Trojan Problem

TheMailMan78 · Apr 1, 2011

Ok MSE just found a Trojan on my rig. However the Trojan was in a trainer for a video game I have had for a few years now. I mean this trainer is from 2009 I believe. Why is MSE just NOW picking it up? Could it be a false reading with the new definitions? Should I be worried about anything?

I ask because Malwarebytes never picked it up ether.

Here is the name of the Trojan.
Win32/Dynamer!dtc

Heres a link to the info...
http://www.microsoft.com/security/p...=Trojan:Win32/Dynamer!dtc&threatid=2147638124

CrackerJack · Apr 1, 2011

If it's been on your computer this long and hasn't cause a problem.. i wouldn't worry. Yeah prob just a false reading. I have a folder that gets false reading all the time

no issues tho

streetfighter 2 · Apr 1, 2011

Trainers are often picked up as viruses because they use dll injection and other such things which would throw flags in your typical anti-virus. If the anti-virus you're using has been recently updated it may have modified it's heuristics, and as such, made a false-positive.

If you're still concerned, try uploading the file to virustotal.com.

TheMailMan78 · Apr 1, 2011

CrackerJack said:
If it's been on your computer this long and hasn't cause a problem.. i wouldn't worry. Yeah prob just a false reading. I have a folder that gets false reading all the time no issues tho

lol how would I know if it caused a problem ya know?

streetfighter 2 said:
Trainers are often picked up as viruses because they use dll injection and other such things which would match the heuristics scanners in your typical anti-virus. If the anti-virus you're using has been recently updated it may have modified it's heuristics, and as such, made a false-positive.

See thats what I was thinking. But it seem to pick up a particular one which had me a little nervous.

sniviler · Apr 1, 2011

I wouldn't worry about it after 3yrs, to be safe when I use trainers or no cd/dvd exe's I disable my network connection.

I use MSE too, give AVG Free a try for another quick scan.

CrackerJack · Apr 1, 2011

TheMailMan78 said:
lol how would I know if it caused a problem ya know?

point taken, well the first i would check is if it's using a abnormal amount of cpu/ram usage. if not... well you computer is still running i assume so.. it's ok

edit: plus the WinBench and Ping program i made gave false reading also... And they were perfectly clean

twilyth · Apr 1, 2011

I'd split the tie with something like Avast, spybot, avira (free or trial version), etc. If 2 of the 3 pick it up, then I would take it seriously.

Also, just because the trainer is from 2009 doesn't mean it couldn't have been infected more recently.

Black Panther · Apr 1, 2011

Trojan:Win32/Dynamer!dtc is a name used for trojan detections that have been added to Microsoft antimalware signatures after advanced automated scan analysis.

Source

crazyeyesreaper · Apr 1, 2011

its a false positive mailman seriously just grab Malwarebytes and do a scan done, if that dosent pick it up its gaurenteed a false positive, ive had trainers do it before roughly 20+ of them in all since 2006 none were real viruses aka 1 would get picked up via an anti virus but is deemed clean by 4-5 others, so dont sweat it

TheMailMan78 · Apr 1, 2011

Black Panther said:
Source

Yeah I know. I posted that link. But what does it mean.

twilyth said:
I'd split the tie with something like Avast, spybot, avira (free or trial version), etc. If 2 of the 3 pick it up, then I would take it seriously.

Also, just because the trainer is from 2009 doesn't mean it couldn't have been infected more recently.

How? I havent even ran it in months. Maybe in a year.

CrackerJack · Apr 1, 2011

TheMailMan78 said:
Yeah I know. I posted that link. But what does it mean.

How? I havent even ran it in months. Maybe in a year.

I believe he means, if you actually ran it since then..

TheMailMan78 · Apr 1, 2011

CrackerJack said:
I believe he means, if you actually ran it since then..

Oh no. I haven't ran it in forever. Not only that Ive rebuilt my OS a few times since running it last.

I think its what streetfighter 2 said about the heuristics. Anyway MSE just deleted it.

Kreij · Apr 1, 2011

As, SF2 said, upload the file to VirusTotal. It will run it thought something like 20 different virus scan engines.

95Viper · Apr 1, 2011

Kreij said:
As, SF2 said, upload the file to VirusTotal. It will run it thought something like 20 different virus scan engines.

^This!^

VirusTotal

Wrigleyvillain · Apr 1, 2011

Trojan problem? Maybe next time don't buy the extra large Magnums. I mean I can't blame you and all but if they just aren't working out in the field you gotta swallow that pride, bro!

alexsubri · Apr 1, 2011

Well according to

it is a false trojan. As stated above Trainers are injecting themselves into the game, cause a false alarm on your anti virus. Most likely it was the virus update. Don't sweat it.

twilyth · Apr 1, 2011

TheMailMan78 said:
How? I havent even ran it in months. Maybe in a year.

