i am having this problem from last few days. i am using Microsoft Security Essentials as anti virus on my Window 7 32 bit. See the screen shot attached. even after doing the full scan and also deleting that file manually this warning pop ups again and again. what i do?
A Trojan Making Me Crazy
- Thread starter junedraza
- Start date
Veedaz
~
- Joined
- Sep 1, 2009
- Messages
- 1,988
- Reaction score
- 374
Hi junedraza
You got a nasty one there > https://www.microsoft.com/security/...?Name=Trojan:JS/Tracur.A&ThreatID=-2147337024
I would download SpyBot > http://www.safer-networking.org/en/index.html and run in safe mode also turn off system restore just before your ready to scan.
You got a nasty one there > https://www.microsoft.com/security/...?Name=Trojan:JS/Tracur.A&ThreatID=-2147337024
I would download SpyBot > http://www.safer-networking.org/en/index.html and run in safe mode also turn off system restore just before your ready to scan.
- Joined
- Nov 4, 2009
- Messages
- 217
- Reaction score
- 50
I fix a few of these every week for my clients. This is a rootkit and won't allow you to do very much on your computer. If you are able to run malwarebytes then do it but I doubt you will be able to. Get a trial version of unhackme and put it on a flash drive and install from there. Be careful with unhackme because you might delete the wrong files. This will run at boot before Windows is loaded and that's the only way to get these threats under control. I have had success using the Kaspersky or BitDefender boot disks and running a scan from their Linux virtual drives. You'll need to have your Ethernet cable plugged in so they can update their databases.
Eventually you will be able to run malwarebytes from within Windows so set it for a complete scan.
I just finished fixing a machine this morning and this nasty virus went too far and compromised system files so badly I had to re-install the OS.
Eventually you will be able to run malwarebytes from within Windows so set it for a complete scan.
I just finished fixing a machine this morning and this nasty virus went too far and compromised system files so badly I had to re-install the OS.
Last edited:
yes, i manually went to that folders and deleted the files but it comes again and again.
- Joined
- Dec 19, 2009
- Messages
- 5
- Reaction score
- 1
Use malwarebytes or a squared is another really good scanner. If those don't work do a reinstall and this time do 64 bit 
dear roban, i have downloaded malwarebyte and did the complete scan and found around 109 infections of different type. i am attaching the its log please have a look. how to get rid of these infections and how i destroy it? please do me help
Nibiru2012
Quick Scotty, beam me up!
- Joined
- Oct 27, 2009
- Messages
- 4,955
- Reaction score
- 1,302
From looking at the log you attached, you have a LOT of keygens and activators on there. Those may be causing problems.
You really need another antivirus program besides MS Security Essentials. Download the free version of AVG AntiVirus or Avira Antivirus.
You can download Avira Free HERE
You can download AVG Free HERE
Are you running a firewall also? You should, even though the Windows 7 firewall does a fairly decent job, third-party firewalls are even better.
You can download Outpost Firewall Free HERE
You really need another antivirus program besides MS Security Essentials. Download the free version of AVG AntiVirus or Avira Antivirus.
You can download Avira Free HERE
You can download AVG Free HERE
Are you running a firewall also? You should, even though the Windows 7 firewall does a fairly decent job, third-party firewalls are even better.
You can download Outpost Firewall Free HERE
Nibiru2012
Quick Scotty, beam me up!
- Joined
- Oct 27, 2009
- Messages
- 4,955
- Reaction score
- 1,302
Try this fix, it fairly simple to use and has worked a few time when I couldn't get other AV software to wipe the trojans, etc., clean from the drive.
Here's the install info:
SDFix is a program written by AndyManchesta that removes big amount trojans, worms, rootkits and other malwares Click here for view a list of files that can be removed.
How to use SDFix.
1. Download SDFix.
Download SDFix and save it to your Desktop.
2. Install SDFix.
Double-click on the SDFix. If a “Security Warning window opens”, click on the Run button.
Follow the prompts.
3. Reboot your computer in to Safe mode.
If this error message “The command prompt has been disabled by your administrator. Press any key to continue . . ” is displayed when running SDFix.
Let us know if it works for you!
Here's the install info:
SDFix is a program written by AndyManchesta that removes big amount trojans, worms, rootkits and other malwares Click here for view a list of files that can be removed.
How to use SDFix.
1. Download SDFix.
Download SDFix and save it to your Desktop.
2. Install SDFix.
Double-click on the SDFix. If a “Security Warning window opens”, click on the Run button.
