Innundated with trojans, viruses and spyware

Hi! I'm running a Dell Optiplex GX270 with 512k ram on win2k. Running TrendMicro AV and their spyware, including Venus Flytrap which is all continually updated. Still seem to be infected constantly! Several weeks ago, Virtumundo was the problem. After following your posted info on ridding ourselves of that, the system seemed back to normal, but now we're wondering if it was thoroughly cleaned. Tuesday Trend popped up with Istbar.fn. Trend seemed to have quarantined it, but other virus and spyware detectors have found bits and pieces. In taskmgr, there are also 3 versions of svchost.exe running - one in c:\I386, and one each in both hard drives (C&E) under \winnt\system32. After enabling viewing of hidden files etc, I have completed all "read and run me first" items including Bitdefender (found trojan downloader dyfuca.e1, application 1stbar.q and trojan downloader.small.bpk) - log saved; Panda ActiveScan (found 1st.1stbar, 1st.yoursitebar & surfaccuracy) - log also saved. I've run Ccleaner, Ad-Aware SE, Spybot S&D with immunize and Microsoft Antispyware. The system still loads slowly and isn't running as it should. It seems as though something is still in the background allowing all kinds of things in the back door! Note that TMproxy.exe is a terrible resource hog, taking up 96344k of memory, but this doesn't seem to be what's slowing the system down though I could of course be wrong. I have run hijackthis and posted the log as an attachment. I would appreciate any help you can give!

 

Hello, Sheri.

Your HijackThis log appears to be from Safe Mode. I need one from Normal Mode.

Follow the instructions in this thread:
Running Spy Sweeper

Post both the Spy Sweeper log and a fresh HijackThis log after running Spy Sweeper.

 

Shadow, I've downloaded and run spysweeper & re-run hijackthis all from normal mode. Logs are posted. Note: Don't know if it's due to all the new programs or still an extension of the virus/spyware infections but the computer is running very slowly, especially upon boot up. When this is completed I'd also like to ask you about start up items and running processes that seem to be taking up huge amounts of memory.

 

Your log isn't showing any signs of an infection.

Scan with HijackThis and fix the following:

Lets do a few more scans to look a little deeper into the system.

Please run Panda Online Scan. After the scan attach the log to your next post. Also please follow the below:

1 - Please EXTRACT all files from Qoologic Tool to its own folder - C:\Program Files\QoologicFinder . Then, DoubleClick Find-Qoologic.bat to run the tool. It should produce a log - Please attach that with your next post!

2 - Please EXTRACT all the files form RKFiles Tool to its own folder named C:\Program Files\RKTOOL. Then, Please boot to SAFE MODE and DoubleClick rkfiles.bat to run the tool. Let it run and then, when it finishes, look for a log at C:\Log.txt and please attach that log.

Now come back here and post all three logs as attachments