How do I get rid of IEXPLORE.EXE

Posted 1/10/2009 10:34 AM
#70977
User avatar

justmeobts Member

Date Joined Nov 2016
Total Posts: 1
I'm not very computer savvy, so if there is anyone out there that can help me fix this problem in very easy simple lanuguage PLEASE PLEASE help me.... A computer guy told me it'd cost $125 to get it fixed and I really just don't have that kinda money (recent single mom, no child support-go figure) PLEASE PLEASE PLEASE... I think this IEXPLORE thing is the source of ALL the evil my computer has been throwing at me. For instance i'll get so many pop up screen that it will literaly lock up my computer and the "control alt delete" to close a program won't even close em' out!
Posted 1/10/2009 10:42 AM
#70978
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Hello


One topic will do ;-)








Download: CCleaner
[color=#0000ff>http://www.majorgeeks.com/download4191.html[/url]]http://www.ccleaner.com/[/color]

Once installed, run CCleaner click the Windows tab

Select the following:
Internet Explorer:
Temp Internet
History
Recently Typed URLs
Delete Index.dat files

System:
Empty Recycle Bin
Temporary Files
Memory Dumps
Chkdsk File Fragments
Old Prefetch Data


Next: click Options click the Settings tab
Uncheck: "Only delete files older than 48 hrs.", click Ok


Then click Run Cleaner (bottom right) then Exit

Reboot



Please download Malwarebytes' Anti-Malware:

[color=#0000ff>http://www.spywarefri.dk/downloads1/mbam-setup.exe[/url]



Or here:

http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?tag=mncol;pop&cdlPid=10878968[/color]



to your desktop.



Double-click mbam-setup.exe and follow the prompts to install the program.



At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch




Malwarebytes' Anti-Malware, then click Finish.



If an update is found, it will download and install the latest version.



Please connect all your external hard drive/flash drive before running Malwarebyte



Once the program has loaded, select Perform full scan, then click Scan.



When the scan is complete, click OK, then Show Results to view the results.



Be sure that everything is checked, and click Remove Selected.



When completed, a log will open in Notepad. Please save it to a convenient location.







NB: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.



Please post malwarebyte log

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 1/26/2009 10:58 PM
#71698
User avatar

junkyarddog1300 Member

Date Joined Nov 2016
Total Posts: 4
I have the same problem as justmeobts, and I followed your instructions. Here is my log. Any help would be greatly appreciated.
Malwarebytes' Anti-Malware 1.33
Database version: 1695
Windows 5.1.2600 Service Pack 3

1/26/2009 5:52:21 PM
mbam-log-2009-01-26 (17-51-58).txt

Scan type: Full Scan (C:\|)
Objects scanned: 108249
Time elapsed: 1 hour(s), 8 minute(s), 33 second(s)

Memory Processes Infected: 2
Memory Modules Infected: 11
Registry Keys Infected: 48
Registry Values Infected: 4
Registry Data Items Infected: 5
Folders Infected: 3
Files Infected: 98

Memory Processes Infected:
C:\Documents and Settings\Zach\Application Data\gadcom\gadcom.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\Zach\Application Data\Twain\Twain.exe (Trojan.Agent) -> No action taken.

Memory Modules Infected:
C:\WINDOWS\system32\jqxcdakn.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\mlJAsPgG.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\ligasuta.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\dusazewa.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\nsokqx.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\imfjqs.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\gnjfnp.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\spibhm.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\wtzdzn.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\hgGxVNee.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\gmbevjik.dll (Trojan.Vundo.H) -> No action taken.

