Trojan problem: siszyd32.exe

Hello everyone,

I have a problem with siszyd32.exe. When I started my computer tomorrow, Windows Defender warned me about this and I could easily delete this Trojan, but I’m still not sure if it is deleted entirely :s. Is it possible that it is deleted correctly or are there any methods to be sure or to check if it is deleted permanently?

Thanks in advance

Hi sebster,

Thanks for creating a new thread, I have sent essexboy the link to the thread so he is aware of it.
When he is online, he should be able to help you.

-Scott-

Hi Scott!

Thanks you for your help ;)!

Hi lets have quick shufti to see if there are any remnants - you may not have the tdl rootkit

To ensure that I get all the information this log will need to be uploaded to Mediafire and post the sharing link.

Download OTS to your Desktop

[*]Close ALL OTHER PROGRAMS.
[*]Double-click on OTS.exe to start the program.
[*]Check the box that says Scan All Users
[]Under Additional Scans check the following:
[
]File - Lop Check
[]File - Purity Scan
[
]Evnt - EvtViewer (last 10)
[*]Under custom scans copy and paste the following

netsvcs
%SYSTEMDRIVE%*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
/md5stop
%systemroot%*. /mp /s
c:$recycle.bin*.* /s
CREATERESTOREPOINT

[*]Now click the Run Scan button on the toolbar.
[*]Let it run unhindered until it finishes.
[*]When the scan is complete Notepad will open with the report file loaded in it.
[*]Click the Format menu and make sure that Wordwrap is not checked. If it is then click on it to uncheck it.

Thanks for helping me!

Here is my OTS file: http://www.mediafire.com/?md2tctmyyjm

No hangers on as far as I can see. Are you experiencing any problems ?

http://img233.imageshack.us/img233/7729/mbamicontw5.gif
Please download Malwarebytes’ Anti-Malware from Here.

Double Click mbam-setup.exe to install the application.

[*]Make sure a checkmark is placed next to Update Malwarebytes’ Anti-Malware and Launch Malwarebytes’ Anti-Malware, then click Finish.
[*]If an update is found, it will download and install the latest version.
[*]Once the program has loaded, select “Perform Quick Scan”, then click Scan.
[*]The scan may take some time to finish,so please be patient.
[*]When the scan is complete, click OK, then Show Results to view the results.
[*]Make sure that everything is checked, and click Remove Selected.
[]When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
[
]The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
[*]Copy&Paste the entire report in your next reply.

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

Thanks! No I don’t have any problems, but when I read about this virus, it seemed that it difficult to remove, apparently Windows Defender has deleted it completely!

Thank you very much for helping me out!

PS: I normally use Spybot, if I install MBAM too will it give any problems?

None at all in fact MBAM is streets ahead of spybot. As long as you didn’t get the associated rootkit this is fairly easy to clean - with the rootkit and it can be a pain