« previous next »
Pages: 1 [2]   Go Down

Author Topic: Mass-mailing worms?  (Read 9925 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33931
  • malware fighter
Re: Mass-mailing worms?
« Reply #15 on: October 13, 2008, 10:05:58 PM »
Hi linoleum,

Follow the instructions that FwF gave you.
Then check for one of the three Trojans that the following items has left your machine:
Delete the following file: HDTIP.DLL
Delete following registry keys: hdtip.bowl
HDTIP.BSWF
hdtip.bpnv
hdtip.bgkd
HDTIP.TOOLBAR
HDTIP.TOOLBAR.1
{17D69B84-065B-4F88-AFE8-3BA9B4907501}
{EA298426-9AD3-4979-AFB4-600A2104B701}
{85B2F289-7128-4C5A-A330-F9FC01432D3A}
{872F66C1-E394-4545-8843-EDE16648058A}
{382C8A97-BFEF-47B5-9770-87C4DE651E37}
{0C12E004-19C1-4B19-9C63-6321CF547432}
{7E259026-2CBD-4F42-AB62-230C0D4ABDAD}
{CBF5124B-3294-4441-9B5C-30297F50E02C}
{9C2D86AA-4067-4270-8D51-E6DC5E805D62}
{F4BEC60B-9CEE-4A91-91FB-8DA8DE3CA166}
{70EC7CA3-2FFC-4E43-97DE-3C91B2F65D36}
{E3E087D3-CA1D-4ECA-9960-D85944C2554C}
{3DE5D178-BD44-4709-A9CC-3211619A5B19}
{F862FB31-774B-4458-8F98-EDB469CA04A0}
{8C5E2A3D-73CF-41EE-9B53-E2F56FB0F0D1}
{1B7F98F6-6650-4E31-A466-009A39913AF0}
{AE73C3E4-88F7-41A0-AF79-87BE6826B8DF}
{C091E0E9-C0C9-4AAB-ADED-49DCE0870E75}
{81D58A0C-82CF-4589-BAFB-F39EE1D844E6}
{BA978B5D-E354-47FD-9E95-ACE61FC665DF}
hdtip.bowl
HDTIP.BSWF
hdtip.bpnv
hdtip.bgkd
HDTIP.TOOLBAR
HDTIP.TOOLBAR.1
{17D69B84-065B-4F88-AFE8-3BA9B4907501}
{EA298426-9AD3-4979-AFB4-600A2104B701}
{85B2F289-7128-4C5A-A330-F9FC01432D3A}
{872F66C1-E394-4545-8843-EDE16648058A}
{382C8A97-BFEF-47B5-9770-87C4DE651E37}
{0C12E004-19C1-4B19-9C63-6321CF547432}
{7E259026-2CBD-4F42-AB62-230C0D4ABDAD}
{CBF5124B-3294-4441-9B5C-30297F50E02C}
{9C2D86AA-4067-4270-8D51-E6DC5E805D62}
{F4BEC60B-9CEE-4A91-91FB-8DA8DE3CA166}
{70EC7CA3-2FFC-4E43-97DE-3C91B2F65D36}
{E3E087D3-CA1D-4ECA-9960-D85944C2554C}
{3DE5D178-BD44-4709-A9CC-3211619A5B19}
{F862FB31-774B-4458-8F98-EDB469CA04A0}
{8C5E2A3D-73CF-41EE-9B53-E2F56FB0F0D1}
{1B7F98F6-6650-4E31-A466-009A39913AF0}
{AE73C3E4-88F7-41A0-AF79-87BE6826B8DF}
{C091E0E9-C0C9-4AAB-ADED-49DCE0870E75}
{81D58A0C-82CF-4589-BAFB-F39EE1D844E6}
{BA978B5D-E354-47FD-9E95-ACE61FC665DF}
{17D69B84-065B-4F88-AFE8-3BA9B4907501}
{EA298426-9AD3-4979-AFB4-600A2104B701}
{85B2F289-7128-4C5A-A330-F9FC01432D3A}
{872F66C1-E394-4545-8843-EDE16648058A}
{382C8A97-BFEF-47B5-9770-87C4DE651E37}
{0C12E004-19C1-4B19-9C63-6321CF547432}
{7E259026-2CBD-4F42-AB62-230C0D4ABDAD}
{CBF5124B-3294-4441-9B5C-30297F50E02C}
{9C2D86AA-4067-4270-8D51-E6DC5E805D62}
{F4BEC60B-9CEE-4A91-91FB-8DA8DE3CA166}
{70EC7CA3-2FFC-4E43-97DE-3C91B2F65D36}
{E3E087D3-CA1D-4ECA-9960-D85944C2554C}
{3DE5D178-BD44-4709-A9CC-3211619A5B19}
Delete the following registry values:
{17D69B84-065B-4F88-AFE8-3BA9B4907501}
{EA298426-9AD3-4979-AFB4-600A2104B701}
{85B2F289-7128-4C5A-A330-F9FC01432D3A}
{872F66C1-E394-4545-8843-EDE16648058A}
{382C8A97-BFEF-47B5-9770-87C4DE651E37}
{0C12E004-19C1-4B19-9C63-6321CF547432}
{7E259026-2CBD-4F42-AB62-230C0D4ABDAD}
{CBF5124B-3294-4441-9B5C-30297F50E02C}
{9C2D86AA-4067-4270-8D51-E6DC5E805D62}
{F4BEC60B-9CEE-4A91-91FB-8DA8DE3CA166}
{70EC7CA3-2FFC-4E43-97DE-3C91B2F65D36}
{E3E087D3-CA1D-4ECA-9960-D85944C2554C}
{3DE5D178-BD44-4709-A9CC-3211619A5B19}
{17D69B84-065B-4F88-AFE8-3BA9B4907501}
{EA298426-9AD3-4979-AFB4-600A2104B701}
{70EC7CA3-2FFC-4E43-97DE-3C91B2F65D36}
{E3E087D3-CA1D-4ECA-9960-D85944C2554C}
{3DE5D178-BD44-4709-A9CC-3211619A5B19}
{85B2F289-7128-4C5A-A330-F9FC01432D3A}
{872F66C1-E394-4545-8843-EDE16648058A}
{382C8A97-BFEF-47B5-9770-87C4DE651E37}
{0C12E004-19C1-4B19-9C63-6321CF547432}
{7E259026-2CBD-4F42-AB62-230C0D4ABDAD}
{CBF5124B-3294-4441-9B5C-30297F50E02C}
{9C2D86AA-4067-4270-8D51-E6DC5E805D62}
{F4BEC60B-9CEE-4A91-91FB-8DA8DE3CA166}

