[Closed] AV protection problem?
- Thread starter antweezy
- Start date
- Status
C:\ProgramData\qykuat\spoof.avi Win32/Agent.SWD trojan
C:\Qoobox\Quarantine\C\Program Files (x86)\Yontoo Layers Runtime\YontooIEClient.dll.vir a variant of Win32/Adware.Yontoo.A application
C:\Qoobox\Quarantine\C\ProgramData\Tarma Installer\{2E1037EA-038A-425F-86B9-6CD19B8497E9}\_Setupx.dll.vir a variant of Win32/Adware.Yontoo.B application
C:\Qoobox\Quarantine\C\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll.vir a variant of Win32/Adware.Yontoo.B application
C:\Qoobox\Quarantine\C\Users\Mr Roboto\AppData\Roaming\firefox.exe.vir Win32/Adware.WinAntiVirus.AD application
C:\Qoobox\Quarantine\C\Users\Mr Roboto\AppData\Roaming\r000uccS1ib3\AV Protection 2011v121.exe.vir Win32/Adware.WinAntiVirus.AD application
C:\Qoobox\Quarantine\C\Windows\System32\consrv.dll.vir Win64/Sirefef.E trojan
C:\Qoobox\Quarantine\C\Windows\SysWOW64\AV Protection 2011v121.exe.vir Win32/Adware.WinAntiVirus.AD application
C:\Users\All Users\qykuat\spoof.avi Win32/Agent.SWD trojan
C:\Windows\system64\consrv.dll Win64/Sirefef.E trojan
C:\_OTM\MovedFiles\12012011_084200\C_Users\Mr Roboto\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\773490-5eab2bdc a variant of Win32/Kryptik.WFA trojan
Operating memory a variant of Win32/Sirefef.DN trojan
C:\Qoobox\Quarantine\C\Program Files (x86)\Yontoo Layers Runtime\YontooIEClient.dll.vir a variant of Win32/Adware.Yontoo.A application
C:\Qoobox\Quarantine\C\ProgramData\Tarma Installer\{2E1037EA-038A-425F-86B9-6CD19B8497E9}\_Setupx.dll.vir a variant of Win32/Adware.Yontoo.B application
C:\Qoobox\Quarantine\C\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll.vir a variant of Win32/Adware.Yontoo.B application
C:\Qoobox\Quarantine\C\Users\Mr Roboto\AppData\Roaming\firefox.exe.vir Win32/Adware.WinAntiVirus.AD application
C:\Qoobox\Quarantine\C\Users\Mr Roboto\AppData\Roaming\r000uccS1ib3\AV Protection 2011v121.exe.vir Win32/Adware.WinAntiVirus.AD application
C:\Qoobox\Quarantine\C\Windows\System32\consrv.dll.vir Win64/Sirefef.E trojan
C:\Qoobox\Quarantine\C\Windows\SysWOW64\AV Protection 2011v121.exe.vir Win32/Adware.WinAntiVirus.AD application
C:\Users\All Users\qykuat\spoof.avi Win32/Agent.SWD trojan
C:\Windows\system64\consrv.dll Win64/Sirefef.E trojan
C:\_OTM\MovedFiles\12012011_084200\C_Users\Mr Roboto\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\773490-5eab2bdc a variant of Win32/Kryptik.WFA trojan
Operating memory a variant of Win32/Sirefef.DN trojan
Bobbye
Posts: 16,313 +36
You are continuing to get active malware. You also have this: Operating memory a variant of Win32/Sirefef.DN trojan
We have removed extensive files from the system. At this point, I think your heavy use of file sharing and lack of security has left the system too vulnerable to clean.
I am recommending that you do a reformat and reinstall of the operating system. Assume that the system has been compromised. Change all of your passwords and monitor any online banking or other financial transactions.
You will find excellent reformat/reinstall instructions here:
http://www.tech-101.com/support/ind...and-repair-xp-vista-7/page__p__5329#entry5329
We have removed extensive files from the system. At this point, I think your heavy use of file sharing and lack of security has left the system too vulnerable to clean.
I am recommending that you do a reformat and reinstall of the operating system. Assume that the system has been compromised. Change all of your passwords and monitor any online banking or other financial transactions.
You will find excellent reformat/reinstall instructions here:
http://www.tech-101.com/support/ind...and-repair-xp-vista-7/page__p__5329#entry5329
- Status
Similar threads
Latest posts
-
Ryzen 7 5800X3D vs. Ryzen 7 7800X3D, Ryzen 9 7900X3D and 7950X3D- Lew Zealand replied
-
What should i do?- bruno167573 replied
-
Researchers have unlocked the "Holy Grail" of memory technology- Shawn Knight replied
-
AMD Radeon RX 5700 XT Revisit: How Does It Compare Against the 7700 XT?- i like foxes replied
