Overclock.net › Forums › Software, Programming and Coding › Operating Systems › How do i get rid of the Fynloski Backdoor trojan
New Posts  All Forums:Forum Nav:

How do i get rid of the Fynloski Backdoor trojan - Page 3

post #21 of 24
Quote:
Originally Posted by th3illusiveman View Post

I don't know where to find it in the registry. MSE just tells me it's name but not it's locations... Any ideas? There are thousands of things in there.

You need to look into the startup locations in the registry. I don't remember what they are off the top of my head; google them.

If you can, download Process Hacker to see the parent process ID of the trojan (the program that opened it.) It may not be the "persistence" mechanism that actually opened it on startup, though.

Does this thing pop back up after you kill the process and delete the .exe? If so, you can run Process Monitor to try to see which process it re-creating the file.
Quote:
Originally Posted by huhh View Post

LOL, why would you format because of a silly little trojan virus? Once you shut down the service you can simply delete the file, pretty simple and wont corrupt anything.

Well if this "silly little trojan virus" is this sneaky that you can't get rid of it, who knows what other sneaky things it might be doing even if you happen to get rid of this .exe and the .exe that's re-creating it all the time...
post #22 of 24
Quote:
Originally Posted by The Hundred Gunner View Post

Well if this "silly little trojan virus" is this sneaky that you can't get rid of it, who knows what other sneaky things it might be doing even if you happen to get rid of this .exe and the .exe that's re-creating it all the time....

He had trouble because he's inexperience with removing trojans. If you actually manage to pick up a trojan and have a user accessing your PC from the outside then you should probably update your anti-virus and firewall because you're using the internet wrong. I can remove a majority of trojan's in 10 min without an anti-virus.
RedCraze
(23 items)
 
  
CPUMotherboardGraphicsGraphics
Intel core i5 4690k Asus maximus VII Hero MSI 7970 OC TF3 MSI 7970 OC TF3 
RAMHard DriveHard DriveHard Drive
G.Skill Ripjaw X 2166mhz 2x8GB Samsung 840 120gb 3tb toshiba Samsung 850 evo 250gb 
Optical DriveCoolingCoolingCooling
LG BH12LS35 Blu-Ray USB 3.0 EK-D5 X-RES 250 CSQ  MCP655 EK Supremacy Evo 
CoolingCoolingCoolingCooling
Bitspower Petg Tubing & Darkside Fittings EK Coolstream XE360 w/ AP-15 Push/Pull Ek Coolstream PE360 /AP-15 Push EK-FC7970-CSQ x 2 w/Backplate 
OSMonitorKeyboardPower
Windows 7 / Windows 10 Viewsonic vx2703mh  Logitech G15 XFX PRO1050W Black Edition  
CaseMouseMouse Pad
Corsair 900d  Logitech G502 SteelSeries QcK Gaming Mouse Pad 
  hide details  
Reply
RedCraze
(23 items)
 
  
CPUMotherboardGraphicsGraphics
Intel core i5 4690k Asus maximus VII Hero MSI 7970 OC TF3 MSI 7970 OC TF3 
RAMHard DriveHard DriveHard Drive
G.Skill Ripjaw X 2166mhz 2x8GB Samsung 840 120gb 3tb toshiba Samsung 850 evo 250gb 
Optical DriveCoolingCoolingCooling
LG BH12LS35 Blu-Ray USB 3.0 EK-D5 X-RES 250 CSQ  MCP655 EK Supremacy Evo 
CoolingCoolingCoolingCooling
Bitspower Petg Tubing & Darkside Fittings EK Coolstream XE360 w/ AP-15 Push/Pull Ek Coolstream PE360 /AP-15 Push EK-FC7970-CSQ x 2 w/Backplate 
OSMonitorKeyboardPower
Windows 7 / Windows 10 Viewsonic vx2703mh  Logitech G15 XFX PRO1050W Black Edition  
CaseMouseMouse Pad
Corsair 900d  Logitech G502 SteelSeries QcK Gaming Mouse Pad 
  hide details  
Reply
post #23 of 24
Quote:
Originally Posted by huhh View Post

He had trouble because he's inexperience with removing trojans. If you actually manage to pick up a trojan and have a user accessing your PC from the outside then you should probably update your anti-virus and firewall because you're using the internet wrong. I can remove a majority of trojan's in 10 min without an anti-virus.

Majority.
post #24 of 24
If you can't get a trojan removed most likely your computer is compromised and you probably should format the entire drive and do an scan on every other drive in the computer then check all the computers on your network. They key is to not get the virus by keeping an up to date and active anti virus/firewall, even a free one works fine for a majority of users.
RedCraze
(23 items)
 
  
CPUMotherboardGraphicsGraphics
Intel core i5 4690k Asus maximus VII Hero MSI 7970 OC TF3 MSI 7970 OC TF3 
RAMHard DriveHard DriveHard Drive
G.Skill Ripjaw X 2166mhz 2x8GB Samsung 840 120gb 3tb toshiba Samsung 850 evo 250gb 
Optical DriveCoolingCoolingCooling
LG BH12LS35 Blu-Ray USB 3.0 EK-D5 X-RES 250 CSQ  MCP655 EK Supremacy Evo 
CoolingCoolingCoolingCooling
Bitspower Petg Tubing & Darkside Fittings EK Coolstream XE360 w/ AP-15 Push/Pull Ek Coolstream PE360 /AP-15 Push EK-FC7970-CSQ x 2 w/Backplate 
OSMonitorKeyboardPower
Windows 7 / Windows 10 Viewsonic vx2703mh  Logitech G15 XFX PRO1050W Black Edition  
CaseMouseMouse Pad
Corsair 900d  Logitech G502 SteelSeries QcK Gaming Mouse Pad 
  hide details  
Reply
RedCraze
(23 items)
 
  
CPUMotherboardGraphicsGraphics
Intel core i5 4690k Asus maximus VII Hero MSI 7970 OC TF3 MSI 7970 OC TF3 
RAMHard DriveHard DriveHard Drive
G.Skill Ripjaw X 2166mhz 2x8GB Samsung 840 120gb 3tb toshiba Samsung 850 evo 250gb 
Optical DriveCoolingCoolingCooling
LG BH12LS35 Blu-Ray USB 3.0 EK-D5 X-RES 250 CSQ  MCP655 EK Supremacy Evo 
CoolingCoolingCoolingCooling
Bitspower Petg Tubing & Darkside Fittings EK Coolstream XE360 w/ AP-15 Push/Pull Ek Coolstream PE360 /AP-15 Push EK-FC7970-CSQ x 2 w/Backplate 
OSMonitorKeyboardPower
Windows 7 / Windows 10 Viewsonic vx2703mh  Logitech G15 XFX PRO1050W Black Edition  
CaseMouseMouse Pad
Corsair 900d  Logitech G502 SteelSeries QcK Gaming Mouse Pad 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Operating Systems
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › How do i get rid of the Fynloski Backdoor trojan