Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Virus: Backdoor:Win32/Fynloski.A keeps reappearing.

27 Dec 2011   #1
JLsa

Windows 7 ultimate x64
 
 
Virus: Backdoor:Win32/Fynloski.A keeps reappearing.

Encyclopedia entry: Backdoor:Win32/Fynloski.A - Learn more about malware - Microsoft Malware Protection Center

Hi,

This virus shows up every day whenever I run my computer. Microsoft Security Essentials detects and removes each time (yaa!) but does anyone know why it keeps appearing? or how I can stop it completely?

Thanks!


My System SpecsSystem Spec
.
27 Dec 2011   #2
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

Hi,

It may be injected via something else that is on your system, and not being caught my MSE.

Download, install, update and run FREE Malwarebytes - post a log of the scan here so we can help further.

Regards,
Golden
My System SpecsSystem Spec
28 Dec 2011   #3
JLsa

Windows 7 ultimate x64
 
 

Thanks for the reply! Here are my logs.
It did end up finding something so I removed it. Afterwards, I did a rescan and it didn't detect anything so hopefully it doesn't come back :)

Here is the log before I removed anything:
Malwarebytes Anti-Malware (Trial) 1.60.0.1800
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Database version: v2011.12.28.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Jelesa :: JELESA-PC [administrator]

Protection: Enabled

12/27/2011 9:19:31 PM
mbam-log-2011-12-27 (22-14-08).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 282856
Time elapsed: 52 minute(s), 42 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCU\Software\DC3_FEXEC (Malware.Trace) -> No action taken.

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Svchost (Backdoor.Bot) -> Data: C:\Java\RE\uSvchost.com -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-17-7.dc (Stolen.Data) -> No action taken.
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-18-1.dc (Stolen.Data) -> No action taken.
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-25-1.dc (Stolen.Data) -> No action taken.
C:\Users\Jelesa\AppData\Local\Temp\dclogs\2011-12-27-3.dc (Stolen.Data) -> No action taken.

(end)
My System SpecsSystem Spec
.

28 Dec 2011   #4
Infinite

Windows 7 Ultimate SP1 - 64 Bit
 
 

Please uninstall Java, and Flash for the time being.

Also clean out your Temp folder in AppData.
My System SpecsSystem Spec
28 Dec 2011   #5
JLsa

Windows 7 ultimate x64
 
 

I can't find Java/Flash installed on my computer? Its not in the "uninstall programmes" list and I did a search through my program files in the C:drive as well as the search on the start up menu.

As for the "Temp folder in AppData" I can't delete this file!!
FXSAPIDebugLogFile

it keeps saying its opened in windows explorer
My System SpecsSystem Spec
28 Dec 2011   #6
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

OK. Now can you follow up using this online scanner:

ESET Online Scanner

Post back here when its done.

Regards,
Golden
My System SpecsSystem Spec
28 Dec 2011   #7
JLsa

Windows 7 ultimate x64
 
 

Heres my ESET log


C:\Users\Jelesa\AppData\Local\Temp\RarSFX1\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX2\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX3\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX4\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\AppData\Local\Temp\RarSFX5\uSvchost.com probably a variant of Win32/Delf.NIKFSTJ trojan cleaned by deleting - quarantined
C:\Users\Jelesa\Documents\ICO\MsgPlusLive-490.exe a variant of Win32/MessengerPlus application cleaned by deleting - quarantined
My System SpecsSystem Spec
28 Dec 2011   #8
GianniDPC

Windows 7 Home Premium x64
 
 

Run a HitmanPro scan: Home - SurfRight

and report back
My System SpecsSystem Spec
28 Dec 2011   #9
JLsa

Windows 7 ultimate x64
 
 

Hitmanpro log


<?xml version="1.0"?>
-<Log filesProcessed="7299" timeSpentInSecs="224" date="2011-12-28T12:18:19" version="3.6.0.137" scan="Normal" computer="JELESA-PC">-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrite.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ad4game.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.coach.ca"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.eqads.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.geekswithblogs.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.networldmedia.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.undertone.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adtechus.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:bs.serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:clicksor.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:dmtracker.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:eset.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:googleads.g.doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:gr.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:kontera.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:livejasmin.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mediaplex.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftsto.112.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mm.chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mswmw7mobilemainprod.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:myroitracking.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesnestopinternet.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:realmedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:rotator.adjuggler.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:server.cpmstar.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:static.getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.buildtraffic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.itsssl.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:trafficmp.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldmanager.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\IHF22MH1.txt"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\O3RU22MM.txt"/></Item></Log>
My System SpecsSystem Spec
28 Dec 2011   #10
GianniDPC

Windows 7 Home Premium x64
 
 

Quote   Quote: Originally Posted by JLsa View Post
Hitmanpro log


<?xml version="1.0"?>
-<Log filesProcessed="7299" timeSpentInSecs="224" date="2011-12-28T12:18:19" version="3.6.0.137" scan="Normal" computer="JELESA-PC">-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrite.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ad4game.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.coach.ca"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.eqads.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.geekswithblogs.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.networldmedia.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.undertone.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adtechus.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:bs.serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:clicksor.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:dmtracker.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:eset.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:googleads.g.doubleclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:gr.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:kontera.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:livejasmin.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mediaplex.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftsto.112.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mm.chitika.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:mswmw7mobilemainprod.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:myroitracking.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesnestopinternet.122.2o7.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookiesointroll.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:realmedia.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:rotator.adjuggler.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:server.cpmstar.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:static.getclicky.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.buildtraffic.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.itsssl.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:trafficmp.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.burstnet.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldmanager.net"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\IHF22MH1.txt"/></Item>-<Item status="Deleted" score="0.0" type="Repair"><File path="C:\Users\Jelesa\AppData\Roaming\Microsoft\Windows\Cookies\O3RU22MM.txt"/></Item></Log>
Well.... is it fixed now ???
if not.....
try: Anti-rootkit utility TDSSKiller
My System SpecsSystem Spec
Reply

 Virus: Backdoor:Win32/Fynloski.A keeps reappearing.




Thread Tools




Similar help and support threads
Thread Forum
How do I know if I actually have the Win32/Small.CA virus?
Hi hi all and thanks in advance for taking the time to read this. I hope I can get some help with this as well as help persons who also need help with this. I had posted this same message on TomsHardware.com but to no avail, I got no responses so I hope SevenForums can be more help. So Friday I...
System Security
Yet another with Win32/Small.CA virus detected
I keep getting the annoying message to remove the Win32/Small.CA virus in the message centre, but if I click on the link given, my computer goes off and sulks and never seems to find the message. I've run Malwarebytes, BitDefender and before I changed to BitDefender Total Security, I had and ran...
System Security
win32/Small.CA virus
A little background info. Afew days ago I installed Easy Burner prog. from Soft Pedia in error and uninstalled it but parts of it did not uninstall. Did afew sys. restores, then PC wouldn't shut down & had to use power button to be able to restart again. Then Windows said that it detected a...
System Security
How do I get ride of the Win32/Adware.RK.Ak virus
Hi all dont know if any one can help me or not but it seems i have some new unwanted visitors on my laptop. i have a virus called Win32/Adware.RK.Ak. I ran my windows essentals and it never picked it up but I am now running ESET online scanner and its picked up the adware virus on my laptop :(...
System Security
Backdoor:Win32/Cycbot.B problem
Hello, I've been having problems with my laptop for the last 3 days. MSE said that my laptop is infected with Backdoor:Win32/Cycbot.B. I've downloaded Dr. Web CureIt and Malwarebytes' Anti-Malware and tried following the procedures here. I just finished following the procedures last night; I...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 23:47.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App