Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works

Randomly Named Virus Running on Startup

  • Please log in to reply



    New Member

  • Member
  • Pip
  • 2 posts
I have a randomly named .exe that I can't kill with anything. (Taskkill as administrator on vista, blocking it at startup with windows defender, and I have limited experience with assembly and I opened the .exe in OllyDbg to see where it's going but all I can see is it's pushing some memory and adding a ton of bytes to EAX almost to a point where I think it might be bleeding my memory for something). So I start up and this time it's named aafnuxmd.exe... no idea where it came from, but I'm currently killing it with hijackthis.exe. I know it's not a good program, it's trying to tinker around with my lpk.dll, probably with injections of some sort, but again I'm not incredibly advanced to be able to track down exactly what it's doing with my limited knowledge of assembly. I tried using netstat -a to see if I could see it talking to anything... but it wouldn't show the PID or what it was doing. So my only defense is hijackthis right now. Can anyone please help me? I'd hate to have to reformat...
  • 0





  • Member
  • PipPipPip
  • 636 posts
  • MVP
Please post over in the malware forums for more advice on how to deal with this.
Here's a link to there: http://www.geekstogo...emoval-f37.html
  • 0

Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP