Friendly Trojan!?? - Techist - Tech Forum

Go Back   Techist - Tech Forum > Computer Software > Microsoft Windows and Software
Click Here to Login
Closed Thread
 
Thread Tools Display Modes
 
Old 05-20-2005, 05:57 PM   #1 (permalink)
Junior Techie
 
Join Date: Mar 2005
Posts: 68
Default Friendly Trojan!??

HI,..1 month ago, i detected some spyware activity on my pc, i run some anti-spyware software n antivirus (AVG, Mcafee, A-squared, regseeker, Adware, No-adware,...whatever...those programs found always the same trojan in the same folder (C:windows)
i healed or deleted them....but..the computer makes a slower machine!!!...i restart my pc, and still with my life,...downloading files (with flashget) mainly....i run again the antispyware-antivirus software n find the same trojans...
there are Friendly trojans!? (i dont think so!!!)....
PD(with a right click on my desk the pc becomes slow!! n a blue screen with "bad pool caller" message appears!!)

any sugestion

P4 3.O HT, 512ram, 80gb maxtor, winxp pro sp2, ....
__________________

oileruis is offline  
Old 05-20-2005, 06:11 PM   #2 (permalink)
Techie Beyond Description
 
Osiris's Avatar
 
Join Date: Jan 2005
Location: Kentucky
Posts: 36,817
Send a message via ICQ to Osiris Send a message via AIM to Osiris Send a message via MSN to Osiris Send a message via Yahoo to Osiris
Default

Post a hijack this log and we will see what we can do
__________________

__________________
Osiris is offline  
Old 05-20-2005, 07:25 PM   #3 (permalink)
Monster Techie
 
Join Date: Jan 2005
Posts: 1,100
Send a message via AIM to Blitze105 Send a message via Yahoo to Blitze105
Default

what is the trojan called, and ill help you.
__________________
I'm Forgetful! so if i stop posting on something that i was helping you with... PM me or IM me
yahoo and aol: blitze105
you can always IM or PM me if i offend you as well, i will edit the post if i have.
Blitze105 is offline  
Old 05-20-2005, 07:54 PM   #4 (permalink)
Junior Techie
 
Join Date: Mar 2005
Posts: 68
Default

some of the trojans names
(also, all are "trojan horse downloader.agent.11q")


ieup.exe apibz.exe
netkl.exe
appoh32.exe
winca.exe
apiqm.exe
oileruis is offline  
Old 05-20-2005, 08:16 PM   #5 (permalink)
Techie Beyond Description
 
Apokalipse's Avatar
 
Join Date: Jun 2003
Location: Melbourne, Australia
Posts: 14,559
Default

maybe the trojan has more files than that, and is taking resources to find the other programs again after they're deleted

press ctrl+alt+del and see what's running and what takes up your resources
__________________
Apokalipse is offline  
Old 05-20-2005, 08:48 PM   #6 (permalink)
Monster Techie
 
Join Date: Jan 2005
Posts: 1,100
Send a message via AIM to Blitze105 Send a message via Yahoo to Blitze105
Default

I must give you this, you got a good trojan. Congratulations
To start, get these:
a. http://www.majorgeeks.com/download.php?det=3019
b. cwsserviceremove.reg (see attachment)

Boot in safe mode, then....
Run CWShredder:

* Double-click on CWShredder.exe.
* Click Fix -> and click OK at the prompt.
* CWShredder will scan and clean your system of CWS files.
* Click Next-> and then Exit.


Remove the service:

* Double-click on cwsserviceremove.reg you downloaded earlier.
* When it asks you to merge the information to the registry click Yes.

Delete these files:
C:\WINDOWS\system32\edabr.dll
C:\WINDOWS\system32\winfg.exe
C:\WINDOWS\system32\atlnw.exe
C:\WINDOWS\system32\iepr.exe
C:\WINDOWS\system32\sdknh.exe
C:\WINDOWS\iekb.exe

Keep in mind i am not sure this will work.. hope it does
post ur results
Attached Files
File Type: zip cwsserviceremove.zip (1,010 Bytes, 0 views)
__________________

__________________
I'm Forgetful! so if i stop posting on something that i was helping you with... PM me or IM me
yahoo and aol: blitze105
you can always IM or PM me if i offend you as well, i will edit the post if i have.
Blitze105 is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off




Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 08:12 AM.


Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.