Internet Explorer Popup Adware virus driving me crazy, how do i get rid of it

Posted 6/28/2007 10:43 PM
#49738
User avatar

tarunc92 Member

Date Joined Nov 2016
Total Posts: 4
Hi I have been having tourble with a Internet Explorer Popup virus. I use firefox but i want to keep internet explorer installed. <br/>When ever I open firefox, internet explorer windows pop up. I have a pop up blocker running and my main internet browser is <br/>firefox. However I have noticed that in the internet explorer windows, i get antivirus ads. I keep getting a series of ever propogating pop-ups saying that my computer is messed up and I need WinFixer to get rid of the problems. When I close one I get another, then it just says it is going to load the program by itself. The program is not downloaded or installed as of right now. It looks like a have a adware virus installed in my computer. I think it might be hggdcax.dll and jkkji.dll in the WINDOWS/System32 folder. Please take a look at this hijack this report. <br/> <br/>Please help me and tell me what to do with these files. Please explain how to get rid of these viruses. <br/> <br/> <br/>This is my HiJack this log: <br/> <br/>Logfile of Trend Micro HijackThis v2.0.0 (BETA) <br/>Scan saved at 3:16:49 PM, on 6/28/2007 <br/>Platform: Windows XP SP2 (WinNT 5.01.2600) <br/>Boot mode: Normal <br/> <br/>Running processes: <br/>C:\WINDOWS\System32\smss.exe <br/>C:\WINDOWS\system32\winlogon.exe <br/>C:\WINDOWS\system32\services.exe <br/>C:\WINDOWS\system32\lsass.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\WINDOWS\system32\spoolsv.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccProxy.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe <br/>C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe <br/>C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe <br/>C:\WINDOWS\Explorer.EXE <br/>C:\WINDOWS\system32\wscntfy.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccApp.exe <br/>C:\WINDOWS\System32\ezSP_Px.exe <br/>C:\WINDOWS\system32\ctfmon.exe <br/>C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe <br/>C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe <br/>C:\Program Files\Mozilla Firefox\firefox.exe <br/>C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe <br/>C:\Program Files\Messenger\msmsgs.exe <br/>C:\Documents and Settings\Tarun Chaudhry\Desktop\HiJackThis_v2.exe <br/> <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.sony.com/vaiopeople <br/>O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll <br/>O2 - BHO: (no name) - {1005E33B-74DB-4FF6-912E-EEDA3DAE89B9} - C:\WINDOWS\System32\jkkji.dll <br/>O2 - BHO: (no name) - {5ADF3862-9E2E-4ad3-86F7-4510E6550CD0} - C:\WINDOWS\system32\mfnkttri.dll <br/>O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll <br/>O2 - BHO: as dAS - {8A61098D-612B-4EF2-943D-64E920684061} - C:\WINDOWS\system32\hggdcax.dll <br/>O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll <br/>O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll <br/>O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll <br/>O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll <br/>O2 - BHO: (no name) - {E12BFF69-38A7-406e-A8EF-2738107A7831} - C:\WINDOWS\system32\lapyisgu.dll <br/>O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll <br/>O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll <br/>O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll <br/>O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" <br/>O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe <br/>O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe <br/>O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe <br/>O4 - HKLM\..\Run: [GPLv3] rundll32.exe "C:\WINDOWS\system32\cetfqnac.dll",realset <br/>O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe <br/>O4 - HKLM\..\Policies\Explorer\Run: [svchost.exe] C:\WINDOWS\svchost.exe <br/>O4 - HKCU\..\Policies\Explorer\Run: [{54F6D71E-0AE9-1033-0409-040405050001}] "C:\Program Files\Common Files\{54F6D71E-0AE9-1033-0409-040405050001}\Update.exe" mc-110-12-0001032 <br/>O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM') <br/>O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user') <br/>O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html <br/>O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html <br/>O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html <br/>O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 <br/>O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html <br/>O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html <br/>O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll <br/>O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll <br/>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL <br/>O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) <br/>O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) <br/>O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe <br/>O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe <br/>O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople <br/>O16 - DPF: {3DC2E31C-371A-4BD3-9A27-CDF57CE604CF} (MSN Money Charting) - http://moneycentral.msn.com/cabs/pmupd806.exe <br/>O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab <br/>O16 - DPF: {712D42CD-3513-473E-96E8-019C9AD78F1A} - http://moneycentral.msn.com/cabs/pmupdate2.exe <br/>O16 - DPF: {963BE66B-121D-4E6C-BF9F-1A774D9A2E41} - http://moneycentral.msn.com/cabs/pmupdate.exe <br/>O16 - DPF: {B7CF60D7-74FA-4A89-90DC-C56C9239360D} - http://files.blocks.com/SnapSheetInstall/SnapSheetsInstall.cab <br/>O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL <br/>O20 - Winlogon Notify: hggdcax - C:\WINDOWS\SYSTEM32\hggdcax.dll <br/>O20 - Winlogon Notify: jkkji - C:\WINDOWS\System32\jkkji.dll <br/>O20 - Winlogon Notify: winrzf32 - C:\WINDOWS\SYSTEM32\winrzf32.dll <br/>O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll <br/>O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll <br/>O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe <br/>O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe <br/>O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe <br/>O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe <br/>O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe <br/>O23 - Service: COM+ Messages - Unknown owner - C:\WINDOWS\System32\svchosts.exe (file missing) <br/>O23 - Service: DomainService - Unknown owner - C:\WINDOWS\system32\oyudtqjv.exe (file missing) <br/>O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\Sony\Giga Pocket\shwserv.exe <br/>O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe <br/>O23 - Service: Sony SPTI Service for DVE (ICDSPTSV) - Sony Corporation - C:\WINDOWS\system32\IcdSptSv.exe <br/>O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe <br/>O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe <br/>O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe <br/>O23 - Service: PACSPTISVR - Unknown owner - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\PACSPT~1.EXE <br/>O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe <br/>O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe <br/>O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\Sony\Giga Pocket\halsv.exe <br/>O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\Sony\Giga Pocket\RM_SV.exe <br/>O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe <br/>O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe <br/>O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe <br/>O23 - Service: VAIO Entertainment File Import Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe <br/>O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe <br/>O23 - Service: VAIO Entertainment UPnP Client Adapter - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VCSW\VCSW.exe <br/>O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\VMISrv.exe <br/>O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\SV_Httpd.exe <br/>O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\UPnPFramework.exe <br/>O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\VmGateway.exe <br/>O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Video\GPVSvr.exe <br/>O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\SV_Httpd.exe <br/>O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\UPnPFramework.exe
Posted 6/29/2007 5:03 AM
#49750
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Hi tarunc92 :smile: <br/> <br/> <br/> <br/> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Arial; mso-ansi-language: EN-GB">Please download Vundofix<SPAN style="mso-spacerun: yes"> <SPAN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Arial"><SPAN lang=EN-GB style="COLOR: red; mso-ansi-language: EN-GB">[3][color=#000000>ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe</FONT>[/b]<o:p></o:p> <br/> <br/><a target="_blank" href="http://spywareinfo.dk/download/drweb-cureit.exe">[3]<FONT face="Times New Roman"> <o:p></o:p>[/3][/color]

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 7/6/2007 10:36 PM
#50207
User avatar

tarunc92 Member

Date Joined Nov 2016
Total Posts: 4
hi, <br/> When I did the Dr. Web CureiT thing you told me to, my internet stopped working. I uninstalled Windows XP Service pack 2. My internet works now. I noticed the popup dont happen anymore. thank you. However now when I reinstall service pack 2 on my pc, internet does not work. I think i might have deleted something important. I also notice some wrong entries in my hi-jack this log. However, I am not sure if there are viruses or just legimate files. <br/> <br/>Take a look at the logs you requested. <br/> <br/>Hijack This log <br/> <br/>Logfile of Trend Micro HijackThis v2.0.0 (BETA) <br/>Scan saved at 3:31:49 PM, on 7/6/2007 <br/>Platform: Windows XP SP1 (WinNT 5.01.2600) <br/>Boot mode: Normal <br/> <br/>Running processes: <br/>C:\WINDOWS\System32\smss.exe <br/>C:\WINDOWS\system32\winlogon.exe <br/>C:\WINDOWS\system32\services.exe <br/>C:\WINDOWS\system32\lsass.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\WINDOWS\system32\spoolsv.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccProxy.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe <br/>C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe <br/>C:\WINDOWS\Explorer.EXE <br/>C:\WINDOWS\System32\WgaTray.exe <br/>C:\WINDOWS\System32\wuauclt.exe <br/>C:\Program Files\Common Files\Symantec Shared\ccApp.exe <br/>C:\WINDOWS\System32\ezSP_Px.exe <br/>C:\WINDOWS\System32\ctfmon.exe <br/>C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe <br/>C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe <br/>C:\Program Files\Mozilla Firefox\firefox.exe <br/>C:\Documents and Settings\Tarun Chaudhry\Desktop\HiJackThis_v2.exe <br/>C:\Program Files\Messenger\msmsgs.exe <br/> <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sony.com/vaiopeople <br/>R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.sony.com/vaiopeople <br/>O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll <br/>O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll <br/>O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll <br/>O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll <br/>O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll <br/>O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll <br/>O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll <br/>O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll <br/>O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll <br/>O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx <br/>O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" <br/>O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe <br/>O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe <br/>O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe <br/>O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe <br/>O4 - HKLM\..\Policies\Explorer\Run: [svchost.exe] C:\WINDOWS\svchost.exe <br/>O4 - HKCU\..\Policies\Explorer\Run: [{54F6D71E-0AE9-1033-0409-040405050001}] "C:\Program Files\Common Files\{54F6D71E-0AE9-1033-0409-040405050001}\Update.exe" mc-110-12-0001032 <br/>O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM') <br/>O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user') <br/>O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html <br/>O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html <br/>O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html <br/>O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 <br/>O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html <br/>O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html <br/>O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll <br/>O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll <br/>O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\System32\shdocvw.dll <br/>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL <br/>O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm (file missing) <br/>O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm (file missing) <br/>O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE <br/>O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE <br/>O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople <br/>O16 - DPF: {3DC2E31C-371A-4BD3-9A27-CDF57CE604CF} (MSN Money Charting) - http://moneycentral.msn.com/cabs/pmupd806.exe <br/>O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab <br/>O16 - DPF: {712D42CD-3513-473E-96E8-019C9AD78F1A} - http://moneycentral.msn.com/cabs/pmupdate2.exe <br/>O16 - DPF: {963BE66B-121D-4E6C-BF9F-1A774D9A2E41} - http://moneycentral.msn.com/cabs/pmupdate.exe <br/>O16 - DPF: {B7CF60D7-74FA-4A89-90DC-C56C9239360D} - http://files.blocks.com/SnapSheetInstall/SnapSheetsInstall.cab <br/>O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL <br/>O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll <br/>O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll <br/>O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe <br/>O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe <br/>O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe <br/>O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe <br/>O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe <br/>O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\Sony\Giga Pocket\shwserv.exe <br/>O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe <br/>O23 - Service: Sony SPTI Service for DVE (ICDSPTSV) - Sony Corporation - C:\WINDOWS\system32\IcdSptSv.exe <br/>O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe <br/>O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe <br/>O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe <br/>O23 - Service: PACSPTISVR - Unknown owner - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\PACSPT~1.EXE <br/>O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe <br/>O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe <br/>O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\Sony\Giga Pocket\halsv.exe <br/>O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\Sony\Giga Pocket\RM_SV.exe <br/>O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe <br/>O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe <br/>O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe <br/>O23 - Service: VAIO Entertainment File Import Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe <br/>O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe <br/>O23 - Service: VAIO Entertainment UPnP Client Adapter - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VCSW\VCSW.exe <br/>O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\VMISrv.exe <br/>O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\SV_Httpd.exe <br/>O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\VmGateway.exe <br/>O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Video\GPVSvr.exe <br/>O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\vaio media integrated server\Platform\SV_Httpd.exe <br/> <br/>---------------------------------------------------------------------------------------------------------------------------------------------------------------------- <br/> <br/> <br/> <br/> <br/> <br/>Vundo Fix log: <br/> <br/> <br/>VundoFix V6.5.1 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 4:29:22 PM 6/28/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/>C:\windows\system32\ajvviupf.dll <br/>C:\windows\system32\algklnxa.dll <br/>C:\windows\system32\avclqvww.dll <br/>C:\windows\system32\bdeeg.ini <br/>C:\windows\system32\bgwpicfc.ini <br/>C:\windows\system32\blflxluu.dll <br/>C:\windows\system32\bmkcatop.exe <br/>C:\windows\system32\buyrjiwy.ini <br/>C:\windows\system32\byxxvsp.dll <br/>C:\windows\system32\canqftec.ini <br/>C:\windows\system32\cetfqnac.dll <br/>C:\windows\system32\cfcipwgb.dll <br/>C:\windows\system32\ckftrdps.dll <br/>C:\windows\system32\cpuyrarg.dll <br/>C:\windows\system32\eaxarrkn.ini <br/>C:\windows\system32\eeuikgdh.exe <br/>C:\windows\system32\egjfktcg.ini <br/>C:\windows\system32\erqwkctp.dll <br/>C:\windows\system32\fhcclknb.dll <br/>C:\windows\system32\fkiynsgy.dll <br/>C:\windows\system32\gctkfjge.dll <br/>C:\windows\system32\geedb.dll <br/>C:\windows\system32\gqwkxtvg.dll <br/>C:\windows\system32\graryupc.ini <br/>C:\windows\system32\gvtxkwqg.ini <br/>C:\windows\system32\hggdbya.dll <br/>C:\WINDOWS\system32\hggdcax.dll <br/>C:\windows\system32\hibexvbs.dll <br/>C:\windows\system32\idjdwhnv.dll <br/>C:\windows\system32\iiseorfp.ini <br/>C:\windows\system32\ijkkj.bak1 <br/>C:\windows\system32\ijkkj.bak2 <br/>C:\windows\system32\ijkkj.ini <br/>C:\windows\system32\ijkkj.ini2 <br/>C:\windows\system32\ijkkj.tmp <br/>C:\windows\system32\jjaqvjxy.ini <br/>C:\WINDOWS\System32\jkkji.dll <br/>C:\windows\system32\jktmgodx.dll <br/>C:\windows\system32\knleqxsk.dll <br/>C:\WINDOWS\system32\lapyisgu.dll <br/>C:\WINDOWS\system32\mfnkttri.dll <br/>C:\windows\system32\nkrraxae.dll <br/>C:\windows\system32\oaqahmav.ini <br/>C:\windows\system32\oautgcvr.ini <br/>C:\windows\system32\okbthipk.dll <br/>C:\windows\system32\ossooxib.dll <br/>C:\WINDOWS\system32\paitvbpy.dll <br/>C:\windows\system32\pcdxmcck.dll <br/>C:\windows\system32\pfroesii.dll <br/>C:\windows\system32\pnnkmsna.dll <br/>C:\windows\system32\pnsodqlm.dll <br/>C:\windows\system32\ptckwqre.ini <br/>C:\windows\system32\qatsqedy.dll <br/>C:\windows\system32\qommllk.dll <br/>C:\windows\system32\qrutv.ini <br/>C:\windows\system32\rvcgtuao.dll <br/>C:\windows\system32\spdrtfkc.ini <br/>C:\windows\system32\tvxpjuhx.dll <br/>C:\windows\system32\vamhaqao.dll <br/>C:\windows\system32\vcvvxqgy.dll <br/>C:\windows\system32\vnhwdjdi.ini <br/>C:\windows\system32\vturq.dll <br/>C:\windows\system32\wwvqlcva.ini <br/>C:\windows\system32\ydeqstaq.ini <br/>C:\windows\system32\ygqxvvcv.ini <br/>C:\windows\system32\ygsnyikf.ini <br/>C:\windows\system32\ypbvtiap.ini <br/>C:\windows\system32\ywijryub.dll <br/>C:\windows\system32\yxjvqajj.dll <br/> <br/>Beginning removal... <br/> <br/> Attempting to delete C:\windows\system32\ajvviupf.dll <br/>C:\windows\system32\ajvviupf.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\algklnxa.dll <br/>C:\windows\system32\algklnxa.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\avclqvww.dll <br/>C:\windows\system32\avclqvww.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\bdeeg.ini <br/>C:\windows\system32\bdeeg.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\bgwpicfc.ini <br/>C:\windows\system32\bgwpicfc.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\blflxluu.dll <br/>C:\windows\system32\blflxluu.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\bmkcatop.exe <br/>C:\windows\system32\bmkcatop.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\buyrjiwy.ini <br/>C:\windows\system32\buyrjiwy.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\byxxvsp.dll <br/>C:\windows\system32\byxxvsp.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\canqftec.ini <br/>C:\windows\system32\canqftec.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\cetfqnac.dll <br/>C:\windows\system32\cetfqnac.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\cfcipwgb.dll <br/>C:\windows\system32\cfcipwgb.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ckftrdps.dll <br/>C:\windows\system32\ckftrdps.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\cpuyrarg.dll <br/>C:\windows\system32\cpuyrarg.dll Could not be deleted. <br/> <br/> Attempting to delete C:\windows\system32\eaxarrkn.ini <br/>C:\windows\system32\eaxarrkn.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\eeuikgdh.exe <br/>C:\windows\system32\eeuikgdh.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\egjfktcg.ini <br/>C:\windows\system32\egjfktcg.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\erqwkctp.dll <br/>C:\windows\system32\erqwkctp.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\fhcclknb.dll <br/>C:\windows\system32\fhcclknb.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\fkiynsgy.dll <br/>C:\windows\system32\fkiynsgy.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\gctkfjge.dll <br/>C:\windows\system32\gctkfjge.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\geedb.dll <br/>C:\windows\system32\geedb.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\gqwkxtvg.dll <br/>C:\windows\system32\gqwkxtvg.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\graryupc.ini <br/>C:\windows\system32\graryupc.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\gvtxkwqg.ini <br/>C:\windows\system32\gvtxkwqg.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\hggdbya.dll <br/>C:\windows\system32\hggdbya.dll Has been deleted! <br/> <br/> Attempting to delete C:\WINDOWS\system32\hggdcax.dll <br/>C:\WINDOWS\system32\hggdcax.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\hibexvbs.dll <br/>C:\windows\system32\hibexvbs.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\idjdwhnv.dll <br/>C:\windows\system32\idjdwhnv.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\iiseorfp.ini <br/>C:\windows\system32\iiseorfp.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ijkkj.bak1 <br/>C:\windows\system32\ijkkj.bak1 Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ijkkj.bak2 <br/>C:\windows\system32\ijkkj.bak2 Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ijkkj.ini <br/>C:\windows\system32\ijkkj.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ijkkj.ini2 <br/>C:\windows\system32\ijkkj.ini2 Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ijkkj.tmp <br/>C:\windows\system32\ijkkj.tmp Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\jjaqvjxy.ini <br/>C:\windows\system32\jjaqvjxy.ini Has been deleted! <br/> <br/> Attempting to delete C:\WINDOWS\System32\jkkji.dll <br/>C:\WINDOWS\System32\jkkji.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\jktmgodx.dll <br/>C:\windows\system32\jktmgodx.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\knleqxsk.dll <br/>C:\windows\system32\knleqxsk.dll Has been deleted! <br/> <br/> Attempting to delete C:\WINDOWS\system32\lapyisgu.dll <br/>C:\WINDOWS\system32\lapyisgu.dll Has been deleted! <br/> <br/> Attempting to delete C:\WINDOWS\system32\mfnkttri.dll <br/>C:\WINDOWS\system32\mfnkttri.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\nkrraxae.dll <br/>C:\windows\system32\nkrraxae.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\oaqahmav.ini <br/>C:\windows\system32\oaqahmav.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\oautgcvr.ini <br/>C:\windows\system32\oautgcvr.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\okbthipk.dll <br/>C:\windows\system32\okbthipk.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ossooxib.dll <br/>C:\windows\system32\ossooxib.dll Has been deleted! <br/> <br/> Attempting to delete C:\WINDOWS\system32\paitvbpy.dll <br/>C:\WINDOWS\system32\paitvbpy.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\pcdxmcck.dll <br/>C:\windows\system32\pcdxmcck.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\pfroesii.dll <br/>C:\windows\system32\pfroesii.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\pnnkmsna.dll <br/>C:\windows\system32\pnnkmsna.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\pnsodqlm.dll <br/>C:\windows\system32\pnsodqlm.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ptckwqre.ini <br/>C:\windows\system32\ptckwqre.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\qatsqedy.dll <br/>C:\windows\system32\qatsqedy.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\qommllk.dll <br/>C:\windows\system32\qommllk.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\qrutv.ini <br/>C:\windows\system32\qrutv.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\rvcgtuao.dll <br/>C:\windows\system32\rvcgtuao.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\spdrtfkc.ini <br/>C:\windows\system32\spdrtfkc.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\tvxpjuhx.dll <br/>C:\windows\system32\tvxpjuhx.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\vamhaqao.dll <br/>C:\windows\system32\vamhaqao.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\vcvvxqgy.dll <br/>C:\windows\system32\vcvvxqgy.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\vnhwdjdi.ini <br/>C:\windows\system32\vnhwdjdi.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\vturq.dll <br/>C:\windows\system32\vturq.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\wwvqlcva.ini <br/>C:\windows\system32\wwvqlcva.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ydeqstaq.ini <br/>C:\windows\system32\ydeqstaq.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ygqxvvcv.ini <br/>C:\windows\system32\ygqxvvcv.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ygsnyikf.ini <br/>C:\windows\system32\ygsnyikf.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ypbvtiap.ini <br/>C:\windows\system32\ypbvtiap.ini Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ywijryub.dll <br/>C:\windows\system32\ywijryub.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\yxjvqajj.dll <br/>C:\windows\system32\yxjvqajj.dll Has been deleted! <br/> <br/>Performing Repairs to the registry. <br/>Done! <br/> <br/>VundoFix V6.5.1 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 4:45:50 PM 6/28/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/>No infected files were found. <br/> <br/> <br/>VundoFix V6.5.4 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 10:06:56 PM 7/4/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/>C:\windows\system32\bojrdtdo.exe <br/>C:\windows\system32\ifjhstot.exe <br/>C:\windows\system32\iifcbaw.dll <br/>C:\windows\system32\iwbglntn.exe <br/>C:\windows\system32\jfiehbmh.exe <br/>C:\windows\system32\jnldefiy.exe <br/>C:\windows\system32\kfybqwqa.exe <br/>C:\windows\system32\mvscyjsf.exe <br/>C:\windows\system32\qnfhydvo.exe <br/>C:\windows\system32\ugxhxuqh.exe <br/>C:\windows\system32\yvolifhd.exe <br/> <br/>Beginning removal... <br/> <br/> Attempting to delete C:\windows\system32\bojrdtdo.exe <br/>C:\windows\system32\bojrdtdo.