Home > Trojan Horse > Trojan Horse BackDoor.Generic10.AKBU

Trojan Horse BackDoor.Generic10.AKBU

Live\MsgPlusLive1.dll (Messenger Plus! If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.On the Scanner tab:Make sure the "Perform Quick Scan" option is Sent over from Your Tech [Solved] Started by dolface755 , Feb 06 2009 11:37 AM Prev Page 2 of 3 1 2 3 Next This topic is locked #16 dolface755 Posted Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] USER32.dll!TrackPopupMenuEx 77D9CAFE 5 Bytes JMP 28004EC0 C:\Program Files\Messenger Plus! this contact form

Run my fix and let me see the logs. However I don't think I should assume that my computer is clean now just like it wasn't 2 days ago. The HJT log file is included here for your consideration. I wouldn't be too quick to reformat.

You can only upload a photo (png, jpg, jpeg) or a video (3gp, 3gpp, mp4, mov, avi, mpg, mpeg, rm). I close my topics if you have not replied in 5 days. Several functions may not work. Lets do this to cover another possibility.

Name: Instant Wireless PCI Card V2.7 PNP Device ID: PCI\VEN_14E4&DEV_4301&SUBSYS_43011737&REV_01\4&3B1CAF2B&0&00F0 Service: WMP11V27 . Broni, I have deleted Lavasoft and ran the aswMBR scan and the Bootkit Remover. Tried many different ways but unfortunately I can't get malware bytes to update/install right now. Live\MsgPlusLive1.dll (Messenger Plus!

The scan will begin and "Scan in progress" will show at the top. scan completed successfullyhidden files: 0**************************************************************************.--------------------- DLLs Loaded Under Running Processes ---------------------- - - - - - - > 'winlogon.exe'(676)c:\windows\system32\Ati2evxx.dll.------------------------ Other Running Processes ------------------------.c:\windows\system32\ati2evxx.exec:\windows\system32\ati2evxx.exec:\windows\system32\LEXBCES.EXEc:\windows\system32\LEXPPS.EXEc:\program files\Java\jre6\bin\jqs.exec:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEc:\program files\AVG\AVG8\avgrsx.exec:\progra~1\AVG\AVG8\avgnsx.exec:\program files\AVG\AVG8\avgcsrvx.exec:\windows\system32\devldr32.exe.**************************************************************************.Completion time: 2009-02-22 Log in or Sign up Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware Removal > Computer problem? Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] USER32.dll!MessageBoxIndirectW 77D960B7 5 Bytes JMP 28006230 C:\Program Files\Messenger Plus!

Possible virus Help would be gr8tly appreciated Started by cis87, Feb 09 2009 06:48 PM This topic is locked 12 replies to this topic #1 cis87 cis87 Member Full Member 14 Your file is queued in position: ___. If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. This will especially help you when your computer is off line.Download SDFix and save it to your Desktop.Double click SDFix.exe and it will extract the files to %systemdrive%(Drive that contains the

  • uStart Page = hxxp://hk.yahoo.com/ uSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=pavilion&pf=desktop uSearch Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=pavilion&pf=desktop mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=pavilion&pf=desktop uSearchURL,(Default) = hxxp://www.google.com/keyword/%s mSearchAssistant = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=pavilion&pf=desktop BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common
  • Live\MsgPlusLive1.dll (Messenger Plus!
  • Click on View Scan Report.You will see a list of infected items there.
  • Proud graduate of TC/WTT Classroom Back to top #5 charliebeth charliebeth Authentic Member Authentic Member 82 posts Posted 21 May 2008 - 11:27 AM Thanks for responding to my request
  • Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] ADVAPI32.dll!CryptDecrypt 77DEA7B1 2 Bytes JMP 28001060 C:\Program Files\Messenger Plus!
  • This tool MUST be run from the executable. (.exe) 2.

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] ADVAPI32.dll!CryptDecrypt 77DEA7B1 2 Bytes JMP 28001060 C:\Program Files\Messenger Plus! This tool MUST be run from the executable. (.exe) 2. Trending Now Dafne Keen Paula Patton Dallas Mavericks Howard Stern Conor McGregor Norton Antivirus Eugenio Derbez Mortgage Calculator Roman Reigns Health Insurance Quotes Answers Relevance Rating Newest Oldest Best Answer: Hello, Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] WININET.dll!HttpOpenRequestA 771C4AC5 5 Bytes JMP 2800A2C0 C:\Program Files\Messenger Plus!