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89336
  • No support PMs thanks
Re: Mass-mailing worms?
« Reply #16 on: October 13, 2008, 10:20:04 PM »
Not to mention you also still have AVG7 installed on your system, uninstall it.

Having two resident scanners installed is not recommended as rather than provide twice the protection it can cause conflicts that could leave you more vulnerable.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.5.6116 (build 24.5.9153.762) UI 1.0.808/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

linoleum

  • Guest
Re: Mass-mailing worms?
« Reply #17 on: October 13, 2008, 10:48:58 PM »
I think i may have solved the problem, but i couldn't have done it without any of you. Thanks very much :). I have just uninstalled AVG.
Polonus, I'm sorry i don't really understand what you want me to do. I'm a bit of a noob when it comes to computers. How do i find these registry keys, so that i can delete them ? are they in Hjack this ?
once again many thanks every one
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33931
  • malware fighter
Re: Mass-mailing worms?
« Reply #18 on: October 14, 2008, 12:02:42 AM »
These are registry entries with the mentioned information, but if you feel unfamiliar with it, the other information may have cured these as well, as did the run of MBAM,

polonus
« Last Edit: October 14, 2008, 10:41:19 PM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67194
Re: Mass-mailing worms?
« Reply #19 on: October 16, 2008, 10:57:11 PM »
Logged
The best things in life are free.
Pages: 1 [2]   Go Up
« previous next »