Author Topic: WND 32 TROJAN  (Read 2853 times)

0 Members and 1 Guest are viewing this topic.

Katie Etris

  • Guest
WND 32 TROJAN
« on: June 20, 2009, 08:33:50 PM »
PLEASE HELP ME,
          I’m having trouble getting rid of a few Trojan warnings on my computer. Avast for home users won’t delete it or move them to the chest I’m at a loss trying to figure this out. There appears to be 6 or 7 Trojans in my windows 32 system. It shows up as a warning. I’m not experiencing any lose of files or program usability issues, but when I run the antivirus scan program these same ones keep appearing during the scan. Also note that when I go back into the chest to see if there is infected files it has none.


Here is the log from today that was under the warning log file


   6/20/2009 10:37:34 AM   SYSTEM   1032   Sign of "JS:Obfuscated-AR [Trj]" has been found in "http://av-xp-vista.info/mars/?19c8f5d3fb39ce2a1937b5681ac95371\?19c8f5d3fb39ce2a1937b5681ac95371" file. 
6/20/2009 10:56:43 AM   Katie   5592   Sign of "Win32:Trojan-gen {Other}" has been found in "C:\Documents and Settings\Katie\Local Settings\Application Data\{167B9073-5929-4AAD-AE87-68A9BEB3D796}\Pando.msi\Data1.cab\oovooinst.exe" file. 
6/20/2009 11:19:00 AM   Katie   5592   Sign of "Win32:Trojan-gen {Other}" has been found in "C:\System Volume Information\_restore{24C6C0B7-58FD-484A-9583-92B9E7E86108}\RP668\A0062824.msi\Data1.cab\oovooinst.exe" file. 
6/20/2009 11:20:02 AM   Katie   5592   Sign of "Win32:Trojan-gen {Other}" has been found in "C:\System Volume Information\_restore{24C6C0B7-58FD-484A-9583-92B9E7E86108}\RP671\A0064829.msi\Data1.cab\oovooinst.exe" file. 
6/20/2009 11:28:32 AM   Katie   5592   Sign of "Win32:Trojan-gen {Other}" has been found in "C:\System Volume Information\_restore{24C6C0B7-58FD-484A-9583-92B9E7E86108}\RP728\A0070515.msi\Data1.cab\oovooinst.exe" file. 

spg SCOTT

  • Guest
Re: WND 32 TROJAN
« Reply #1 on: June 20, 2009, 09:12:58 PM »
EDIT:Deleted...Wrong info (Thanks for the correction guys)

For the ones in the system volume information,

-Disable system restore
reboot
-enable system restore
This deletes all previous restore points

Hope this helps,

-Scott-
« Last Edit: June 20, 2009, 10:00:28 PM by spg SCOTT »

Mr.Agent

  • Guest
Re: WND 32 TROJAN
« Reply #2 on: June 20, 2009, 09:16:03 PM »
Apparently i found this on Prevx http://spywarefiles.prevx.com/RRJJGJ43366249/OOVOOINST.EXE.html so this might be dangerous if im not wrong so please wait for another guy post bellow and recommand something for fix this problem.

Jtaylor83

  • Guest
Re: WND 32 TROJAN
« Reply #3 on: June 20, 2009, 09:19:42 PM »
Pando is a piece of adware especially with it's toolbar and SmartShopper.

I suggest:

* Clear all your System restore points and create a fresh new one.
* Use MBAM
* Schedule a boot-time scan and quarantine (send the files to virus chest).
« Last Edit: June 20, 2009, 09:23:17 PM by Jtaylor83 »