Home > Please Advise > Please Advise - 2 Trojans

Please Advise - 2 Trojans

Cancel Sophos Footer T&Cs Help Cookie Info Contact Support © 1997 - 2017 Sophos Ltd. Try Ctrl+V to paste like I suggested. Did the OP have the Blackberry connection as well? All Rights Reserved. navigate here

Success always occurs in private and failure in full view. Thanks Rocky F 4 E Guru Norton Fighter25 Reg: 23-May-2009 Posts: 8,426 Solutions: 288 Kudos: 1,725 Kudos0 Re: Autoprotect Persistently Blocking Trojan.Gen Trojan.Gen.2 and Trojan.Zeroaccess.B Posted: 30-Aug-2013 | 7:54PM • Permalink I am not sure if its from noron intenet security. Save both reports to your desktop.---------------------------------------------------Please include the contents of the following in your next reply:DDS.txtAttach.txt. ================Download the GMER Rootkit Scanner. go to this web-site

Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook Have you If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications. TechSpot is a registered trademark.

Quote #8 Wed Nov 02, 2011 7:04 pm Okay, found something important. Please e-mail me directly (content of message doesn't matter, can be empty), so I can compare the headers against those of a legit e-mail coming from you. The file will not be moved unless listed separately.) Task: {1C5FE383-36FC-4489-B8E5-C133C3CB938D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-17] (Adobe Systems Incorporated) Task: {9588D761-90EE-4455-8EDD-8E1E693E0B0A} - System32\Tasks\avast! Trojans galore - Computer 2/ please advise, thanks.

Contact: Contact JJCDAD Yahoo Messenger Re: got a mailer trojan - please advise! The new one is twelve characters.Funny how I immediately assumed that my network was less secure than Yahoo's. The only two that you have probably installed are those with "Osx" in the infection name, and they appear to have come from the same "HDPlugin_Mac_Installer" file.To understand why this happened http://www.pcadvisor.co.uk/forum/helproom-1/trojan-horse-virus-please-advise-320728/?p=2 The other trojans are Win.Trojan.Aspxor-31 (2) and OSX.Trojan.Genieo-1 (2).

If either of them won't complete in normal mode, run them in safe mode as instructed previously. Thanks in advance! Skip to content CPUs GRAPHICS MOTHERBOARDS CASES & POWER STORAGE MOBILE GAMING FORUMS JOBS MORE... The file will not be moved unless listed separately.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-08-20] (SUPERAntiSpyware.com) S2 avast!

You would have to click on a link or open an attachment for anything at all to happen. https://community.norton.com/en/forums/mythxpakexe-inside-age-empires-2-download-nis-cant-remove-trojan-please-advise Gold subscriber Administrator Posts: 46558 Joined: Tue Aug 20, 2002 10:51 pm Location: Somewhere, having a beer Re: got a mailer trojan - please advise! My scan shows this list:Filename Infection Name Status/Users/carlokeshishian/Downloads/FastDownload (72).exe Win.Trojan.Installmate-1 /Users/carlokeshishian/Downloads/FastDownload (99).exe Win.Trojan.Installmate-1 /Users/carlokeshishian/Downloads/HDPlugin_Mac_Installer.app/Contents/Resources/InstallGenieo.app Osx.Trojan.Genieo-1 /Users/carlokeshishian/Downloads/HDPlugin_Mac_Installer.zip Osx.Trojan.Genieo-1 /Users/carlokeshishian/Downloads/setup.exe Win.Trojan.10013080 /Users/carlokeshishian/Downloads/WhiteSmokeWriterGeo9139_en.exe Adware.WhiteSmoke-2 I downloaded AdwareMedic as you advised but it won't run Tech Reviews Tech News Tech How To Tech Buying Advice Laptop Reviews PC Reviews Printer Reviews Smartphone Reviews Tablet Reviews Wearables Reviews PC & Laptop Storage Reviews Antivirus Reviews Best Tech

I wave, but they don't slow down.-- Steven Wilson Top JJCDAD Gerbil Jedi Posts: 1867 Joined: Fri Sep 17, 2004 3:11 pm Location: Is this heaven? check over here I have downloaded all the programs and I will now go into Safe Mode and begin. Both txt's are available but the same old problem, I can copy but not paste. Back to top #20 ted45 ted45 Topic Starter Members 46 posts OFFLINE Local time:07:10 AM Posted 23 September 2016 - 08:08 AM Scan result of Farbar Recovery Scan Tool (FRST)

I'm sure he didn't sent it knowingly and I silently chided him for not being more careful. Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-08-21] (AVAST Software) S2 HeimdalSecureDNS; C:\Program Files\Heimdal\HeimdalSecureDNS\DnsService.exe [88064 2016-07-26] (Microsoft) [File not signed] S2 HeimdalService; C:\Program Files\Heimdal\Service\HeimdalAgentService.exe [162816 2016-07-26] (CSIS Security Group) [File not signed] S3 It was plaintext spam about inkjet carts with a link at the bottom. his comment is here HRESULT was 8007043c from line 45 of d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp.

You could try that route and put mythxpak.exe trojan in the subject line. It's perfectly safe, efficient and developed by a colleague of Mark and I who also runs TheSafeMac web site.To understand why you have adware and how to avoid it in the On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (09/23/2016 04:59:01 PM) (Source: System Restore) (EventID:

Adware involves such things as being redirected to a web site you didn't intend on going to, popup ads when you pass your cursor over underlined words on a page, ads

Events cannot be delivered through this filter until the problem is corrected. Events cannot be delivered through this filter until the problem is corrected. Top just brew it! Using the site is easy and fun.

Will try again when I get back. File Attachment: mbam-log-2010-06-12 (20-33-20).txt floplot Guru Norton Fighter25 Reg: 11-Apr-2009 Posts: 21,938 Solutions: 477 Kudos: 3,432 Kudos0 Re: mythxpak.exe inside a Age of empires 2 download, NIS can't remove the trojan No, create an account now. http://nuvisiongraphx.com/please-advise/please-advise-on-my-hjt-log-thanks.html Top just brew it!

Back to top #22 ted45 ted45 Topic Starter Members 46 posts OFFLINE Local time:07:10 AM Posted 23 September 2016 - 08:27 AM Need to go out for an hour. Quote #1 Wed Nov 02, 2011 12:25 pm I opened an email from an old friend a few weeks ago. Date: 2016-09-23 09:09:09.762 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the Right?

Now when every few minutes, I keep getting a message with the norton Antivirus window on my task bar that "Autoprotect Persistently Blocking Trojan.Gen Trojan.Gen.2 and Trojan.Zeroaccess.B" in red colour.