|
Post by tonydown on Oct 23, 2014 21:18:55 GMT -8
ESET Results:
C:\FRST\Quarantine\C\Users\Tony\AppData\Local\Temp\ujisklc.dll.xBAD a variant of Win32/Kryptik.CNXZ trojan C:\FRST\Quarantine\C\Users\Tony\AppData\Local\{6CD9BE97-0772-4061-BF4F-A78DEA6097C4}\fgermslw.dll.xBAD a variant of Win32/Kryptik.CNXZ trojan
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 23, 2014 21:21:00 GMT -8
Uninstall
ESET Online scanner
Quads
|
|
|
Post by tonydown on Oct 23, 2014 21:28:51 GMT -8
clicked "uninstall application on close" and "Finish" - just noticed the lzykcqispud.exe infestation is back, had 6 or 7 copies on task manager, eating up CPU
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 23, 2014 21:36:02 GMT -8
What again??
Quads
|
|
|
Post by tonydown on Oct 23, 2014 21:38:45 GMT -8
I'm afraid so, up to 9 copies, I haven't tried to kill with task manager yet
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 23, 2014 21:41:39 GMT -8
|
|
|
Post by tonydown on Oct 23, 2014 21:47:53 GMT -8
should I delete the existing FRSR.txt as well?
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 23, 2014 21:55:44 GMT -8
ummm FRSR.txt?? try FRST.txt, No that one automatically overwrites
Quads
|
|
|
Post by tonydown on Oct 23, 2014 22:10:14 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 23, 2014 22:18:31 GMT -8
You remember how to download the script correctly and use it with FRST by now??
Quads
|
|