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ifjhstot.exe <br/>C:\windows\system32\ifjhstot.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\iifcbaw.dll <br/>C:\windows\system32\iifcbaw.dll Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\iwbglntn.exe <br/>C:\windows\system32\iwbglntn.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\jfiehbmh.exe <br/>C:\windows\system32\jfiehbmh.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\jnldefiy.exe <br/>C:\windows\system32\jnldefiy.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\kfybqwqa.exe <br/>C:\windows\system32\kfybqwqa.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\mvscyjsf.exe <br/>C:\windows\system32\mvscyjsf.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\qnfhydvo.exe <br/>C:\windows\system32\qnfhydvo.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\ugxhxuqh.exe <br/>C:\windows\system32\ugxhxuqh.exe Has been deleted! <br/> <br/> Attempting to delete C:\windows\system32\yvolifhd.exe <br/>C:\windows\system32\yvolifhd.exe Has been deleted! <br/> <br/>Performing Repairs to the registry. <br/>Done! <br/> <br/>VundoFix V6.5.4 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 10:20:15 PM 7/4/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/> <br/>VundoFix V6.5.4 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 2:44:31 PM 7/5/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/>No infected files were found. <br/> <br/> <br/>VundoFix V6.5.4 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 7:01:19 PM 7/5/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/>No infected files were found. <br/> <br/> <br/>VundoFix V6.5.4 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 10:47:24 PM 7/5/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/> <br/>VundoFix V6.5.4 <br/> <br/>Checking Java version... <br/> <br/>Java version is 1.4.2.1 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.4.2.5 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.4 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Java version is 1.5.0.7 <br/>Old versions of java are exploitable and should be removed. <br/> <br/>Scan started at 2:33:41 PM 7/6/2007 <br/> <br/>Listing files found while scanning.... <br/> <br/>No infected files were found. <br/> <br/> <br/>---------------------------------------------------------------------------------------------------------------------------------------------------------------------- <br/> <br/>Dr Web log: <br/> <br/> <br/>svchost.exe;C:\Program Files\Common Files;Adware.Akella;Deleted.; <br/>Yazzle1162OinAdmin.exe~;C:\Program Files\Common Files;Adware.ClickSpring;Deleted.; <br/>SUPER.exe;C:\Program Files\eRightSoft\SUPER;Probably DLOADER.Trojan;Will be deleted after reboot.; <br/>services.dll;C:\RECYCLER\S-1-5-18\Dc1;Trojan.DownLoader.14123;Deleted.; <br/>Update.exe;C:\RECYCLER\S-1-5-18\Dc1;Trojan.DownLoader.14336;Deleted.; <br/>system.dll;C:\RECYCLER\S-1-5-18\Dc2;Adware.Macfa;Deleted.; <br/>Update.exe;C:\RECYCLER\S-1-5-18\Dc2;Adware.Macfa;Deleted.; <br/>system.dll;C:\RECYCLER\S-1-5-18\Dc3;Adware.Macfa;Deleted.; <br/>system.dll;C:\RECYCLER\S-1-5-18\Dc4;Adware.Macfa;Deleted.; <br/>Update.exe;C:\RECYCLER\S-1-5-18\Dc4;Adware.Macfa;Deleted.; <br/>system.dll;C:\RECYCLER\S-1-5-18\Dc5;Adware.Macfa;Deleted.; <br/>A0126208.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP705;Trojan.Virtumod;Deleted.; <br/>A0126616.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP705;Adware.Akella;Deleted.; <br/>A0126749.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP706;Adware.Akella;Deleted.; <br/>A0126754.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP706;Adware.Akella;Deleted.; <br/>A0126756.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP706;Trojan.Virtumod;Deleted.; <br/>A0126757.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP706;Trojan.Virtumod;Deleted.; <br/>A0126782.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP706;Adware.Akella;Deleted.; <br/>A0126833.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP707;Trojan.Virtumod;Deleted.; <br/>A0126834.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP707;Trojan.Virtumod;Deleted.; <br/>A0126853.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP707;Adware.Akella;Deleted.; <br/>A0126857.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP707;Trojan.Virtumod;Deleted.; <br/>A0126858.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP707;Trojan.Virtumod;Deleted.; <br/>A0126862.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP707;Adware.Akella;Deleted.; <br/>A0126870.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP708;Trojan.Virtumod;Deleted.; <br/>A0126876.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP708;Adware.Akella;Deleted.; <br/>A0126879.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP709;Trojan.Virtumod;Deleted.; <br/>A0126880.