How the trojan got entry

Joined
Jun 26, 2013
Messages
2
Reaction score
0
Good morning every body.
with windows professional SP-1 ;
few days my system got infected by a trojan the details are here
Category: Trojan

Description: This program is dangerous and executes commands from an attacker.

Recommended action: Remove this software immediately.

Items:
containerfile:C:\Windows\Temp\tmp00005378\tmp000008a9
containerfile:C:\Windows\Temp\tmp00005cd5\tmp00000e81
containerfile:C:\Windows\Temp\tmp00005cd5\tmp00000e9b
containerfile:C:\Windows\Temp\tmp00005cd5\tmp00000ea6
containerfile:C:\Windows\Temp\tmp00005cd5\tmp00000ea8
file:C:\Windows\Temp\tmp00005378\tmp000008a9->(UPX)
file:C:\Windows\Temp\tmp00005378\tmp000008a9->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000e80->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000e81->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000e81->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000e85->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000e9b->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000e9b->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000ea6->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000ea6->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000ea7->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000ea8->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000ea8->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000ea9->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000eb4->[Obfuscator.ES]->(UPX)
file:C:\Windows\Temp\tmp00005cd5\tmp00000eb5->[Obfuscator.ES]->(UPX)

Get more information about this item online.
online information is here :-

I was not working as administrator , and i am using bitdefender total security and windows security essentials + windows defender\

:mad:

How to prevent the same in future , since i don't relay more on anti virus programs :eek:
 

TrainableMan

^ The World's First ^
Moderator
Joined
May 10, 2010
Messages
9,353
Reaction score
1,587
First, you should not use two active-scanning anti-virus programs at the same time because they can conflict and slow down your computer.

Most likely you downloaded something or clicked a link in an email or plugged in an infected flash drive and then gave administrator access to some program. It is important to always save attachments and downloads first, then scan them with your anti-virus program, and then if you trust the source you can open/run the file.

Viruses are very good at pretending to be something you want and getting you to authorize their installation so it is important to know what you are really installing.

I know people who have kids that are constantly installing games and toolbars and browser add-ons and then they wonder how they were infected. Almost every virus gets in because somebody says "yes authorize the installation".
 

davehc

Microsoft MVP
Joined
Jul 20, 2009
Messages
1,958
Reaction score
502
As those files are all temps, you can delete them with affecting your computer. But the Trojan may still be lurking on your computer. Do a search for Obfuscator in the OS, and in the registry, and delete all instances if Bitdefender cannot do it for you (and why not?). As Trainabl man says, not a good idea to use more than one antivirus control. You are using three????
 
Joined
Jun 26, 2013
Messages
2
Reaction score
0
thanks friends for the advise

which anti virus i shall prefer to delete please ,
and secondly the system was infected by the flash drive , and i am very sure that the
PC autorun flash drive is disabled and i have not given the administrator pass word to run any executable files, the alert i got suddenly by the anti virus program is that
your PC is not safe !!

i need few advises please
( 1 ) can i make C:/windows and C:/program files or the C:/ it self highly secured, i mean some thing like administrator permission to open or create or destroy any files or folders
any advice in this connection please :)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top