Laptop/Trojan Issues.

Post Reply New Topic

I appear to have picked up some trojans somewhere...don't want to consider where since this site and a few others which ive been to for years, are the only ones I visit.

But, I have run AVG...which picked up nothing
Then Housecall, which picked up 2 Trojans which it claimed to have removed.
Then Spyware doctor which picked up TROJ_GENERIC, EXPL_UDEATH_100 and TSPY_WREN, which it supposedly removed.
But my laptop is running horribly slow and often when I try and connect to a site, especially from my favourites, it isn't connecting but rather just keeps bringing up some c drive sys32 error each time I try to refresh.

Anyone got any ideas?
I have to confess my HD is somewhat full and I am down to about 5 gb of space.

wipe the hard drive, scan the stuff you need and get it off there (scan the external hard drive). and no that doesn't mean use windex and a towel to wipe the hard drive!

I am a technophobe... I only know basics really, what do you mean when you say wipe the HD? Perform a system recovery/restore and put Xp on fresh, you mean? Run me through it please. I have a lot of stuff on this machine.

Here is a list of running processes...never used to be so much stuff on here...

E_FATIBNE.EXE
taskmgr.exe
msnmsgr.exe
msmsgs.exe
ctfmon.exe
googletalk.exe
belkinwcui.exe
viewMgr.exe
ipodService.exe
SnapTrap.exe
jushched.exe
zlclient.exe
avgcc.exe
PRISMSTA.exe
IEXPLORE.exe
SynTPEnh.exe
SynTPLpr.exe
pctspk.exe
MPB.exe
khooker.exe
sistray.exe
explorer.exe
wscntfy.exe
notepad.exe
HWU8DD.exe
svcntaux.exe
GoogleUpdater
avgupsvc.exe
avgamsvr.exe
asurscsi.exe
spoolsv.exe
utility.exe
LimeWire.exe
svchost.exe
mDNSResponder
svchost.exe
svchost.exe
svchost.exe
vsmon.exe
svchost.exe
svchost.exe
Isass.exe or lsass.exe
services.exe
winlogon.exe
csrss.exe
smss.exe
swdsvc.exe
alg.exe
System
System Idle Process

yes i mean restore the computer to orginal xp, cause that is the only way i no on how to remove them!

have you tried spybot search & destroy?
http://www.spybot.info/en/spybotsd/index.html

My dad downloaded Google updater, and the computer started running really slow until the updater was deleted. Delete that crap.
Also, before you delete viruses close the process Windows Restore. This process has been known to revive deleted viruses.
You have way too many processes running. Either close most of them or buy a memory stick.

Do so many of these suckers need to be loaded in your computer

I have deleted the google updater. I am not sure what processed I am safe to disable. My internet has slowed way down since last time I was on, and all I have done since then is delete a load of small games, google updater and adobe plus ran a spyware doctor scan. I am wondering if it is that programme that is slowing me down actually.

In SpyBot, turn on "Advanced Mode" (or is that "Expert Mode" - I'm not in XP at present), go into Tools/Startup and un-tick EVERYTHING, except AVG.

The ones down the end of the list look like they are essential XP things, but my XP has run for years without them.

I think it's a Lexmark printer thingummy that keeps turning itself back on in my list, but it seems innocous, so I've let it stay.

If something you really like stops working, look at the list again to see if you want to turn it back on. I've not done that with anything.

If you read the comments that some of the entries provide, you'll find out what they're doing. If you genuinely want MSN Messenger, turn it back on (it does that itself on reboots). If not, follow SpyBot's instructions to stop it auto-starting.

(There are lots of other things in SpyBot. Do use the "Immunise". Do do scans. Do use the tools/startup. You probably don't want to touch anything else. )

--------------

Personally, I use AVG, SpyBot and AdAware. The later two pick up marginally different stuff. I just use the Windows Firewall... it's always been adequate for me.

Others suggest Avira's product (called ?) instead of AVG. I keep thinking I might try it - but the net opinion seems to be that they are as good as each other.

----------------

PS. Full up? Down to 5Gbyte? My laptop doesn't even HAVE that much disk. On this box, when Linux told me my partition was FULL, I deleted a few things, to get back a few megabytes.

ok well lets see if you need upgrades?!?!?
fill this out for me:
OS:
CPU:
Chipset:
RAM:
Hard Drive:
Primary Optical Drive:
Secondary Optical Drive
Media Manager:
Graphics:
Sound:
Monitor:
AGP Slots:
PCI Slots:
PCI 1x Slots:
PCI 4x Slots:
PCI 16x Slots:
Manufacture:
Model Number:

thx, this will help me on how to make it faster!

I think SnapTrap.exe might be malware; I'd google it.

Just pointed out Limewire.exe as well because those sort of applications generally drain your computers resources esp. internet connection quite heavily.

Try downloading Avast! antivirus and a registrycleaner thats called Eusing Free Registry Cleaner .
First scan with avast and delete viruses, then start Eusing and click on Scan Regustry Issue,
when that is done click on Repair Registry Issue.

Sometimes your registry gets a awful lot of corrupt files that slowes down your computer a lot.
And regarding the process, here is a list of the ones you can turn of:
Ipodservice.exe
Msnmsgr.exe (thats msn messenger)
Ctfmon.exe
Googletalk.exe
IExplore.exe (thats internet explorer)

There is probably many of these that you can turn off, you should only have 20-40 running on a modern computer.
Dont have anything else running when you close process's and dont close these ones:

SvcHost.exe (this apply's to all of them, since they are used by your firewall)
Explorer.exe (this thingy is all menues, buttons and shortcuts, if you accidently close this just re-start the computer)
avgupsvc.exe (this one is likely to be part of AVG antivirus)
avgamsvr.exe (this one is likely to be part of AVG antivirus)
spoolsv.exe
Isass.exe

And that should be it. If something goes wrong just restart your computer and it should be fixed.

For a lot on the list, a Google search will give you an idea what they might be all about. The bulk, you can probably stop by using SpyBot.

Some that caught my eye were:

E_FATIBNE.EXE - suspicious - random generated? all upper case.
msnmsgr.exe - You use MSN Messenger all the time?
googletalk.exe - do you use it?
belkinwcui.exe - modem - it all may well work fine without this running.
ipodService.exe - you do have an iPod? In any case, it'll probably autoload when you plug in, without this.
SnapTrap.exe - Trust WebCam?
PRISMSTA.exe ? uppercase = odd
SynTPEnh.exe - Synaptics touchpad? Does this sound right to you?
SynTPLpr.exe - ditto
khooker.exe SiS onboard stuff - probably not needed
sistray.exe - SiS onboard chips? Probably don't need this running
explorer.exe - quite useful ( )
notepad.exe - I'll assume you had a copy of Notpad running? If not, this is evil.
HWU8DD.exe - Another random uppercase character process - nasty?
GoogleUpdater - Still running Google stuff? It's nice, but time&space consuming.
asurscsi.exe - you have SCSI drives?
LimeWire.exe - Cruddy. Steals all the bandwidth it can. This is slowing your internet access.
mDNSResponder - You run a DNS process on your machine?
System - Nooo.... this is XP, not a "System", more a "Disorder"