Just moving this over to our Security Awareness area for better visibility / attention
any one to help??
Status MD5 Location File Name Attribute Company Description Product Version File Version File Size Creation Date Modification Date Type UNKNOWN c177a998addd3b5604240581734281c0 C:\Users\Krishnan\AppData\Local\Temp Knh.exe A 18.104.22.168 22.214.171.124 193,536 12/13/2010 22:04 12/13/2010 22:04 Process UNKNOWN 21b3c19c2ef25d18482c5948bb4841b6 C:\Users\Krishnan\AppData\Local\Temp Knn.exe A 126.96.36.199 188.8.131.52 194,560 12/13/2010 22:05 12/13/2010 22:05 Process ASSUMED_DIRTY4 48d892266791a6f51a34f07a0b795cf9 C:\Users\Krishnan\AppData\Local\Temp\mjabvjpla gwqkkoraffm.exe A 262,656 12/13/2010 22:05 12/13/2010 22:04 Process UNKNOWN 38ae1fedfcbe808bdca9b191e556eee7 C:\Users\Krishnan\AppData\Roaming\Meozop quir.exe A 90,624 04/23/2010 16:15 04/23/2010 16:15 Run-Key
The above listed files are confirmed malicious. Please reboot into safe mode and delete them. Detection for these files will be added to the McAfee DATs.
Have deleted the 4 file which you asked me to do.
Still couldn't open any web pages, so changed the proxy server setting in internet option and its now fine with web pages.
My Desktop side bar is still corrupted, not displaying properly.
Also tried running getsusp again and the result is attached in the this, Please let me know how to remove these.
Many Thanks & Kind Regards
gsusp_121810_231132.zip 2.9 MB
Don't worry about the unknown files. These are harmless files that are not in the McAfee whitelist.
From the new logs, you're computer looks clean.