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{3f160ead-cdc4-49e5-92bd-d73427b5b6f8} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3f160ead-cdc4-49e5-92bd-d73427b5b6f8} (Trojan.Vundo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{67da3091-a1dd-4e16-bcdd-1c869b6b9794} (Trojan.Vundo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{dc6c0500-6058-4624-87af-db5e1d6ab0c4} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{dc6c0500-6058-4624-87af-db5e1d6ab0c4} (Trojan.Vundo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{c3237286-5052-4694-91b3-927685fcd8b7} (Trojan.Vundo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{f07d93ec-7e37-4193-96f5-d240336c823e} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f07d93ec-7e37-4193-96f5-d240336c823e} (Trojan.Vundo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\hggxvnee (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\bho_myjavacore.mjcore (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\bho_myjavacore.mjcore.1 (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\testcpv6.bho (Trojan.Agent) -> No action taken.
HKEY_CLASSES_ROOT\testcpv6.bho.1 (Trojan.Agent) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{17e44256-51e0-4d46-a0c8-44e80ab4ba5b} (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{2e4a04a1-a24d-45ae-aca4-949778400813} (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{2b96d5cc-c5b5-49a5-a69d-cc0a30f9028c} (Adware.Minibug) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{e0f01490-dcf3-4357-95aa-169a8c2b2190} (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{63334394-3da3-4b29-a041-03535909d361} (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{80ef304a-b1c4-425c-8535-95ab6f1eefb8} (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{ff46f4ab-a85f-487e-b399-3f191ac0fe23} (Trojan.BHO) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d88e1558-7c2d-407a-953a-c044f5607cea} (Trojan.BHO) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c900b400-cdfe-11d3-976a-00e02913a9e0} (Adware.WebHancer) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c68ae9c0-0909-4ddc-b661-c1afb9f59898} (Adware.BookedSpace) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\xpreapp (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\videosoft (Trojan.DNSChanger) -> No action taken.
HKEY_CLASSES_ROOT\AppID\BHO_MyJavaCore.DLL (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\AppID\testCPV6.DLL (Trojan.BHO) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE (Trojan.Downloader) -> No action taken.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\zuzaremeju (Trojan.Vundo.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\gadcom (Trojan.Downloader) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\twain (Trojan.Agent) -> No action taken.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\mljaspgg -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: c:\windows\system32\ligasuta.dll -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\ligasuta.dll -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: system32\ligasuta.dll -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\mljaspgg -> No action taken.

Folders Infected:
C:\Program Files\Webtools (Trojan.Agent) -> No action taken.
C:\Program Files\Mjcore (Trojan.BHO) -> No action taken.
C:\Documents and Settings\Zach\Application Data\gadcom (Trojan.Agent) -> No action taken.

Files Infected:
C:\WINDOWS\system32\mlJAsPgG.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\GgPsAJlm.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\GgPsAJlm.ini2 (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\cbhieigg.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\ggieihbc.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\emxksfvj.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\jvfskxme.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\gimujuri.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\irujumig.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\jeharaya.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\ayarahej.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\jqxcdakn.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\nkadcxqj.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\latibiho.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\ohibital.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\lyhwigyk.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\kygiwhyl.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\mwfmlpex.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\xeplmfwm.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\niyihifi.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\ifihiyin.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\njhyuuqu.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\uquuyhjn.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\osicfbfv.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\vfbfciso.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\pfishlln.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\nllhsifp.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\pmelptgg.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\ggtplemp.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\qiruxeud.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\duexuriq.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\qsywvoyo.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\oyovwysq.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\tagetega.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\agetegat.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\vgfmwlyq.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\qylwmfgv.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\wejuwava.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\avawujew.ini (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\fufakili.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\gmbevjik.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\dusazewa.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\ligasuta.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\nsokqx.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\imfjqs.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\gnjfnp.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\spibhm.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\wtzdzn.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\hgGxVNee.dll (Trojan.Vundo) -> No action taken.
C:\Documents and Settings\Zach\Application Data\gadcom\gadcom.exe (Trojan.Downloader) -> No action taken.
C:\Program Files\Mjcore\Mjcore.dll (Trojan.BHO) -> No action taken.
C:\Program Files\Webtools\webtools.dll (Trojan.BHO) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1100\A0180088.exe (Adware.Webhancer) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1107\A0183203.exe (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1108\A0184430.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1108\A0184431.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184533.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184534.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184535.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184614.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184649.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184668.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1112\A0184739.exe (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1112\A0184740.exe (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184771.EXE (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184834.exe (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184835.EXE (Adware.Agent) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184838.dll (Adware.SurfAccuracy) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184839.exe (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184840.exe (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1117\A0186098.dll (Trojan.Vundo) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1117\A0186099.dll (Trojan.Vundo.H) -> No action taken.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1119\A0187199.EXE (Adware.ISM) -> No action taken.
C:\WINDOWS\system32\prunnet.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\bjdofpng.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\etggmini.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\fkvsvjfr.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\flzptj.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\likebowa.dll (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\jngcvf.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\vklhdety.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\dyebwnvr.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\kryuis.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\byXRjijH.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\wjayxhwt.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\tsuninst.exe (Spyware.TargetSaver) -> No action taken.
C:\WINDOWS\system32\garetuso.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\mouwpmrn.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\xybdbz.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\~.exe (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\spoopdqk.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\naprtagi.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\endoqoxx.dll (Trojan.Vundo) -> No action taken.
C:\Documents and Settings\Zach\Local Settings\Temporary Internet Files\Content.IE5\W9UJWLMV\upd105320[1] (Trojan.Vundo.H) -> No action taken.
C:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\sinodisi.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\jeteroje.dll (Trojan.Vundo) -> No action taken.
C:\Documents and Settings\Zach\Application Data\Twain\Twain.exe (Trojan.Agent) -> No action taken.
Posted 1/26/2009 11:07 PM
#71699
User avatar

