062000 No action was possible


[system]=]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{9795D310-2B39-4E89-B714-C363293FCC6C}\1.0\0\WIN32\=]C:\PROGRAM FILES\COMMON FILES\INSTALLSHIELD\DRIVER\8\INTEL 32\IDRIVER.EXE Gen:Trojan.Heur.Oq0@rjKNkDaOR No action was possible


[system]=]HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\NETLOGON\DisplayName=]C:\WINDOWS\SYSTEM32\NET.EXE Gen:Trojan.Heur.PT.dm0@bm!qvWki No action was possible


[system]=]C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpSvc.exe [472] (memory dump) Gen:Trojan.Heur.Um0@L0nl9Xbi No action was possible


[system]=]C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe [3764] (full dump) Gen:Trojan.Heur.Vundo.re0@bqrh1bhi No action was possible


[system]=]C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [1184] (full dump) Gen:Trojan.Heur.Vundo.se0@b4gc64di No action was possible


[system]=]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{58F69ADC-13E2-449D-94B1-3D8E94E90584}\1.0\0\WIN32\=]C:\PROGRA~1\COMMON~1\INSTAL~1\DRIVER\11\INTEL3~1\IDRIVER.EXE Gen:Trojan.Heur.Wq0@rjwE41bOR No action was possible


[system]=]C:\WINDOWS\Explorer.EXE [3648] (memory dump) Gen:Trojan.Heur.ar0@LCgAMdki No action was possible


[system]=]C:\WINDOWS\system32\ctfmon.exe [552] (memory dump) Gen:Trojan.Heur.cm0@LebDdoei No action was possible


[system]=]C:\WINDOWS\System32\alg.exe [2292] (memory dump) Gen:Trojan.Heur.dm0@LWhcVWni No action was possible


[system]=]C:\WINDOWS\system32\spoolsv.exe [840] (memory dump) Gen:Trojan.Heur.em0@LC8N@3li No action was possible


[system]=]C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [1964] (memory dump) Gen:Trojan.Heur.gq0@Lygbl@mi No action was possible


[system]=]C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpHost.exe [3516] (memory dump) Gen:Trojan.Heur.hm0@LqLVSZfi No action was possible


[system]=]C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [1324] (memory dump) Gen:Trojan.Heur.jq0@LuplfZhi No action was possible


[system]=]C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [224] (memory dump) Gen:Trojan.Heur.pq0@LKewngdi No action was possible


[system]=]C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [1184] (memory dump) Gen:Trojan.Heur.rm0@Liqxgspi No action was possible


[system]=]C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe [3268] (memory dump) Gen:Trojan.Heur.zq0@L4VloWji No action was possible


[system]=]C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2008] (memory dump) Gen:Trojan.Heur.zq0@LCV8yJni No action was possible


[system]=]HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\EVENTLOG\SYSTEM\USER32\EventMessageFile=]C:\WINDOWS\SYSTEM32\USER32.DLL Trojan.Generic.937986 No action was possible


C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP182\A0070644.exe Trojan.Peed.Gen No action was possible


C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP183\A0070660.exe Trojan.Peed.Gen No action was possible

Comments

  • alexcrist
    alexcrist
    edited January 2010

    Hello Miros,


    Sorry for the late reply.


    Please download GMER, unzip it in an empty folder, and launch it. When it launches, it makes a quick scan of your system. When that quick scan ends, click Scan to make a complete scan of your system. Don't change any settings on the right side.


    When that scan ends, click Save and save the log somewhere, archive it and upload it on sendspace/. Post here the download link.


    Cris.


    == CLOSED ==


    == Topic closed, due to inactivity ==

This discussion has been closed.

All Time Leaders

Categories

Defenders of the month