Aphasia Posted August 29, 2013 ID:722237 Share Posted August 29, 2013 Hi. I ran a full scan with the free version of MBAM and then I updated to the Pro version and ran another full scan. Both times I was notified that 7 files were infected. The only option I had was to remove the files, but I didn't do it because I don't know if it's safe to remove them. Here are the DDS.txt and Attach.txt logs: *** DDS.txt ***----------------------------------------------------- DDS (Ver_2012-11-20.01) - NTFS_x86Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.25.2Run by HP_Eier at 7:39:31 on 2013-08-29Microsoft Windows XP Home Edition 5.1.2600.3.1252.47.1044.18.2558.1678 [GMT 2:00].AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}.============== Running Processes ================.C:\Programfiler\Alwil Software\Avast5\AvastSvc.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Programfiler\Canon\IJPLM\IJPLMSVC.EXEC:\Programfiler\Java\jre7\bin\jqs.exeC:\Programfiler\Fellesfiler\LightScribe\LSSrvc.exeC:\Programfiler\Nero\Nero8\Nero BackItUp\NBService.exeC:\Programfiler\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exeC:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXEC:\Programfiler\Prio\prio_svc.exeC:\Documents and Settings\All Users\Programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exeC:\Programfiler\Fellesfiler\Ulead Systems\DVD\ULCDRSvr.exeC:\Programfiler\UPHClean\uphclean.exeC:\Programfiler\Canon\CAL\CALMAIN.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\System32\alg.exeC:\windows\system\hpsysdrv.exeC:\Programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\WINDOWS\ALCXMNTR.EXEC:\Programfiler\HP\HP Software Update\HPWuSchd2.exeC:\HP\KBD\KBD.EXEC:\Programfiler\Cyberlink\Shared Files\brs.exeC:\Programfiler\Sony\Content Transfer\ContentTransferWMDetector.exeC:\Programfiler\Alwil Software\Avast5\avastUI.exeC:\Programfiler\iTunes\iTunesHelper.exeC:\Programfiler\Fellesfiler\Java\Java Update\jusched.exeC:\Programfiler\Fellesfiler\Nero\Lib\NMBgMonitor.exeC:\WINDOWS\system32\ctfmon.exeC:\Programfiler\iPod\bin\iPodService.exeC:\Programfiler\Fellesfiler\Nero\Lib\NMIndexingService.exeC:\Programfiler\Fellesfiler\Nero\Lib\NMIndexStoreSvr.exeC:\Programfiler\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Programfiler\Malwarebytes' Anti-Malware\mbamservice.exeC:\Programfiler\Malwarebytes' Anti-Malware\mbamgui.exeC:\WINDOWS\system32\wbem\wmiprvse.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupC:\WINDOWS\system32\svchost.exe -k NetworkServiceC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\svchost.exe -k imgsvc.============== Pseudo HJT Report ===============.uURLSearchHooks: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - <orphaned>BHO: SnagIt Toolbar Loader: {00C6482D-C502-44C8-8409-FCE54AD9C208} - c:\programfiler\techsmith\snagit 9\SnagItBHO.dllBHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>BHO: Telenorhjelpen: {2EF1BAF9-1988-42a1-82BC-5CB6197AED28} - c:\programfiler\telenor norway\telenorhjelpen\bho\IEBHO.dllBHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} -BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - c:\programfiler\canon\easy-webprint ex\ewpexbho.dllBHO: EWPBrowseObject Class: {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - c:\programfiler\canon\easy-webprint\EWPBrowseLoader.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\programfiler\java\jre7\bin\ssv.dllBHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\programfiler\alwil software\avast5\aswWebRepIE.dllBHO: Påloggingshjelp for Windows Live: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\programfiler\fellesfiler\microsoft shared\windows live\WindowsLiveLogin.