Home > Trojan Horse > Trojan Horse BackDoor.Generic10.AKBU

Trojan Horse BackDoor.Generic10.AKBU

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] ADVAPI32.dll!CryptDecrypt 77DEA7B1 2 Bytes JMP 28001060 C:\Program Files\Messenger Plus! Trending Now Dafne Keen Paula Patton Dallas Mavericks Howard Stern Conor McGregor Norton Antivirus Eugenio Derbez Mortgage Calculator Roman Reigns Health Insurance Quotes Answers Relevance Rating Newest Oldest Best Answer: Hello, Jan 16, 2012 #1 Broni Malware Annihilator Posts: 53,238 +349 Welcome aboard Please, complete all steps listed here: http://www.techspot.com/vb/topic58138.html Make sure, you PASTE all logs. As Boopme says, you can never be 100% certain that any infection has gone but there seems to be no sign at the moment. http://songstersoftware.com/trojan-horse/trojan-horse-generic10-vpd.html

Tried many different ways but unfortunately I can't get malware bytes to update/install right now. Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] ADVAPI32.dll!CryptDecrypt 77DEA7B1 2 Bytes JMP 28001060 C:\Program Files\Messenger Plus! Click the Tools menu, and then click Folder Options. In Notepad click Format, uncheck Word wrap if it is checked if you don't understand something, please don't hesitate to ask for clarification before proceeding the fixes are specific to your

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] USER32.dll!SetWindowPlacement 77D6FBEA 5 Bytes JMP 28005DC0 C:\Program Files\Messenger Plus! Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] WS2_32.dll!closesocket 71AB9639 5 Bytes JMP 2800BC20 C:\Program Files\Messenger Plus! Live\MsgPlusLive1.dll (Messenger Plus! uInternet Settings,ProxyOverride = *.local uSearchURL,(Default) = hxxp://www.google.com/keyword/%s mURLSearchHooks: H - No File BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} -

  • I don't know what it means but it was suspicious enough for me.
  • Live\MsgPlusLive1.dll (Messenger Plus!
  • Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] USER32.dll!CreateWindowExW 77D51AD5 5 Bytes JMP 28003CA0 C:\Program Files\Messenger Plus!
  • Live\MsgPlusLive1.dll (Messenger Plus!
  • I couldn't remove the virus using AVG and in the result it is showing " object is in the whitelist".
  • under Custom Scan paste this innetsvcs %SYSTEMDRIVE%\*.exe /md5start explorer.exe winlogon.exe Userinit.exe svchost.exe services.exe /md5stop %systemroot%\*. /rp /s DRIVES CREATERESTOREPOINT click the Run Scan button.
  • Please ensure that word wrap is unchecked.
  • Dismiss Notice TechSpot Forums Forums Software Virus and Malware Removal Today's Posts Can't remove trojan horse BackDoor.Generic 14.CEXKvirus Byfreshtag ยท 37 replies Jan 16, 2012 Page 1 of 2 1 2

Live\MsgPlusLive1.dll (Messenger Plus! Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] kernel32.dll!LockResource 7C80C6CF 5 Bytes JMP 28001F50 C:\Program Files\Messenger Plus! Advertisements do not imply our endorsement of that product or service. Antivirus Protection Dates Initial Rapid Release version December 18, 2000 Latest Rapid Release version August 8, 2016 revision 023 Initial Daily Certified version December 18, 2000 Latest Daily Certified version August

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] WININET.dll!InternetCloseHandle 771C61DC 5 Bytes JMP 2800A600 C:\Program Files\Messenger Plus! Live\MsgPlusLive1.dll (Messenger Plus! Please copy and paste the contents of that file here. Live\MsgPlusLive1.dll (Messenger Plus!

Below is the log for Malwarebytes. Any help removing this would be grateful. now.......... How to build your own website?

Live\MsgPlusLive1.dll (Messenger Plus! If you're stuck, or you're not sure about certain step, always ask before doing anything else. Seriously? More questions Tracking Cookies?????????

If you see this question: Would you like to download latest Avast! have a peek at these guys Live\MsgPlusLive1.dll (Messenger Plus! Proud graduate of TC/WTT Classroom Back to top #5 charliebeth charliebeth Authentic Member Authentic Member 82 posts Posted 21 May 2008 - 11:27 AM Thanks for responding to my request If reports don't fit on one post.

You can delete them. Please, observe following rules: Read all of my instructions very carefully. Proud graduate of TC/WTT Classroom Back to top #3 charliebeth charliebeth Authentic Member Authentic Member 82 posts Posted 20 May 2008 - 11:56 PM sprtsync.dll;c:\program files\talktalk\bin;Probably DLOADER.Trojan;Incurable.Deleted.; indt2.sys;c:\windows\system32;Trojan.Click.5002;Deleted.; RegUBP2b-charlie.reg;C:\Documents and http://songstersoftware.com/trojan-horse/trojan-horse-generic10-cpw.html Also during this scan AVG popped up with an Alert saying: Multiple Threat Detection (there was two) File: C:\WINDOWS\system32\drivers\netbt.sys Infection: Trojan house BackDoor.Generic14.CEXK Result: Object is white-listed (critical/system file that should

i'm willing to assist. Live\MsgPlusLive1.dll (Messenger Plus! That's called a tracking cookie.

Thanks again for all of your help.

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] kernel32.dll!SetUnhandledExceptionFilter 7C810386 5 Bytes JMP 0056DBBD C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Windows Live Messenger/Microsoft Corporation).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] kernel32.dll!CreateEventA 7C81E4BD 5 Bytes JMP 28001840 C:\Program Files\Messenger Plus! Did we mention that it's free. Kevin V · 8 years ago 1 Thumbs up 0 Thumbs down Comment Add a comment Submit · just now Report Abuse Download a programme called Malware Bytes. The cookies are harmless and it is your AV over-reacting.

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] USER32.dll!LoadIconW 77D52174 5 Bytes JMP 28006880 C:\Program Files\Messenger Plus! It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot. Live2009-02-08 18:57 --------- d-----w c:\documents and settings\Donna\Application Data\uTorrent2009-02-03 17:13 --------- d-----w c:\documents and settings\Donna\Application Data\MyPhoneExplorer2009-02-01 21:26 --------- d--h--w c:\program files\InstallShield Installation Information2009-01-31 19:36 325,128 ----a-w c:\windows\system32\drivers\avgldx86.sys2009-01-31 19:36 107,272 ----a-w c:\windows\system32\drivers\avgtdix.sys2009-01-31 19:36 this content Several functions may not work.

Broni, I have deleted Lavasoft and ran the aswMBR scan and the Bootkit Remover. Adam Smith Glasgow, 1760 Back to top #4 cis87 cis87 Member Full Member 14 posts Posted 15 February 2009 - 02:44 PM Thank you very much for the assisstance I am If you wish to scan all of them, select the 'Force scan all domains' option. . Virus cleanup?

I have tried getting rid of these before and seem to have problems becuase it's my piggyback/secondary drive and most of the files and folders are locked with passwords. Tech Support Guy is completely free -- paid for by advertisers and donations. Style Default Style Contact Us Help Home Top RSS Terms and Rules Copyright © TechGuy, Inc. Sign In Create Account Body Background skin color theme reset What the Tech Search Advanced Search section: Google This topic Forums Members Help Files Downloads Unreplied Topics View New Content

This tool MUST be run from the executable. (.exe) 2. Here's how it works. Infected with Trojan horse Generic, BackDoor Started by Fruit , Mar 27 2013 07:20 PM Page 1 of 3 1 2 3 Next This topic is locked 40 replies to this It might be necessary to break the logs up to get them on the forum.

Live\MsgPlusLive1.dll (Messenger Plus! I am out of options on what to do next or how to remove this virus. Yes, I plan to reformat my computer soonbutI kept getting Trojan Horse Generic from AVG scans so I'm not sure whether I should reformat it now or after these generics are Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] kernel32.dll!SizeofResource 7C80BAF1 7 Bytes JMP 28001EE0 C:\Program Files\Messenger Plus!