Internet is fine, but can't surf any Norton site

Lowyat.NET forums

Lowyat.NET Kopitiam Garage Sales

Lowyat.NET Rules and Regulations FAQ Help Search Members

Welcome Guest ( Log In | Register )

Lowyat.NET -> Technical Support

Bump Topic Add Reply RSS Feed

Outline · [ Standard ] · Linear+

Internet is fine, but can't surf any Norton site, even can't process live updates

views

TSkentkoh	Jul 6 2012, 03:12 PM, updated 14y ago Show posts by this member only \| Post #1
Getting Started Junior Member 200 posts Joined: Sep 2008	Hi, i am using genuine norton internet security 2012. Recently realized that my norton cannot do live updates. i can't even surf any norton related website. but other website like google and facebook work perfectly fine. can anyone give me a hand here? thanks.
Card PM	Report Top Like Quote Reply

tokthoo2002	Jul 7 2012, 07:14 AM Show posts by this member only \| Post #2
New Member Junior Member 29 posts Joined: Apr 2009	can u loggon to another antivirus webpage？ such as avira or kapasky
Card PM	Report Top Like Quote Reply

TSkentkoh	Jul 8 2012, 12:56 PM Show posts by this member only \| Post #3
Getting Started Junior Member 200 posts Joined: Sep 2008	QUOTE(tokthoo2002 @ Jul 7 2012, 07:14 AM) can u loggon to another antivirus webpage？ such as avira or kapasky i found that i cant surf any of the anti virus website.. can anyone help to so solve?
Card PM	Report Top Like Quote Reply

smallvill3	Jul 8 2012, 02:40 PM Show posts by this member only \| Post #4
On my way Senior Member 657 posts Joined: Jul 2008 From: Bikini Bottom	install spybot S&D, scan...
Card PM	Report Top Like Quote Reply

lex	Jul 12 2012, 11:35 AM Show posts by this member only \| Post #5
Old Am I? VIP 18,182 posts Joined: Jan 2005 From: Dagobah	QUOTE(kentkoh @ Jul 6 2012, 03:12 PM) i am using genuine norton internet security 2012. Recently realized that my norton cannot do live updates. i can't even surf any norton related website. but other website like google and facebook work perfectly fine. can anyone give me a hand here? QUOTE(kentkoh @ Jul 8 2012, 12:56 PM) i found that i cant surf any of the anti virus website.. can anyone help to so solve? Sounds like malware infection. Nowadays many malware block antivirus websites. I would suggest you check the HOSTS file for starters (located at "\Windows\System32\drivers\etc" folder). Other than that, please post a HijackThis log for examination as well as scanning with Malwarebytes...
Card PM	Report Top Like Quote Reply

TSkentkoh	Jul 12 2012, 01:31 PM Show posts by this member only \| Post #6
Getting Started Junior Member 200 posts Joined: Sep 2008	QUOTE(lex @ Jul 12 2012, 11:35 AM) Sounds like malware infection. Nowadays many malware block antivirus websites. I would suggest you check the HOSTS file for starters (located at "\Windows\System32\drivers\etc" folder). Other than that, please post a HijackThis log for examination as well as scanning with Malwarebytes... i can't surf malwarebytes website. but i just run thru hijackthis. » Click to show Spoiler - click again to hide... « Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 1:29:46 PM, on 12/Jul/2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\SCardSvr.exe C:\WINDOWS\Explorer.EXE C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\ctfmon.exe C:\PROGRA~1\PPStream\ppsap.exe C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe C:\Program Files\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe C:\Program Files\TeamViewer\Version7\TeamViewer.exe C:\Program Files\TeamViewer\Version7\tv_w32.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\IRS\irsPos\irsPOS.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\SogouInput\6.2.0.7270\SogouCloud.exe C:\Program Files\PPStream\PPStream.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\PROGRA~1\PPStream\PPStream.exe C:\Documents and Settings\WindowsXP\My Documents\Downloads\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://123.taobao.com/?wangwang/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = .local R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll O2 - BHO: WebThunderBHO - {00000AAA-A363-466E-BEF5-9BB68697AA7F} - C:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\19.7.1.5\coIEPlg.dll O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\19.7.1.5\IPS\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\19.7.1.5\coIEPlg.dll O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe" O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [PPS Accelerator] C:\PROGRA~1\PPStream\ppsap.exe O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user') O4 - Global Startup: Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Ê¹ÓÃÍøÒ³Ñ¸À×ÏÂÔØ - C:\Program Files\Thunder Network\WebThunder\GetUrl.htm O8 - Extra context menu item: Ê¹ÓÃÍøÒ³Ñ¸À×ÏÂÔØÈ«²¿Á´½Ó - C:\Program Files\Thunder Network\WebThunder\GetAllUrl.htm O8 - Extra context menu item: Ìí¼ÓÎª°¢ÀïÍúÍú±íÇé - C:\Program Files\AliWangWang\7.10.04C\AddNewEmotion.htm O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Æô¶¯ÍøÒ³Ñ¸À× - {962EFB8E-2683-42d4-AC74-AAA4C759B9C6} - http://my.xunlei.com (file missing) O9 - Extra 'Tools' menuitem: Æô¶¯ÍøÒ³Ñ¸À× - {962EFB8E-2683-42d4-AC74-AAA4C759B9C6} - http://my.xunlei.com (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {108D3206-846A-4A93-BACB-F0572D043ED7} (DHSurveillanceCtrl Control) - http://192.168.1.100:82/webrec.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\IRS\irsPos\SKYPE4~1.DLL O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- End of file - 8881 bytes does it indicate anything? sorry coz i am not pro in computer, but really hope u guys can give me a hand here. i do not want my pc to be formatted. This post has been edited by kentkoh*: Jul 12 2012, 01:33 PM
Card PM	Report Top Like Quote Reply