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\programfiler\skype\toolbars\internet explorer\skypeieplugin.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programfiler\java\jre7\bin\jp2ssv.dllBHO: SimpleAdblock Class: {FFCB3198-32F3-4E8B-9539-4324694ED664} - c:\programfiler\fellesfiler\simple adblock\SimpleAdblock.dllTB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - c:\programfiler\canon\easy-webprint ex\ewpexhlp.dllTB: Easy-WebPrint: {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - c:\programfiler\canon\easy-webprint\Toolband.dllTB: SnagIt: {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - c:\programfiler\techsmith\snagit 9\SnagItIEAddin.dllTB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - c:\programfiler\canon\easy-webprint ex\ewpexhlp.dllTB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\programfiler\alwil software\avast5\aswWebRepIE.dllEB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - c:\programfiler\canon\easy-webprint ex\ewpexhlp.dllEB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - <orphaned>EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - <orphaned>uRun: [Photozig Albums Media Detector] c:\programfiler\photozig albums\pzAlbumsDetect.exeuRun: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\programfiler\fellesfiler\nero\lib\NMBgMonitor.exe"uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exeuRunOnce: [FFTI] c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\extensions\{b13721c7-f507-4982-b2e5-502a71474fed}\ffti.exe /verysilent /suppressmsgboxes /norestart /destpath="c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles/lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}"mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exemRun: [ATIPTA] c:\programfiler\ati technologies\ati control panel\atiptaxx.exemRun: [HPHUPD08] c:\programfiler\hp\digital imaging\{33d6cc28-9f75-4d1b-a11d-98895b3a3729}\hphupd08.exemRun: [Recguard] c:\windows\sminst\RECGUARD.EXEmRun: [AlcxMonitor] ALCXMNTR.EXEmRun: [HP Software Update] c:\programfiler\hp\hp software update\HPWuSchd2.exemRun: [regcmdcons] c:\hp\bin\cloaker.exe c:\hp\bin\cmdcons.cmdmRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exemRun: [KBD] c:\hp\kbd\KBD.EXEmRun: [NeroFilterCheck] c:\programfiler\fellesfiler\nero\lib\NeroCheck.exemRun: [NBKeyScan] "c:\programfiler\nero\nero8\nero backitup\NBKeyScan.exe"mRun: [bDRegion] c:\programfiler\cyberlink\shared files\brs.exemRun: [ContentTransferWMDetector.exe] c:\programfiler\sony\content transfer\ContentTransferWMDetector.exemRun: [APSDaemon] "c:\programfiler\fellesfiler\apple\apple application support\APSDaemon.exe"mRun: [iSUSPM Startup] c:\progra~1\felles~1\instal~1\update~1\ISUSPM.exe -startupmRun: [KernelFaultCheck] c:\windows\system32\dumprep 0 -kmRun: [avast] "c:\programfiler\alwil software\avast5\avastUI.exe" /noguimRun: [TkBellExe] "c:\programfiler\real\realplayer\update\realsched.exe" -osbootmRun: [Adobe ARM] "c:\programfiler\fellesfiler\adobe\arm\1.0\AdobeARM.exe"mRun: [QuickTime Task] "c:\programfiler\quicktime\QTTask.exe" -atboottimemRun: [iTunesHelper] "c:\programfiler\itunes\iTunesHelper.exe"mRun: [sunJavaUpdateSched] "c:\programfiler\fellesfiler\java\java update\jusched.exe"StartupFolder: c:\docume~1\alluse~1\start-~1\progra~1\oppstart\adobeg~1.lnk - c:\programfiler\fellesfiler\adobe\calibration\Adobe Gamma Loader.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1mPolicies-Explorer: NoDriveTypeAutoRun = dword:145IE: Download files with BH - c:\programfiler\bilderherunterlader\ieplugin\BHIEScript.htmIE: Easy-WebPrint Add To Print List - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_AddToList.htmlIE: Easy-WebPrint High Speed Print - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_HSPrint.htmlIE: Easy-WebPrint Preview - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_Preview.htmlIE: Easy-WebPrint Print - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_Print.htmlIE: Legg mål-linken i kø med BID - c:\programfiler\bulk image downloader\iemenu\iebidlinkqueue.htmIE: Legg nåværende side til med BID Image Downloader - c:\programfiler\bulk image downloader\iemenu\iebidqueue.htmIE: Åpne mål-linken med BID - c:\programfiler\bulk image downloader\iemenu\iebidlink.htmIE: Åpne nåværende side med BID Image Downloader - c:\programfiler\bulk image downloader\iemenu\iebid.htmIE: Åpne nåværende side med BID Link Explorer Image Downloader - c:\programfiler\bulk image downloader\iemenu\iebidlinkexplorer.htmIE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-001010-0002-0010-ABCDEFFEDCBC} - <orphaned>IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\programfiler\skype\toolbars\internet explorer\skypeieplugin.dllIE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htmIE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exeIE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programfiler\messenger\msmsgs.exeTCP: NameServer = 130.67.15.198 193.213.112.4 10.0.0.138TCP: Interfaces\{6AEC86C2-693B-4F76-8E32-83EC86171176} : DHCPNameServer = 16.92.3.242 16.92.3.243 16.81.3.243 16.114.3.243TCP: Interfaces\{7029FD28-C845-4426-BF5C-81A7284627A4} : DHCPNameServer = 130.67.15.198 193.213.112.4 10.0.0.138Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\programfiler\skype\toolbars\internet explorer\skypeieplugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\programfiler\fellesfiler\skype\Skype4COM.dllNotify: AtiExtEvent - Ati2evxx.dllAppInit_DLLs= prio.dllSSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dllHosts: 130.0.234.27 razlyuli.org================= FIREFOX ===================.FF - ProfilePath - c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\FF - prefs.js: browser.search.selectedEngine - Ask.comFF - component: c:\programfiler\orbitdownloader\addons\oneclickyoutubedownloader\components\GrabXpcom.dllFF - plugin: c:\documents and settings\hp_eier\programdata\facebook\npfbplugin_1_0_3.dllFF - plugin: c:\programfiler\adobe\reader 11.0\reader\air\nppdf32.dllFF - plugin: c:\programfiler\canon\easy-photoprint ex\NPEZFFPI.DLLFF - plugin: c:\programfiler\canon\mycamera download plugin\NPCIG.dllFF - plugin: c:\programfiler\java\jre7\bin\plugin2\npjp2.dllFF - plugin: c:\programfiler\microsoft silverlight\5.1.20513.0\npctrlui.dllFF - plugin: c:\programfiler\real\realplayer\netscape6\nprpplugin.dllFF - plugin: c:\programfiler\sony\media go\npmediago.dllFF - plugin: c:\programfiler\vizky\npVizky.dllFF - plugin: c:\windows\system32\adobe\director\np32dsw_1202122.dllFF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dllFF - plugin: c:\windows\system32\npdeployJava1.dllFF - plugin: c:\windows\system32\npptools.dllFF - ExtSQL: 2013-07-18 13:31; jid1-4P0kohSJxU1qGg@jetpack; c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\extensions\jid1-4P0kohSJxU1qGg@jetpack.xpiFF - ExtSQL: 2019-09-25 23:40; {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}; c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpiFF - ExtSQL: !HIDDEN! 2009-09-02 02:01; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension.---- FIREFOX POLICIES ----FF - user.js: yahoo.ytff.general.dontshowhpoffer - true============= SERVICES / DRIVERS ===============.R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-3-13 49376]R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-3-13 175176]R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-3-14 770344]R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2008-4-3 369584]R1 prio;Prio;c:\windows\system32\drivers\prio.sys [2012-11-8 54128]R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/05/18 02:00:34];c:\programfiler\cyberlink\powerdvd9\000.fcl [2009-2-28 87536]R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-4-3 29816]R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-3-13 66336]R2 avast! Antivirus;avast! Antivirus;c:\programfiler\alwil software\avast5\AvastSvc.exe [2010-7-10 46808]R2 MBAMScheduler;MBAMScheduler;c:\programfiler\malwarebytes' anti-malware\mbamscheduler.exe [2012-10-12 418376]R2 MBAMService;MBAMService;c:\programfiler\malwarebytes' anti-malware\mbamservice.exe [2009-3-26 701512]R2 OMSI download service;Sony Ericsson OMSI download service;c:\programfiler\sony ericsson\sony ericsson pc suite\SupServ.exe [2011-4-15 90112]R2 prio_svc;Prio Service;c:\programfiler\prio\prio_svc.exe [2012-11-8 12656]R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2012-10-2 3064000]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-3-26 22856]S2 SkypeUpdate;Skype Updater;c:\programfiler\skype\updater\Updater.exe [2012-7-13 160944]S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2012-8-31 12400]S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys --> c:\windows\system32\drivers\npf.sys [?]S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [2011-4-15 86824]S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [2011-4-15 15016]S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [2011-4-15 114600]S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [2011-4-15 108328]S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [2011-4-15 26024]S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [2011-4-15 104616]S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [2011-4-15 109736]S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2011-4-15 86824]S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2011-4-15 15016]S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2011-4-15 114728]S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [2011-4-15 106208]S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [2011-4-15 26024]S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [2011-4-15 104744]S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [2011-4-15 109864]S3 Sony PC Companion;Sony PC Companion;c:\programfiler\sony\sony pc companion\PCCService.exe [2012-8-31 155824]S3 USBAAPL;Apple Mobile USB Driver;c:\windows\system32\drivers\usbaapl.sys [2010-11-18 41984]S3 WN5401;Liteon Wireless LAN PCI 802.11 a/b/g adapter WN5401A;c:\windows\system32\drivers\wn5401.sys [2005-1-2 449920]S4 ESUSClient_TNO;Telenor Norway Software Update Service;c:\programfiler\telenor norway\esus_tno\ESUS_TNO.exe [2010-12-17 358808]S4 TelenorhjelpenSvc;Telenorhjelpen Service;c:\programfiler\telenor norway\telenorhjelpen\Service.exe [2011-2-15 463240].=============== File Associations ===============.ShellExec: FRONTPG.EXE: edit=c:\progra~1\micros~3\office\FRONTPG.EXE.=============== Created Last 30 ================.2013-08-27 20:45:11 -------- d--h--r- c:\documents and settings\hp_eier\Siste2013-08-15 12:36:40 -------- d-----w- c:\windows\system32\MRT2013-08-13 18:52:49 -------- d-----w- c:\documents and settings\hp_eier\programdata\com.aspiro.wimp.