Discussion in 'adware, spyware & hijack cleaning' started by raj, Jun 29, 2004.

Thread Status:
Not open for further replies.
  1. raj

    raj Registered Member

    Jun 27, 2004
    After I run tds trace program, I see this entry pop up:

    RegVal Trace: RAT.Netbus 1.70 (Dropper.Memory): HKEY_LOCAL_MACHINE
    File: SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SYSTRAY=C:\WINDOWS\SYSTEM\A.EXE]

    Any Idea what this is and if it is a spyware, how to get rid of this?


    Last edited: Jun 29, 2004
  2. snapdragin

    snapdragin Registered Member

    Feb 16, 2002
    Southern Ont., Canada
    Hi raj, and welcome to Wilders. :)

    Please follow ALL the instructions, and each step in this link, carefully:
    HOW TO? Read here about how to post your log!!.

    Once you have downloaded HijackThis, create a permanent folder for it on your C: (call the folder whatever you'd like) then unzip Hijackthis.exe into the new folder (do not put it in a Temp folder or desktop).

    Then open Hijackthis and run it by clicking on the Scan button. When the scan has finished, the "Scan" button will then change to a Save Log button. Press the "Save Log" button and save it to a location you can easily find it. Open the saved log and copy and paste the entire contents of the log here in this thread.

    Please do NOT fix anything in Hijackthis by yourself. Most of what it lists will be harmless and even essential. Someone will review your log and reply back with instructions on what needs to be fixed.


Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.