Dave Lucas: jkd845jg.dll

Monday, October 06, 2008

jkd845jg.dll

This is a nasty little bugger that is really hard to get rid of: it blows right by a lot of AntiVirus prgrams! It was wreaking havoc on one of my network computers, and it HAD to go... but HOW? Avast was able to locate and remove several worms and trojans, some of which had remained inactive (waiting for "start" command, perhaps?) since 2005. But jkd nestled itself in resident memory and while Avast could isolate it every time I started the PC, it kept "breaking out" of Avasts's "anti-virus chest" so it was time to bring in a bigger gun:

The file "jkd845jg.dll" is known to be created under the following filenames:
%System%\dhgthfg.dll
%System%\jkd845jg.dll
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).

Go to: Control Panel / System / Advanced / Startup and Recovery / Settings.
Make sure the box is UNCHECKED where it says "Automatically Restart" under "System Failure."

Download SDFix and save it to your Desktop.

Double click SDFix.exe and it will extract the files to %systemdrive%
(Drive that contains the Windows Directory, typically C:\SDFix)

Please then reboot your computer in Safe Mode by doing the following :

* Restart your computer
* After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
* Instead of Windows loading as normal, the Advanced Options Menu should appear;
* Select the first option, to run Windows in Safe Mode, then press Enter.
*WARNING: Your desktop icons will be all mixed up when you go back to "normal" so you might want to (if you have several of them or if you are used to finding them in certain spaces) take note, take a picture or draw a diagram of which ones are where!
* Choose your usual account.

* Open the extracted SDFix folder and double click RunThis.bat to start the script.
* Type Y to begin the cleanup process.
* It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot.
* Press any Key and it will restart the PC.
* When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.

Good Luck, and feel free to offer details of your own encounters with worms etc. in the comments below!

Tags: jkd845jg.dll, jkd845jg.dll

Show Comments:

No comments:

Post a Comment

COMMENTING FEES
Per comment rate: $2
Payable by either clicking the BitCoin "tip me" button or the PayPal "donate" button in the sidebar.

WAIT, WHY DO I HAVE TO PAY TO COMMENT?
Because, like the fine publication Tablet, whom I borrowed this concept from, I too am committed to bringing you the best, smartest, most enlightening and entertaining reporting and writing I'm able to provide, all free of charge. I take pride in my loyal readership, and I'm thrilled that you choose to engage with me in a way that is both thoughtful and thought-provoking. But the Internet, for all of its wonders, poses challenges to civilized and constructive discussion, allowing vocal—and, often, anonymous—minorities to drag it down with invective (and worse).

I'm asking people who'd like to post comments on my blog to pay a nominal fee—less a paywall than a gesture of your own commitment to the cause of great conversation. All proceeds go to helping me bring you the provocative and/or entertaining articles that brought you here in the first place.

I NEED TO BE HEARD! BUT I DONT WANT TO PAY.
Readers can still interact with me FREE of charge via Facebook comments and Google+ comments! You can also reach me via Twitter @davelucas

I hope this new largely symbolic measure will help create a more pleasant and cultivated environment for all! Those of you who choose to contribute, thanks for your support.

IMPORTANT:

Your comment will appear after you have made your donation.

All IP addresses are logged.

Your comment will not appear immediately as all messages are vetted before publication.

PS - Any more questions? Check out my Policy & Terms of Use FAQ!

Subscribe to: Post Comments (Atom)

Community Forum

Tweets by @davelucas

Follow @davelucas
Looking for a blog booster? Join Fidelity Media Advertising Network!
EasyHits4U.com - Your Free Traffic Exchange - 1:1 Exchange Ratio, 5-Tier Referral Program. FREE Advertising!
T I P S
Your AD here! Join & Prosper! For pennies a day, your message here will be seen by thousands of people every week!
For Writers Only
* * *

Welcome to my blog! If you follow Cryptocurrencies, check daily rankings HERE... I read all comments! See inaccurate information on this blog? Other feedback or ideas?

Contact me on twitter, weibo or facebook!

If you like what you see, leave a tip for me! Thank-you!

Follow @davelucas