junkyarddog1300 Member

Date Joined Nov 2016
Total Posts: 4
Sorry, forgot to post the log after the delete.
Malwarebytes' Anti-Malware 1.33
Database version: 1695
Windows 5.1.2600 Service Pack 3

1/26/2009 6:05:14 PM
mbam-log-2009-01-26 (18-05-14).txt

Scan type: Full Scan (C:\|)
Objects scanned: 108249
Time elapsed: 1 hour(s), 8 minute(s), 33 second(s)

Memory Processes Infected: 2
Memory Modules Infected: 11
Registry Keys Infected: 48
Registry Values Infected: 4
Registry Data Items Infected: 5
Folders Infected: 3
Files Infected: 98

Memory Processes Infected:
C:\Documents and Settings\Zach\Application Data\gadcom\gadcom.exe (Trojan.Downloader) -> Unloaded process successfully.
C:\Documents and Settings\Zach\Application Data\Twain\Twain.exe (Trojan.Agent) -> Unloaded process successfully.

Memory Modules Infected:
C:\WINDOWS\system32\jqxcdakn.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\mlJAsPgG.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\ligasuta.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\dusazewa.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\nsokqx.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\imfjqs.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\gnjfnp.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\spibhm.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\wtzdzn.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\hgGxVNee.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\gmbevjik.dll (Trojan.Vundo.H) -> Delete on reboot.

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3f160ead-cdc4-49e5-92bd-d73427b5b6f8} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3f160ead-cdc4-49e5-92bd-d73427b5b6f8} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{67da3091-a1dd-4e16-bcdd-1c869b6b9794} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dc6c0500-6058-4624-87af-db5e1d6ab0c4} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{dc6c0500-6058-4624-87af-db5e1d6ab0c4} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c3237286-5052-4694-91b3-927685fcd8b7} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f07d93ec-7e37-4193-96f5-d240336c823e} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f07d93ec-7e37-4193-96f5-d240336c823e} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\hggxvnee (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\bho_myjavacore.mjcore (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\bho_myjavacore.mjcore.1 (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\testcpv6.bho (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\testcpv6.bho.1 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{17e44256-51e0-4d46-a0c8-44e80ab4ba5b} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2e4a04a1-a24d-45ae-aca4-949778400813} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2b96d5cc-c5b5-49a5-a69d-cc0a30f9028c} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{e0f01490-dcf3-4357-95aa-169a8c2b2190} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{63334394-3da3-4b29-a041-03535909d361} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{80ef304a-b1c4-425c-8535-95ab6f1eefb8} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{ff46f4ab-a85f-487e-b399-3f191ac0fe23} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d88e1558-7c2d-407a-953a-c044f5607cea} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c900b400-cdfe-11d3-976a-00e02913a9e0} (Adware.WebHancer) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c68ae9c0-0909-4ddc-b661-c1afb9f59898} (Adware.BookedSpace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\xpreapp (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\videosoft (Trojan.DNSChanger) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\BHO_MyJavaCore.DLL (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\testCPV6.DLL (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE (Trojan.Downloader) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\zuzaremeju (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\gadcom (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\twain (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\mljaspgg -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: c:\windows\system32\ligasuta.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\ligasuta.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: system32\ligasuta.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\mljaspgg -> Delete on reboot.

Folders Infected:
C:\Program Files\Webtools (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Mjcore (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\Zach\Application Data\gadcom (Trojan.Agent) -> Quarantined and deleted successfully.