==================== Find3M ====================.2013-08-02 23:48:38 1543680 ------w- c:\windows\system32\wmvdecod.dll2013-07-26 02:48:59 920064 ----a-w- c:\windows\system32\wininet.dll2013-07-26 02:48:58 43520 ----a-w- c:\windows\system32\licmgr10.dll2013-07-26 02:48:58 1469440 ------w- c:\windows\system32\inetcpl.cpl2013-07-25 15:58:11 385024 ----a-w- c:\windows\system32\html.iec2013-07-15 21:17:05 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll2013-07-15 21:16:56 144896 ----a-w- c:\windows\system32\javacpl.cpl2013-07-15 21:16:54 867240 ----a-w- c:\windows\system32\npdeployJava1.dll2013-07-15 21:16:53 789416 ----a-w- c:\windows\system32\deployJava1.dll2013-07-14 21:20:29 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe2013-07-14 21:20:28 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl2013-07-10 10:37:48 406016 ----a-w- c:\windows\system32\usp10.dll2013-07-04 07:33:59 2195328 ----a-w- c:\windows\system32\ntoskrnl.exe2013-07-04 07:33:59 2071936 ----a-w- c:\windows\system32\ntkrnlpa.exe2013-06-27 19:30:20 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys2013-06-27 19:30:20 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys2013-06-05 09:08:28 1876736 ----a-w- c:\windows\system32\win32k.sys2013-06-04 07:22:58 563200 ----a-w- c:\windows\system32\qedit.dll2005-05-13 16:12:00 217073 --sha-r- c:\windows\meta4.exe2005-10-24 10:13:58 66560 --sha-r- c:\windows\MOTA113.exe2005-10-13 20:27:00 422400 --sha-r- c:\windows\x2.64.exe2005-06-26 14:32:28 616448 --sha-r- c:\windows\system32\cygwin1.dll2005-06-21 21:37:42 45568 --sha-r- c:\windows\system32\cygz.dll2008-09-03 06:25:48 77312 --sh--r- c:\windows\system32\devcon_001.exe2004-01-24 23:00:00 70656 --sha-r- c:\windows\system32\i420vfw.dll2006-04-27 09:24:24 2945024 --sha-r- c:\windows\system32\Smab.dll2005-02-28 12:16:22 240128 --sha-r- c:\windows\system32\x.264.exe2004-01-24 23:00:00 70656 --sha-r- c:\windows\system32\yv12vfw.dll.============= FINISH: 7:40:54,00 =============== *** Attach.txt ***----------------------------------------------------- .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows XP Home EditionBoot Device: \Device\HarddiskVolume2Install Date: 06.01.2006 11:25:55System Uptime: 28.08.2013 11:42:55 (20 hours ago).Motherboard: MSI | | AMETHYST-MProcessor: AMD Athlon 64 Processor 3500+ | Socket 939 | 1772/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 908 GiB total, 765,488 GiB free.D: is FIXED (FAT32) - 24 GiB total, 20,566 GiB free.E: is CDROM ()F: is RemovableG: is RemovableH: is RemovableI: is RemovableK: is FIXED (FAT32) - 298 GiB total, 2,503 GiB free.N: is FIXED (NTFS) - 932 GiB total, 734,47 GiB free..==== Disabled Device Manager Items =============.Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}Description: Wireless LAN PCI 802.11 a/b/g adapter WN5401ADevice ID: PCI\VEN_168C&DEV_001B&SUBSYS_500011AD&REV_01\4&1C88B56&0&08A4Manufacturer: LiteonName: Wireless LAN PCI 802.11 a/b/g adapter WN5401APNP Device ID: PCI\VEN_168C&DEV_001B&SUBSYS_500011AD&REV_01\4&1C88B56&0&08A4Service: WN5401.Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}Description: BeepDevice ID: ROOT\LEGACY_BEEP\0000Manufacturer:Name: BeepPNP Device ID: ROOT\LEGACY_BEEP\0000Service: Beep.==== System Restore Points ===================.RP2271: 23.06.2013 14:04:52 - Kontrollpunkt for systemRP2272: 24.06.2013 16:33:34 - Kontrollpunkt for systemRP2273: 25.06.2013 16:38:37 - Kontrollpunkt for systemRP2274: 26.06.2013 17:32:06 - Kontrollpunkt for systemRP2275: 27.06.2013 23:55:07 - Kontrollpunkt for systemRP2276: 29.06.2013 11:47:32 - Kontrollpunkt for systemRP2277: 30.06.2013 12:16:50 - Kontrollpunkt for systemRP2278: 01.07.2013 12:20:31 - Kontrollpunkt for systemRP2279: 02.07.2013 12:51:17 - Kontrollpunkt for systemRP2280: 07.07.2013 10:18:30 - Kontrollpunkt for systemRP2281: 08.07.2013 12:36:31 - Kontrollpunkt for systemRP2282: 09.07.2013 13:39:17 - Kontrollpunkt for systemRP2283: 10.07.2013 14:00:18 - Kontrollpunkt for systemRP2284: 13.07.2013 17:18:01 - Software Distribution Service 3.0RP2285: 