You don't have to run a program for it to get infected. A virus can look for exe's in the NTFS tables and infect them. I don't know how common that is though. Apparently not very.

alexsubri: Virus total looks like a really cool app.

TheMailMan78 · Apr 1, 2011

Well shit MSE deleted the file. What do?

DannibusX · Apr 1, 2011

My problem with Trojan is I've never seen the serial number.

95Viper · Apr 1, 2011

Lotta trolling around here, lately...

Back on topic.

TheMailMan78 said:
Well shit MSE deleted the file. What do?

Did it actually delete it or is it in quarantine?

Look here: C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Quarantine\

or,

How do I remove or restore items quarantined by Microsoft Security Essentials?

Help and How-to

Completely Bonkers · Apr 2, 2011

Damn, MSE just cut my backdoor to TMM's webcam.

If you need a backup copy of that file... I have it as well as your large collection of f4p material and IRS submissions

TheMailMan78 · Apr 2, 2011

95Viper said:
Lotta trolling around here, lately...

Back on topic.

Did it actually delete it or is it in quarantine?

Look here: C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Quarantine\

or,

How do I remove or restore items quarantined by Microsoft Security Essentials?

Help and How-to

No I checked. They are gone.

Kreij · Apr 2, 2011

Problem solved then, no?

95Viper · Apr 2, 2011

TheMailMan78 said:
No I checked. They are gone.

Well, let's see how good MSE is... Get Recuva or some other file recovery software and see if it can pull it out.

Kreij said:
Problem solved then, no?

That is ~~true~~ funny. :laugh:

Dam* good come back!

TheMailMan78 · Apr 2, 2011

Well heres a link to the trainer. I am pretty sure this is the same one. It wont let me DL it anymore. Maybe someone could try for me and upload it to virustotal.com?

http://www.cheathappens.com/download_file.asp?id=23346

System Name	TheMailbox 5.0 / The Mailbox 4.5
Processor	RYZEN 1700X / Intel i7 2600k @ 4.2GHz
Motherboard	Fatal1ty X370 Gaming K4 / Gigabyte Z77X-UP5 TH Intel LGA 1155
Cooling	MasterLiquid PRO 280 / Scythe Katana 4
Memory	ADATA RGB 16GB DDR4 2666 16-16-16-39 / G.SKILL Sniper Series 16GB DDR3 1866: 9-9-9-24
Video Card(s)	MSI 1080 "Duke" with 8Gb of RAM. Boost Clock 1847 MHz / ASUS 780ti
Storage	256Gb M4 SSD / 128Gb Agelity 4 SSD , 500Gb WD (7200)
Display(s)	LG 29" Class 21:9 UltraWide® IPS LED Monitor 2560 x 1080 / Dell 27"
Case	Cooler Master MASTERBOX 5t / Cooler Master 922 HAF
Audio Device(s)	Realtek ALC1220 Audio Codec / SupremeFX X-Fi with Bose Companion 2 speakers.
Power Supply	Seasonic FOCUS Plus Series SSR-750PX 750W Platinum / SeaSonic X Series X650 Gold
Mouse	SteelSeries Sensei (RAW) / Logitech G5
Keyboard	Razer BlackWidow / Logitech (Unknown)
Software	Windows 10 Pro (64-bit)
Benchmark Scores	Benching is for bitches.

System Name	TheMailbox 5.0 / The Mailbox 4.5
Processor	RYZEN 1700X / Intel i7 2600k @ 4.2GHz
Motherboard	Fatal1ty X370 Gaming K4 / Gigabyte Z77X-UP5 TH Intel LGA 1155
Cooling	MasterLiquid PRO 280 / Scythe Katana 4
Memory	ADATA RGB 16GB DDR4 2666 16-16-16-39 / G.SKILL Sniper Series 16GB DDR3 1866: 9-9-9-24
Video Card(s)	MSI 1080 "Duke" with 8Gb of RAM. Boost Clock 1847 MHz / ASUS 780ti
Storage	256Gb M4 SSD / 128Gb Agelity 4 SSD , 500Gb WD (7200)
Display(s)	LG 29" Class 21:9 UltraWide® IPS LED Monitor 2560 x 1080 / Dell 27"
Case	Cooler Master MASTERBOX 5t / Cooler Master 922 HAF
Audio Device(s)	Realtek ALC1220 Audio Codec / SupremeFX X-Fi with Bose Companion 2 speakers.
Power Supply	Seasonic FOCUS Plus Series SSR-750PX 750W Platinum / SeaSonic X Series X650 Gold
Mouse	SteelSeries Sensei (RAW) / Logitech G5
Keyboard	Razer BlackWidow / Logitech (Unknown)
Software	Windows 10 Pro (64-bit)
Benchmark Scores	Benching is for bitches.

