Possible .exe virus/trojan?

oldman960 · November 19, 2007, 3:55am

I meant to mention that smitfraud fix has been downloaded. We can remove it if you wish.

system · November 19, 2007, 4:06am

So i ran that file through VirusTotal, here are the results:

File d3d9caps.dat received on 11.19.2007 04:58:50 (CET)
Current status: Loading … queued waiting scanning finished NOT FOUND STOPPED
Result: 0/32 (0%)

What seemed somewhat concerning was the amount of anti virus software i have on my machine, some i’m not even familiar with…

Antivirus Version Last Update Result
AhnLab-V3 2007.11.17.0 2007.11.19 -
AntiVir 7.6.0.34 2007.11.18 -
Authentium 4.93.8 2007.11.17 -
Avast 4.7.1074.0 2007.11.18 -
AVG 7.5.0.503 2007.11.18 -
BitDefender 7.2 2007.11.19 -
CAT-QuickHeal 9.00 2007.11.17 -
ClamAV 0.91.2 2007.11.19 -
DrWeb 4.44.0.09170 2007.11.18 -
eSafe 7.0.15.0 2007.11.14 -
eTrust-Vet 31.2.5304 2007.11.17 -
Ewido 4.0 2007.11.18 -
FileAdvisor 1 2007.11.19 -
Fortinet 3.11.0.0 2007.11.19 -
F-Prot 4.4.2.54 2007.11.18 -
F-Secure 6.70.13030.0 2007.11.19 -
Ikarus T3.1.1.12 2007.11.19 -
Kaspersky 7.0.0.125 2007.11.19 -
McAfee 5165 2007.11.16 -
Microsoft 1.3007 2007.11.19 -
NOD32v2 2666 2007.11.19 -
Norman 5.80.02 2007.11.16 -
Panda 9.0.0.4 2007.11.18 -
Prevx1 V2 2007.11.19 -
Rising 20.18.61.00 2007.11.18 -
Sophos 4.23.0 2007.11.18 -
Sunbelt 2.2.907.0 2007.11.17 -
Symantec 10 2007.11.19 -
TheHacker 6.2.9.133 2007.11.17 -
VBA32 3.12.2.5 2007.11.16 -
VirusBuster 4.3.26:9 2007.11.18 -
Webwasher-Gateway 6.0.1 2007.11.18 -

Also, i’m sorry to trouble you with what seems to be a rather standard procedure but how exactly do i fix that line in HJT? :-\

I appreciate the help.

oldman960 · November 19, 2007, 5:01am

Sorry. Open HJT, run system scan only, put a check beside the line, close all other windows and click fix.

did you want to remove smitfraudfix? It’s kind of a specialized tool.

system · November 19, 2007, 5:11am

Thanks, i just removed the line then. Sure, whatever can help me getting my machine back to normal. I’m in the process of running all my anti-spyware stuff again for the sake of it.

oldman960 · November 19, 2007, 6:30am

This should remove it. The smitfraudfix can cause problems if it’s run on a non infected machine so it’s usually removed after use.

Please download OTMoveIt by OldTimer. Save it to your desktop and double-click OTMoveIt.exe to run it, then click the Clean Up button. You may get prompted by your firewall that OTMoveIt wants to contact the internet - allow this. A cleanup.txt will be downloaded, a message dialog will ask you if you want to proceed with the cleanup process, click Yes. This will delete all the tools you have downloaded plus itself.

This is a pretty good cleanup utility if you want to try it. It even gives you a test run.

CleanUp

system · November 19, 2007, 7:47am

Ran those two provided links, will continue to do so in the future if needed. I’m just wondering where do i go from here? How can i rest easy knowing my machine is relatively healthy? I’m still not sure as to why a few games will no longer launch :-[ Some of the keyboard keys are still freezing up the machine, volume control for example. Any other idea’s/scans in mind?

:-\

EDIT: i seemed to of resolved my game problems. Through google i just found a number of things to try, it ended up being a problem in my user files or something. Just wiped them and started over and it boots as good as ever.

However, i’m still concerned with how safe my machine really is.

Atleast fow now…

oldman960 · November 19, 2007, 2:00pm

Well, from what I could see, you should be fine. Just make sure your firewall is active. Was it prefetch files by chance?

Take care.

Possible .exe virus/trojan?

Announcements