Random Number.exe Keeps Appearing - Need Some Assistance

We did not ask you to turn off System Restore yet. That is only done once you are clean.

We did however ask for a HijackThis log in step 7. I'll will ask you for one at the end of the below steps.



You need to delete the below email archive that Bitdefender found.
C:\Archives\Backup 06.06\Mail Archive 06.06\archive.pst=>[Subject:

Regions Bank: Urgent Notification From BiIIing Department [Mon, 11 Apr 2005 18:39:19 -0100]][From: Regions]=>(body)

Now Uninstall the below old versions of software:
J2SE Runtime Environment 5.0 Update 6
Java 2 Runtime Environment, SE v1.4.2_04
Mozilla Firefox (1.5.0.7)

Now install the current version of Sun Java from: Sun Java Runtime Environment

Then install the current version of FireFox from: Mozilla Firefox

Make sure viewing of hidden files is enabled (per the tutorial).

Now Copy the bold text below to notepad. Save it as fixWLK.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Boot into safe mode and use Windows Explorer to delete:
C:\WINDOWS\system32\ogysteo.exe
C:\WINDOWS\system32\xpRecovery.dll

Now run Ccleaner.

Now reboot in normal mode

Also delete all files in the below folders except ones from the current date (Windows may not let you delete the files from the current day).
C:\Documents and Settings\Mike\Local Settings\Temp

Now attach the below new logs and tell me how the above steps went.

1. GetRunKey
2. ShowNew
3. HJT

Make sure you tell me how things are working now!

Reminder Note: Once we have determined you are malware free you will need to disable System Restore, reboot, and re-enable system restore per step 1 of the READ & RUN ME. This only applies to if using WinXP or WinMe.