HELP ME! I have a major deliverable due on Fri

I have never posted about this and in all of my years (in technology) I don't think I have ever got a virus.

I have Dell 630m with a 2GHz Core 2 Duo and 4 GB of RAM.

Computer started freezing up last night (as in super jerky) and so slow I cant use it. It misses every 5 keystrokes and pop-ups galore. This my work laptop and it is useless right now.

I use Trend Micro AV and run CCleaner all the time. My IT guy spent 4 hours on it this afternoon and it ran great for about 20 min.

I read that I should post a Malwarebytes andHiJackThis log after I run a pass with each.

Here goes: I have to have this fixed tonight so I would be willing to work something ou with PayPal if someone would be kind enough to take me under their wing

Thanks!!!

 

Ok..I read the sticky and I am ready to try again

Post 1 of 2 (with 3 logs)


On 12.03.08 I started noticing extreme jitteriness when trying to drag windows. It felt like I was trying to run 20 applications on a PIII with 256 MB of RAM (if that makes any sense). Over the work day I noticed that Firefox and IE were launching windows with adds on them (even though I had "block pop-ups" selected for both browsers). I ran CCleaner and cleaned the registry about 4 times which didn't do a whole lot. I then started uninstalling applications to no avail. Reboots started taking over 10 minutes so I called It and they worked on it for about 4 hours over LogMeIn. After the IT support call, the laptop was around 80% more responsive but I started degrading shortly after and by that night I was back to a severely slow state. THe odd thing was that when I would look at Task Manager, It would show CPU usage at 10% and memory usage was around 500 MB (out of 4 GB).

The only thing that I think could have caused this is a TuneUp Utilities 2009 application that I got from a file share. I scanned the zip file before installing it and it came back clean (used Trend Micro Client/Server Security Agent)

I have completed the tasks necessary to post my logs and I would appreciate any help that avails itself.

*NOTE
I just noticed that my AV software just completed a scan and came back reporting that I have 1 infected file. TROJ_VUNDO.YD located in: C:\Documents and Settings\administrator\Local Settings\Temporary Internet Files\Content.IE5\JP83X324\apstpldr[1].htm

Funny thing is that even though I have set my folder view options to show hidden files and folders, NOT Hide extensions for known file types, and NOT to hide protected operating system files...There is NOT a Content.IE5 folder nor a JP83X324 folder nor a apstpldr[1].htm file

I have noticed that this virus has been removed several times by various tools I have tried after reading posts on this form.

Basic Hardware Setup:

OS Name Microsoft Windows XP Professional
Version 5.1.2600 Service Pack 3 Build 2600
OS Manufacturer Microsoft Corporation
System Name (removed from this post by owner)
System Manufacturer Dell Inc.
System Model Latitude D630
System Type X86-based PC
Processor x86 Family 6 Model 15 Stepping 10 GenuineIntel ~1994 Mhz
BIOS Version/Date Dell Inc. A14, 10/30/2008
SMBIOS Version 2.4
Windows Directory C:\WINDOWS
System Directory C:\WINDOWS\system32
Boot Device \Device\HarddiskVolume1
Locale United States
Hardware Abstraction Layer Version = "5.1.2600.5512 (xpsp.080413-2111)"
User Name (removed from this post by owner)
Time Zone Eastern Standard Time
Total Physical Memory 4,096.00 MB
Available Physical Memory 2.53 GB
Total Virtual Memory 2.00 GB
Available Virtual Memory 1.96 GB
Page File Space 6.83 GB
Page File C:\pagefile.sys

Please let me know if there is anything else I can provide that will assist the experts in troubleshooting this issue.

Thank you for your time!

*NOTE 2

Just as I am about to post this it looks like something is changing the names of my files on C: root to non-English (non anything gibberish)...this sucks big time.

 

Post 2 of 2 (with 1 log)

 

Thanks, I read the guide and followed the directions. I can't PM you b/c I don't have enough posts and I don't want to spam the boards in order to get from 3 to 50 in 15 minutes. You can just change my name to pfran42 if that is OK with you.

Thanks again!

 

Thank you again for the prompt responses! I have complete these additional instructions and have attached the ComboFix.txt and MGlogs.zip files.

Overall the laptop is performing better. I hope the situation does not deteriorate during the workday.

 

Made it 8 hours without a glitch. Am I cured doc?