 | |
| |
| 02 Jul 2011 | #1 |
| | Trojan:Win32/Comroki!rts Downloaded and ran the Microsoft Safety Scanner and it found this. Trojan:Win32/Comroki!rts Safety Scanner removed so it says. All I found with Google besides sales pitches to buy things is this at MS. Encyclopedia entry: Trojan:Win32/Comroki - Learn more about malware - Microsoft Malware Protection Center Basically no info. Malwarebytes missed it on scan before the MS Safety Scanner and Avast let it in. Ran Avast after Safety Scanner and nothing else found. That makes me feel warm and fuzzy since neither caught it the first time.  Anything else I need to run for removal? One of our security people around tonight?  |
My System Specs | |
| 02 Jul 2011 | #2 |
| | Hey, Run a scan with Malwarebytes FREE if you haven't already mate. Some info from ThreatExpert : http://www.threatexpert.com/report.a...24beeec4b10e79 Regards, Golden |
| My System Specs |
| 02 Jul 2011 | #3 |
| | Golden I did that first and it missed it. I can rerun just to be safe. I wanted to make sure that it was that easy to remove or is it one of the stubborn pain in the ... to remove ones. |
| My System Specs |
| . |
| |
| 02 Jul 2011 | #4 |
| | Mmm OK....yep I missed the bit where you said that (doh). Have you tried the ESET on-line scan? |
| My System Specs |
| 02 Jul 2011 | #5 |
| | No like I said the Microsoft Safety Scanner says it was removed. I have the online ESET so I will update and run it to be sure. I answered your VM. If it made all those registry changes that Threatexpert reported I may have a mess. |
| My System Specs |
| 02 Jul 2011 | #6 |
| | Hop : if its cleaned out thats good, but we need to make sure its not a backdoor variant - I'm not sure how to tell that. We need Jacee or Corinne to give this the once over. Let us know how you get on mate, Golden |
| My System Specs |
| 02 Jul 2011 | #7 |
| | ESET on line scanner shows clean. Last edited by Hopalong X; 02 Jul 2011 at 09:17 PM.. |
| My System Specs |
| 03 Jul 2011 | #8 |
| | Trojan.Win32.Pasta [Ikarus] is also known as: Trojan:Win32/Comroki [Microsoft] Trojan.Win32.Pasta [Ikarus] is known to be created as: %ProgramFiles%\ainmet\rainmeter.exe %ProgramFiles%\complus applications\vwxzceh.exe %ProgramFiles%\freevpn\freevpn.exe %ProgramFiles%\internet explorer\svuwyxzd.exe %ProgramFiles%\microsoft frontpage\oqsrt.exe %ProgramFiles%\movie maker\utvxw.exe %ProgramFiles%\movie maker\wybzc.exe %ProgramFiles%\movie maker\yfhonsr.exe %ProgramFiles%\msn gaming zone\ilkmonpo.exe %ProgramFiles%\web publish\gihkmlnp.exe %ProgramFiles%\windows nt\xhkjln.exe %ProgramFiles%\winpcap\jltsv.exe %ProgramFiles%\winpcap\oqprtqpr.exe %ProgramFiles%\xerox\gikjn.exe %System%\msnwshoot.exe %System%\mstooltaskbar.exe %Temp%\137626.exe %Windir%\smss.exe If you find any of these entries, upload them to Virus Total. A Guy |
| My System Specs |
| 03 Jul 2011 | #9 |
| | Win Defender, ESET on line scanner, Avast and Mbam clean. The only scanner that found something was MS Safety Scanner. |
| My System Specs |
| 03 Jul 2011 | #10 |
| | Download DDS from one of these links: Mirror 1 Mirror 2 Mirror 3
|
| My System Specs |
 |
Trojan:Win32/Comroki!rts problems?
| Thread Tools | |
| Similar help and support threads for: Trojan:Win32/Comroki!rts | ||||
| Thread | Forum | |||
| Trojan.Win32.Jorik.Midhos.axf | System Security | |||
| Trojan:Win32/FakeSysdef | System Security | |||
| Win32/fynlovski.aa trojan problem | System Security | |||
| Win32/Lethic is a trojan | Security News | |||
| Trojan-Downloader.Win32.VB.bbl | System Security | |||
All times are GMT -5. The time now is 12:54 AM.