catuabamalaysia	Jul 12 2012, 02:14 PM Show posts by this member only \| Post #7
Getting Started Junior Member 64 posts Joined: Jun 2012	Have you check the HOSTS file as suggested? in c:\windows\system32\drivers\etc folder. Open the file with notepad.
Card PM	Report Top Like Quote Reply

lex	Jul 12 2012, 02:45 PM Show posts by this member only \| Post #8
Old Am I? VIP 18,182 posts Joined: Jan 2005 From: Dagobah	QUOTE(kentkoh @ Jul 12 2012, 01:31 PM) i can't surf malwarebytes website. Please check the HOSTS file as earlier mentioned... Other than some adware (e.g. "Browser Configuration Utility", etc) and P2P stuff (e.g. Thunder, PPSteam, Xunlei, etc), noticed this... QUOTE(kentkoh @ Jul 12 2012, 01:31 PM) R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = .local While rest looks legit, thus there's a possibility of a rootkit (superhidden malware) in the system. Try using Rootkit Revealer to check for rootkits. Also try checking with TDSSKiller in case of the "bootkit" infection... QUOTE(kentkoh @ Jul 12 2012, 01:31 PM) O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe Did you install this software yourself? QUOTE(kentkoh @ Jul 12 2012, 01:31 PM) O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user') Did you use nLiteOS? This post has been edited by lex*: Jul 12 2012, 02:49 PM
Card PM	Report Top Like Quote Reply

TSkentkoh	Jul 12 2012, 02:51 PM Show posts by this member only \| Post #9
Getting Started Junior Member 200 posts Joined: Sep 2008	QUOTE(lex @ Jul 12 2012, 02:45 PM) Please check the HOSTS file as earlier mentioned... Other than some adware (e.g. "Browser Configuration Utility", etc) and P2P stuff (e.g. Thunder, PPSteam, Xunlei, etc), noticed this...While rest looks legit, thus there's a possibility of a rootkit (superhidden malware) in the system. Try using Rootkit Revealer to check for rootkits. Also try checking with TDSSKiller in case of the "bootkit" infection... Did you install this software yourself? Did you use nLiteOS? YES I install teamview. may i know what is Nlite os? this is the rusult of rootkit: is there any virus?
Card PM	Report Top Like Quote Reply

lex	Jul 12 2012, 03:59 PM Show posts by this member only \| Post #10
Old Am I? VIP 18,182 posts Joined: Jan 2005 From: Dagobah	QUOTE(kentkoh @ Jul 12 2012, 02:51 PM) YES I install teamview. Just need verification on this remote control software. QUOTE(kentkoh @ Jul 12 2012, 02:51 PM) may i know what is Nlite os? Its a Windows installation customization tool (usually for slimming down Windows and slipstreaming patches, drivers, updates, etc). You can check here: nLite - Deployment Tool for the bootable Unattended Windows installation. Of course, there's also the possibility of the malware disguising itself as nLiteOS since you did not know anything about using nLiteOS. QUOTE(kentkoh @ Jul 12 2012, 03:12 PM) this is the rusult of rootkit: is there any virus? Yes, there is. As I've suspected, a rootkit. Notice that weird file "C:\Documents and Settings\WindowsXP\Application Data\Vbjgjb.exe"? Try using HijackThis function "Delete a file on reboot..." to remove that file (first make sure to enable viewing files extensions, system files, hidden files and folders under Folder Options). After selecting that file or naming that file (just add the name directly, in case it cannot be seen), you will need to reboot to take effect. If that doesn't work, then try using Killbox to delete (also requires rebooting). This post has been edited by lex: Jul 12 2012, 04:00 PM
Card PM	Report Top Like Quote Reply

WebWalker	Jul 12 2012, 04:01 PM Show posts by this member only \| Post #11
Computer Geek All Stars 12,851 posts Joined: May 2005 From: Puchong, Selangor	Use another pc to download Malwarebytes :- http://www.malwarebytes.org/ If you sucessful remove all malware/virus, reset the host file :- http://support.microsoft.com/kb/972034
Card PM	Report Top Like Quote Reply

