Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Trojan.Agent?

Started by jkenzie , Apr 04 2009 10:12 PM

Please log in to reply

#1
jkenzie

Posted 04 April 2009 - 10:12 PM

New Member

Member
1 posts

Since last evening, I’ve been hit by several Trojans.
Win32/Cryptor
PSW.Generic7.BSO
Downloader.Zlob_r.EX
Constructor.DER

I have been able to remove most of them but there is something still on my system that keeps returning. There is a .DLL file in my Windows root that has a dynamic name every time the infection comes back. It’s currently calling itself ilegarorohugewu.dll. This is related to a registry entry
O4 - HKLM\..\Run: [Rselixudumos] rundll32.exe "C:\WINDOWS\ilegarorohugewu.dll",e
Anyone have a clue what this is and how I can get rid of it.
Malwarebites is the only scanner that sees it but it always comes back after reboot. MB is calling it Trojan.Agent but I can’t find what is loading it back everytime.
I’m still getting an occasional search engine redirect

John