WiredWX Hobby Weather ToolsLog in

 


Trojan Problem

2 posters

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Please re-open Malwarebytes, click the Update tab, and click Check for Updates. Then, click the Scanner tab, select Perform Quick Scan, and press Scan. Remove selected, and post the log in your next reply.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Database version: 4020

Windows 6.0.6002 Service Pack 2 (Safe Mode)
Internet Explorer 8.0.6001.18882

4/22/2010 12:20:54 AM
mbam-log-2010-04-22 (00-20-54).txt

Scan type: Quick scan
Objects scanned: 107157
Time elapsed: 3 minute(s), 55 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\Software\avsuite (Rogue.AntivirusSuite) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\avsoft (Trojan.Fraudpack) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\riduqtqp (Trojan.FakeAlert.Gen) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Users\Stephanie\AppData\Local\lcykohynw\sxjiqedtssd.exe (Trojan.FakeAlert.Gen) -> Quarantined and deleted successfully.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Please run a free online scan with the ESET Online Scanner
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  • Click Scan (This scan can take several hours, so please be patient)
  • Once the scan is completed, you may close the window
  • Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  • Copy and paste that log as a reply to this topic

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
When I press start it says Cannot get Update is Proxy configured. Then I press Yes and it comes up with the same alert. so pretty much I am unable to even get past the first step.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Please run the F-Secure Online Scanner

  • Follow the Instruction Here for installation.
  • Accept the License Agreement.
  • Once the ActiveX installs,Click Full System Scan
  • Once the download completes,the scan will begin automatically.
  • The scan will take some time to finish,so please be patient.
  • When the scan completes, click the Automatic cleaning (recommended) button.
  • Click the Show Report button and Copy&Paste the entire report in your next reply.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
This does not work either. The Applet disappears. The web browsers do not really work. Internet explorer can not display any pages. I can however run in normal windows mode now.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
See if the proxy is configured.

Please start Internet Explorer, and when the program is open, click on the Tools menu and then select Internet Options.
  • Now click on the Connections tab and then the Lan Settings button
  • Under the Proxy Server section, please uncheck the checkbox labeled Use a proxy server for your LAN. Then press the OK button to close this screen. Then press the Apply button and then the OK button to close the Internet Options screen.


Let me know if that was configured as a proxy or not.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
nope. that didn't change anything. browser still not functional and the virus scan websites do not work. Firefox works, and can go to every website, but the virus scan does not work. Proxy settings don't work.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Ok.

Please download the latest version of Kaspersky GetSystemInfo (GSI) from Kaspersky and save it to your Desktop.
Trojan Problem - Page 2 Icon13 Please close all other applications running on your system.

Please double click GetSystemInfo.exe to open it.

Click the Settings button.Trojan Problem - Page 2 2hd457o

Trojan Problem - Page 2 34gul1w

Set it to Maximum

Trojan Problem - Page 2 2n9gldh

Trojan Problem - Page 2 Icon13 IMPORTANT! Then please click Customize - choose Driver / Ports tab and uncheck Scan Ports.


Click Create Report to run it.Trojan Problem - Page 2 2ekm73m

It will create a zip folder called GetSystemInfo_XXXXXXXXXXXXXX.zip on your Desktop. Please upload the folder to Kaspersky GSI Parser and click the Submit button.

Please copy and paste the url of the GSI Parser report (not the log) in your next reply.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
http://www.getsysteminfo.com/read.php?file=602f24fdbf244c9b0a80740d310351e7

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Your logs are clean. How is your computer running?

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
internet explorer and google chrome do not work. firefox works.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Download SREng

  • Extract it to Desktop and double click SREngLdr.EXE to run it
  • Select System Repair from the left pane.
  • Click on File Association
  • Select all entries that has an Error status click [Repair]
  • Refer to this image for an example:

    Trojan Problem - Page 2 SystemRepair_FileAssocs
  • Close SREng now.


Let me know what was fixed.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
There was an error with .JS
But when i click repair nothing happened. Still says error.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
Ok.

Let's go out on a limb.

SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

  • Double click Sysprot.exe to start the program.
  • Click on the Log tab.
  • In the Write to log box select the following items.

    • Process << Selected
    • Kernel Modules << Selected
    • SSDT << Selected
    • Kernel Hooks << Selected
    • IRP Hooks << NOT Selected
    • Ports << NOT Selected
    • Hidden Files << Selected

  • At the bottom of the page

    • Hidden Objects Only << Selected

  • Click on the Create Log button on the bottom right.
  • After a few seconds a new window should appear.
  • Select Scan Root Drive. Click on the Start button.
  • When it is complete a new window will appear to indicate that the scan is finished.
  • The
    log will be saved automatically in the same folder Sysprot.exe was
    extracted to. Open the text file and copy/paste the log here.

descriptionTrojan Problem - Page 2 EmptyRe: Trojan Problem

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum