help me, please help

November 10, 2011 at 14:14:41
Specs: Windows Vista
"";"C:\Windows\System32\drivers\dfsc.sys";"Trojan horse Dropper.Generic4.BSLJ";"Object is white-listed (critical/system file that should not be removed)"

dropper generic 4 bslj
any ideas of How to get rid of it???Please!1


See More: help me, please help

Report •


#1
November 10, 2011 at 15:48:24
It's not a trojan. It's an MS driver.

How do you know when a politician is lying? His mouth is moving.


Report •

#2
November 10, 2011 at 19:56:21
wtooch,

Yes, it is a system driver for Windows.

However, the file in which the infection was found is a "critical system file".
That means a virus has possibly modified and placed itself inside a file which is critical to Windows.

You can't simply remove the infected file.

Best bet is to send the file for analysis at one of the following:
VirusTotal:
http://www.virustotal.com/

Jotti Virus Scan:
http://virusscan.jotti.org/

Then, provide the link to the report back here.

If it a False Positive, or detected in error, then, you have a different course of action to take. Reporting to AVG is best:

False Positive:
http://forums.avg.com/ww-en/avg-fre...

Detected in error:
http://samplesubmit.avg.com/ww-en/f...

~~~~
Retired - Doin' Dis, Dat, and slapping malware.
Malware Eliminator/Member of UNITE and the
Alliance of Security Analysis Professionals


Report •

#3
November 10, 2011 at 20:01:53
Thank you for the quick response.I will try...yes also MS keeps crashing...
wtooch

Report •

Related Solutions

#4
November 10, 2011 at 20:43:03
wtooch,

If you go to VirusTotal:
http://www.virustotal.com/

Use the 'Browse' button to navigate to the location of the file.

Click on the file

Then, click the 'Open' button.
The file is now displayed in the 'Submit' Box.

Scroll down and click 'Send File', and wait for the results

If you get a message saying: 'File has already been analyzed', click 'Reanalyze file now'

Once scanned, please provide the link to the results page in your reply.

Also, if you would like, in order to help identify the malware issue with your system, please do the following:

Download DDS from one of these locations:
http://download.bleepingcomputer.co...

http://download.bleepingcomputer.co...

Save it to your Desktop

Make sure you temporarily disable your AntiVirus, Firewall, and any other AntiSpyware applications. They may interfere with the programs we are about to run.

If you wish to look at information on how to disable these programs, please refer to the information available through this link:
http://www.bleepingcomputer.com/for...

Vista/Windows Seven: Right-click DDS and select: Run as Administrator

When done, DDS opens two logs:
-DDS.txt (Opens on the Desktop)
-Attach.txt (Is minimized - will show on the TaskBar)

Save both reports to your Desktop, and post them in your reply.

However, since these reports can be large, please upload them one at a time to Megaupload:
http://www.megaupload.com/

It is very easy to use:
Click: 'Browse'
Select the file to upload
Upload the file
To the right of 'Send', enter a file description:
Click 'Send'
Copy the link provided, and post it in your reply.

~~~~
Retired - Doin' Dis, Dat, and slapping malware.
Malware Eliminator/Member of UNITE and the
Alliance of Security Analysis Professionals


Report •

#5
November 11, 2011 at 10:41:46
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 11 Plugin
Adobe Media Player
Adobe Reader X (10.1.1)
Advanced Audio FX Engine
Advanced Video FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Audio Record Wizard v3.96
AVG 2012
AVG PC Tuneup 2011
AVI Movie Player
BeNaughty Toolbar (Extension for Firefox)
BlackBerry Desktop Software 4.3
Blaze Media Pro
Bonjour
Browser Address Error Redirector
Compatibility Pack for the 2007 Office system
Conduit Engine
Creative MediaSource 5
D3DX10
DC++ 0.750
Dell DataSafe Online
Dell Dock
Dell Getting Started Guide
Dell Support Center (Support Software)
Dell Touchpad
Dell Webcam Center
Dell Webcam Manager
Directory Lister v0.8.1
DivX Setup
DreamStation DXi2
EDocs
Fingerprint Reader Suite 5.6
Focus MP3 Recorder Splitter 3.4
GEAR 32bit Driver Installer
GOM Player
Google Chrome
Google Gears
Google Talk Plugin
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Integrated Module with Bluetooth wireless technology
Intel(R) Matrix Storage Manager
Intel(R) PROSet/Wireless Software
Java(TM) 6 Update 5
Junk Mail filter update
Laptop Integrated Webcam Driver (1.04.01.1011)
LG Bluetooth Drivers
LG PC Suite IV
LG United Mobile Drivers
Live 6.0.1
Live! Cam Avatar Creator
Live! Cam Avatar v1.0
MadTracker 2
McAfee Security Scan Plus
mCore
Media Go
MediaDirect
mHelp
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Live Add-in 1.5
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Professional 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Primary Interoperability Assemblies 2005
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
MixMeister BPM Analyzer 1.0
MixMeister Studio 7.2.2
mMHouse
Mozilla Firefox 8.0 (x86 en-US)
mPfMgr
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
mWMI
Native Instruments Audio Kontrol 1
Native Instruments Traktor DJ Studio 3
NGWave 4.1
NVIDIA Drivers
NVIDIA PhysX
OutlookAddinSetup
PC MightyMax 2011
Platinum Notes 2.0
PlayStation(R)Network Downloader
QuickSet
Roxio Media Manager
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Segoe UI
Skype� 5.3
SONAR Home Studio 4
Sound Blaster Audigy ADVANCED MB
Spybot - Search & Destroy
Steinberg Cubase LE
Trend Micro RUBotted
Ultimate Extras sounds from Microsoft� Tinker�
Uniblue DriverScanner 2009
Uniblue PowerSuite
Uniblue RegistryBooster 2009
Uniblue SpeedUpMyPC 2009
Uniblue SpyEraser
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (KB2596560)
VC80CRTRedist - 8.0.50727.4053
Vuze
Vuze Remote Toolbar
WD Discovery Software
Winamp
Winamp Detector Plug-in
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Player Firefox Plugin
Windows Sound Schemes
WinRAR archiver
Xvid 1.2.1 final uninstall
.
==== End Of File ===========================

Report •

#6
November 11, 2011 at 10:46:47
http://www.megaupload.com/?d=8Q5SBAKP

I hope this helps?...what do I do....Is my machine screwed??

Cheers

Warren


Report •

#7
November 11, 2011 at 11:22:35
The megaupload website is not working.

Please upload DDS.txt and Attach.txt (both reports, one at a time) to the following:

Go to the ‘Uploading’ website:
http://uploading.com/files/upload/

In: Select files to upload, click 'Browse', and 'Look in' the Desktop.
Select the DDS.txt report, and click on 'Open'
You will see the following:
“Your file has been uploaded successfully: (Name and size of the file)”

Please copy the 'Download link', and provide it in your reply.

Do the same with the Attach.txt.

Thanks.

~~~~
Retired - Doin' Dis, Dat, and slapping malware.
Malware Eliminator/Member of UNITE and the
Alliance of Security Analysis Professionals


Report •

#8
Report •

#9
November 11, 2011 at 20:01:45
wtooch,

Those reports appear incomplete, and so far, nothing jumps out as malware.

Please go to VirusTotal:
http://www.virustotal.com/

Use the 'Browse' button to navigate to the location of this file:
C:\Windows\System32\drivers\dfsc.sys

Click on the file

Then, click the 'Open' button.
The file is now displayed in the 'Submit' Box.

Scroll down and click 'Send File', and wait for the results

If you get a message saying: 'File has already been analyzed', click 'Reanalyze file now'

Once scanned, please provide the link to the results page in your reply.

~~~~
Retired - Doin' Dis, Dat, and slapping malware.
Malware Eliminator/Member of UNITE and the
Alliance of Security Analysis Professionals


Report •

#10
November 13, 2011 at 16:45:38
SAYS FILE NOT FOUND...Oops caps..sorry

Report •

#11
November 14, 2011 at 08:09:07
Please enable the viewing of hidden files in Vista, as follows:
http://www.bleepingcomputer.com/tut...

Then, look for the file.

Is it visible now?

~~~~
Retired - Doin' Dis, Dat, and slapping malware.
Malware Eliminator/Member of UNITE and the
Alliance of Security Analysis Professionals


Report •

Ask Question