Exploit.PDF-JS.Gen, Trojan.Generic.KD.374 infections

Discussion in 'Malware Help (A Specialist Will Reply)' started by JonnyH, Mar 4, 2010.

  1. JonnyH

    JonnyH Private E-2

    I'm suffering from an infection after running a bad application. MBSA scans confirm cleans, but the infection remains. Comodo Internet didn't spot it so I installed Avast. After rebooting the AV was disabled and couldn't be restarted so I replaced with FSecure AV trial. Again, virus removal confirmed (Exploit.PDF-JS.Gen), but multiple Trojan.Generic.KD.374 infections appear to be continually found and removed (how do you get the logs in fsecure trial AV, ie export/txt?!)

    Hyperlinks in Firefox still SOMETIMES take me to erroneous sites , chrome was removed because nothing's happening (kill pages prompt following no response), and MBSA / SuperAntispyware still find various nastys.

    Just running Kaspersky, so SUPERantispy is removed (conflicts)
    , but when I ran it reported fake svchost


    Trojan.SVCHost/Fake
    C:\WINDOWS\TEMP\RRLY.TMP\SVCHOST.EXE
    C:\WINDOWS\Prefetch\SVCHOST.EXE-0627A444.pf

    ComboFix won't run, and I'm ready to restore from a backup using Acronis TrueImage, but don't know if theat will fix...

    mbam /sas / rr logs attached. Advice welcome! Thanks in advance

    Jonny
     

    Attached Files:

    JonnyH, Mar 4, 2010
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    You need to quit installing different anti virus!! Some of them require removal tools to be rid of them completely and at the moment, due to lack of logs from you I cannot tell the status of your machine. Combofix wont run you say, so please rename it to 123.com and try again. If this doesn't work in normal mode, please try safe mode.

    What happened with MGTools.exe? Did you run this? (If you already have logs from running it )C:\Mglogs.zip) then please attach it into your next reply.
     
    Kestrel13!, Mar 4, 2010
    #2
  3. JonnyH

    JonnyH Private E-2

    mgtools detected as infected and autocleaned, but have managed to fix I think.
    Ran the cleaning tool from Symantec or whoever, cleaned 1 of 2 infections, after which combofix ran and cleaned successfully.


    Think I'll stick with AVG, and maybe ZA fwall.

    Thanks guys.
     
    JonnyH, Mar 9, 2010
    #3
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    :confused

    What about the logs I asked for? Do you wish to attach them or not?
     
    Kestrel13!, Mar 9, 2010
    #4
  5. JonnyH

    JonnyH Private E-2

    attached
     

    Attached Files:

    JonnyH, Mar 9, 2010
    #5
  6. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    So do you have the log from running it? :)
     
    Kestrel13!, Mar 9, 2010
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds