Trojan Horse Downloader.DEFL.12.AN

Discussion in 'Malware Help (A Specialist Will Reply)' started by TheElite, Jun 21, 2008.

  1. TheElite

    TheElite Private E-2

    I am having a problem with this virus (Trojan Horse Downloader.DEFL.12.AN

    A person whom I thought was a friend (through online gaming), sent me a Video File in the form of a .avi I figured such a file would likely be clean.

    I prescanned the video file with AVG and a-Squared it was clean.

    Apparently not, I open the video to view, it is "blank", at once I became suspicious and scanned my entire computer, within seconds both scanners found a Trojan Horse Downloader.DEFL.12.AN in System32\Comaddi.dll

    I at once realized that there IS no Comaddi.dll, only a Comaddin.dll, so the virus CREATED its own system32.dll and named it similar to another, to throw off suspicion.

    Long story short,

    I cannot delete it, because it's a System32

    I've tried both virus scanners, in safemode and regular mode, both just "heal" the virus and ask me to reboot, at which point the virus pops up again..

    I've tried deleting the virus' registries and "thread" in both safemode and regular mode "unable to delete specified values"

    When I search the .dll in registry, it shows it in a folder called

    "InprocServer32"


    Anyways, I could use some help here > . <
     
    TheElite, Jun 21, 2008
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    TimW, Jun 21, 2008
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds