associates.exe

Viruses and worms
1

Hi,
I’d really appreciate any advice on this
I have the associates.exe trojan in the system 32 file of Windows.
TrojanHunter identifies it as a suspicious upx packed file but nothing (and I mean nothing!) will remove it.
Do you think avast will be able to help? Most programs find it and “delete” it, but the root cause ie the upx packed file is never removed, so sure enough back it will come…
Cheers for any help/advice
I’m considering reinstalling windows just to be rid

2

If you know where the file is can you delete it manualy, if not try remove on boot to clear the file http://www.softwarepatch.com/software/moveonboot.html

3

I think the relevant words in this are “TrojanHunter identifies it as a suspicious upx packed file” so you are going to have to investigate and see if it is a legitimate file or not, and google is your friend here, this is just 1 hit to a search.
http://www.bleepingcomputer.com/startups/Associates.exe-13662.html

Being in the system32 folder and also possibly being in use windows will be protecting it.

From the virus chect see if you can add it to the chest ‘User Files’ section from there you can send/email it to avast. Not that you believe it to be an undetected virus with a brief description of the problem a link to this thread will help, avast will investigate it and if a virus/malware will ad it to the VPS, this will help others and yourself.

Unlocker http://ccollomb.free.fr/unlocker/ has a few extra tools like stopping a process that may be running which is stopping you deleting it.

Care should be taken becaus eyou may have to disable system restore because of its location, otherwise it will end up as a restore point and you could