Files Infected:
C:\WINDOWS\system32\mlJAsPgG.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\GgPsAJlm.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\GgPsAJlm.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cbhieigg.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ggieihbc.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\emxksfvj.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jvfskxme.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gimujuri.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\irujumig.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jeharaya.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ayarahej.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jqxcdakn.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\nkadcxqj.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\latibiho.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ohibital.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lyhwigyk.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kygiwhyl.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mwfmlpex.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xeplmfwm.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\niyihifi.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ifihiyin.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\njhyuuqu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uquuyhjn.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\osicfbfv.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vfbfciso.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pfishlln.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nllhsifp.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pmelptgg.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ggtplemp.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qiruxeud.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\duexuriq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qsywvoyo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oyovwysq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tagetega.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\agetegat.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vgfmwlyq.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qylwmfgv.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wejuwava.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\avawujew.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fufakili.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gmbevjik.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\dusazewa.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\ligasuta.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\nsokqx.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\imfjqs.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\gnjfnp.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\spibhm.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\wtzdzn.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\hgGxVNee.dll (Trojan.Vundo) -> Delete on reboot.
C:\Documents and Settings\Zach\Application Data\gadcom\gadcom.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Program Files\Mjcore\Mjcore.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Program Files\Webtools\webtools.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1100\A0180088.exe (Adware.Webhancer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1107\A0183203.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1108\A0184430.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1108\A0184431.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184533.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184534.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184535.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184614.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184649.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184668.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1112\A0184739.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1112\A0184740.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184771.EXE (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184834.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184835.EXE (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184838.dll (Adware.SurfAccuracy) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184839.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184840.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1117\A0186098.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1117\A0186099.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1119\A0187199.EXE (Adware.ISM) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\prunnet.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bjdofpng.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\etggmini.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fkvsvjfr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\flzptj.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\likebowa.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jngcvf.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vklhdety.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dyebwnvr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kryuis.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\byXRjijH.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wjayxhwt.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tsuninst.exe (Spyware.TargetSaver) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\garetuso.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mouwpmrn.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xybdbz.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\~.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\spoopdqk.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\naprtagi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\endoqoxx.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\Zach\Local Settings\Temporary Internet Files\Content.IE5\W9UJWLMV\upd105320[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sinodisi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jeteroje.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\Zach\Application Data\Twain\Twain.exe (Trojan.Agent) -> Quarantined and deleted successfully.
Posted 1/26/2009 11:08 PM
#71700
User avatar

junkyarddog1300 Member

Date Joined Nov 2016
Total Posts: 4
Sorry, forgot to post the log after the delete.
Malwarebytes' Anti-Malware 1.33
Database version: 1695
Windows 5.1.2600 Service Pack 3

1/26/2009 6:05:14 PM
mbam-log-2009-01-26 (18-05-14).txt

Scan type: Full Scan (C:\|)
Objects scanned: 108249
Time elapsed: 1 hour(s), 8 minute(s), 33 second(s)

Memory Processes Infected: 2
Memory Modules Infected: 11
Registry Keys Infected: 48
Registry Values Infected: 4
Registry Data Items Infected: 5
Folders Infected: 3
Files Infected: 98

Memory Processes Infected:
C:\Documents and Settings\Zach\Application Data\gadcom\gadcom.exe (Trojan.Downloader) -> Unloaded process successfully.
C:\Documents and Settings\Zach\Application Data\Twain\Twain.exe (Trojan.Agent) -> Unloaded process successfully.

Memory Modules Infected:
C:\WINDOWS\system32\jqxcdakn.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\mlJAsPgG.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\ligasuta.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\dusazewa.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\nsokqx.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\imfjqs.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\gnjfnp.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\spibhm.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\wtzdzn.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\hgGxVNee.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\gmbevjik.dll (Trojan.Vundo.H) -> Delete on reboot.