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] kernel32.dll!OutputDebugStringW 7C85A215 5 Bytes JMP 28001FB0 C:\Program Files\Messenger Plus! weblink Join the community here. Jump to content Sign In Create Account Search Advanced Search section: This topic Forums Members Help Files Calendar View New Content Forum Rules BleepingComputer.com Forums Members Tutorials Startup List Join over 733,556 other people just like you!

Adam Smith Glasgow, 1760 Back to top #4 cis87 cis87 Member Full Member 14 posts Posted 15 February 2009 - 02:44 PM Thank you very much for the assisstance I am With Admin Rights (Right click, choose "Run as Administrator") Right click hijackthis.exe Run as Administrator (press any key as the blue screen indicates, then: "copy/paste" a new HijackThis log file into Yesterday AVG pointed out that cii.dll file was infected by Trojan Horse BackDoor.Generic10.AKBU virus which is located in windows/system32 folder. navigate here Thank you for your help! _______________ This is what was written on the topic: " Hello, 2 days ago, I decided to run a regular virus

google still behaving strangely e.t.c When i restarted the computer it took a while to get started and it said it had recovered from a serious error. Your mistakes during cleaning process may have very serious consequences, like unbootable computer. Please do the needful cskdotcom, Jan 15, 2009 #2 This thread has been Locked and is not open to further replies.

scanning hidden files ...

Please copy and paste the contents of that file here. Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] ole32.dll!CoRegisterClassObject 77541BFC 5 Bytes JMP 28002360 C:\Program Files\Messenger Plus! Below is the virus info from AVG: AVG Info: Object name: C:\WINDOWS\system32\drivers\netbt.sys Detection name: Trojan house BackDoor.Generic 14.CEXK Object type: file SDK Type: Core Result: Object is white-listed (critical/system file that Also whenever i open google chrome , i get a message on my toolbar saying the file or directory \WINDOWS\Prefetch\CHROME.EXE-17931BAE I am also unable to update any programs on the computerI

Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] kernel32.dll!SetUnhandledExceptionFilter 7C810386 5 Bytes JMP 0056DBBD C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Windows Live Messenger/Microsoft Corporation).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] kernel32.dll!CreateEventA 7C81E4BD 5 Bytes JMP 28001840 C:\Program Files\Messenger Plus! Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[3164] USER32.dll!LoadImageW 77D542A4 5 Bytes JMP 28006690 C:\Program Files\Messenger Plus! Join the ClassRoom and learn how. http://gsdclb.org/trojan-horse/trojan-horse-generic10-vpd.php Back to top #5 nasdaq nasdaq Forum Deity Global Moderator 49,136 posts Posted 16 February 2009 - 09:14 AM Yes uninstalll Spybot with the Add/Remove programs tools.

D: is CDROM () E: is CDROM () F: is FIXED (NTFS) - 279 GiB total, 7.085 GiB free. Live\MsgPlusLive1.dll (Messenger Plus! My name is Satchfan and I would be glad to help you with your computer problem.Please read the following guidelines which will help to make cleaning your machine easier: please please reply within 3 days.

mmmm you're in trouble here. Live\MsgPlusLive1.dll (Messenger Plus! Live Add-On/Patchou).text C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe[2432] WS2_32.dll!WSARecv 71AB4318 5 Bytes JMP 2800B5E0 C:\Program Files\Messenger Plus! If you are happy with the help provided, if you wish you can make a donation to buy me a beer.

Even if your computer appears to act better, it may still be infected. Jan 16, 2012 #1 Broni Malware Annihilator Posts: 53,238 +349 Welcome aboard Please, complete all steps listed here: http://www.techspot.com/vb/topic58138.html Make sure, you PASTE all logs. Finally paste the contents of the Report.txt back on the forum. 0 #18 dolface755 Posted 21 February 2009 - 11:20 AM dolface755 Member Topic Starter Member 191 posts Did the scan