Hi malware fighters,
Stay clear of this site, has trojans:
http://amada.abuse.ch/?search=ereei.info
010/07/29_19:34 ereei.info/v2/out/20.exe 91.188.60.175 - trojan Viktor Goryanov / GoryanovviktorATmail.com 6851 LV
http://www.threatexpert.com/files/20.exe.html
2010/07/29_19:34 ereei.info/v2/out/winupd.exe 91.188.60.175 - trojan Viktor Goryanov / GoryanovviktorATmail.com 6851 LV
The second trojan one is a beagle infection: Step 1: Use Windows File Search Tool to Find winupd.exe Path
- Go to Start > Search > All Files or Folders.
- In the “All or part of the the file name” section, type in “winupd.exe” file name
- To get better results, select “Look in: Local Hard Drives” or “Look in: My Computer” and then click “Search” button.
- When Windows finishes your search, hover over the “In Folder” of “winupd.exe”, highlight the file and copy/paste the path into the address bar. Save the file’s path on your clipboard because you’ll need the file path to delete winupd.exe in the following manual removal steps.
Step 2: Use Windows Task Manager to Remove winupd.exe Processes
- To open the Windows Task Manager, use the combination of CTRL+ALT+DEL or CTRL+SHIFT+ESC.
- Click on the “Image Name” button to search for “winupd.exe” process by name.
- Select the “winupd.exe” process and click on the “End Process” button to kill it.
Step 3: Detect and Delete Other winupd.exe Files
- To open the Windows Command Prompt, go to Start > Run > cmd and then press the “OK” button.
- Type in “dir /A name_of_the_folder” (for example, C:\Spyware-folder), which will display the folder’s content even the hidden files.
- To change directory, type in “cd name_of_the_folder”.
- Once you have the file you’re looking for type in del “name_of_the_file”.
- To delete a file in folder, type in “del name_of_the_file”.
- To delete the entire folder, type in “rmdir /S name_of_the_folder”.
- Select the “winupd.exe” process and click on the “End Process” button to kill it,
polonus
