Results 1 to 2 of 2

Thread: Daurso trojan: everything google affected

  1. #1
    Junior Member
    Join Date
    Jun 2010
    Posts
    1

    Default Daurso trojan: everything google affected

    Hi,

    Several days ago AVG/Windows notified me that I had win32/Daurso.A trojan, and that the threat was "severe". Apparently this tries to go in and get ftp info and I don't entirely understand the effect that should/could have on my system.

    I went into safe mode and ran Spybot, Malware Bytes, and AVG full scans, which took hours. A trojan was found by Spybot, but it had a different name. It was hiding in Adobe Illustrator. I quarantined and deleted it. Things seemed to be working fine in regular mode and I ran several subsequent scans with various software, coming up with no problems. I also cleaned my registry with Easy Cleaner.

    Then I began having problems doing my online work. I could get online but every time I pulled up google or gmail things got weird. I work for Leapforce and sign into a google subpage (www.google.com/x/x/x) and have to be signed into my gmail account to work. I also am required to use firefox with a specific toolbar that keeps track of my hours and the projects I do. Well, the Leapforce people cannot tell anymore when I am signed in to my toolbar and when I get projects for work, I cannot submit them. I am helpless and cannot work, thus cannot make a living right now. This disconnect from my work is all related to google and happened in direct correlation with acquiring Daurso.

    I reinstalled Firefox and my toolbar. I also have been getting the error box "The application failed to initialize properly (0xc0000022)." It asks me to click OK to terminate the application. I am running Windows XP. In accordance with my research on this error I went into safe mode and via command prompts, went in and allowed all users access to all .dll files. This has not helped. I still cannot work and am having to use bing or other search engines, as google use causes my computer to slow, act as if it is not online, etc., and I am avoiding it. I will either redo my machine, which would be a pain because of some hefty programs I don't want to lose, and a great deal of data I'd have to back up, but if it is possible to fix some basic problems and have a working computer again, I would be thrilled!

    Thanks to anyone who has advice. It will be greatly appreciated.
    Last edited by tashi; 2010-06-17 at 20:42. Reason: Date of archive

  2. #2
    Security Expert: Emeritus Blade81's Avatar
    Join Date
    Oct 2006
    Location
    Finland
    Posts
    25,288

    Default

    Hi,

    Download DDS and save it to your desktop from here or here or here.
    Disable any script blocker, and then double click dds.scr to run the tool.
    • When done, DDS will open two (2) logs:
      1. DDS.txt
      2. Attach.txt
    • Save both reports to your desktop. Post them back to your topic.


    ---

    Download GMER here by clicking download exe -button and then saving it your desktop:
    • Double-click .exe that you downloaded
    • Click rootkit-tab, uncheck files option and then click scan.
    • Don't check
      Show All
      box while scanning in progress!
    • When scanning is ready, click Copy.
    • This copies log to clipboard
    • Post log (if the log is long, archive it into a zip file and attach instead of posting) in your reply.
    Microsoft Windows Insider MVP 2016-2020
    Microsoft MVP Consumer Security 2008-2015
    UNITE member since 2006

    If you have problems create a thread in the forum, please.

    Malware removal instructions are for the correspondent user's case only.

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •