Posted 16 August 2008 - 02:43 PM
Live Onecare has given two messages of Trojan Downloader. The First one it said it quarantined. The second, Win32/small.IQ, it said it removed. OneCare will not open so I can't see the quarantine folder, I guess. Onecare would not close and the 'report problem to Microsoft' dialog said that WinSSUI.exe would not close properly.
I have gotten dialogs saying program sysvxd.exe is doing wrong. I don't have the message, now. I think it involved ntvdm and 16 bit...
I googled sysvxd and found a bleeping computer post. I printed 'how to use combofix' and started down that instruction. When checking my system version using sysdm.cpl, this url showed in the run list upon typing the 's': sunsource.net/TUPPCP.HTML. I don't recognize it.
It may not be important but I'll mention that when I first saw the dialog saying sysvxd.exe was at doing wrong I tried moving that vile to a folder I made within WINNT called hidebug. I just searched again and the file is also back in WINNT.
I ran hijackthis and can't make any sense of the log files, of coarse. Please Help! ?