Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

\windows\system32\user32.dll virus


  • Please log in to reply
No replies to this topic

#1 ctomford

ctomford

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:03 PM

Posted 01 August 2010 - 02:44 PM

I recently became infected with \windows\system32\user32.dll virus and all the info I have found on the internet and this forum advise I will need a windows recovery disk to repair. Problem is that I no longer have my install disk. Has anyone had any success with removing this virus without the windows disk? Any help or advice would be greatly appreciated.

Here are my avast logs:

8/1/2010 9:12:52 AM Boys 1556 Sign of "Win32:SysPatch [Wrm]" has been found in "f:\windows\system32\user32.dll" file.
7/29/2010 10:29:16 PM Boys 852 Sign of "Win32:SysPatch [Wrm]" has been found in "f:\windows\system32\user32.dll" file.
7/29/2010 9:19:47 PM Boys 3648 Sign of "Win32:SysPatch [Wrm]" has been found in "f:\windows\system32\user32.dll" file.
7/28/2010 4:19:11 PM SYSTEM 1468 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/25/2010 1:13:36 PM SYSTEM 1468 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/25/2010 1:18:44 PM SYSTEM 1468 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/25/2010 4:36:11 PM SYSTEM 1468 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/25/2010 8:44:01 PM SYSTEM 1468 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 1:13:33 PM SYSTEM 1468 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 9:26:37 PM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 9:26:37 PM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 5:28:02 PM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/26/2010 8:42:26 AM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/26/2010 8:42:26 AM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/26/2010 8:47:10 AM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/26/2010 12:14:01 PM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 9:15:15 PM SYSTEM 1472 Sign of "JS:Pdfka-gen [Expl]" has been found in "F:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\YM0G42X1\36fa09ef9b2ca561f7e7e2766ad1cd23[1].pdf" file.
7/29/2010 8:52:15 PM SYSTEM 1472 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 9:03:44 PM SYSTEM 1476 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 9:03:44 PM SYSTEM 1476 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 12:45:03 PM SYSTEM 1476 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/24/2010 12:41:40 PM SYSTEM 1476 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/24/2010 4:04:20 PM SYSTEM 1476 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/25/2010 12:48:29 PM SYSTEM 1480 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/25/2010 8:26:16 AM SYSTEM 1480 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/31/2010 8:25:42 PM SYSTEM 1484 Sign of "JS:Illredir-AX [Trj]" has been found in "F:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\2G2BEUMY\jquery.min[1].js" file.
8/1/2010 9:09:12 AM SYSTEM 1484 Sign of "JS:FakeAV-EJ [Trj]" has been found in "F:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\CKG157Z4\107ab5b94a7e7ef5e5d7655514c5d02b54483011811[1].js" file.
8/1/2010 9:05:27 AM SYSTEM 1484 Sign of "JS:FakeAV-EJ [Trj]" has been found in "F:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\CKG157Z4\107ab5b94a7e7ef5e5d7655514c5d02b54483011811[1].js" file.
8/1/2010 3:02:00 AM SYSTEM 1484 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/25/2010 8:21:57 AM SYSTEM 1480 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/31/2010 7:42:02 PM SYSTEM 1484 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/31/2010 7:46:00 PM SYSTEM 1484 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 12:32:25 PM SYSTEM 1492 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 2:33:00 AM SYSTEM 1492 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 11:11:37 PM SYSTEM 1492 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 1:10:02 PM SYSTEM 1536 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/31/2010 11:27:36 PM SYSTEM 1484 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 9:18:27 PM SYSTEM 1572 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 1:25:48 PM SYSTEM 1572 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 1:19:09 PM SYSTEM 1572 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 1:16:17 PM SYSTEM 1576 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 4:36:02 PM SYSTEM 1576 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 5:22:00 PM SYSTEM 1576 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 2:42:21 PM SYSTEM 1464 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/24/2010 9:01:08 PM SYSTEM 1576 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/24/2010 5:35:50 PM SYSTEM 1576 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 9:25:47 PM SYSTEM 1592 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
8/1/2010 12:12:24 PM SYSTEM 1596 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
8/1/2010 12:12:54 PM SYSTEM 1596 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/30/2010 10:10:35 AM SYSTEM 1600 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/29/2010 5:23:17 PM SYSTEM 1576 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/30/2010 10:20:48 AM SYSTEM 1600 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/30/2010 1:43:11 PM SYSTEM 1600 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/30/2010 5:00:01 PM SYSTEM 1600 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/30/2010 8:55:21 PM SYSTEM 1600 Sign of "JS:Illredir-AX [Trj]" has been found in "F:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\LOGNXEZ1\jquery.min[1].js" file.
7/24/2010 12:22:01 PM SYSTEM 1616 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/28/2010 7:48:41 PM SYSTEM 1468 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.
7/30/2010 10:11:13 AM SYSTEM 1600 Sign of "Win32:SysPatch [Wrm]" has been found in "F:\WINDOWS\SYSTEM32\USER32.DLL" file.

Edited by ctomford, 01 August 2010 - 02:50 PM.


BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users