INFECTION of ldcore.dll with WIN32.small-IKY

[oldman]

You're welcome.

however, i still have all the infected files in the avast's secure chest. do i delete the whole chest? or let them remain?

They are safe there, they can't be accessed from outside the chest or ran from within the chest. You can leave them a few days if you want, then delete them.

To delete them, start avast, click on the chest, click the infected button.

The files will appear in the window, highlight them, and delete. Don't worry they can't be executed (ran) from within the chest. 

spybot ran a scan and found tagasaurus and some other one. i had it fix the problems...hope they won't come up again.

Where did spybot detect them? The name of the files and the path?

Just a security note for wireless routers. They come from the manufacturer with a factory password. That is they all have the same password. The users guide tells users to change the password. If you haven't done this already please do so. Any infected computer tapping into your router could infect you.

If you already knew that, then disregard it. 

Happy surfing. 

[DavidR]

There is no rush to delete anything from the chest, a protected area where it can do no harm. Anything that you send to the chest you should leave there for a few weeks. If after that time you have suffered no adverse effects from moving these to the chest, scan them again (inside the chest) and if they are still detected as viruses, delete them.

There is also an area in the chest System Files, these are back-up copies of important system files, so you should most certainly leave these alone.

[sdunford]

i use the linksys wireless adapter, going through my school's wireless network. how would i change that password?

[oldman]

I thought perhaps it was a home network. Some people don't bother to change the default password on the wireless modem. This allows anyone to tap into it.

Seeing it's the school's network, it's adminstrated by the school and you won't have any control over that.

[sdunford]

here are the posts....

[sdunford]

one more...

[sdunford]

the rest

[oldman]

Hi, sorry, this computer keep locking up. Lost this a couple of times.

The tagasarus is a tracking cookie, usually nothing to worry about.

"C:\Documents and Settings\All Users\Application Data\Rabio\Search Enhancer\"

is a low risk adware. Origanally I searched for just rabio and came up wth something different, as the log just showed "C:\Documents and Settings\All Users\Application Data\Rabio". The \search enhancer\ is subfolder. I don't see any indication that the program itself is running. Did you previously uninstall it?

After the spybot fix do they still appear?

[sdunford]

i should have placed the logs in order. some of them are from after spybot says the virus is fixed. is the Rabio something like adaware? i found this site. http://www.xblock.com/product_show.php?id=3770
should i run the antivirus or just uninstall the program if i can?

[oldman]

Yes, it's adware. Try to uninstall it if you can. If you can't, come back and we'll remove it here. You may have better luck doing it in safe mode. Let me know how you make out.

[sdunford]

    hello, again. more good news. i successfully uninstalled the rabio and cool (?) programs. no adverse effects have come up. i have ran scans with AVG, Avast, and Spybot....  all threats essentially eliminated.
THANKS AGAIN FOR THE GREAT HELP!!!!!    SAVES MUCHO DINERO!! 

[oldman]

You're welcome, happy to help.