Trojan horse downloader agent SQK [RESOLVED]

Need a geek? Geeks to Go offers free, quality tech support -- in terms anyone can understand. Volunteers are waiting to help, friendly, technology experts who have knowledge to share, and enjoy helping others. Feel free to browse the site as a guest. However, you must log in to reply to existing topics, or to start a new topic of your own. Other benefits of joining include richer forum features, and removal of all advertising. Learn more in our Welcome Guide Infected? Malware and Spyware Cleaning Guide. What are you waiting for? Click here to join for free today!

> Geeks to Go! » Security » Virus, Spyware and Trojan Removal

Trojan horse downloader agent SQK [RESOLVED]

Options

duckpkl View Member Profile	Sep 19 2007, 06:16 AM Post #1
Member Posts: 39 From: PA OS: Windows Vista Home Premium	when my avg was doing the complete scan this morning it came across it. it is in c:\program files\hijackthis\backups\backups-(series of numbers here).dll. When I tried to run hijackthis it wouldnt run, I got not responding. More found now in my system restore. This post has been edited by duckpkl: Sep 19 2007, 06:21 AM

Rorschach112 View Member Profile	Sep 19 2007, 07:17 AM Post #2
GeekU Teacher Posts: 35,132 From: Dublin OS: XP	Hello again duckpkl, hope you don't mind me replying since I already worked on your log QUOTE when my avg was doing the complete scan this morning it came across it. it is in c:\program files\hijackthis\backups\backups-(series of numbers here).dll. These are fine and nothing to worry about. They are the backups of the infected files that we fixed, they are in quarantine and are pretty much dead. They won't cause any problems, however some scanner programs will detect them. Your best bet is to just tell AVG to ignore them, if you cant though, then quarantine them with AVG. However there is no need to worry. QUOTE When I tried to run hijackthis it wouldnt run, I got not responding. Try this Please download Deckard's System Scanner (DSS) and save it to your Desktop. Close all other windows before proceeding. Double-click on dss.exe and follow the prompts. If your anti-virus or firewall complains, please allow this script to run as it is not malicious. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply. QUOTE More found now in my system restore. These are nothing to worry about, and are easily fixed by flushing your system restore which we can do near the end.

Rorschach112 View Member Profile	Sep 19 2007, 10:18 AM Post #4
GeekU Teacher Posts: 35,132 From: Dublin OS: XP	Hello duckpkl Your logs look as clean as a whistle. Looks like we did a good job earlier You have no malware on your PC at all. To address some of your points. QUOTE More found now in my system restore. These are harmless, but should be fixed to be safe. Do this Now we need to create a new System Restore point. Click Start Menu > Run > type (or copy and paste) %SystemRoot%\System32\restore\rstrui.exe Press OK. Choose Create a Restore Point then click Next. Name it and click Create, when the confirmation screen shows the restore point has been created click Close. Next goto Start Menu > Run > type cleanmgr Click OK, Disk Cleanup will open and start calculating the amount of space that can be freed, Once thats finished it will open the Disk Cleanup options screen, click the More Options tab then click Clean up on the system restore area and choose Yes at the confirmation window which will remove all the restore points except the one we just created. To close Disk Cleanup and remove the Temporary Internet Files detected in the initial scan click OK then choose Yes on the confirmation window. If AVG gives you a warning about finding something in the folder "c:\program files\hijackthis\backups", you can ignore it. Those are stuff we fixed that are dead. I really don't think there is any work to do here Do you have any questions or any other problems?

duckpkl View Member Profile	Sep 19 2007, 10:25 AM Post #5
Member Posts: 39 From: PA OS: Windows Vista Home Premium	Ok all done with that. So if I ever get those warnings with stuff in the restore just do the clean up that you just had me do? I am sorry I think I'm a little paranoid now since I got infected with that virus. Thanks again for the help.

Rorschach112 View Member Profile	Sep 19 2007, 10:28 AM Post #6
GeekU Teacher Posts: 35,132 From: Dublin OS: XP	It's ok to be paranoid considering your PC had been infected earlier. QUOTE So if I ever get those warnings with stuff in the restore just do the clean up that you just had me do? Yes exactly, that will fix any infections that are in System Restore. QUOTE Thanks again for the help. No problem Your PC is 100% clean, so nothing to worry about now. You know where we are in the future if you have any trouble.

Rorschach112 View Member Profile	Sep 19 2007, 10:28 AM Post #7
GeekU Teacher Posts: 35,132 From: Dublin OS: XP	Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.

« Next Oldest · Virus, Spyware and Trojan Removal · Next Newest »

1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)

0 Members:

Topic Title	Replies / Views	Topic Information
Virus, Spyware and Trojan Removal trojan horse downloader agent.6.u [RESOLVED]	17 / 2,432	6th October 2005 - 04:14 PM rodneyj222 started - last by Buckeye_Sam
Virus, Spyware and Trojan Removal Trojan Horse Downloader.Agent [RESOLVED]	12 / 464	20th November 2005 - 07:35 PM honkin started - last by Trevuren
Virus, Spyware and Trojan Removal Trojan horse Downloader.Generic2.XQV [RESOLVED]	19 / 1,044	25th May 2008 - 04:22 AM UserMike started - last by Essexboy
Virus, Spyware and Trojan Removal Infected with Trojan Horse Downloader.Delph.AN [RESOLVED]	16 / 1,498	6th June 2008 - 12:38 PM fozzy182 started - last by Mike