Hello everybody, hopefully you can help me solve these problems.
Two days ago my system got infected. I ran scans in safe mode and a lot of malware was removed, but a few problems remain and appear to be getting progressively worse. My computer is now very slow and unstable, programs like Windows Media Player and Firefox start out performing reasonably but after a while they encounter strange bugs that cause them to cease working. Also, on Firefox' start-up, AVG gives the following threat notification:
jl.chura.pl/rc/ - Exploit JavaScript Obfuscation (type 604)
Two processes seem to be the main culprits: one is C:\WINDOWS\services.exe, which so far has only been detected by Spybot S&D. Spybot identifies it as SpambotLoad.cn.
The other one, reader_s.exe, shows up in several main directories like WINDOWS\system32 and Documents and Settings. According to Ad-Aware it's called Win32TrojanAgent2, while AVG identifies it as Trojan horse SHeur2.WNC.
These processes not only return after deletion, but appear to clone themselves - so I get the feeling I have to take action quickly.
This morning I disabled all real-time protection (AVG, Spybot, Ad-Aware) and performed scans with AVG, Spybot S&D, Ad-Aware, Malwarebytes and SUPERAntiSpyware. I went out while they were in progress and when I returned I found a blue screen. However, logs were available for the Malwarebytes and SUPERAntiSpyware scans. The log for AVG was "corrupted (scan did not finish properly)". I can't seem to retrieve a log from Ad-Aware.
Now that I followed the 8 steps from the sticky thread as best I could, I really hope someone here can help me out. Big thanks in advance!
Two days ago my system got infected. I ran scans in safe mode and a lot of malware was removed, but a few problems remain and appear to be getting progressively worse. My computer is now very slow and unstable, programs like Windows Media Player and Firefox start out performing reasonably but after a while they encounter strange bugs that cause them to cease working. Also, on Firefox' start-up, AVG gives the following threat notification:
jl.chura.pl/rc/ - Exploit JavaScript Obfuscation (type 604)
Two processes seem to be the main culprits: one is C:\WINDOWS\services.exe, which so far has only been detected by Spybot S&D. Spybot identifies it as SpambotLoad.cn.
The other one, reader_s.exe, shows up in several main directories like WINDOWS\system32 and Documents and Settings. According to Ad-Aware it's called Win32TrojanAgent2, while AVG identifies it as Trojan horse SHeur2.WNC.
These processes not only return after deletion, but appear to clone themselves - so I get the feeling I have to take action quickly.
This morning I disabled all real-time protection (AVG, Spybot, Ad-Aware) and performed scans with AVG, Spybot S&D, Ad-Aware, Malwarebytes and SUPERAntiSpyware. I went out while they were in progress and when I returned I found a blue screen. However, logs were available for the Malwarebytes and SUPERAntiSpyware scans. The log for AVG was "corrupted (scan did not finish properly)". I can't seem to retrieve a log from Ad-Aware.
Now that I followed the 8 steps from the sticky thread as best I could, I really hope someone here can help me out. Big thanks in advance!