Rat.Rads.Gen infction

All,

I've got this little bleeder on my system. Removing the file with either TDS, Taskmanager or Process Explorer (gawd bless sysinternals) simply causes a child process to be invoked before closing down the original trojan process.

Does anyone have any good tips on how to get rid of this nasty nasty bit of malware?

Thanks

Jim

 

Hi Jim, Try removing it in Safe Mode.

 

Send a copy to submit@diamondcs.com.au if the filescanner doesn't detect it, must be new. Then delete all detected files (possibly in Safe Mode) when we update tomorrow

Manual removal right now, you may be able to manually find them all, probably random names 2 different filesizes probably one 220kb the other 430kb, all will be exactly the same size in bytes and one or more will be autostarted from the registry

 

Cheers Guys.

I will try to capture one of them and send it across and also try to remove in safe mode - & thanks for the swift reply

Jim

 

Submit all your finds, don't hold back by no means, Gavin is very grateful as ever, with the largest database on internet in TDS already and who knows how many more surprises to be added for us in near future