Jump to content

Gen.Trojan!IK, Trojan.win32.agent.IK


bootsba
 Share

Recommended Posts

Hello, I believe this window32 trojan is deep in my system. I remember it being in volumes a long time ago. My computer recently crashed, a few months ago now. I thought my computer started from scratch then but maybe not. I easily get confused with these directions so I apologize in advanced. I started with that read first thread and my avira reported.I am stuck what to do. I have been using ccleaner for a long time but is it the same as the "slim"? My a2 just completed and this is the report.

I think it may have sent files as well.

Is there a problem I have?

Yesterday my computer kept scrolling, and my shift key on the right is not working. Is this a part of the problem?

THANK YOU.online analysis

Link to comment
Share on other sites

Hi bootsba, and welcome to the forum

Please follow the instruction as referred below

Post only those log files required for preliminary investigation

Do not run any additional Utilities unless advised by the malware fighter.

The log file produced by ISeeYouXP is missing.

The latest update of a-squared was 2009-10-13 04:51:

Please Update a2 ; rerun Deep Scan and attach it in addition to missing ISeeYouXP.txt

=======

Read the following instructions

START HERE, if you don't we are just going to send you back to this thread <--click

Prepare and post the required log files into this thread

Wait for reply from ShadowPuterDude, Katana, or JeanInMontana

for assistance and further instructions.

=======

My regards

Link to comment
Share on other sites

thank you,

i was trying to tell you i read that thread on what to do first and was doing that but avira was saying the seeyouxp thing was a virus when it was loading. i attached that in my first post, its the first attachment.when you say dont run utilities, should i pull up wervices in a2 and stop them all? anything running has been but im not sure which are utilities. also i have used ccleaner for a long time but is it differant than the slim?

~also i have not downloaded sp3. it ruined my computer and i took it to a toshiba location which i had to have parts replaced.

Link to comment
Share on other sites

... avira was saying the seeyouxp thing was a virus when it was loading

That is False Positive flagging. Disable Avira's real-time resident

... im not sure which are utilities.

Only those that are mentioned in the instruction referred and only those that are suggested further (if necessary) by the malware fighter

Basically you used all of them and posted log files except you provided the reason more explicitly for not posting ISeeYouXP.txt in your second post (I did not have time to look into avira's report earlier otherwise I would've replied straight away)

Now, you can attach the the log by ISeeYouXP.

... also i have used ccleaner for a long time but is it differant than the slim?

The difference is - the Slim version does not have the option for installing Yahoo Toolbar that some can forget to uncheck during the installation

My regards

P.S.

~also i have not downloaded sp3. it ruined my computer and i took it to a toshiba location which i had to have parts replaced.
SP3 installation is out of scope of this section. Please create the case in the OffTopic. There are discussions and advices regarding SP3 Setup in the old forum. That must not "ruin the computer" if performed correctly
  • Upvote 1
Link to comment
Share on other sites

The installed version of Java on this computer is out-dated. Install Java Runtime Environment (JRE) 6u16 available from Sun Microsystems.

-----------------------------------------------------------

Using Add or Remove Programs in the Control Panel; uninstall the following:

J2SE Runtime Environment 5.0 Update 7

-----------------------------------------------------------

I highly recommend that you uninstall the following:

Coupon Printer for Windows

-----------------------------------------------------------

Your logs show no malware.

The a-squared log is showing System Restore Points. Simply disable system restore to clear all Restore Points and then enable system restore to create a new Restore Point for your computer.

  • Upvote 1
Link to comment
Share on other sites

thanks thanks thanks,

so no trojans, rootkits, bad stuff?

i havent quarentine the a2 detections yet, can i now?

so am i correct;

after the java....

runn ccleaner, then turn off system restore and run a2 and put anything in quarentine and delete, turn system restore back on, run all those again and post logs?

Link to comment
Share on other sites

Once you turn off system restore, and then turn it back on there should be nothing for a-squared to find in a Restore Point. A2 can't quarantine restore points, no security application can.

Antivirus Tools Cannot Clean Infected Files in the System Restore Folder.

The System Restore feature in Windows protects all folders and files in the System Restore folder on the Windows partition. This folder and all of its subfolders are the data store that the System Restore feature uses to restore your computer's operating system to a previous state from a previous point in time.

Although some antivirus programs may have the ability to work with files that have been compressed or stored in .zip or .cab file format, the System Restore feature does not permit these utilities to manipulate these files within the data store. The data store is protected for data integrity purposes, and the System Restore feature is the only method you can use to obtain access to the data store. Because of this, the antivirus program is unable to remove the virus from the file or files in the data store. The files in the data store are inactive and can be used only by the System Restore feature.

Link to comment
Share on other sites

Thread Closed

Reason: Resolved

The procedures contained in this thread are for this user and this user only. Attempting to use the instructions in this thread on your system could result in damaging the Operating System beyond repair. Do Not use any of the tools mentioned in this thread without the supervision of a Malware Removal Specialist.

All posters requesting Malware Removal assistance are required to follow all procedures in the thread titled START HERE, if you don't we are just going to send you back to this thread

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...