[sihing1]

I have a randomly named .exe that I can't kill with anything. (Taskkill as administrator on vista, blocking it at startup with windows defender, and I have limited experience with assembly and I opened the .exe in OllyDbg to see where it's going but all I can see is it's pushing some memory and adding a ton of bytes to EAX almost to a point where I think it might be bleeding my memory for something). So I start up and this time it's named aafnuxmd.exe... no idea where it came from, but I'm currently killing it with hijackthis.exe. I know it's not a good program, it's trying to tinker around with my lpk.dll, probably with injections of some sort, but again I'm not incredibly advanced to be able to track down exactly what it's doing with my limited knowledge of assembly. I tried using netstat -a to see if I could see it talking to anything... but it wouldn't show the PID or what it was doing. So my only defense is hijackthis right now. Can anyone please help me? I'd hate to have to reformat...

[Advertisements]

Please post over in the malware forums for more advice on how to deal with this.
Here's a link to there: http://www.geekstogo...emoval-f37.html

[usasma]

Please post over in the malware forums for more advice on how to deal with this.
Here's a link to there: http://www.geekstogo...emoval-f37.html