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b4c37147-5920-4675-aed4-0f120f3ec09b} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3f160ead-cdc4-49e5-92bd-d73427b5b6f8} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3f160ead-cdc4-49e5-92bd-d73427b5b6f8} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{67da3091-a1dd-4e16-bcdd-1c869b6b9794} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dc6c0500-6058-4624-87af-db5e1d6ab0c4} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{dc6c0500-6058-4624-87af-db5e1d6ab0c4} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c3237286-5052-4694-91b3-927685fcd8b7} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f07d93ec-7e37-4193-96f5-d240336c823e} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f07d93ec-7e37-4193-96f5-d240336c823e} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\hggxvnee (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cd314030-1a37-4e94-9299-f1aa989a62b6} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{77ab5974-55a3-4737-9fd5-b93c64307f78} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\bho_myjavacore.mjcore (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\bho_myjavacore.mjcore.1 (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\testcpv6.bho (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\testcpv6.bho.1 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{17e44256-51e0-4d46-a0c8-44e80ab4ba5b} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2e4a04a1-a24d-45ae-aca4-949778400813} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2b96d5cc-c5b5-49a5-a69d-cc0a30f9028c} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{e0f01490-dcf3-4357-95aa-169a8c2b2190} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{63334394-3da3-4b29-a041-03535909d361} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{80ef304a-b1c4-425c-8535-95ab6f1eefb8} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{ff46f4ab-a85f-487e-b399-3f191ac0fe23} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d88e1558-7c2d-407a-953a-c044f5607cea} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c900b400-cdfe-11d3-976a-00e02913a9e0} (Adware.WebHancer) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c68ae9c0-0909-4ddc-b661-c1afb9f59898} (Adware.BookedSpace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\xpreapp (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\videosoft (Trojan.DNSChanger) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\BHO_MyJavaCore.DLL (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\testCPV6.DLL (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE (Trojan.Downloader) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\zuzaremeju (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\gadcom (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\twain (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\mljaspgg -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: c:\windows\system32\ligasuta.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\ligasuta.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: system32\ligasuta.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\mljaspgg -> Delete on reboot.

Folders Infected:
C:\Program Files\Webtools (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Mjcore (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\Zach\Application Data\gadcom (Trojan.Agent) -> Quarantined and deleted successfully.

Files Infected:
C:\WINDOWS\system32\mlJAsPgG.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\GgPsAJlm.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\GgPsAJlm.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cbhieigg.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ggieihbc.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\emxksfvj.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jvfskxme.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gimujuri.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\irujumig.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jeharaya.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ayarahej.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jqxcdakn.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\nkadcxqj.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\latibiho.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ohibital.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lyhwigyk.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kygiwhyl.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mwfmlpex.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xeplmfwm.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\niyihifi.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ifihiyin.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\njhyuuqu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uquuyhjn.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\osicfbfv.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vfbfciso.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pfishlln.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nllhsifp.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pmelptgg.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ggtplemp.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qiruxeud.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\duexuriq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qsywvoyo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oyovwysq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tagetega.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\agetegat.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vgfmwlyq.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qylwmfgv.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wejuwava.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\avawujew.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fufakili.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gmbevjik.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\dusazewa.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\ligasuta.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\nsokqx.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\imfjqs.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\gnjfnp.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\spibhm.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\wtzdzn.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\hgGxVNee.dll (Trojan.Vundo) -> Delete on reboot.
C:\Documents and Settings\Zach\Application Data\gadcom\gadcom.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Program Files\Mjcore\Mjcore.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Program Files\Webtools\webtools.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1100\A0180088.exe (Adware.Webhancer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1107\A0183203.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1108\A0184430.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1108\A0184431.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184533.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184534.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1109\A0184535.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184614.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184649.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1110\A0184668.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1112\A0184739.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1112\A0184740.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184771.EXE (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184834.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184835.EXE (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184838.dll (Adware.SurfAccuracy) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184839.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1113\A0184840.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1117\A0186098.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1117\A0186099.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6ABB8BB3-066D-450C-9235-42330B90445C}\RP1119\A0187199.EXE (Adware.ISM) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\prunnet.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bjdofpng.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\etggmini.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fkvsvjfr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\flzptj.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\likebowa.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jngcvf.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vklhdety.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dyebwnvr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kryuis.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\byXRjijH.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wjayxhwt.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tsuninst.exe (Spyware.TargetSaver) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\garetuso.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mouwpmrn.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xybdbz.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\~.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\spoopdqk.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\naprtagi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\endoqoxx.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\Zach\Local Settings\Temporary Internet Files\Content.IE5\W9UJWLMV\upd105320[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sinodisi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jeteroje.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\Zach\Application Data\Twain\Twain.exe (Trojan.Agent) -> Quarantined and deleted successfully.
Posted 2/10/2009 2:39 AM
#72270
User avatar

junkyarddog1300 Member

Date Joined Nov 2016
Total Posts: 4
Sorry i forgot to reply, but the issue is resolved. Thank you.
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Monday, April 24, 2017, 5:37 AM (GMT +2)
There are a total of 61,194 posts in 13,463 threads.
In the last 3 days there were 0 new threads and 1 reply posts.

Who's online

This forum has 38,020 registered members. Please welcome our newest member, gobertron.
There are currently no users on-line.
We use cookies to ensure that we give you the best experience on our website. By continuing to browse, we are assuming that you have no objection in accepting cookies. You can change your cookie settings at any time.