Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 125
  • Last Modified:

Is SYSCFG32.exe a valid Windows 2000 File ?

InoculateIT is telling me I have a Backdoor/SDBot.05.A.Server trojan within the syscfg32.exe file contained within teh C:\winnt\system32 Folder.     Can I delete it ??  I cannot repair it, Trojan Remover doesnt even detect it..

Any thoughts ???
0
wtolmie
Asked:
wtolmie
  • 4
1 Solution
 
CrazyOneCommented:
F-Secure Virus Descriptions
http://www.f-secure.com/v-descs/lolol.shtml

While installing the worm copies itself to Windows system directory with the "syscfg32.exe" name and registers that file in two system registry auto-run keys:


 HKLM\Software\Microsoft\Windows\CurrentVersion\Run
   Configuration Loader = syscfg32.exe


 HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices
   Configuration Loader = syscfg32.exe

0
 
CrazyOneCommented:
Delete the entries the Configuration Loader = syscfg32.exe in the registry and then delete the file.
0
 
CrazyOneCommented:
You may have to reboot after removing the entries from the registry before you can delete the file.
0
 
wtolmieAuthor Commented:
Thankyou Crazyone..  Always fast to respond..!!!!
0
 
CrazyOneCommented:
You are welcome. :>)
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now