The purpose of this “CNN.com Daily Top 10” article is to educate users on how to identify and remove CNN.com Daily Top 10. This guide will be updated as more information becomes available. If you have any information about CNN.com Daily Top 10 or you would like to share your experience dealing with CNN.com Daily Top 10, we encourage you to post your comments. If you find this article useful and wish to conveniently view our recently added or updated articles, subscribe to our RSS feed.

Do you have CNN.com Daily Top 10?

CNN.com Daily Top 10 Description

CNN.com Daily Top 10 is a spam email created to download and install Trojan-Downloader.Agent.EL onto the user’s computer system. Once the user receives CNN.com Daily Top 10 email, he/she will believe it’s a legitimate email sent by CNN.com and will open it. CNN.com Daily Top 10 email contains the top ten stories of the day, however, none of the links provided redirect the user to any top story. If the user clicks on any of the links, he/she will be redirected to a website where a screen may display a message stating that the user needs the latest Flash player version to be able to see the site.

Once the user downloads the update, he/she will be downloading Trojan-Downloader.Agent.EL disguised as the get_flash_update.exe file. The Trojan-Downloader.Agent.EL will open a conduit in the user’s computer through which additional malware and rogue anti-spyware programs will be downloaded and installed. The most common rogue installed by Trojan-Downloader.Agent.EL is Antivirus XP 2008.

In addition, the user’s desktop background and screensaver may be hijacked. The user’s desktop may display a rogue alert notification stating that the user’s computer in flooded with spyware and the screensaver may switch to SysInternals BlueScreen Screen Saver. These malicious mechanisms may cause a crash in the computer’s operating system which will finally lead to a Blue Screen of Death (BSOD). The BSOD message may read:

“PAGE_FAULT_IN_NONPAGED_AREA
PANIC_STACK_SWITCH
MAXIMUM_WAIT_OBJECTS_EXCEEDED
NO_MORE_IRP_STACK_LOCATIONS
BAD_POOL_HEADER
IRQL_NOT_LESS_OR_EQUAL
KMODE_EXCEPTION_NOT_HANDLED
BOGUS_DRIVER
SYSINTERNALS_GREAT_SITE
UNEXPECTED_KERNEL_MODE_TRAP”

Trojan-Downloader.Agent.EL downloads may cause fake popups and system alert messages that interfere with the user’s workflow. Trojan-Downloader.Agent.EL is also known to modify the user’s Windows Registry.

Type: Trojans

Start of page

Detect CNN.com Daily Top 10 Using SpyHunter

The detection of CNN.com Daily Top 10 may be a difficult process and its removal may prove to be even more problematic, especially if it’s done without the assisstance of a removal tool. If you use a spyware removal tool such as SpyHunter, you can have SpyHunter automatically detect the files of CNN.com Daily Top 10 and any other type of malware, spyware, adware, computer worm, rootkit, trojan, browser helper object infection that may be hidden on your PC. Why you should try SpyHunter’s Detection Scanner.

To safely detect CNN.com Daily Top 10, follow the instructions below:

1. Once you download SpyHunter’s Detection Scanner, select “Start Scan” to run a full system scan to search for CNN.com Daily Top 10 and any other security threat that may be on your PC.
   
   
2. Once SpyHunter has detected CNN.com Daily Top 10, you will need to purchase SpyHunter to continue on to the removal process.
   
   
3. To complete the cleaning process, reboot your computer and run SpyHunter again to check for any remaining CNN.com Daily Top 10 infections.
   
   

* SpyHunter’s Detection Scanner only allows you to detect CNN.com Daily Top 10 and other malware threats found on your PC. In order to remove CNN.com Daily Top 10, you need to purchase the full version of SpyHunter. If SpyHunter is not able to remove CNN.com Daily Top 10 or any other malware threats, SpyHunter’s Spyware HelpDesk can generate free custom malware fixes tailored for your PC. The full version of SpyHunter also provides real-time protection with daily definition updates to keep your PC on top of the latest security trends.

Start of page

Still Can’t Remove CNN.com Daily Top 10?

Exclusive Offer for SpyHunter Customers: FREE Custom Malware Fixes!
Have SpyHunter’s Spyware HelpDesk create FREE custom malware fixes tailored to your PC!

If SpyHunter’s scanning process is unable to detect CNN.com Daily Top 10 threat, SpyHunter customers have the option to generate a free diagnostic report to receive a custom fix for their problem using SpyHunter’s built in Spyware HelpDesk tool.

Spyware HelpDesk is both a service and a tool which allows our technicians to generate custom fixes specific to your PC. These custom fixes are transmitted to your SpyHunter utility which will disable and eradicate your malware threat completely off your PC. In order to better understand the process involved in generating custom fixes with SpyHunter’s Spyware HelpDesk, read how to use SpyHunter’s Spyware HelpDesk to create a custom malware fix for CNN.com Daily Top 10.

Some types of threats hide pieces of code from Windows, install additional components, and others have polymorphic capabilities to make removal harder. You can read the various scenarios as to why you can’t remove CNN.com Daily Top 10 with SpyHunter or manually. With SpyHunter’s Spyware Helpdesk, you’ll be able have a custom fix that is specific to your spyware infection on your PC.

Start of page

CNN.com Daily Top 10 Installation Process

Listed below are files needed for the installation of CNN.com Daily Top 10. You can use this information to manually search and remove CNN.com Daily Top 10 from your PC.

Use Caution! Some technical expertise is needed. Manual removal of CNN.com Daily Top 10 is a delicate procedure and does not guarantee complete removal of the malware, since some malicious files tend to hide or may have the ability to recreate themselves. It is strongly advised that you backup your PC before you attempt to manually remove CNN.com Daily Top 10. ESG is not responsible for any damage to your computer resulting in any way from your use of this CNN.com Daily Top 10 installation process.

If you are still having problems with CNN.com Daily Top 10, we recommend you download SpyHunter’s Spyware Detection Tool to safely detect CNN.com Daily Top 10. SpyHunter can facilitate the process of detecting and ultimately removing the unwanted files without having to deal with sensitive areas within your system.

If SpyHunter does not fully fix your problem, there may be many reasons as to its inability to remove the unwanted files. With SpyHunter’s Spyware HelpDesk, as a custom-automated-fix tool, you can achieve complete removal.

On the CNN.com Daily Top 10 files listed below, you will find that some files may have environment variables (ex. “%Program Files%”). Read more on “Environment Variables List” for information on what each environment variable means.

Stop CNN.com Daily Top 10 processes

CNN.com Daily Top 10 creates the following cookies:
Find out how to remove CNN.com Daily Top 10 processes

• c:\WINDOWS\system32\lphcjkrj0etfg.exe
• c:\Program Files\rhcnkrj0etfg\Uninstall.exe
• c:\Program Files\rhcnkrj0etfg\msvcp71.dll
• c:\WINDOWS\system32\pphcjkrj0etfg.exe
• c:\Program Files\rhcnkrj0etfg\rhcnkrj0etfg.exe
• c:\Program Files\rhcnkrj0etfg\MFC71.dll
• c:\WINDOWS\system32\CbEvtSvc.exe
• c:\WINDOWS\system32\drivers\54c70b2e.sys
• c:\Program Files\rhcnkrj0etfg\MFC71ENU.DLL
• c:\Program Files\rhcnkrj0etfg\msvcr71.dll

Delete CNN.com Daily Top 10 Dlls

The following CNN.com Daily Top 10 DLL files are created:
Find out how to remove CNN.com Daily Top 10 dlls

• c:\Program Files\rhcnkrj0etfg\msvcp71.dll
• c:\Program Files\rhcnkrj0etfg\MFC71.dll
• c:\Program Files\rhcnkrj0etfg\MFC71ENU.DLL
• c:\Program Files\rhcnkrj0etfg\msvcr71.dll