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP710;Adware.Crew;Deleted.; <br/>A0126881.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP710;Trojan.Virtumod;Deleted.; <br/>A0126882.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP710;Trojan.Virtumod;Deleted.; <br/>A0126883.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP710;Trojan.Virtumod;Deleted.; <br/>A0126884.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP710;Adware.Akella;Deleted.; <br/>A0126889.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP710;Trojan.Virtumod;Deleted.; <br/>A0126901.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP710;Trojan.Virtumod;Deleted.; <br/>A0127918.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP711;Trojan.Virtumod;Deleted.; <br/>A0127919.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP711;Program.HomeKeylog;Deleted.; <br/>A0127920.Dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP711;Program.FamKeylog;Deleted.; <br/>A0127964.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP712;Trojan.Virtumod;Deleted.; <br/>A0128983.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP712;Trojan.Virtumod;Deleted.; <br/>A0129007.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP712;Trojan.Virtumod;Deleted.; <br/>A0129012.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP712;Trojan.Virtumod;Deleted.; <br/>A0129013.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP712;Trojan.Virtumod;Deleted.; <br/>A0129236.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP712;Trojan.Virtumod;Deleted.; <br/>A0129245.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP713;Trojan.Virtumod;Deleted.; <br/>A0129246.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP713;Trojan.Virtumod;Deleted.; <br/>A0130259.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP713;Trojan.Virtumod;Deleted.; <br/>A0131259.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP713;Trojan.Virtumod;Deleted.; <br/>A0131260.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP713;Trojan.Virtumod;Deleted.; <br/>A0131340.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131341.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131408.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131409.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131410.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131425.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131470.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131496.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131516.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131522.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP714;Trojan.Virtumod;Deleted.; <br/>A0131533.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP715;Trojan.Virtumod;Deleted.; <br/>A0131539.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP715;Trojan.Virtumod;Deleted.; <br/>A0131555.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131569.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131590.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Probably DLOADER.Trojan;; <br/>A0131595.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131596.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131597.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131600.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131601.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.LowZones.233;Deleted.; <br/>A0131603.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131604.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131605.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131606.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131608.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.LowZones.233;Deleted.; <br/>A0131610.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131611.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131612.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131613.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131614.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131615.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131617.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131618.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131619.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131620.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131624.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131625.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131626.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131627.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131628.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131629.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131632.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131633.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131634.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131635.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131636.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131637.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131639.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131640.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131642.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131644.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131645.