Tech Support Guy banner
  • Please post in our Community Feedback thread for help with the new forum software! If you are having trouble logging in, please Contact Us for assistance.
Status
Not open for further replies.
1 - 5 of 5 Posts

·
Registered
Joined
·
14 Posts
Discussion Starter · #1 ·
well this has only recently started to happen (1-5 days)

i can't start internet explorer outside admin mode
if i try to open a window (say my documents) i get a white window, and i cant see contents
computer is acting extreamly slow and slugish

malware was 1st on list so i checked mem usage (taskmngr)
multiple instnces of iexplore. (if i have 1 open theres 2 or 3)
multiple svchosts (11-15)

downloaded malwarebytes, Leerz.NOOB-killa (cmd line virus killer, did bac check b4 dl), and A-squared

all installed fine

ran A-squared. found 20 instances of a trojan right off the bat.

stoped scan and quarentined, Got blue screen crash, non fatal

rebooted in safe mode with networking, no problems with opening and veiwng folders

ran Malwarebytes, found nothing, ran NOOB-Killa, no .INF detected, nothing found

ran A-squared finding usual tracking cookies and just found these
"Win32.SuspectCrc!LK" 1 instance
"Trojan-Dropper.Agent!LK" 1 instance
"downloader.MirarBar!IK" 2 files
"Trojan-Downloader.win32.Tracur!IK" 2

quarrentined. and i have recived a error

C:\users\*myusername*\Appdata\Roaming\Micro *cut off*
can not be deleted! Please consult...Blah blah

file sizes in C: drive are these normal sizes? and whats the System volume info file for?

Program files- 9.38 GB
Python 31- 37.3 mb
(hidden) HP- 17.5 mb
(hidden) Program Data- 822 mb
Users-16.8 GB
WINDOWS- 14.4 GB
(hidden) $RECYCLE.BIN- 30.6 kb
(hidden) boot- 13.7 mb
(hidden) shortcut to documents and settings
(hidden) MSOcache- 313 mb
Swsetup- 2.46 GB
(hidden) System.sav- 13.6 mb
(hidden) System volume information- empty

files present all hidden (i have display known file names off)
Autoexec (batch file)- 1kb
bootmngr (sys file)- 429 kb
config.sys (sys file)- 1 kb
pagefile.sys (sys file)- 1,288,292 kb

***UPDATE****
ran scan in normal mode
picked up 10 prc of Trojan-downloader.Win32.Tracur!IK

locations are in sys 32

same files that caused CTBS

will attempt manual del as soon as i get the go from you guys

LOG
a-squared Free - Version 4.5
Last update: N/A
Scan settings:
Scan type: Quick Scan
Objects: Memory, Traces, Cookies
Scan archives: On
Heuristics: Off
ADS Scan: On
Scan start: 8/9/2009 9:23:13 PM
[552] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[588] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[604] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[616] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[652] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[824] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[864] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[1016] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[1848] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[1872] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[812] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[2056] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[2840] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[3196] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[3884] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[2272] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[3500] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
[1132] C:\Windows\System32\dsuiext32.dll detected: Trojan-Downloader.Win32.Tracur!IK
Scanned
Files: 2580
Traces: 0
Cookies: 0
Processes: 49
Found
Files: 0
Traces: 0
Cookies: 0
Processes: 18
Registry keys: 0
Scan end: 8/9/2009 9:29:34 PM
Scan time: 0:06:21

runing deep scan in safe mode
 

·
Registered
Joined
·
14 Posts
Discussion Starter · #2 ·
IE 8 now starts normaly.

problem is malware interfers with windows explorer program i think

other programs work fine, just cant veiw folders, i can nav to them well some through start bar.


*UD* guess i said it too quickly..

DESKTOP DIED, ICONS NOLONGER HIGHLIGHT, OR FUNCTION

BTW, while in SMWN i noticed 2 desktop exc files on desktop...???
 
1 - 5 of 5 Posts
Status
Not open for further replies.
Top