I Win :)
Registry entries found:
[HKEY_LOCAL_MACHINE\Software\C6TO8A2reNm9]
@="vGDJN6JSTTSTTUTjAKjvjjSTTSiVT.otju.yTKQKL6EZYT5JAN6JKT
AeWEG56EUKQK"
"Device"="\\\\.\\DisDPDD"
"DriverPath"="C:\\WINDOWS\\system32\\drivers\\i80modem.sys"
"DriverName"="Polrver"
"HideUninstallerName"="C:\\Program Files\\Sienkind\\rnrpya64.exe"
"HDll"="C:\\WINDOWS\\system32\\sysmdl32.dll"
"ServerAddress"="adchannel.contextplus.net"
"LegalNote"="http://adchannel.contextplus.net/legal-note/nonbranded.html"
"PartnerId"="CP.GH2"
"InstallationId"="{X2e238d9-6751-644d-6af2-70413177fe33}"
"PageFiltering"=dword:00000001
"ClientName"="C:\\Program Files\\Sienkind\\mqgcsrss.exe"
"AutoUpdater"="C:\\WINDOWS\\system32\\stksasrv.exe"
"Version"="2.0.128"
"CrMnTmt"=dword:0036ee80
************
Removing hidden service:
Service Polrver removed.
Removing hidden folder:
Deletion of folder Sienkind succeeded!
Deleting files:
Deletion of file C:\WINDOWS\system32\drivers\i80modem.sys succeeded!
Deletion of file C:\WINDOWS\system32\stksasrv.exe succeeded!
Deletion of file C:\WINDOWS\system32\sysmdl32.dll succeeded!
Backing up files:
Done!
Removing registry entries:
REGEDIT4
[-HKEY_CURRENT_USER\Software\C6TO8A2reNm9]
[-HKEY_LOCAL_MACHINE\Software\C6TO8A2reNm9]
Done!
Finished!
Teh Win!
[HKEY_LOCAL_MACHINE\Software\C6TO8A2reNm9]
@="vGDJN6JSTTSTTUTjAKjvjjSTTSiVT.otju.yTKQKL6EZYT5JAN6JKT
AeWEG56EUKQK"
"Device"="\\\\.\\DisDPDD"
"DriverPath"="C:\\WINDOWS\\system32\\drivers\\i80modem.sys"
"DriverName"="Polrver"
"HideUninstallerName"="C:\\Program Files\\Sienkind\\rnrpya64.exe"
"HDll"="C:\\WINDOWS\\system32\\sysmdl32.dll"
"ServerAddress"="adchannel.contextplus.net"
"LegalNote"="http://adchannel.contextplus.net/legal-note/nonbranded.html"
"PartnerId"="CP.GH2"
"InstallationId"="{X2e238d9-6751-644d-6af2-70413177fe33}"
"PageFiltering"=dword:00000001
"ClientName"="C:\\Program Files\\Sienkind\\mqgcsrss.exe"
"AutoUpdater"="C:\\WINDOWS\\system32\\stksasrv.exe"
"Version"="2.0.128"
"CrMnTmt"=dword:0036ee80
************
Removing hidden service:
Service Polrver removed.
Removing hidden folder:
Deletion of folder Sienkind succeeded!
Deleting files:
Deletion of file C:\WINDOWS\system32\drivers\i80modem.sys succeeded!
Deletion of file C:\WINDOWS\system32\stksasrv.exe succeeded!
Deletion of file C:\WINDOWS\system32\sysmdl32.dll succeeded!
Backing up files:
Done!
Removing registry entries:
REGEDIT4
[-HKEY_CURRENT_USER\Software\C6TO8A2reNm9]
[-HKEY_LOCAL_MACHINE\Software\C6TO8A2reNm9]
Done!
Finished!
Teh Win!
posted by Mikey B. at 10:35 PM
0 Comments:
Post a Comment
<< Home