Home > Trojan > Trojan - Generic Atr - Autorun.inf

Trojan - Generic Atr - Autorun.inf

Please leave these two fields as-is: IMPORTANT! An EXTRA.DAT will also be posted for these more prevalent threats, if necessary. This file is usually dropped onto the root of all removable drivers and mapped drives in an attempt to autorun an executable when the drive is accesed. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner. weblink

Please turn JavaScript back on and reload this page. We will need to run two scans to find it most likely. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. Generic!atr Type Trojan SubType Configuration file Discovery Date 01/31/2007 Length varies Minimum DAT 4953 (01/31/2007) Updated DAT 5130 (09/28/2007) Minimum Engine 5.1.00 Description Added 01/31/2007 Description Modified 06/27/2007 1:27 AM (PT) https://home.mcafee.com/VirusInfo/VirusProfile.aspx?key=141387

Report • Start a discussion Related Solutions› [Solved] trojan in my comp. › Help removing Trojan Horse Generic32.MRX › I have a trojan › [Solved] Strange Looking Services-ID'd in Autoruns › Some copies of this file has the System (S) and Hidden (H) attributes present in attempt to hide the file from certain, default, viewing options within Windows Explorer. This file is usually dropped onto the root of all removable drivers and mapped drives in an attempt to autorun an executable when the drive is accessed. Description Added Date/time this description was published using Pacific Time.

The size differs based on the length of the filename being referenced inside the .inf file. Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. Melde dich an, um dieses Video zur Playlist "Später ansehen" hinzuzufügen. As a side question, do you see any programs i can turn off in my msconfig startup / boot tabs?

AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Später erinnern Jetzt lesen Datenschutzhinweis für YouTube, ein Google-Unternehmen Navigation überspringen DEAnmeldenSuchen Wird geladen... check here If you still can't install SpyHunter?

the autorun.inf file is keep on generating in server and Mcafee On-Access scan deleting that file continuously in server.. infected with a trojan (generic!atr) Started by raed972 , Sep 23 2009 07:51 AM Page 1 of 2 1 2 Next This topic is locked 20 replies to this topic #1 For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page. When the removable or networked drive is accessed from a machine supporting the Autorun feature, the malware is launched automatically.

All Rights Reserved. ⌂HomeMailSearchNewsSportsFinanceCelebrityWeatherAnswersFlickrMobileMore⋁PoliticsMoviesMusicTVGroupsStyleBeautyTechShopping Yahoo Answers 👤 Sign in ✉ Mail ⚙ Help Account Info Help Suggestions Send Feedback Answers Home All Categories Arts & Humanities Beauty & Style Business Back to top #5 raed972 raed972 Topic Starter Members 12 posts OFFLINE Local time:03:20 PM Posted 24 September 2009 - 04:09 AM Dear Sir..this is the log generated by MBAM Our server is very slow while logon... Wird geladen...

Re: Generic!atr(Trojan) virus problem Grif Mar 11, 2010 4:42 PM (in response to Dineshv) Dinesh,Here, we found it necessary to run the Autrun Eater tool from the link below to "shut http://mseedsoft.com/trojan/trojan-name-eywak-dat.html The size for this file varies. The file uses the below argument to execute the source file shell\open\Command=hbs.exe The autorun.inf is configured to launch the Worm file via the following command syntax. ;sKKiDke4siara5qa4LL8knwpqJ0Dd1aSilrjaoAoKDdledJ3c5l93j4D3wspUK2kL2w [AutoRun] ;CDD37ldaSAf2AAs8lJd1okjJrslaqk3aaplrw4Sw4aS5jows53see9lD30ji93d22AOqdr2d5fDJ4 open=hbs.exe ;on0SeAdDskssOkjaroaio44i313DkoD2ZKeDl3qal5Ke0sJsLwj15K7s8jD You can only upload a photo (png, jpg, jpeg) or a video (3gp, 3gpp, mp4, mov, avi, mpg, mpeg, rm).

Melde dich an, um unangemessene Inhalte zu melden. This file is usually dropped onto the root of all removable drivers and mapped drives in an attempt to autorun an executable when the drive is accessed. All Places > Security Awareness > Malware Discussion > Corporate User Assistance > Discussions Please enter a title. check over here Wird geladen...

AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! This file is usually dropped onto the root of all removable drivers and mapped drives in an attempt to autorun an executable when the drive is accesed. Anyways, so i formated the drive twice, and plugged it back in- it still says the virus is there.

The size for this file varies.

For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. Once that was done, then McAfee should be able to detect and remove the problem.http://download.cnet.com/Autorun-Eater/3000-2239_4-10752777.htmlHope this helps.Grif Like Show 0 Likes(0) Actions 3. AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! They can interfere with Combofix and remove some of its embedded files which may cause "unpredictable results".

The size differs based on the length of the filename being referenced inside the .inf file. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP). Additional Windows ME/XP removal considerations Variants Variants - N/A Here is a possible fix for it ... http://mseedsoft.com/trojan/trojan-mrofin.html Generic!atr Automatic Detection Tool (Recommended) Is your PC infected with Generic!atr?

The following fields listed on the Threat Meter containing a specific value, are explained in detail below: Threat Level: The threat level scale goes from 1 to 10 where 10 is I'm not sure it will run on the server but I'd sure give it a try. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead. Learn more You're viewing YouTube in German.

It's updated daily. Wird geladen... Can i run two antivirus programs simultaenously? A case like this could easily cost hundreds of thousands of dollars.

The Threat Meter is a useful tool in the endeavor of seeking a solution to remove a threat or pursue additional analytical research for all types of computer users. Paste the log in your next reply. 9. This file is usually dropped onto the root of all removable drivers and mapped drives in an attempt to autorun an executable when the drive is accessed. Generic!atr can also open up a backdoor through which the attacker can get access to any data collected on your computer, such as personal and financial information.

I unable to do full scan and On-Demand Scan on that server.. The autorun.inf is configured to launch the trojan file via the following command syntax. [AutoRun] open=skg1.exe shell\open\Command=skg1.exe -------------------------------------------------------------------- This is a generic detection for a configuration text file (autorun.inf) used by AVERT recommends users not to trust seemingly familiar or safe file icons, particularly when received via P2P clients, IRC, email or other media where users can share files. Follow to download SpyHunter and gain access to the Internet: Use an alternative browser.

Some copies of this file has the System (S) and Hidden (H) attributes present in attempt to hide the file from certain, default, viewing options within Windows Explorer. Off-Topic Tags How-tos Drivers Ask a Question Computing.NetForumsSecurity and VirusViruses Autorun Trojan Tags:Lenovo / T60pVirus Deeejazzy January 25, 2009 at 17:32:46 Specs: Windows XP, dunno Hey, I have a kingston Pen This file is usually dropped onto the root of all removable drivers and mapped drives in an attempt to autorun an executable when the drive is accesed.