Trojan:Win32/C2Lopgen!M and Exploit:Win/Pdfjsc.J

View previous topic View next topic Go down

Trojan:Win32/C2Lopgen!M and Exploit:Win/Pdfjsc.J

Post by duck_boi_97 on Tue 05 Oct 2010, 12:12 pm

Hi, Im chris and i rewally need some help...my computer is infected as i found out when i ran a Microsoft essentials quick scan.....although it tells me that it is unable to complete the scan due to an unknown error....although it has found these two infections....not only this but due to this error microsoft essentials is unable to remove the threats.....

can anyone help please...my computer is my life....please im begging :'(

this is the malwarebytes, Anti-Malware log:

Malwarebytes' Anti-Malware 1.46
[You must be registered and logged in to see this link.]

Database version: 4742

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

05/10/2010 02:11:00
mbam-log-2010-10-05 (02-11-00).txt

Scan type: Quick scan
Objects scanned: 183028
Time elapsed: 31 minute(s), 53 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

although it says there are no malicious items detected.....there must be because ever since these thrests were found i have noticed my internet connection is being very un-reliable

duck_boi_97

Rookie Surfer
Rookie Surfer

Posts : 60
Joined : 2010-07-01
Operating System : Windows XP

View user profile

Back to top Go down

Re: Trojan:Win32/C2Lopgen!M and Exploit:Win/Pdfjsc.J

Post by Sneakyone on Tue 05 Oct 2010, 12:39 pm

Hi.

Please download OTL to your Desktop. (If you already have it downloaded, then just follow the instructions below).
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Under the Custom Scan box paste this in

    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\system32\*.exe /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\System32\config\*.sav
    %systemroot%\system32\*.sys
    %systemroot%\system32\drivers\*.dll
    %systemroot%\system32\drivers\*.ini
    %systemroot%\system32\drivers\*.exe
    %SYSTEMDRIVE%\*.*
    %PROGRAMFILES%\*.
    %appdata%\*.*
    netsvcs
    msconfig
    safebootminimal
    safebootnetwork
    activex
    drivers32
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    iaStor.sys
    nvstor.sys
    atapi.sys
    IdeChnDr.sys
    viasraid.sys
    AGP440.sys
    vaxscsi.sys
    nvatabus.sys
    viamraid.sys
    nvata.sys
    nvgts.sys
    iastorv.sys
    ViPrt.sys
    eNetHook.dll
    ahcix86.sys
    KR10N.sys
    disk.sys
    nvstor32.sys
    ahcix86s.sys
    nvrd32.sys
    symmpi.sys
    adp3132.sys
    mv61xx.sys
    usbstor.sys
    /md5stop
    CREATERESTOREPOINT
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs


  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) and paste (Edit->Paste) the contents of these files, one at a time


Note: in the event that OTL fails to run, please use alternate download links to try again:

[You must be registered and logged in to see this link.]
[You must be registered and logged in to see this link.]


I'm livin' life in the fast lane.


Sneakyone

Tech Officer
Tech Officer

Posts : 2707
Joined : 2010-01-10
Operating System : Windows 7 Ultimate 64-bit

View user profile http://twitter.com/AVerySneakyone

Back to top Go down

Re: Trojan:Win32/C2Lopgen!M and Exploit:Win/Pdfjsc.J

Post by duck_boi_97 on Thu 07 Oct 2010, 12:36 am

sorry ive taken so long to reply....i do apreciate the help ......
ive ran the OTL scan twice...and both times it reset my computer after about 3 minutes then upon restarting the computer it totally shut down, i have had this problem before when i had the tidserv! .... have you got any ideas ?

any help would be a great help

thank you

duck_boi_97

Rookie Surfer
Rookie Surfer

Posts : 60
Joined : 2010-07-01
Operating System : Windows XP

View user profile

Back to top Go down

Re: Trojan:Win32/C2Lopgen!M and Exploit:Win/Pdfjsc.J

Post by Sneakyone on Thu 07 Oct 2010, 7:45 am

Hi,

Please run this in Safe Mode with Networking to do this please reboot and tap the F8 key until it asks you what mode to boot into.


Please download ComboFix from BleepingComputer.com

Alternate link: GeeksToGo.com

Alternate link: Forospyware.com

Rename ComboFix.exe to commy.exe before you save it to your Desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
  • Click Start>Run then copy paste the following command into the Run box & click OK "%userprofile%\desktop\commy.exe" /stepdel
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console


Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


  • Click on Yes, to continue scanning for malware.
  • When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.



I'm livin' life in the fast lane.


Sneakyone

Tech Officer
Tech Officer

Posts : 2707
Joined : 2010-01-10
Operating System : Windows 7 Ultimate 64-bit

View user profile http://twitter.com/AVerySneakyone

Back to top Go down

Re: Trojan:Win32/C2Lopgen!M and Exploit:Win/Pdfjsc.J

Post by Sponsored content Today at 1:16 pm


Sponsored content


Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum