I was looking for a code for FlashFXP, cause my trial is almost out, and I got this exe file. Me being stupid, extraced it it (Self extracting winrar archive). I was then going to scan the parts it extracted, but it had a CMD window pop up, and it was doing something. I closed it and got scared. I went to the virus scanning website, and boom, I know it was a Trojan. :(

A-Squared
Found nothing
AntiVir
Found DR/Virtumonde.159837, TR/Vundo.Gen, TR/Dldr.Small.DDT.1, TR/Crypt.ULPM.Gen
ArcaVir
Found Adware.Virtumonde.Gen.55289.MX, Trojan.Downloader.Small.Ieg, Trojan.Downloader.Small.Ijp
Avast
Found Win32:Small-JMH
AVG Antivirus
Found Downloader.Generic6.AGKV, Downloader.Zlob.RZ
BitDefender
Found Trojan.Downloader.JJMX, Trojan.Retapu.D
ClamAV
Found Trojan.Downloader-24195
CPsecure
Found AdWare.W32.Virtumonde.gen
Dr.Web
Found Trojan.Virtumod.240, Trojan.DownLoader.38517, Trojan.DownLoader.47332
F-Prot Antivirus
Found Possibly a new variant of W32/new-malware!Maximus
F-Secure Anti-Virus
Found not-a-virus:AdWare.Win32.Virtumonde.gen (4, 1, 400), Trojan-Downloader.Win32.Small.ieg, Trojan-Downloader.Win32.Small.ijp
Fortinet
Found nothing
Ikarus
Found Trojan.Vundo, Trojan-Downloader.Win32.Small.ieg, Trojan-Downloader.Win32.Small.ijp
Kaspersky Anti-Virus
Found not-a-virus:AdWare.Win32.Virtumonde.gen, Trojan-Downloader.Win32.Small.ieg, Trojan-Downloader.Win32.Small.ijp
NOD32
Found Win32/Adware.Virtumonde application, Win32/TrojanDownloader.Small.NRS, Win32/TrojanDownloader.Small.IAW, probably a variant of Win32/Agent (probable variant)
Norman Virus Control
Found Virtumonde.MDI
Panda Antivirus
Found Trj/Downloader.SLP, Trj/Downloader.SQR
Rising Antivirus
Found nothing
Sophos Antivirus
Found Mal/Packer, Mal/DownLdr-O
VirusBuster
Found nothing
VBA32
Found Trojan-Downloader.Win32.Small.ieg, Trojan-Downloader.Win32.Small.ijp
What do these results mean? Should I reformat my PC? I already erased the Exe file. I don't really know what the worse a Trojan can do.

Thanks
~ Harry

Pm'd you ;)

What do these results mean?

That you are in deep shit, my friend.

I don't know very much about trojans, but AFAIK they are hard to remove but go away by formatting, right?

Trojans can do alot. on the worst way imo,, they upload you're serials.
- Those scans can find him, who can't they remove it?
- Can't you're virus scanner remove them?
- Remove all you're temp files.
-
Some trojans are nub.
Windows key + R.
MsConfig
StartUp.
And look for weird things. (easyer is system mechanic).

A other nub way:
Start -> bureau accessoires -> system tools>system restore (its probebly called different in englich :p).
Set it to yesterday or earlier. It'll not effect you're documents. after the roll back try that scan again. (yes this worked for a virus i had in the past)

btw,
Win32/TrojanDownloader.Small.IAW, probably a variant of Win32/Agent (probable variant)

WTF?

Don't want to reformat :/

first of all put all on a not intern hardisk , then you can try some thinks mauybe you can't restart after first copy all files not windows(trojan maybe in there) the do somthing like system recovery

tweaks.com. download hijackthis. make a log and post it. the guy will give you STEP-BY-STEP instrcutions. hes fixed my comp 3 times. give that a try before you reformat.

restore your comp that may help :S

and dont you got anti-virus program just get rid of it

Reformatted - Thank god I have 5 computers, and a 4gb Flash Drive :) Now I lost all my bookmarks, but what the hell... why do people like to make other people miserable with Viruses, etc. ?

Reformatted?? Why didn't you try a simple virus scan first...?
Overreaction TBH.

Jeez I can't beleave people aren't smart enough to figure this out. First of all, this is not an answer to the Trojen thing but it should help you.

When ever you use w/e program (in this case flashXp) try changing the computer date and the trial should work longer. It works for mostly all programs. Now I don't know what FlashXP is so I can't say if it will work or not. But maybe you can delete all the virus / flashxp stuff, get a new trail and do what I said; idk.

Reformatted?? Why didn't you try a simple virus scan first...?
Overreaction TBH.

He was being raped by the virus it kept duplicating it self into w32 files and other applications, since it was a root kit, it started to spread, the only way to stop it you could system restore... but reformat was a good idea... doesn't hurt to loose everything then get back really, not like anything you can't get back or save with a flash drive :)

just look it up on the microsoft website, trojans are fairly easy to remove if you get the right instructions

He was being raped by the virus it kept duplicating it self into w32 files and other applications, since it was a root kit, it started to spread, the only way to stop it you could system restore... but reformat was a good idea... doesn't hurt to loose everything then get back really, not like anything you can't get back or save with a flash drive :)

Couldn't have said it better :) It was just making my computer go like crazy, so I just said "Screw this, let's reinstall" and then saved all my 'st00f' onto the flash drive and backed it up on my backup computers.

Only thing is now that everything online is so slow :(

trojans suck, good luck with fixing that

trojans suck, good luck with fixing that

Spam much?

@rib sauce: if its a trojan rootkit or a trojan that copies it self to random win32 files, you have to remove the trojan, but along with it you are removing system files... when it infects them they affect everything... so yeh have fun removing all those :D

@hy114235432(what ever numbers they are): Well did you do anything to configure you web browser to go faster? If so just look at some settings and download some useful SAFE programs that might help that... who knows maybe something is bottlenecking your system

Try using google to find out more about the viruses your infected with, you could also go to http://www.computerhope.com/forum/ they are a freindly bunch of really smart computer tec's and you could ask them about it, but if you wanted to be sure that you have removed it i would reformat your pc. Annyways, i hope i have helped you, i reccomend you visit the computer hope forums, they have helped me out alot in the past :P

lolz anytime you need help with viruses or anything to do with computers ASK ME!!! I am a genius. Ive been a computer Tech Support guy. Ive built over 8 pc's by myself. In fact you could have removed that trojan in like 5-10 min without a worry. Trust me if you can..

Thank you, Pierre14

Well. Apparently it's either a "uber leet" batch virus such as

"@ECHO OFF
:eleethax
start notepad.exe
goto eleethax"

or a nooby trojan, as it showed the cmd window..? So the person has been failure enough not to know how to hide the window, or it's meant to be showed, was there batch files in the archive? As I've seen some gay thing that creates like 100 batch files that you need to put into a self-extracting folder and make it automatically start the first one :p...

A good idea would be to download *ahem* I mean buy *Ahem* just about any AV from the list because it seems to be a well known virus and then scan your pc.. Unless you already have one of the AV's that detected it then just scan..

And another good idea might be to google about the trojan (the "names" AV's showed), incase there's some fix or a deleter or something for it.

tweaks.com. download hijackthis. make a log and post it. the guy will give you STEP-BY-STEP instrcutions. hes fixed my comp 3 times. give that a try before you reformat.


hijack this works, try googling for it or looking for it on trend micro's website. the file looked to be a downloader, which downloads another files (which is who knows what) but its probally setup to download another trojan, like a bot or spyware package. all-in-all try using hijack this and posting the log to castlecops.com they will help you remove whatever is on there now. btw... i dont really recommend formatting your pc, unless hijack this is unable to fix it. a/v also helps in cases like this... just a thought.

hijack this doesn't really "fix" anything, just gives you a main progress report of computers system files, and suspicious or recently downloaded files for others to look at and diagnose your problem... thats why people ask to post report on certain forums like the hi jack this forum is self because someone usually knows how to fix it there by giving the file names destination path and everything... At least thats my theory :)

Well whatever it is, its fixed now.

Happens to me all the time. Ive had my computer restored so many times :/

The guy takes it, but doesnt save anything so, poof, get it all again.

Yup, all fixed, and congrats on 69 posts :p

Not trying to get my post count up or anything but i think you over-reacted as mentioned before but i don't blame you..... nasty viruses. Don't you have anti-virus? If not get like AVG or AVAST anti-virus they are free and good. Another great addition you should have is windows defender/Spybot search and destroy.

~XxChronic2007xX

No, it was 'fuxin' my Windows folder, every 5 seconds, it would make the screen go off, then on, and over and over, was breaking it :p

Meh, atleast you got all of your stuff still. I lost all mine when it happened

Ok now I added meaning to the post.. How do you get Junior Member :/

Did you try system restore to the latest date there was no trojan installed?

Did you try system restore to the latest date there was no trojan installed?

It wouldn't help, it was copying it self into system files, some files can't be restored... it even says so at times...

Reformatted?? Why didn't you try a simple virus scan first...?
Overreaction TBH.



i agree and to think that formatting doesn't always kill trojans...

and hy, you don't need any keygens or cracked warez. know how? just turn your clock back to the day after trial started. turning off internet time synch helps too.

Trojan? Perhaps next time you should check the remover manual from Symantec as they give lots of info on fixing it...