TR/Downloader.gen

I have been having problems with this PC for about a week now. The client is really starting to get upset, and I do not have authorization for reimaging the drive.

So here is what I got. Primarily I use the Hirens Boot CD 9.3 for Virus Removal. It starts before the operating system making it impmervious from being tampered with. I upadated all the software using the Hirens update folder. I scanned with the boot versions of Mcaffe and FPROT, which just about always fixes the problems. Then I booted into Windows Safe mode and Ran CCleaner, Spybot S&D, Adaware SE, AVG, and AntiVir. The only ones that picked it up was AntiVir, because it started to run.

AVG always stopped the scan at C:\System Volume Information\tracking.log (So Alphebetically it is the next file with the problem.)

AntiVir does not remove the program, it just finds it. It discribes it as TR/Downloader.gen

Anyway I have run through your process (which did not remove it) and I have attached the appropriate logs, except for AVG because it will not finish the scan.

I have searched the internet for fixes, both automatic and manual, and came up with nothing. Please help me.

Also, for future refference. Do you guys recommend AntiVir or AVG for free AntiVirus protection? I use Kaspersky it home (which is great) but whats the best free one?

 

Ummm, I don't know how, But this has already fallen back to page 2. So Im going to have to bump it. Can someone please help.

 

Hi Superior Assassin!

Bumping actually made it take longer for you to get help! Please read the sticky threads. In particular, this one: Don't Bump! It Only Hurts You!!! In one day a post can go from page 1 all the way to page 5. This is normal due to how busy the forum is. When you bumped, you went back to page 1 which is the last page we will work on not the first.

You have some very weird files in here. Let's start here:

1) Please go to Windows Explorer and tell me if you can find either of the following files. If so, please right-click on them and tell me if they link to anything?

C:\WINDOWS\X X.lnk <---- note the space before the second X
C:\WINDOWS\X.lnk

2) Go to add/remove programs and uninstall the below:

Java(TM) 6 Update 2
Java(TM) 6 Update 3
Java(TM) SE Runtime Environment 6 Update 1

3) Reboot after uninstalling the above.

4) Install the current version of Sun Java from: Sun Java Runtime Environment


5) Now download The Avenger by Swandog46, and save it to your Desktop.

• Extract avenger.exe from the Zip file and save it to your desktop
• Run avenger.exe by double-clicking on it.
• Check the 'Input script manually' box.
• Click on the magnifying glass icon.
• Copy everything in the Quote box below, and paste it in the box that opens:

• Now click the 'Done' button.
• Click on the traffic light icon and OK the prompt.
• You will be prompted to restart, OK the prompt and your PC should reboot, if not, reboot it yourself.
• A log file from Avenger will be produced at C:\avenger.txt

6) Please download ATF Cleaner by Atribune. This program does not require an installation. The executable actually runs the program.

NOTE: This program is for Windows XP and Windows 2000 only. ATF Cleaner will remove all files from the items that are checked so if you have some cookies you'd like to save. Please move them to a different directory first.

• Double-click ATF-Cleaner.exe to run the program.
• Under Main choose: Select All
• Click the Empty Selected button.

If you use Firefox browser

• Click Firefox at the top and choose: Select All
• Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser

• Click Opera at the top and choose: Select All
• Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.

Click Exit on the Main ATF Cleaner menu to close the program.


7) Please run C:\MGtools\GetLogs.bat and attach the fresh MGlogs.zip it generates along with the Avenger log.


Let me know how things are running now?

abri