removing a trojan

[maginoodle]

Hi all,

I have a pc running avg free and win xp.
Avg scan shows it has a trojan called Crypt2.BCES. Avg cant remove them it is saying access is denied to C:\WINDOWS\system 32\MSJTER40D.DLL and C:WINDOWS\system32\msjter40D.dll .
Is there an easy way to remove these? It is my shed comp, i only use it for car forums and sometimes ebay. I dont want to format and re-install but i will if thats the easiest way to get rid of it.

Any help appreciated.

Cheers Shane

 

[wraith]

Boot PC into safe mode (F8 before it gets to the windows loading screen). Run combofix. See how it goes.

ComboFix Download

 

[Jecs]

about 2 weeks ago i had a virus.

computer IT mate told me to use combofix and it fixed it.


hopefully it works for you

 

[mechatron]

"Hijack this" is also good at removing Trojans too

 

[wraith]

"Hijack this" is also good at removing Trojans too

No. Hijack this just gives reports.

 

[maginoodle]

ran combo fix in safe mode, it didnt get rid of it. I also ran avg scan in safe mode which apparently will scan more files and it couldnt get rid of it either.
Dont know what to try next, it may be easier to transfer my pics and tunes to usb stick and format/re-install.

 

[Pollushon]

Another you could try is Malwarebytes but to be honest when a nasty locks out a process running as system (AVG) from the Windows folder you're in a world of hurt. Crypt2 and its derivatives are particularly malicious.

Personally I'd reinstall Windows and review my usage habits.

 

[Guzzoline addict]

Maybe try windows defender offline?
I used it to remove a rogue program and it work for that.
What is Windows Defender Offline?

 

[wraith]

Wipe it start again easiest way. Windows Defender is pretty average. If combofix couldn't remove it then defender definitely won't.

 

[Guzzoline addict]

Do you mean defender offline or defender? The pc that i had the problem with had microsoft security essentials (same as windows defender?) and it didn't work , but defender offline did.