Follow the prompts.
3. Reboot your computer in to Safe mode.
- Restart your computer.
- After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
- Instead of Windows loading as normal, a menu should appear.
- Select the first option, to run Windows in Safe Mode.
- Click Start -> Run.
- Type the following text in type box: %systemdrive%\SDFix\RunThis.bat
- Press Enter or OK button.
- When the tool is finished, it will produce a report for you.
If this error message “The command prompt has been disabled by your administrator. Press any key to continue . . ” is displayed when running SDFix.
Please goto Start Menu > Run > then copy and paste the following line: %systemdrive%\SDFix\apps\swreg IMPORT %systemdrive%\SDFix\apps\Enable_Command_Prompt.reg
Press OK then run SDFix again
If the Command Prompt window flashes on then off again on XP or Windows2000.Press OK then run SDFix again
Please goto Start Menu > Run > then copy and paste the following line: %systemdrive%\SDFix\apps\FixPath.exe /Q Reboot and then run SDFix again
If SDFix still doesnt run check the %comspec% variable.
Goto Start Menu > Right click My Computer > click properties > click Advanced Click Environment Variables and check that the ComSpec variable points to cmd.exe %SystemRoot%\system32\cmd.exe
Try this, it works! Believe me.
Let us know if it works for you!
Last edited:
Veedaz
~
- Joined
- Sep 1, 2009
- Messages
- 1,988
- Reaction score
- 374
Nibiru2012 wrote
Link > http://www.sphinx-soft.com/Vista/order.html
Yes it is a good firewall but needs setting up for outbound connections (as with Trojans inviting there little friends to your Computer) but there is a very good freeware tool Windows 7 Firewall Control, with this application you can control inbound and out bound connections, read more at the site ...
Link > http://www.sphinx-soft.com/Vista/order.html
- Joined
- Sep 12, 2009
- Messages
- 133
- Reaction score
- 29
Hi there
Please download ComboFix from one of these locations:
Link 1
Link 2
Rename it to spoon.exe before saving it to your desktop.
Double click on the renamed ComboFix.exe & follow the prompts.
Please download ComboFix from one of these locations:
Link 1
Link 2
Rename it to spoon.exe before saving it to your desktop.
Double click on the renamed ComboFix.exe & follow the prompts.
- When finished it will produce a log at C:\ComboFix.txt for you
- Please include the log in your next reply.
- Joined
- Sep 12, 2009
- Messages
- 133
- Reaction score
- 29
You may also want to change your downloading habits...
If you install the cracked software, you are running executable files from these dubious, unknown sources. You are in effect giving these sources access to information on your hard disk, and potential control over the operation of your computer. Cracked software can also contain password stealers which steal personal and system information from your machine and has the ability send it to its accomplice web server for use by criminals. This could result in banking details being compromised meaning that you pay much more for your software than you originally would.
Using such software is asking for trouble. Visiting cracksites/warezsites - and other questionable/illegal sites is always a risk. Even a single click on the site can drop multiple forms of very serious malware, many of which disable your onboard protection, and System Restore.
If you install the cracked software, you are running executable files from these dubious, unknown sources. You are in effect giving these sources access to information on your hard disk, and potential control over the operation of your computer. Cracked software can also contain password stealers which steal personal and system information from your machine and has the ability send it to its accomplice web server for use by criminals. This could result in banking details being compromised meaning that you pay much more for your software than you originally would.
- Joined
- Dec 19, 2009
- Messages
- 5
- Reaction score
- 1
Avg free is not that good and slows down the computer. I recommend ms security essentials or avast. Or you can buy kaspersky spybot slows down your computer too. Make sure tea timer doesn't run in the background if you do install spybot. I would take iobit advanced system care over spybot any day of the week though. Spybot can cause conflicts in a lot of systems and the scanner is outdated and useless if you have asc.
spybot slows down your computer too. Make sure tea timer doesn't run in the background if you do install spybot. I would take iobit advanced system care over spybot any day of the week though. Spybot can cause conflicts in a lot of systems and the scanner is outdated and useless if you have asc.
- Joined
- Mar 8, 2009
- Messages
- 5,063
- Reaction score
- 1,185
:top: splatter85 - You need more than a 0 for that one.
Nibiru2012
Quick Scotty, beam me up!
- Joined
- Oct 27, 2009
- Messages
- 4,955
- Reaction score
- 1,302
I'm running AVG Internet Security 2009 and my is not slow at all. It runs great!