I’ve discovered I have a trojan in my computer. It injects code into running programs. I’ve installed a program called Comical from SourceForge, and launched it the first time with no errors. The next time I executed it, several Defense+ warning window appeared and I allowed all of them. The result was that the program began to malfunction. I’ve uninstalled it with RevoUninstaller and the same behaviot happened, but this time I blocked all the Defense+ warning windows. The program run flawlessly from then. Do you know a good tool to remove the trojan (or rootkit)?. Comodo Antivirus doesn’t detect it, but I don’t know the support it has for detecting trojans as it’s mainly a firewall (and a very good one, as it has allowed me to surpass the trojan effects).
I’ve taken several screenshots of the trojan actions, but as I don’t know how to post them here, I’ll write a description of them:
- Comical.exe is trying to install the global hook Comical.exe
- Comical.exe is trying to access Explorer.exe in memory
- Comical.exe is trying to install the global hook dwmapi.dll
- Comical.exe is trying to access directly the keyboard
- Comical.exe can’t be recognized and is about to access the protected COM interface C:\Windows\System32\svchost.exe
- Comical.exe is trying to install the global hook explorerframe.dll
If a trusted program you’ve just installed tries to do something like this, please consider you may be infected with a trojan/rootkit.