Removing specific trojans- HELP

Here you can find everything you need to know about Dll-Files. You can also share your knowledge regarding the topic.

Moderators: DllAdmin, DLLADMIN ONLY

Post Reply
helpmepls
Posts: 1
Joined: 20 Sep 2009, 23:00

Removing specific trojans- HELP

Post by helpmepls »

Hello all,

I use Avira anti-virus and I got an alert the other day about the
following trojans:

TR/PSW.OnLi.2226092
TR/FakeAV.SK
TR/Crypt.ZPACK.Gen
TR/FraudPack.tha

Everytime I restart my computer I keep getting these alerts although I
have chosen the option of "deleting" the file, I have a feeling the
anti-virus can't delete them hence the alerts.

Examples of the files that have been infected/ alert log:

Virus or unwanted program 'TR/Crypt.ZPACK.Gen [trojan]'
detected in file 'C:\System Volume
Information\_restore{7B232DB6-C240-4F00-85EB-E871A83F5F29}\RP198\A0056136.dll.

The file 'C:\WINDOWS\system32\imetodis.dll'
contained a virus or unwanted program 'TR/Crypt.ZPACK.Gen' [trojan]

Virus or unwanted program 'TR/FakeAV.SK [trojan]'
detected in file 'C:\Documents and Settings\Administrator\Local
Settings\Temp\eyeriqxr.exe.

Virus or unwanted program 'TR/FraudPack.tha [trojan]'
detected in file 'C:\Documents and Settings\Administrator\Local
Settings\Temp\jcij5ihi.exe.


Can someone please help me?

joesparebedroom
Posts: 1
Joined: 20 Sep 2009, 23:00

Re: Removing specific trojans- HELP

Post by joesparebedroom »

"helpmepls" <helpmepls.3yvaod@no.email.invalid> wrote in message
news:helpmepls.3yvaod@no.email.invalid...
>
> Hello all,
>
> I use Avira anti-virus and I got an alert the other day about the
> following trojans:
>
> TR/PSW.OnLi.2226092
> TR/FakeAV.SK
> TR/Crypt.ZPACK.Gen
> TR/FraudPack.tha
>
> Everytime I restart my computer I keep getting these alerts although I
> have chosen the option of "deleting" the file, I have a feeling the
> anti-virus can't delete them hence the alerts.
>
> Examples of the files that have been infected/ alert log:
>
> Virus or unwanted program 'TR/Crypt.ZPACK.Gen [trojan]'
> detected in file 'C:\System Volume
> Information\_restore{7B232DB6-C240-4F00-85EB-E871A83F5F29}\RP198\A0056136.dll.
>
> The file 'C:\WINDOWS\system32\imetodis.dll'
> contained a virus or unwanted program 'TR/Crypt.ZPACK.Gen' [trojan]
>
> Virus or unwanted program 'TR/FakeAV.SK [trojan]'
> detected in file 'C:\Documents and Settings\Administrator\Local
> Settings\Temp\eyeriqxr.exe.
>
> Virus or unwanted program 'TR/FraudPack.tha [trojan]'
> detected in file 'C:\Documents and Settings\Administrator\Local
> Settings\Temp\jcij5ihi.exe.
>
>
> Can someone please help me?
>
>


This is a good place to begin. The guys who assembled these instructions are
absolutely dependable. It's tedious, but you have to do these things.

http://securitytango.com/windows.php

elmo
Posts: 47
Joined: 07 Mar 2009, 00:00

Re: Removing specific trojans- HELP

Post by elmo »

helpmepls wrote:
> Hello all,
>
> I use Avira anti-virus and I got an alert the other day about the
> following trojans:
>
> TR/PSW.OnLi.2226092
> TR/FakeAV.SK
> TR/Crypt.ZPACK.Gen
> TR/FraudPack.tha
>
> Everytime I restart my computer I keep getting these alerts although I
> have chosen the option of "deleting" the file, I have a feeling the
> anti-virus can't delete them hence the alerts.
>
> Examples of the files that have been infected/ alert log:
>
> Virus or unwanted program 'TR/Crypt.ZPACK.Gen [trojan]'
> detected in file 'C:\System Volume
> Information\_restore{7B232DB6-C240-4F00-85EB-E871A83F5F29}\RP198\A0056136.dll.
>
> The file 'C:\WINDOWS\system32\imetodis.dll'
> contained a virus or unwanted program 'TR/Crypt.ZPACK.Gen' [trojan]
>
> Virus or unwanted program 'TR/FakeAV.SK [trojan]'
> detected in file 'C:\Documents and Settings\Administrator\Local
> Settings\Temp\eyeriqxr.exe.
>
> Virus or unwanted program 'TR/FraudPack.tha [trojan]'
> detected in file 'C:\Documents and Settings\Administrator\Local
> Settings\Temp\jcij5ihi.exe.
>
>
> Can someone please help me?

Burn BitDefender, or another program listed at the link below, to a CD
(using a working machine) and test the infected machine with it.
BitDefender also has a Rootkit checker on the Linux Desktop; run it if
you think that's the problem:

http://www.techmixer.com/free-bootable- ... load-list/

Download the executable rather than the .iso image, if one is
available.. it prompts you to insert a CD and burns the file, no problem.

Then run these:

Malwarebytes

Post Reply