Re: shelldrv.exe

From: "Papageno" <papa@xxxxxxxx>

| Has anyone seen this "shelldrv.exe" in C:\Windows\system32 ?
|
| It does not show up as a virus (AVG).
|
| But it's running without showing up in the Task Manager, which is
| suspicious.
|
| System was a little slow, and I'd get a popup at login which lasted barely
| long enough to read the file name along with some other text.
|
| I could not delete it from Windows, so I went in with Safe Mode to get rid
| of it. (I saved a copy.)
|
| When running, it creates a file called "shelldrv" in C:\Windows\system32,
| which seems to keep a log of recently run programs. If you delete that file,
| it builds a new one.
|
| A search on microsoft.com turned up nothing about "shelldrv.exe". Nor did
| Google.
|
| Does anyone have the answer?
|


Please submit a sample of "shelldrv.exe" to Virus Total --
http://www.virustotal.com/flash/index_en.html
The submission will then be tested against many different AV vendor's scanners.
That will give you an idea what it is and who recognizes it. In addition, unless told
otherwise, Virus Total will provide the sample to all participating vendors.

You can also submit a suspect, one at a time, via the following email URL...
mailto:scan@xxxxxxxxxxxxxx?subject=SCAN

When you get the report, please post back the exact results.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm


.

Quantcast