O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O4 - Startup: Microsoft Office OneNote 2003 Quick Launch.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - HKCU\.\RunOnce: "C:\Program Files\Bell\Security Manager\IdxClnR.exe" O4 - HKCU\.\Run: C:\DOCUME~1\raul\APPLIC~1\UPPLUS~1\owns team.exe O4 - HKCU\.\Run: C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\.\Run: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\.\Run: "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\.\Run: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe O4 - HKCU\.\Run: C:\WINDOWS\system32\ctfmon.exe O4 - HKLM\.\RunOnce: "C:\Program Files\Bell\Security Manager\IdxClnR.exe" O4 - HKLM\.\Run: Rundll32.exe "C:\WINDOWS\system32\tattthgb.dll",s O4 - HKLM\.\Run: "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\.\Run: "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\.\Run: "C:\Program Files\Bell\Security Manager\ZkRunOnceR.exe" O4 - HKLM\.\Run: "C:\Program Files\Bell\Security Manager\Rps.exe" O4 - HKLM\.\Run: "C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe" /AUTORUN
SANDLOT GAMES LIKE FLYFF DOWNLOAD
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - ] C:\Program Files\Google\Gmail Notifier\gnotify.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = I know that I said that HijackThis can't detect hidden Vundo's but I have included it just in case.Ĭ:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exeĬ:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exeĬ:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeĬ:\Program Files\CA\PPRT\bin\ITMRTSVC.exeĬ:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEĬ:\Program Files\Raxco\PerfectDisk\PDAgent.exeĬ:\Program Files\Intel\Wireless\Bin\RegSrvc.exeĬ:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exeĬ:\Program Files\Raxco\PerfectDisk\PDEngine.exeĬ:\Program Files\Synaptics\SynTP\SynTPEnh.exeĬ:\Program Files\Toshiba\Toshiba Applet\thotkey.exeĬ:\Program Files\Synaptics\SynTP\Toshiba.exeĬ:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exeĬ:\Program Files\Intel\Wireless\bin\ZCfgSvc.exeĬ:\Program Files\Intel\Wireless\Bin\ifrmewrk.exeĬ:\Program Files\Microsoft IntelliPoint\point32.exeĬ:\Program Files\Google\Gmail Notifier\gnotify.exeĬ:\Program Files\Bell\Sympatico Security Advisor\SSA.exeĬ:\Program Files\Bell\Security Manager\Rps.exeĬ:\Program Files\Java\jre1.6.0_05\bin\jusched.exeĬ:\Program Files\Common Files\Real\Update_OB\realsched.exeĬ:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exeĬ:\Program Files\Windows Live\Messenger\MsnMsgr.ExeĬ:\Program Files\Google\Google Updater\GoogleUpdater.exeĬ:\Program Files\Metamail Inc\Metamail Tray\Metamail Trust Manager.exeĬ:\PROGRA~1\METAMA~1\METAMA~1\METAMA~2.EXEĬ:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXEĬ:\Program Files\Bell\Sympatico Security Advisor\SSAComHandler.exeĬ:\Program Files\Bell\Security Manager\rpsupdaterR.exeĬ:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exeĬ:\Program Files\Internet Explorer\iexplore.exeĬ:\WINDOWS\system32\SearchProtocolHost.exeĬ:\Program Files\Trend Micro\HijackThis\HijackThis.exe So now, not only do I have Vundo to deal with, but I have these 3 as well. C:\Program Files\Mozilla Firefox\plugins\NPMorpBr.dll ( not-a-virus:) In addition, I ran another AntiSpyware scan (I can't remember which one) and it indicated to me that that these following files are infected (Infection is in bold) I have been doing some research and have found that HijackThis cannot detect it. It it really starting to bother my usage of the computer as it prevents both Mozilla and IE from loading certain sites (Facebook, Google, Ebay, Yahoo among others.). I have tried removing this Trojan via different methods (SuperAntiSpyware, etc) but I have been unsuccesful in removing all traces of it.
0 kommentar(er)
