whomeyesyou

I'm not sure where to post this so excuse me if I'm in the wrong place. I recently downloaded Malwarebytes to get rid of a virus I believe I had. I did a scan. Here is the log. Malwarebytes' Anti-Malware 1.33 Database version: 1747 Windows 5.1.2600 Service Pack 2 2/11/2009 3:30:17 AM mbam-log-2009-02-11 (03-30-17).txt Scan type: Full Scan (C:\|D:\|) Objects scanned: 89292 Time elapsed: 15 minute(s), 19 second(s) Memory Processes Infected: 0 Memory Modules Infected: 4 Registry Keys Infected: 17 Registry Values Infected: 2 Registry Data Items Infected: 2 Folders Infected: 0 Files Infected: 13 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: C:\WINDOWS\system32\qtsloiwg.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\vtUlMdEX.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\mumurp.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\ddcCssRL.dll (Trojan.Vundo.H) -> Delete on reboot. Registry Keys Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ddccssrl (Trojan.Vundo.H) -> Delete on reboot. HKEY_CLASSES_ROOT\CLSID\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{de001ef3-6191-4415-a911-894d29adb04a} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{de001ef3-6191-4415-a911-894d29adb04a} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e7084066-a7ca-4224-9b8d-8aeb6bc49da7} (Trojan.Vundo.H) -> Delete on reboot. HKEY_CLASSES_ROOT\CLSID\{e7084066-a7ca-4224-9b8d-8aeb6bc49da7} (Trojan.Vundo.H) -> Delete on reboot. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{de001ef3-6191-4415-a911-894d29adb04a} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{e7084066-a7ca-4224-9b8d-8aeb6bc49da7} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\a0be44ba (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot. Registry Data Items Infected: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\vtulmdex -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\vtulmdex -> Delete on reboot. Folders Infected: (No malicious items detected) Files Infected: C:\WINDOWS\system32\ddcCssRL.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\mumurp.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\vtUlMdEX.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\XEdMlUtv.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\XEdMlUtv.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\qtsloiwg.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\gwiolstq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\Documents and Settings\g\Local Settings\Temporary Internet Files\Content.IE5\8LMJGPU3\apstpldr.dll[1].htm (Trojan.Vundo) -> Quarantined and deleted successfully. C:\Documents and Settings\g\Local Settings\Temporary Internet Files\Content.IE5\GBQPKJEX\index[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\Documents and Settings\g\Local Settings\Temporary Internet Files\Content.IE5\GBQPKJEX\upd105320[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\eglgyvng.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\khfeFYQi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. C:\WINDOWS\system32\khfGawUn.dll (Trojan.Vundo) -> Delete on reboot. --- I chose to remove the following files, Then Malwarebytes came up with a popup message saying something along the lines of that Not all of the files could be removed, but they would be deleted on reboot. So, I clicked yes, and it restarted my computer. When my computer restarted, I opened Malwarebytes and did a second scan. The log was Malwarebytes' Anti-Malware 1.33 Database version: 1747 Windows 5.1.2600 Service Pack 2 2/11/2009 3:37:16 AM mbam-log-2009-02-11 (03-37-16).txt Scan type: Quick Scan Objects scanned: 55391 Time elapsed: 4 minute(s), 0 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) -- Firefox seems to be running smoothly as it did before without any ad's at all. I want to make sure my computer is actual clean though. I looked underneath Quarantine ,and there is a large number of files inside. Does this keep this files from further affecting my computer? If I delete this files from Quarantine what exactly does it do. What's the next step to ensure that my computer is virus free, and what should I do to maintain it. Once again if this is in the wrong place I apologize, but I'd greatly appreciate anyone's advice who could help me.

I'm not sure where to post this so excuse me if I'm in the wrong place. I recently downloaded Malwarebytes to get rid of a virus I believe I had. I did a scan. Here is the log. Malwarebytes' Anti-Malware 1.33 Database version: 1747 Windows 5.1.2600 Service Pack 2 2/11/2009 3:30:17 AM mbam-log-2009-02-11 (03-30-17).txt Scan type: Full Scan (C:\|D:\|) Objects scanned: 89292 Time elapsed: 15 minute(s), 19 second(s) Memory Processes Infected: 0 Memory Modules Infected: 4 Registry Keys Infected: 17 Registry Values Infected: 2 Registry Data Items Infected: 2 Folders Infected: 0 Files Infected: 13 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: C:\WINDOWS\system32\qtsloiwg.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\vtUlMdEX.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\mumurp.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\ddcCssRL.dll (Trojan.Vundo.H) -> Delete on reboot. Registry Keys Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ddccssrl (Trojan.Vundo.H) -> Delete on reboot. HKEY_CLASSES_ROOT\CLSID\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{de001ef3-6191-4415-a911-894d29adb04a} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{de001ef3-6191-4415-a911-894d29adb04a} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e7084066-a7ca-4224-9b8d-8aeb6bc49da7} (Trojan.Vundo.H) -> Delete on reboot. HKEY_CLASSES_ROOT\CLSID\{e7084066-a7ca-4224-9b8d-8aeb6bc49da7} (Trojan.Vundo.H) -> Delete on reboot. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{de001ef3-6191-4415-a911-894d29adb04a} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{e7084066-a7ca-4224-9b8d-8aeb6bc49da7} (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\a0be44ba (Trojan.Vundo.H) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot. Registry Data Items Infected: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\vtulmdex -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\vtulmdex -> Delete on reboot. Folders Infected: (No malicious items detected) Files Infected: C:\WINDOWS\system32\ddcCssRL.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\mumurp.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\vtUlMdEX.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\XEdMlUtv.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\XEdMlUtv.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\qtsloiwg.dll (Trojan.Vundo.H) -> Delete on reboot. C:\WINDOWS\system32\gwiolstq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\Documents and Settings\g\Local Settings\Temporary Internet Files\Content.IE5\8LMJGPU3\apstpldr.dll[1].htm (Trojan.Vundo) -> Quarantined and deleted successfully. C:\Documents and Settings\g\Local Settings\Temporary Internet Files\Content.IE5\GBQPKJEX\index[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\Documents and Settings\g\Local Settings\Temporary Internet Files\Content.IE5\GBQPKJEX\upd105320[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\eglgyvng.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully. C:\WINDOWS\system32\khfeFYQi.dll (Trojan.Vundo) -> Quarantined and deleted successfully. C:\WINDOWS\system32\khfGawUn.dll (Trojan.Vundo) -> Delete on reboot. --- I chose to remove the following files, Then Malwarebytes came up with a popup message saying something along the lines of that Not all of the files could be removed, but they would be deleted on reboot. So, I clicked yes, and it restarted my computer. When my computer restarted, I opened Malwarebytes and did a second scan. The log was Malwarebytes' Anti-Malware 1.33 Database version: 1747 Windows 5.1.2600 Service Pack 2 2/11/2009 3:37:16 AM mbam-log-2009-02-11 (03-37-16).txt Scan type: Quick Scan Objects scanned: 55391 Time elapsed: 4 minute(s), 0 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) -- I looked underneath Quarantine ,and there is a large number of files inside. Does this keep this files from further affecting my computer? If I delete this files from Quarantine what exactly does it do. What's the next step to ensure that my computer is virus free, and what should I do to maintain it. Once again if this is in the wrong place I apologize, but I'd greatly appreciate anyone's advice who could help me.