Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 500
  • Last Modified:

Trojan horse Downloader effect in win\system32...

hi ,
     i have scanned my system through AVG anti-virus and find out that 3 virusus can't  be deleted by antivirus.so i getting warning everytime when i start the system that AVG found the virusus as follows:

Testing C:\WINDOWS\system32 serial F0DE-8D32
C:\WINDOWS\SYSTEM32\SNCNTR.EXE Trojan horse Downloader.Dluca.AR
C:\WINDOWS\SYSTEM32\SP2CTR.EXE Trojan horse Downloader.Dluca.AM
C:\WINDOWS\SYSTEM32\YSLUX.EXE Trojan horse Downloader.Purityscan.M
 anyone can help me how to rid out these files from m system......is  any other software i hav to use?
0
lesmydad
Asked:
lesmydad
  • 3
  • 2
1 Solution
 
SheharyaarSaahilCommented:
Hello lesmydad =)

run the scan in Safemode and also try to manually delete those three files if u can find them lying in C:\Windows\System32 folder !!
0
 
SheharyaarSaahilCommented:
How to get into safemode >> http://www.computerhope.com/issues/chsafe.htm

You can also run Run Stinger in Safemode ==> http://vil.nai.com/vil/stinger
and dont forget to run the Disk Cleanup on ur hard drive in order to delete all those extra junk temp files and also the temp internet files of IE !!

Good Luck :)
0
 
SheharyaarSaahilCommented:
and if u are good at manual editing the registry, then here are some Good instructions on the Removal of this trojan >> http://securityresponse.symantec.com/avcenter/venc/data/downloader.dluca.html

Post back if u still face problems :)
0
 
Lobo042399Commented:
Hi lesmydad,

As you can see from the linked Symantec page that Shehar posted, removal of Dluca involves installation of Norton AV. You can download a 30-day trial version of Norton from:

http://nct.symantecstore.com/0142/NAV_2005_trialware.html

Remember to disable System Restore when doing the removal.

To get rid of PurityScan all you need to do is download Spybot Search & Destroy. PurityScan is adware and it's been included in Spybot's reference file since September '03. To maximize protection, run the Update on Spybot before scanning your machine.

That should take care of your problem. Good Vibes!

Lobo
0
 
Lobo042399Commented:
OOps!   I forgot. You can download Spybot S&D from:

http://www.gatesofdelirium.com/ee/tools/

Don't forget to run the Update after installation.

Good Vibes!

Lobo
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now