Author Topic: trz.tmp files  (Read 21824 times)

0 Members and 1 Guest are viewing this topic.

moonbaby755

  • Guest
Re: trz.tmp files
« Reply #15 on: June 15, 2013, 10:52:44 PM »
Here you go, thank you.

jeffce

  • Guest
Re: trz.tmp files
« Reply #16 on: June 16, 2013, 02:19:11 AM »
Please go to: VirusTotal
On the page you'll find a "Choose File" button.
Click on the Choose File button.
In the Choose File to Upload window which opens, copy and paste this into the File Name box.

c:\windows\SysWow64\jmdp\stij.exe

Next, click the Open button.
Then click the "Scan It!" button just below.
This will scan the file. Please be patient.
If you get a message saying [COLOR="Blue"]File has already been analyzed:[/COLOR] click Reanalyze file now
Once scanned, copy and paste the link to the results page in your next reply.
----------

moonbaby755

  • Guest
Re: trz.tmp files
« Reply #17 on: June 16, 2013, 02:58:51 AM »
my system seems to be running fine now. awesome!! thank you so much for your help!

moonbaby755

  • Guest
Re: trz.tmp files
« Reply #18 on: June 16, 2013, 03:04:39 AM »
my avast! won't turn on now. says - No valid license found.

moonbaby755

  • Guest
Re: trz.tmp files
« Reply #19 on: June 16, 2013, 03:50:54 AM »

SHA256: 419967c0703fca52f6a4d1dfa680ee28457301100775e4aa36fc401917dda643
 
 
 
File name: stij.exe
 
Detection ratio: 1 / 46 
Analysis date: 2013-06-16 01:48:25 UTC ( 0 minutes ago ) 


 



1




2



More details
 Analysis
 File detail
 Additional information
 Comments
 Votes






Antivirus

Result

Update


Agnitum    20130615 
AhnLab-V3    20130615 
AntiVir    20130615 
Antiy-AVL    20130615 
Avast    20130616 
AVG    20130616 
BitDefender    20130616 
ByteHero    20130613 
CAT-QuickHeal    20130615 
ClamAV    20130616 
Commtouch    20130616 
Comodo    20130616 
DrWeb  Adware.SweetIM.27  20130616 
Emsisoft    20130616 
eSafe    20130613 
ESET-NOD32    20130615 
F-Prot    20130615 
Fortinet    20130616 
GData    20130616 
Ikarus    20130615 
Jiangmin    20130615 
K7AntiVirus    20130614 
K7GW    20130614 
Kaspersky    20130616 
Kingsoft    20130506 
Malwarebytes    20130615 
McAfee    20130616 
McAfee-GW-Edition    20130615 
Microsoft    20130616 
MicroWorld-eScan    20130616 
NANO-Antivirus    20130615 
Norman    20130615 
nProtect    20130615 
Panda    20130615 
PCTools    20130521 
Rising    20130614 
Sophos    20130615 
SUPERAntiSpyware    20130615 
Symantec    20130616 
TheHacker    20130615 
TotalDefense    20130614 
TrendMicro    20130616 
TrendMicro-HouseCall    20130616 
VBA32    20130615 
VIPRE    20130616 
ViRobot    20130615 




















 
































 


 
































 




















































































































       
 
   
 
 
















 Blog |  Twitter |  contact@virustotal.com

jeffce

  • Guest
Re: trz.tmp files
« Reply #20 on: June 17, 2013, 01:20:43 AM »
ComboFix
  • Please open Notepad (Start -> Run -> type notepad in the Open field -> OK) and copy and paste the text present inside the code box below:
    Quote

    ClearJavaCache::

    DDS::
    mStart Page = hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10042&barid={942B136B-CEF8-11E2-8BFA-C80AA987641E}

    Firefox::
    FF - ProfilePath - c:\users\Trish\AppData\Roaming\Mozilla\Firefox\Profiles\1ziu2w9m.default\
    FF - ExtSQL: 2013-06-06 15:31; {7D4F1959-3F72-49d5-8E59-F02F8AA6815D}; c:\program files\Updater By SweetPacks\Firefox

  • Save this as CFScript.txt and change the "Save as type" to "All Files" and place it on your desktop.



  • Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before following the steps below. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
  • Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
  • ComboFix may request an update; please allow it.
  • ComboFix will now run a scan on your system. It may reboot your system when it finishes. This is normal.
  • When finished, it shall produce a log for you. Copy and paste the contents of the log in your next reply.
CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall.
----------

jeffce

  • Guest
Re: trz.tmp files
« Reply #21 on: June 19, 2013, 01:52:02 PM »
Still with me?

edysuperb

  • Guest
Re: trz.tmp files
« Reply #22 on: October 15, 2013, 10:46:32 AM »
I have a solution,, hope its work..
i already try,, and its work for me..


first add "take ownership" to your pc...
http://www.howtogeek.com/howto/windows-vista/add-take-ownership-to-explorer-right-click-menu-in-vista/

second go to file location of trz.tmp file.
 Example [C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup]

right click of file and "Take ownership"

last delete all trz file..


Hope it helpfull..


Marco POLO

  • Guest
Re: trz.tmp files
« Reply #23 on: November 04, 2013, 07:00:15 PM »
I have a solution,, hope its work..
i already try,, and its work for me..


first add "take ownership" to your pc...
http://www.howtogeek.com/howto/windows-vista/add-take-ownership-to-explorer-right-click-menu-in-vista/

second go to file location of trz.tmp file.
 Example [C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup]

right click of file and "Take ownership"

last delete all trz file..


Hope it helpfull..

Thanks for your hint: it worked for me   > this bloody "trz*.tmp" installed itself in one of "My Documents" files, on an external hard disk, and used to "eat" all of my ram   . As it was Avast who alerted me, I tried a complete scan with it (with my own deep requirements); then, I used Spybot... did a full scan disk... CCleaner... Glary... with no results but stopping all the alerts  > however, it was still where Avast told me (got to know about it by pointing the name in the alert with my mouse (it would be time Avast finds a solution since, on all fora I went, all victims of this malware used this antivirus).

Following your advise, I downloaded "Take Ownership" and operated as you indicated: I at least could remove the last "trz*.tmp" without it replicating.

Thanks a lot,
Marco
« Last Edit: November 04, 2013, 07:01:56 PM by Marco POLO »

Marco POLO

  • Guest
Re: trz.tmp files
« Reply #24 on: November 06, 2013, 04:26:58 PM »
Hi edysuperb and jeffce,

Bad news: trz*.tmp still are there, in my external Hard Drive in "$RECYCLE.BIN", and still memory eating.
« Last Edit: November 06, 2013, 04:28:58 PM by Marco POLO »

Marco POLO

  • Guest
Re: trz.tmp files
« Reply #25 on: November 11, 2013, 04:08:51 PM »
Hi edysuperb and jeffce,

Bad news: trz*.tmp still are there, in my external Hard Drive in "$RECYCLE.BIN", and still memory eating.

In fact, as far as I am concerned, the solution was quite simple: since windows updates last month, there was quite a few of those I could not install... due to only one security program. I had to install those "compatible" updates one by one to find out only one does not work and, now, no more remains of "trz*.tmp" in CCleaner.
« Last Edit: November 11, 2013, 04:10:31 PM by Marco POLO »