These are the infections reported by XP Internet Security 2011, (without directory information)
.\Irrlicht Ny0YDnJKsR.3t4 Joke.1068
.\SD_ttf 0jd5j0M1.sp P2P-Worm.Win32.Franvir
Smartwin\boost\function N7fJ7xQ.g Lemena.3544
Smartwin\boost\ 2HX5286SL16.ja Kot.b
AllUsers\Application 22SMICU1i8.1u DoS.Win32.DieWar
AllUsers\Application I.cab Exploit.CodeBaseExec
AllUsers\Start 7rR0080H.sys Trojan-Spy.HTML.Bankfraud
126.96.36.199 port 20277
I suspect some of these are FLIES: theya re doing nothing, but they would lose social status if they cannot say they have something where things are happening (like one Cicero component I once found in some EnumWindows session...), but some would be actually stealing actively. All these passed through the combined McAfee/MS firewall.
You prefer to believe what some fake anti-malware tells you? Disregard it please.
I haven't any idea what all that means , sorry I do know it's perfect garbage, however. If the removal guide I posted earlier isn't any help then I suggest you download Hijackthis and post its log on one of the following forums for expert advice.
Do not post Hijackthis logs here, we can't help with those!
Post the logs at a specialist Forum:
Be sure to read all the sticky announcements/instructions at the top of each malware forum!
Message was edited by: Ex_Brit on 24/05/11 7:51:39 EDT PM
Moved to your own thread as I am sure the original poster(s) of that thread aren't interested in discussing it. We aren't here to discuss the behaviour, merits or faults of various pieces of malware. We are far too busy for that. The forums I mentioned above are more suited for that.
Message was edited by: Ex_Brit on 24/05/11 8:52:08 EDT PM