Program infected by Trojan.Win32.RegKill.e .

I have compiled a program for installation and someone reverted that it is being infected by Trojan.Win32.RegKill.e .

I have scanned through my all the folder in my machine using trendmicro and spyhunter. Nothing was found.

So ,I went into the registry and lookout for files such as execute.exe, pif.tif and freakme.txt .

I have removed them from my machine and recompile the installation files, however they are still being infected by the virus.

Can anyone pls advise.
Rob62Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

kneHCommented:
Give hijackthis a go
www.hijackthis.de
Download it
Put it in it's own folder
run it
paste the log at the site
fix the suggested nasty changes.


Also do a virusscan.
www.free-av.de
www.grisoft.com

Get either of those free ones.

Now when scanning for spyware/virii remember the following
scan in safemode (too)
when scanning disconnect from the internet / any network
Reboot twice and scan again
When scanning end task on explorer.exe

See if that sorts it.
If not maybe you would like to try any of these:
CWshredder http://www.majorgeeks.com/download4086.html
Spybot : http://www.download.com/3000-8022-10122137.html
adaware : http://www.lavasoftusa.com/
STINGER : http://vil.nai.com/vil/stinger/ 
http://housecall.trendmicro.com/ online scan for trojans
http://www.ravantivirus.com/scan/
http://www.spychecker.com/program/coolwebshredder.html CWshredder
http://www.spychecker.com/program/hijackthis.html download
http://www.hijackthis.de/index.php?langselect=english check the log
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
TolomirAdministratorCommented:
Well if you compiled a program with sourcecode you can trust it's highly unlikely that it is a virus.

Maybe if it's a rather common application, you might check google with "ApplicationName" + Trojan.Win32.RegKill

If there is is no evidence, it's a false alarm.

Especially if no other file on your HD is infected with this "virus".

I would excludde that file from scanning in your virus scanner and send it for further inspcetion to the antivirus  manufacturer.

tolomir
0
RonHoffmannCommented:
If the trojan is getting into your app it might have infected one of the obj files.
Make sure you delete all intermediate files before recompiling.
Get rid of any obj and pch and any other intermediate files that your compiler creates..
Some compilers won't recreate these files if they don't have to. If one of them is infected it will keep showing up in your final  binary.
 does your app have any dependencies on other files.
maybe one of them is infected.
If there is no other evidence of the trojan then it might be possible that the identifying signature of the trojan is very similar that of your app giving a false positive from the anti-virus software. Although this is very rare.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.