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131646.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131648.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131653.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131654.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131655.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Trojan.Virtumod;Deleted.; <br/>A0131660.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP716;Tool.Prockill;Deleted.; <br/>A0131698.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP717;Tool.Prockill;Deleted.; <br/>A0132160.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132161.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132162.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132163.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132164.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132165.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132166.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132167.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132168.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0132169.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.EzulaAd;Deleted.; <br/>A0133173.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.DownLoader.25873;Deleted.; <br/>A0133178.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.DownLoader.25873;Deleted.; <br/>A0133197.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Trojan.DownLoader.25873;Deleted.; <br/>A0133199.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Tool.Dreampack;Deleted.; <br/>A0133200.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Probably BACKDOOR.Trojan;; <br/>A0133209.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;BackDoor.ColdFushion.19;Deleted.; <br/>A0133285.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP722;Adware.Akella;Deleted.; <br/>A0133306.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Probably DLOADER.Trojan;Deleted.; <br/>A0133343.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Trojan.DownLoader.14123;Deleted.; <br/>A0133344.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Trojan.DownLoader.14336;Deleted.; <br/>A0133345.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>A0133346.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>A0133347.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>A0133348.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>A0133349.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>A0133350.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>A0133351.dll;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>A0133352.exe;C:\System Volume Information\_restore{549DE6A1-CCD3-45E9-A3FB-BD70F79FB4CC}\RP723;Adware.Macfa;Deleted.; <br/>ajvviupf.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>algklnxa.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>avclqvww.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>blflxluu.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>bmkcatop.exe.bad;C:\VundoFix Backups;Trojan.LowZones.233;Deleted.; <br/>bojrdtdo.exe.bad;C:\VundoFix Backups;Trojan.EzulaAd;Deleted.; <br/>byxxvsp.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>cetfqnac.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>cfcipwgb.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>ckftrdps.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>cpuyrarg.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>eeuikgdh.exe.bad;C:\VundoFix Backups;Trojan.LowZones.233;Deleted.; <br/>erqwkctp.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>fhcclknb.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>fkiynsgy.dll.bad;C:\VundoFix Backups;Trojan.Virtumod;Deleted.; <br/>mgrs.exe;C:\WINDOWS;Trojan.DownLoader.25873;Deleted.; <br/>drvjem.dll;C:\WINDOWS\system32;Trojan.Fakealert.249;Deleted.; <br/>hmcrcgqe.dll;C:\WINDOWS\system32;Adware.Crew;Deleted.; <br/>rgilpqoh.exe;C:\WINDOWS\system32;Trojan.Click.2799;Deleted.; <br/>sysmon32.exe;C:\WINDOWS\system32;Trojan.DownLoader.23031;Deleted.; <br/>unqctdpw.exe;C:\WINDOWS\system32;Trojan.Click.2799;Deleted.; <br/>unsvchosts.exe;C:\WINDOWS\system32;Trojan.Spambot;Deleted.; <br/>winsys64.exe;C:\WINDOWS\system32;Trojan.DownLoader.23031;Deleted.; <br/>win3B8.tmp.exe;C:\WINDOWS\Temp;Trojan.DownLoader.20139;Deleted.; <br/>win67D.tmp.exe;C:\WINDOWS\Temp;Trojan.DownLoader.24028;Deleted.; <br/>winC4.tmp.exe;C:\WINDOWS\Temp;Trojan.Mezzia;Deleted.; <br/>winC8.tmp.exe;C:\WINDOWS\Temp;Adware.Akella;Deleted.; <br/>winCA.tmp.exe;C:\WINDOWS\Temp;Trojan.DownLoader.22968;Deleted.; <br/>winF48.tmp.exe;C:\WINDOWS\Temp;Trojan.DownLoader.25873;Deleted.; <br/>winF4E.tmp.exe;C:\WINDOWS\Temp;Trojan.Mezzia;Deleted.; <br/> <br/>---------------------------------------------------------------------------------------------------------------------------------------------------------------------- <br/> <br/>I still think my computer is infected but i am not sure.
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Saturday, December 10, 2016, 7:57 AM (GMT +1)
There are a total of 61,163 posts in 13,450 threads.
In the last 3 days there were 1 new threads and 3 reply posts.

Who's online

This forum has 37,969 registered members. Please welcome our newest member, Heisenberg.
There are currently no users on-line.