System Name	NZXT PHANTOM MENACE
Processor	PHENOM II 970 BLACK EDITION @4.1Ghz
Motherboard	ASUS Sabertooth 990FX
Cooling	Scythe RASETSU
Memory	G.SKILL Sniper Low Voltage Series 8GB (2 x 4GB) (PC3 12800)
Video Card(s)	ASUS GTX470 OC
Storage	3x 2TB WD Black drives 2x OCZ Vertex 3 SSD's
Display(s)	Gateway FHD2400
Case	NZXT PHANTOM
Audio Device(s)	X-FI
Power Supply	Thermaltake 750w
Software	WIN 7 64bit

System Name	Black Panther
Processor	i9 9900k
Motherboard	Gigabyte Z390 AORUS PRO Wifi 1.0
Cooling	NZXT Kraken X72 360mm
Memory	2 x 8GB Corsair Vengeance RGB Pro DDR4 3600Mhz
Video Card(s)	Palit RTX2080 Ti Dual 11GB DDR6
Storage	Samsung EVO 970 500GB SSD M.2 & 2TB Seagate Barracuda 7200rpm
Display(s)	32'' Gigabyte G32QC 2560x1440 165Hz
Case	NZXT H710i Black
Audio Device(s)	Razer Electra V2 & Z5500 Speakers
Power Supply	Seasonic Focus GX-850 Gold 80+
Mouse	Some Corsair lost the box forgot the model
Keyboard	Motospeed
Software	Windows 10

System Name	Old reliable
Processor	Intel 8700K @ 4.8 GHz
Motherboard	MSI Z370 Gaming Pro Carbon AC
Cooling	Custom Water
Memory	32 GB Crucial Ballistix 3666 MHz
Video Card(s)	MSI GTX 1080 Ti Gaming X
Storage	3x SSDs 2x HDDs
Display(s)	Dell U2412M + Samsung TA350
Case	Thermaltake Core P3 TG
Audio Device(s)	Samson Meteor Mic / Generic 2.1 / KRK KNS 6400 headset
Power Supply	Zalman EBT-1000
Mouse	Mionix NAOS 7000
Keyboard	Mionix

System Name	DarkStar
Processor	i5 3570K 4.4Ghz
Motherboard	Asrock Z77 Extreme 3
Cooling	Apogee HD White/XSPC Razer blocks
Memory	8GB Samsung Green 1600
Video Card(s)	2 x GTX 670 4GB
Storage	2 x 120GB Samsung 830
Display(s)	27" QNIX
Case	Enthoo Pro
Power Supply	Seasonic Platinum 760
Mouse	Steelseries Sensei
Keyboard	Ducky Pro MX Black
Software	Windows 8.1 x64

System Name	2K Gamer
Processor	AMD 8370 @ 4.5GHZ
Motherboard	ASUS Pro Gaming / Aura 970
Cooling	Corsair H60 AIO
Memory	16GB G. Skill RipJaw @ 1600MHZ
Video Card(s)	Zotac AMP! GTX 1070
Storage	Samsung 600 Gig HDD (Raid 0 @ 7,500) / WD 1TB Blue @ 7,200 / PNY 128 GB SSD For Linux
Display(s)	27'' ASUS 144MHZ G-SYNC Read 1400p Gaming Monitor / 23'' LG LCD Flatron W2361VG 1080p @ 50,000:1
Case	NZXT Source 530
Audio Device(s)	Onboard 7.1 HD Realtek
Power Supply	750w Corsair HX
Mouse	Cougar Gaming Mouse
Keyboard	Saitek Eclipse
Software	Windows 10 64bit Education Edition

System Name	Aluminum Mallard
Processor	Ryzen 1900x
Motherboard	AsRock Phantom 6
Cooling	AIO
Memory	32GB
Video Card(s)	EVGA 3080Ti FTW
Storage	SSD
Display(s)	Benq Zowie
Case	Cosmos 1000
Audio Device(s)	On Board
Power Supply	Corsair CX750
VR HMD	HTV Vive, Valve Index
Software	Arch Linux
Benchmark Scores	31 FPS in Dalaran

Processor	Mysterious Engineering Prototype
Motherboard	Intel 865
Cooling	Custom block made in workshop
Memory	Corsair XMS 2GB
Video Card(s)	FireGL X3-256
Display(s)	1600x1200 SyncMaster x 2 = 3200x1200
Software	Windows 2003

Trojan Problem

Big Member

New Member

Big Member

New Member

twilyth

Guest

Not a Moderator

Big Member

Big Member

Senior Monkey Moderator

Super Moderator

PTFO or GTFO

twilyth

Guest

Big Member

Super Moderator

New Member

Big Member

Senior Monkey Moderator

Super Moderator

Big Member