Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Virus: Backdoor:Win32/Fynloski.A keeps reappearing.

27 Dec 2011   #1
JLsa

Windows 7 ultimate x64
 
 
Virus: Backdoor:Win32/Fynloski.A keeps reappearing.

Encyclopedia entry: Backdoor:Win32/Fynloski.A - Learn more about malware - Microsoft Malware Protection Center

Hi,

This virus shows up every day whenever I run my computer. Microsoft Security Essentials detects and removes each time (yaa!) but does anyone know why it keeps appearing? or how I can stop it completely?

Thanks!


My System SpecsSystem Spec
.

27 Dec 2011   #2
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

Hi,

It may be injected via something else that is on your system, and not being caught my MSE.

Download, install, update and run FREE Malwarebytes - post a log of the scan here so we can help further.

Regards,
Golden
My System SpecsSystem Spec
28 Dec 2011   #3
JLsa

Windows 7 ultimate x64
 
 

Thanks for the reply! Here are my logs.
It did end up finding something so I removed it. Afterwards, I did a rescan and it didn't detect anything so hopefully it doesn't come back

Here is the log before I removed anything:
Malwarebytes Anti-Malware (Trial) 1.60.0.1800
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Database version: v2011.12.28.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Jelesa :: JELESA-PC [administrator]

Protection: Enabled

12/27/2011 9:19:31 PM
mbam-log-2011-12-27 (22-14-08).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 282856
Time elapsed: 52 minute(s), 42 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCU\Software\DC3_FEXEC (Malware.Trace) -> No action taken.

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Svchost (Backdoor.Bot) -> Data: C:\Java\RE\uSvchost.com -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-17-7.dc (Stolen.Data) -> No action taken.
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-18-1.dc (Stolen.Data) -> No action taken.
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-25-1.dc (Stolen.Data) -> No action taken.
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-27-3.dc (Stolen.Data) -> No action taken.

(end)
My System SpecsSystem Spec
.


28 Dec 2011   #4
Infinite

Windows 7 Ultimate SP1 - 64 Bit
 
 

Please uninstall Java, and Flash for the time being.

Also clean out your Temp folder in AppData.
My System SpecsSystem Spec
28 Dec 2011   #5
JLsa

Windows 7 ultimate x64
 
 

I can't find Java/Flash installed on my computer? Its not in the "uninstall programmes" list and I did a search through my program files in the C:drive as well as the search on the start up menu.

As for the "Temp folder in AppData" I can't delete this file!!
FXSAPIDebugLogFile

it keeps saying its opened in windows explorer
My System SpecsSystem Spec
28 Dec 2011   #6
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

OK. Now can you follow up using this online scanner:

ESET Online Scanner

Post back here when its done.

Regards,
Golden
My System SpecsSystem Spec
28 Dec 2011   #7
JLsa

Windows 7 ultimate x64
 
 

Heres my ESET log


C:\Users\Jelesa\AppData\Local\Temp\RarSFX1\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX2\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX3\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX4\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX5\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\Documents\ICO\MsgPlusLive-490.exe a variant of Win32/MessengerPlus application cleaned by deleting - quarantined
My System SpecsSystem Spec
28 Dec 2011   #8
GianniDPC

Windows 7 Home Premium x64
 
 

Run a HitmanPro scan: Home - SurfRight

and report back
My System SpecsSystem Spec
28 Dec 2011   #9
JLsa

Windows 7 ultimate x64
 
 

Hitmanpro log


<?xml version="1.0"?>
-<Log filesProcessed="7299" timeSpentInSecs="224" date="2011-12-28T12:18:19" version="3.6.0.137" scan="Normal" computer="JELESA-PC">-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrite.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ad4game.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.coach.ca"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.eqads.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.geekswithblogs.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.networldmedia.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.undertone.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adtechus.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:bs.serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:clicksor.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:dmtracker.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:eset.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:googleads.g.doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:gr.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:kontera.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:livejasmin.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mediaplex.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftsto.112.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mm.chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mswmw7mobilemainprod.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:myroitracking.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesnestopinternet.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:realmedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:rotator.adjuggler.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:server.cpmstar.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:static.getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.buildtraffic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.itsssl.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:trafficmp.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldmanager.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\IHF22MH1.txt"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\O3RU22MM.txt"/></Item></Log>
My System SpecsSystem Spec
28 Dec 2011   #10
GianniDPC

Windows 7 Home Premium x64
 
 

Quote   Quote: Originally Posted by JLsa View Post
Hitmanpro log


<?xml version="1.0"?>
-<Log filesProcessed="7299" timeSpentInSecs="224" date="2011-12-28T12:18:19" version="3.6.0.137" scan="Normal" computer="JELESA-PC">-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrite.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ad4game.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.coach.ca"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.eqads.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.geekswithblogs.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.networldmedia.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.undertone.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adtechus.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:bs.serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:clicksor.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:dmtracker.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:eset.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:googleads.g.doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:gr.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:kontera.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:livejasmin.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mediaplex.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftsto.112.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mm.chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mswmw7mobilemainprod.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:myroitracking.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesnestopinternet.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:realmedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:rotator.adjuggler.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:server.cpmstar.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:static.getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.buildtraffic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.itsssl.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:trafficmp.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldmanager.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\IHF22MH1.txt"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\O3RU22MM.txt"/></Item></Log>
Well.... is it fixed now ???
if not.....
try: Anti-rootkit utility TDSSKiller
My System SpecsSystem Spec
Reply

 Virus: Backdoor:Win32/Fynloski.A keeps reappearing.




Thread Tools





Similar help and support threads
Thread Forum
How do I know if I actually have the Win32/Small.CA virus?
Hi hi all and thanks in advance for taking the time to read this. I hope I can get some help with this as well as help persons who also need help with this. I had posted this same message on TomsHardware.com but to no avail, I got no responses so I hope SevenForums can be more help. So Friday I...
System Security
Win32/Small.CA virus detected
Ive just received an action centre message stating Win32/Small.CA virus detected Part 1 DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16506 BrowserJavaVersion: 10.25.2 Run by matthew.gee at 14:54:17 on 2013-09-19 Microsoft Windows 7 Enterprise ...
System Security
win32/Small.CA virus
A little background info. Afew days ago I installed Easy Burner prog. from Soft Pedia in error and uninstalled it but parts of it did not uninstall. Did afew sys. restores, then PC wouldn't shut down & had to use power button to be able to restart again. Then Windows said that it detected a...
System Security
Backdoor:Win32/Cycbot.B problem
Hello, I've been having problems with my laptop for the last 3 days. MSE said that my laptop is infected with Backdoor:Win32/Cycbot.B. I've downloaded Dr. Web CureIt and Malwarebytes' Anti-Malware and tried following the procedures here. I just finished following the procedures last night; I...
System Security
Help!! Annoying 'Win32 malware-gen' virus
I keep on getting a virus with this name in the C:\Windows\Temp\* folder where * keeps on changing to a new folder. The file is named 'svchost.exe' and keeps on popping up exactly every 5 minutes. However, my antivirus seems to detect it and remove it but the problem still persists every 5 minutes....
System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 20:13.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App