• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 367
  • Last Modified:

Is the Enfral Trojan Virus is linked with csrss.exe and what this csrsss.exe file does in OS

Working on XP Home Edition, McAffe scanned and it say WinTask.exe is inefected with Enfral Trojan Virus.
0
sidhunan
Asked:
sidhunan
2 Solutions
 
SheharyaarSaahilCommented:
wintask.exe
http://www.liutilities.com/products/wintaskspro/processlibrary/wintask/

run a scan with mcafee under safemode and let it to clean the virus there
if it cannot remove it, then remove the file manually.
0
 
spiritfanCommented:
Look in C:\Documents and Settings\[yourusername] for wintask.exe. If you find it in that location delete it. Also look in C:\Windows\System32 for the same file (size 2645 bytes), since many times malware will camouflage themselves to look like something valid .
0
 
rpggamergirlCommented:
Can you run Hijackthis and show us the log please?
http://danborg.org/spy/hjt/alternativ.exe
Open Hijackthis, click "Do a system scan and save a logfile" please don't fix anything yet.
0
 
Michael WorshamInfrastructure / Solutions ArchitectCommented:
You can remove Enfal Virus this way:

1) Boot into safe mode

2) Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit\%System%\userinit.exe,%System%\dismgnt.exe

3) Delete files: dismgnt.exe
The dismgnt.exe file can be found in the default system directory, which is one of the following: C:\Windows\System, C:\Windows\System32, C:\Winnt\System32.

Sophos also has a tool to remove/clean it:
http://www.sophos.com/support/disinfection/enfal.html

0
 
Michael WorshamInfrastructure / Solutions ArchitectCommented:
Is this question still open or can it be closed?
http://www.experts-exchange.com/help.jsp#hi331
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now