Author Topic: Pls Help - Win32:Malware-gen;Win32:Downloader-PKU [TRJ]  (Read 1048 times)

Offline Savvy

  • Newbie
  • *
  • Posts: 2
    • Personal Message (Offline)
Pls Help - Win32:Malware-gen;Win32:Downloader-PKU [TRJ]
« on: July 30, 2012, 02:45:24 AM »
Pls help me remove these viruses.

I have attached the MBAM - OTL - aswMBR Log files.

thx in advance

Offline Pondus

  • avast! √úberevangelist
  • Maybe Bot
  • *****
  • Posts: 21798
  • Gender: Male
    • Personal Message (Offline)
Re: Pls Help - Win32:Malware-gen;Win32:Downloader-PKU [TRJ]
« Reply #1 on: July 30, 2012, 04:27:33 AM »
malware removers are notified: it may take many hours before one arrive so be patient
Chief Wiggum: Uh, no, you got the wrong number. This is 9-1…2.


Offline magna86

  • Anti Malware Fighter
  • avast! Evangelist
  • Massive Poster
  • ***
  • Posts: 3249
  • Gender: Male
    • Ambulanta MyCity Forum - ASAP Member
    • Personal Message (Offline)
Re: Pls Help - Win32:Malware-gen;Win32:Downloader-PKU [TRJ]
« Reply #2 on: July 30, 2012, 11:36:59 AM »
Monitoring  8)

Offline magna86

  • Anti Malware Fighter
  • avast! Evangelist
  • Massive Poster
  • ***
  • Posts: 3249
  • Gender: Male
    • Ambulanta MyCity Forum - ASAP Member
    • Personal Message (Offline)
Re: Pls Help - Win32:Malware-gen;Win32:Downloader-PKU [TRJ]
« Reply #3 on: July 30, 2012, 11:44:27 AM »
Hello,  ;)
I will be working on your Malware issues

Re-run OTL.exe.

  • Copy and paste the following text written inside of the quote box into the Custom Scans/Fixes box.

Code: [Select]
:OTL
IE - HKU\S-1-5-21-1880795468-379239768-4233194241-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://blekko.com/ws/?source=c3348dd4&toolbarid=blekkotb_031&u=DFA482CF0C169145FDD0994FC1D5C5E5&tbp=homepage
IE - HKU\S-1-5-21-1880795468-379239768-4233194241-1000\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://blekko.com/ws/?source=c3348dd4&tbp=rbox&toolbarid=blekkotb_031&u=DFA482CF0C169145FDD0994FC1D5C5E5&q={searchTerms}
FF - prefs.js..browser.search.defaultenginename: "Blekko"
FF - prefs.js..browser.search.order.1: "Blekko"
FF - prefs.js..browser.search.selectedEngine: "Blekko"
FF - user.js - File not found
@Alternate Data Stream - 1335 bytes -> C:\Users\User\AppData\Local\PxtuFcs0QM:mjTnePwiwig6cFcdG08fZ
@Alternate Data Stream - 1190 bytes -> C:\Users\User\AppData\Local\Temp:0DjwMsGjrggLD4Gaj6WIYpd7W

:files
C:\Windows\Installer\{4088c64f-f16a-544e-1a75-573ae2c8da4a}
ipconfig /flushdns /c

:commands
[CREATERESTOREPOINT]
[emptytemp]
[Reboot]


  • Then click the Run Fix button at the top.
  • Let the program run unhindered; it will reboot the system when it is done and open notepad with logreport. Attach here that logreport.
*******************




> Download ComboFix from here and save it to your Desktop.
If you are unsure how ComboFix works please read this guide carefully.
note: ComboFix must be downloaded to your Desktop.

> Temporarily disable your AntiVirus program.
If you are unsure how to do this please read this Instruction.

> Run ComboFix. Click on I Agree!
ComboFix will check if there is a newer version of ComboFix available.
Click Yes if prompted to download.

ComboFix will display DISCLAIMER OF WARRANTY ON SOFTWARE.
Click Yes to allow ComboFix to continue.

If Recovery Console is not installed, ComboFix will offer download & installation.
Click Yes to allow ComboFix to install Recovery Console.
Note:Do not mouse-click Combofix's window while it is running.


> When the tool is finished, it will produce a log report for you. (typical location: C:\ComboFix.txt )
  Attach log reports ( ComboFix.txt) back to topic.

Offline Savvy

  • Newbie
  • *
  • Posts: 2
    • Personal Message (Offline)
Re: Pls Help - Win32:Malware-gen;Win32:Downloader-PKU [TRJ]
« Reply #4 on: July 30, 2012, 02:17:43 PM »
Hi, thx for the instructions ....

I ran both OTL and ComboFix, and its been 1 hour and no popups, looks like u cured it. thank u.

attached are the logfiles u requested.

thx again

Offline magna86

  • Anti Malware Fighter
  • avast! Evangelist
  • Massive Poster
  • ***
  • Posts: 3249
  • Gender: Male
    • Ambulanta MyCity Forum - ASAP Member
    • Personal Message (Offline)
Re: Pls Help - Win32:Malware-gen;Win32:Downloader-PKU [TRJ]
« Reply #5 on: July 30, 2012, 09:23:30 PM »
Logs looks good.
How's your computer behaving now ?

 

Google Chrome

AVAST recommends using the FREE Google Chrome™ browser.

Download Google Chrome Now