DWH**** File invasion, Norton Error?

There is this generic DWH____.tmp file that comes in the twenties sometimes.

 

A trojan.gen, it appears in the temp folder all the time.

 

Only when I access the internet does it come up.

 

It might be a norton glitch, but it just goes nuts and they keep on "respawning" in the folder.

I have to do a full scan to have it go out for the session.

 

 

Also, when I do the full scan, it catches a generic $R_____.tmp file.

Is this the respawn machine?

 

Anyways, it's just driving me nuts.

Hi! Oblong,

 

It sounds like you may have a serious malware infection.  I am going provide you with a couple programs to use (their logs will be essential to others with expertise in the malware arena to give you the help you need).

 

Please download and install MalwareBytes Anti-Malware leave the defaults in place during the installation process; once installation is completed do a full scan and fix any problems the program finds, make sure to save the log file to the desktop you'll need it later.

 

Once that is done download and install Super AntiSpyware also leave the defaults in place during the installation process, once the installation is complete perform a full scan with this program and fix any problems found.  You'll recieve instructions on how to get to the logs files of this program if they are needed.

  

Tech83  :)

Thanks a lot, but are you sure it isn't just a Norton mistake?

Hi! Oblong,

 

The evidence presented indicates a malware infestation that is why the other two programs are needed.  If they find nothing then a malware expert will be able to determine whether or not Norton has come across a false positive but it is unlikely.

 

Please go ahead and use the programs I suggested; this will provide more information to be used in troubleshooting your issue.

 

Tech83  :)

Alright, well thanks.

Hi! Oblong,

 

I know it's not the best case scenario but the more information we have the better help you can be provided with. I will help you as long as I can and if need be escalate your issue for you.

 

Tech83  :)

Thanks for all the help, but the virus is still coming back, I've done both antivirus scans, but they don't catch it.

Hi 

 

 

Have you scanned with both superantispyware and malware Bytes antiMalware are both showing no threats?

 

did you run a full system scan or quick scan??

 

 

Did you try running a scan with NIS set to aggressive (their will be false positives)??

 

 

If all come clean you could give Norton Power Eraser a try

 

 

Its a last resort tool and very aggressive please don`t fix anything gives the scan results here ! if any

 


Power eraser is very aggressive and fixing a few threats without proper knowledge can make your  system unbootable

 

 

 

Here `s the link to Power Eraser

 

 

http://security.symantec.com/nbrt/npe.asp?lcid=1033

 

I believe I've tried that.

 

I'll do it again, whatever it takes.

Power Eraser too?

Yup. Didn't get anything, with the Rootkit option on.

If your are running Java, clear your Java catch. Better yet, uninstall Java if you don't need it.

 

Clear out all your temp files - I use CCleaner. Clear out all your IE temp files and cookies.  

I doubt of you have a threat you could follow Donz suggestion 

 

as for java goes update to latest Don`t uninstall

 

keep  all your programs / windows up to date

 

press windows key + r type cleanmgr >> more options clcik clean up below system restore and then do a full clean up

 

If the system is used for abnking then its better you get a clean chit from the malware removal forums

 

Here are the links

 

 

 

 

 

www.bleepingcomputer.com

http://www.geekstogo.com/forum/

http://www.cybertechhelp.com/forums/

http://forums.whatthetech.com/
 
(Links provided by Delphinium)