Jump to content

FP C:\WINDOWS\system32\LogonDll.dll


chubalz

Recommended Posts

I think its related to Deep freeze.

I try scan without DF no virus.

I try scan my 2 other PC with DF = It appears as Trogan Agent.

Cant upload the file. "It says Upload failed. You are not permitted to upload this type of file"

How to?

Ill Post a result of MBAM scan.

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Database version: 4483

Windows 5.1.2600 Service Pack 3

Internet Explorer 7.0.5730.13

8/26/2010 9:10:59 PM

mbam-log-2010-08-26 (21-10-59).txt

Scan type: Quick scan

Objects scanned: 137455

Time elapsed: 4 minute(s), 53 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 1

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 2

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

C:\WINDOWS\system32\LogonDll.dll (Trojan.Agent) -> Delete on reboot.

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Not selected for removal.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Not selected for removal.

Folders Infected:

(No malicious items detected)

Files Infected:

C:\WINDOWS\system32\LogonDll.dll (Trojan.Agent) -> Delete on reboot.

This system is using DF now.

Ignore the 2 Disable Security security Warning because im using Deep Freeze this to avoid auto updates.

Link to post
Share on other sites

I upload the file from VT

Here is the result.

File name:

LogonDll.dll

Submission date:

2010-08-23 20:51:38 (UTC)

Current status:

finished

Result:

0 /42 (0.0%)

VT Community

not reviewed

Safety score: -

Compact

Print results

Antivirus Version Last Update Result

AhnLab-V3 2010.08.23.06 2010.08.23 -

AntiVir 8.2.4.38 2010.08.23 -

Antiy-AVL 2.0.3.7 2010.08.23 -

Authentium 5.2.0.5 2010.08.23 -

Avast 4.8.1351.0 2010.08.23 -

Avast5 5.0.332.0 2010.08.23 -

AVG 9.0.0.851 2010.08.23 -

BitDefender 7.2 2010.08.23 -

CAT-QuickHeal 11.00 2010.08.23 -

ClamAV 0.96.2.0-git 2010.08.23 -

Comodo 5834 2010.08.23 -

DrWeb 5.0.2.03300 2010.08.23 -

Emsisoft 5.0.0.37 2010.08.23 -

eSafe 7.0.17.0 2010.08.23 -

eTrust-Vet 36.1.7808 2010.08.23 -

F-Prot 4.6.1.107 2010.08.23 -

F-Secure 9.0.15370.0 2010.08.23 -

Fortinet 4.1.143.0 2010.08.23 -

GData 21 2010.08.23 -

Ikarus T3.1.1.88.0 2010.08.23 -

Jiangmin 13.0.900 2010.08.23 -

Kaspersky 7.0.0.125 2010.08.23 -

McAfee 5.400.0.1158 2010.08.23 -

McAfee-GW-Edition 2010.1B 2010.08.23 -

Microsoft 1.6103 2010.08.23 -

NOD32 5390 2010.08.23 -

Norman 6.05.11 2010.08.23 -

nProtect 2010-08-23.01 2010.08.23 -

Panda 10.0.2.7 2010.08.23 -

PCTools 7.0.3.5 2010.08.23 -

Prevx 3.0 2010.08.23 -

Rising 22.62.00.04 2010.08.23 -

Sophos 4.56.0 2010.08.23 -

Sunbelt 6780 2010.08.23 -

SUPERAntiSpyware 4.40.0.1006 2010.08.23 -

Symantec 20101.1.1.7 2010.08.23 -

TheHacker 6.5.2.1.355 2010.08.23 -

TrendMicro 9.120.0.1004 2010.08.23 -

TrendMicro-HouseCall 9.120.0.1004 2010.08.23 -

VBA32 3.12.14.0 2010.08.23 -

ViRobot 2010.8.23.4003 2010.08.23 -

VirusBuster 5.0.27.0 2010.08.23

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.