trojan problem

I can't get into some of my programs, the screen goes blank and comes up with an error message. Pressing any key gets me back to where I was. I've done your recommended checks and I am infected with Trojan.ByteVerify and Dialer.Target. My AVG program identifies it but can't remove it. Can you help please?

 

I followed your advice and all seems well now. Thanks for your help. Great site!

 

No, I spoke too soon. The problem with the screen shutting down when I try to open some of the programs has returned. It seemed OK at first but it came back. Do you have any more ideas? Thanks.

 

First, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal

After doing ALL of the above if you still have a problem:


http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

Hi, i dont speak english very well but i have problems with trojan horses.
I have read all tutorials and i have already done everything..i guess...but when i scan my pc again, appear the same viruses Trojan agent.abs, nail.exe and svchost.
I installed all prgrams you wrote it but didn ´t work it
can you help me please?
Thanks a lot


This my log file


Edit by chaslang: THREAD HIJACK, unrequested inline log deleted.

 

I've gone through the "do this first" advice. Trend Micro showed non cleanable problems but the other programs say the systen is OK. I've attached the Hijackthis log for you to look at. Thanks.

 

Also I do believe Nachorios has "hijacked" my thread!!!

 

And? what is the meaning of hijacked? do you knwo any solution for this problem?

 

sunrise,

Your HJT log is clean, can you advise of what AVG is detecting. Name and location if possible where we can manually remove it.

Also, what problems are you currently having?

 

These are the AVG results.
C:\WINDOWS\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\menu.jr-6182d47b-59dca035.RB0
C:\WINDOWS\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-3a2ffe0f-6630e20b.RB0:\InsecureClassLoader.class
C:\WINDOWS\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-3a2ffe0f-6630e20b.RB0:\Installer.class
C:\WINDOWS\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-3a2ffe0f-6630e20b.RB0 Virus identified Java/ByteVerify Infected, Archiv
C:\WINDOWS\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\menu.jr-6182d47b-59dca035.RB0:\javautil.zip Trojan horse Proxy.16.Z Infected, Embedded object
C:\WINDOWS\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\menu.jr-6182d47b-59dca035.RB0 Trojan horse Proxy.16.Z Infected, Archiv

What happens is - during startup and when I try to open some programs and even sometimes when I try to access my C drive via My Computer - the screen goes blank and then comes up with this message. "A fatal exception OE has occurred at 0028:c1795D48 in VxD cmaudio(01) + 00029488. This was called from 0028:c1795D40 in VxD cmaudio(01) + 0029480."
I hope this is useful to you. Thanks for you help.

 

Boot into Safe Mode with the viewing of hidden files and folders enabled per the tutorial.

Navigate to the following folder and delete it.

C:\WINDOWS\Application Data\Sun\Java\Deployment\cache

After you remove the above folder, run CCleaner and then reboot back into Normal Mode. See if AVG complains anymore.

Let me know!

 

OK, the scans now show no signs of infection. Thanks for that. I do still have the same problem with the screen shutting down though, as I decribed before. Any ideas what could be causing this?

 

Thats probably going to be Software related so I would post this in the Software Forum. Those guys will get you all fixed up.

Good Luck!

 

I had a feeling this might not be virus related. I'll post in the Software Forum as you say. Thanks with your help in getting rid of the Trojan.

 

Your Welcome!

You should see this article on How to Protect yourself from malware!