Nasty Trojan which I cannot remove

Discussion in 'Malware Help (A Specialist Will Reply)' started by SimonB, Nov 4, 2005.

  1. SimonB

    SimonB Private E-2

    Found you guys (good guys) through a google search and I seem to have a nasty Trojan that none of my spyware or anti-virus programs will remove (I use Windows Anti-spyware, Webroot Spysweeper and Norton Internet Security amongst others from time to time).

    I have "Hijack This" downloaded and ran the log (below).

    This Trojan was picked up with Virtumundo/Virtumonde which was successfully removed with Webroot Spysweeper but the following remains.

    Webroot calls it "Trojan.downloader.conhookxxxxxx"
    Windows ASW calls it "Trojan.startup.NameShifter.HN

    Could anyone here help me to remove this pest which keeps reappearing even when deleting the files from the registry?

    Thanks in advance for your reply.

    EDIT: Inline log removed until the following post below has been attempted first......
     
    Last edited by a moderator: Nov 4, 2005
    SimonB, Nov 4, 2005
    #1
  2. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    Please follow the steps below:

    - Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

    Make sure you check version numbers and get all updates.

    - Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.


    After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis:

    Downloading, Installing, and Running HijackThis
     
    Last edited: Nov 4, 2005
    DavidGP, Nov 4, 2005
    #2
  3. SimonB

    SimonB Private E-2

    Thanks, did all of this twice and then ran Hijack this and it appears to have gone.

    I now have some IE issues (appears unstable) can anyone suggest a better one to use?

    Thanks for the help, I'm happy for the first time in 14 days ;)

    Cheers
    Simon
     
    SimonB, Nov 6, 2005
    #3
  4. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Attach a current HJT log from normal mode to confirm your clean. I would recommend Mozilla Firefox for your browser as it's more secure than IE.
     
    bjgarrick, Nov 6, 2005
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds