Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion GroupsWindows VistaWindows XPWindows MeWindows 98Windows 95Virtual PCInternet ExplorerOutlook ExpressWindows MediaSecurity
Related Topics
MS Server ProductsMS OfficePC HardwareMore Topics ...
Windows Forum / Security / Viruses / July 2008

Tip: Looking for answers? Try searching our database.

Trying to Make Sense of Strange Folder in C:\WINDOWS

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Will - 30 Jun 2008 00:23 GMT
I have a very strange looking folder under my C:\WINDOWS folder, which if it
is not a trojan then it must be some kind of device driver install that went
very bad.   I would like help identifying what it might be.

The folder is named:

   C:\WINDOWS\EFUZEJYDIXC1AZ4D

and it contains copies of many Windows system files.   The contents of this
folder are posted here:

   http://pages.uschw.com/usenet/EFUZEJ-folder/folder-contents.txt

Of special note is a logfile in that folder whose name and contents are
linked here:

   http://pages.uschw.com/usenet/EFUZEJ-folder/sthdae.log

You may want to open that logfile in an editor other than NOTEPAD that can
hand LF only at the end of each line.   Word 2003 opened it fine here.

In that logfile I see attempts to add device drivers, that are failing with
various messages about an invalid pin.   That almost looks like Bluetooth?

What I find most suspicious about this folder is that it copies over so many
critical Windows system files.    Why would any device installation need its
own private copies of those files?

Signature

Will

Reply to this Message
Malke - 30 Jun 2008 12:30 GMT
> I have a very strange looking folder under my C:\WINDOWS folder, which if
> it is not a trojan then it must be some kind of device driver install that
[quoted text clipped - 26 lines]
> critical Windows system files.    Why would any device installation need
> its own private copies of those files?

And what results do you get when you do virus/malware removal scanning?
http://www.elephantboycomputers.com/page2.html#Removing_Malware

Malke
Signature

MS-MVP
Elephant Boy Computers - Don't Panic!
FAQ - http://www.elephantboycomputers.com/#FAQ

Reply to this Message
MARK TURNER - 02 Jul 2008 05:08 GMT
i have vista ultimate 64 bit and have trouble with CA INTERNET SECURITY
SUITE,it is a virus and spyware program from road runner you get free.it is
32 bit and i cannot get the virus protector to work right.i chatted online
with a ca helper and he said i have to upgrade to vista 32 bit.is there
another way to get it to work without upgrading?

mark0325

>I have a very strange looking folder under my C:\WINDOWS folder, which if
>it
[quoted text clipped - 29 lines]
> its
> own private copies of those files?
Reply to this Message
David H. Lipman - 02 Jul 2008 11:33 GMT
From: "MARK TURNER" <rturner011@woh.rr.com>

| i have vista ultimate 64 bit and have trouble with CA INTERNET SECURITY
| SUITE,it is a virus and spyware program from road runner you get free.it is
| 32 bit and i cannot get the virus protector to work right.i chatted online
| with a ca helper and he said i have to upgrade to vista 32 bit.is there
| another way to get it to work without upgrading?

| mark0325

Remove it and replace it with a Win64 compliant AV solution.

Signature

Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.