Remove other malicious CNN.com Daily Top 10 files

The following CNN.com Daily Top 10 files are created:
Find out how to remove CNN.com Daily Top 10 malicious files

• c:\WINDOWS\system32\pphcjkrj0etfg.exe
• c:\WINDOWS\system32\drivers\54c70b2e.sys
• c:\Program Files\rhcnkrj0etfg\rhcnkrj0etfg.exe.local
• c:\Program Files\rhcnkrj0etfg\MFC71ENU.DLL
• c:\Program Files\rhcnkrj0etfg\msvcr71.dll
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Autorun\HKLM\RunOnce
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Autorun\StartMenuCurrentUser
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Packages
• c:\Documents and Settings\All Users\Start Menu\Programs\Antivirus XP 2008.lnk
• c:\Documents and Settings\All Users\Start Menu\Programs\Antivirus XP 2008\How to Register Antivirus XP 2008.lnk
• c:\WINDOWS\system32\blphcjkrj0etfg.scr
• c:\WINDOWS\system32\phcjkrj0etfg.bmp
• c:\Program Files\rhcnkrj0etfg\rhcnkrj0etfg.exe
• c:\Program Files\rhcnkrj0etfg\database.dat
• c:\Program Files\rhcnkrj0etfg\msvcp71.dll
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Autorun\HKLM
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Autorun\HKCU\RunOnce
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\BrowserObjects
• c:\Documents and Settings\All Users\Start Menu\Programs\Antivirus XP 2008
• c:\Documents and Settings\All Users\Start Menu\Programs\Antivirus XP 2008\Register Antivirus XP 2008.lnk
• c:\Documents and Settings\All Users\Start Menu\Programs\Antivirus XP 2008\Uninstall.lnk
• c:\WINDOWS\system32\CbEvtSvc.exe
• c:\WINDOWS\system32\lphcjkrj0etfg.exe
• c:\Program Files\rhcnkrj0etfg
• c:\Program Files\rhcnkrj0etfg\Uninstall.exe
• c:\Program Files\rhcnkrj0etfg\MFC71.dll
• c:\Program Files\rhcnkrj0etfg\license.txt
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Autorun
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Autorun\HKCU
• c:\Documents and Settings\LocalService\Application Data\rhcnkrj0etfg\Quarantine\Autorun\StartMenuAllUsers
• c:\Documents and Settings\All Users\Desktop\Antivirus XP 2008.lnk
• c:\Documents and Settings\All Users\Start Menu\Programs\Antivirus XP 2008\Antivirus XP 2008.lnk
• c:\Documents and Settings\All Users\Start Menu\Programs\Antivirus XP 2008\License Agreement.lnk

CNN.com Daily Top 10 creates the following registry entry so that it executes whenever Windows starts:

• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\54c70b2e

The following registry keys disable key functions such as executing regedit, taskmanager, etc.:

Note: Although key values do not affect system performance, it prevents you from disabling CNN.com Daily Top 10.

• HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “NoDispScrSavPage”

The following registry keys are leftover entries which may not affect the system:

Note: In some cases, leftover entries may cause the system to load and perform slower depending on the amount of leftover entries, such as icons in add/remove programs windows, etc.

• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\rhcnkrj0etfg

Remove other registry keys created by CNN.com Daily Top 10

CNN.com Daily Top 10 creates the following registry keys:
Find out how to remove CNN.com Daily Top 10 registry keys

• HKEY_LOCAL_MACHINE\SOFTWARE\rhcnkrj0etfg
• HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_CBEVTSVC
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\54c70b2e
• HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “NoDispScrSavPage”
• HKEY_CURRENT_USER\Software\Sysinternals\Bluescreen Screen Saver
• HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\54c70b2e
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CbEvtSvc
• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “SMrhcnkrj0etfg”
• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\rhcnkrj0etfg
• HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\CbEvtSvc
• HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CBEVTSVC
• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “lphcjkrj0etfg”
• HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “NoDispBackgroundPage”

Important Article Disclaimer

Start of page