TSkentkoh	Jul 12 2012, 04:51 PM Show posts by this member only \| Post #12
Getting Started Junior Member 200 posts Joined: Sep 2008	QUOTE(lex @ Jul 12 2012, 03:59 PM) Just need verification on this remote control software. Its a Windows installation customization tool (usually for slimming down Windows and slipstreaming patches, drivers, updates, etc). You can check here: nLite - Deployment Tool for the bootable Unattended Windows installation. Of course, there's also the possibility of the malware disguising itself as nLiteOS since you did not know anything about using nLiteOS. Yes, there is. As I've suspected, a rootkit. Notice that weird file "C:\Documents and Settings\WindowsXP\Application Data\Vbjgjb.exe"? Try using HijackThis function "Delete a file on reboot..." to remove that file (first make sure to enable viewing files extensions, system files, hidden files and folders under Folder Options). After selecting that file or naming that file (just add the name directly, in case it cannot be seen), you will need to reboot to take effect. If that doesn't work, then try using Killbox to delete (also requires rebooting). already change setting on view file, but can't get to find "C:\Documents and Settings\WindowsXP\Application Data\Vbjgjb.exe" on Hijackthis. what should i do??
Card PM	Report Top Like Quote Reply

lex	Jul 12 2012, 04:58 PM Show posts by this member only \| Post #13
Old Am I? VIP 18,182 posts Joined: Jan 2005 From: Dagobah	QUOTE(kentkoh @ Jul 12 2012, 04:51 PM) already change setting on view file, but can't get to find "C:\Documents and Settings\WindowsXP\Application Data\Vbjgjb.exe" on Hijackthis. what should i do?? Possibly because its "superhidden" (not visible to the operating system due to rootkit's own self-protection). Copy and paste the filename directly (you can save the log in RootkitRevealer, then open the log and copy the full filename). Otherwise, use Killbox (which allows direct filename without browsing for the file).
Card PM	Report Top Like Quote Reply

sI Taufu	Jul 12 2012, 10:56 PM Show posts by this member only \| Post #14
getting higher and higher Senior Member 1,597 posts Joined: Aug 2010 From: Taufu Kingdom	TS do download process explorer from here: http://download.cnet.com/Process-Explorer/...4-10223605.html and disable/kill the Vbjgjb.exe if you found any. TS might be able to disable the superhidden option under the folder option after the virus process had been killed.
Card PM	Report Top Like Quote Reply

TSkentkoh	Jul 13 2012, 01:01 PM Show posts by this member only \| Post #15
Getting Started Junior Member 200 posts Joined: Sep 2008	QUOTE(lex @ Jul 12 2012, 04:58 PM) Possibly because its "superhidden" (not visible to the operating system due to rootkit's own self-protection). Copy and paste the filename directly (you can save the log in RootkitRevealer, then open the log and copy the full filename). Otherwise, use Killbox (which allows direct filename without browsing for the file). killbox are not available to download. the webpage is dead.. any other recommendation or other link to download. sorry i have to request here without google it. my antivirus is outdated. hope can provide another link.tq QUOTE(sI Taufu @ Jul 12 2012, 10:56 PM) TS do download process explorer from here: http://download.cnet.com/Process-Explorer/...4-10223605.html and disable/kill the Vbjgjb.exe if you found any. TS might be able to disable the superhidden option under the folder option after the virus process had been killed. i can't find any vbjgjb.exe from process explorer.
Card PM	Report Top Like Quote Reply

catuabamalaysia	Jul 13 2012, 01:11 PM Show posts by this member only \| Post #16
Getting Started Junior Member 64 posts Joined: Jun 2012	Hmm... do you have a Windows Vista or Windows 7 DVD lying around. You can use it's Windows PE to find the file. Or try opening command prompt (start menu > run > type in: cmd) now and type below to find the file. dir Vbjgjb.exe /s If you are able to find it in command prompt in the same folder then delete it by typing below (remember to include the quotes): del "C:\Documents and Settings\WindowsXP\Application Data\Vbjgjb.exe"
Card PM	Report Top Like Quote Reply

lex	Jul 14 2012, 01:32 PM Show posts by this member only \| Post #17
Old Am I? VIP 18,182 posts Joined: Jan 2005 From: Dagobah	QUOTE(kentkoh @ Jul 13 2012, 01:01 PM) killbox are not available to download. the webpage is dead.. any other recommendation or other link to download. sorry i have to request here without google it. my antivirus is outdated. hope can provide another link.tq Try this link: Softpedia > Windows > Security > Secure cleaning > Download Pocket Killbox - Allows you to erase programs that Windows Explorer doesn't allow you to remove... QUOTE(kentkoh @ Jul 13 2012, 01:01 PM) i can't find any vbjgjb.exe from process explorer. Rootkits are usually hidden in the task/process list also. That's why specific programs like RootkitRevealer are required to detect them.
Card PM	Report Top Like Quote Reply

« Next Oldest · Technical Support · Next Newest »

Add Reply Options

Change to:

0.0255sec

0.83

6 queries

GZIP Disabled
Time is now: 20th December 2025 - 05:15 PM

All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)

Removal Request

Powered by Invision Power Board © 2025 IPS, Inc.