13.07.2013 18:08:39 - Software Distribution Service 3.0RP2286: 14.07.2013 19:03:15 - Kontrollpunkt for systemRP2287: 15.07.2013 19:58:33 - Kontrollpunkt for systemRP2288: 15.07.2013 23:15:49 - Removed Java 7 Update 25RP2289: 15.07.2013 23:16:49 - Installed Java 7 Update 25RP2290: 17.07.2013 12:39:42 - Kontrollpunkt for systemRP2291: 17.07.2013 18:47:26 - Removed WinZip 17.5RP2292: 18.07.2013 18:52:05 - Kontrollpunkt for systemRP2293: 19.07.2013 20:56:12 - Kontrollpunkt for systemRP2294: 20.07.2013 23:24:12 - Kontrollpunkt for systemRP2295: 22.07.2013 12:39:54 - Kontrollpunkt for systemRP2296: 23.07.2013 15:43:03 - Kontrollpunkt for systemRP2297: 24.07.2013 15:47:55 - Kontrollpunkt for systemRP2298: 26.07.2013 11:12:21 - Kontrollpunkt for systemRP2299: 27.07.2013 12:11:11 - Kontrollpunkt for systemRP2300: 28.07.2013 13:19:37 - Kontrollpunkt for systemRP2301: 29.07.2013 17:18:15 - Kontrollpunkt for systemRP2302: 31.07.2013 00:02:12 - Kontrollpunkt for systemRP2303: 01.08.2013 15:35:48 - Kontrollpunkt for systemRP2304: 02.08.2013 16:38:27 - Kontrollpunkt for systemRP2305: 04.08.2013 00:16:33 - Kontrollpunkt for systemRP2306: 06.08.2013 13:26:08 - Kontrollpunkt for systemRP2307: 07.08.2013 15:25:41 - Kontrollpunkt for systemRP2308: 09.08.2013 13:28:16 - Kontrollpunkt for systemRP2309: 10.08.2013 13:50:52 - Kontrollpunkt for systemRP2310: 11.08.2013 16:21:40 - Kontrollpunkt for systemRP2311: 12.08.2013 17:11:20 - Kontrollpunkt for systemRP2312: 13.08.2013 17:25:06 - Kontrollpunkt for systemRP2313: 14.08.2013 18:21:17 - Kontrollpunkt for systemRP2314: 15.08.2013 14:26:54 - Software Distribution Service 3.0RP2315: 16.08.2013 15:37:31 - Kontrollpunkt for systemRP2316: 17.08.2013 23:12:38 - Kontrollpunkt for systemRP2317: 19.08.2013 18:16:33 - Kontrollpunkt for systemRP2318: 21.08.2013 16:01:59 - Kontrollpunkt for systemRP2319: 23.08.2013 15:35:20 - Kontrollpunkt for systemRP2320: 24.08.2013 23:45:40 - Kontrollpunkt for systemRP2321: 26.08.2013 22:48:08 - Kontrollpunkt for systemRP2322: 28.08.2013 12:03:27 - Software Distribution Service 3.0.==== Installed Programs ======================. Leawo Free AVI Converter version 2.4.0.03DSexVilla2AC3Filter (remove only)AC3Tools ProAdobe AIRAdobe Flash Player 11 ActiveXAdobe Flash Player 11 PluginAdobe Photoshop 6.0Adobe Reader XI (11.0.03) - NorskAdobe Shockwave Player 12.0AiO_ScanAiOSoftwareAnalogX DXManAnalogX Vocal Remover (WinAmp)AoA DVD RipperApple-programsupportApple Mobile Device SupportApple Software UpdateApplian FLV and Media Player 3.1.1.12ATI Control PanelATI Display DriverµTorrentAudacity 1.2.4Audio TranscoderAudiograbber 1.83 SEavast! Free AntivirusBatch Image Resizer Full VersionBilderHerunterlader 3.6.6BilderHerunterlader IE-Plugin 8.0Bink and SmackerBonjourBrukerregistrering for Canon iP4300Brukerregistrering for Canon iP4800 seriesBulk Image Downloader v4.58.0.0Bulk Rename Utility 2.7.1.1CameraDriversCameraUserGuidesCanon Camera Access LibraryCanon Easy-PhotoPrint EXCanon Easy-WebPrint EXCANON iMAGE GATEWAY MyCamera Download PluginCANON iMAGE GATEWAY Task for ZoomBrowser EXCanon Inkjet Printer/Scanner/Fax Extended Survey ProgramCanon iP4300Canon iP4800 series Printer DriverCanon MOV DecoderCanon MOV EncoderCanon MovieEdit Task for ZoomBrowser EXCanon My PrinterCanon Setup Utility 2.3Canon Solution Menu EXCanon Utilities CameraWindow DC 8Canon Utilities CameraWindow LauncherCanon Utilities Easy-PhotoPrintCanon Utilities Easy-PrintToolBoxCanon Utilities Movie Uploader for YouTubeCanon Utilities MyCameraCanon Utilities PhotoStitchCanon Utilities ZoomBrowser EXCanon ZoomBrowser EX Memory Card UtilityCD-LabelPrintContent TransferCPU-ControlCrush'Em 2.0CyberLink PowerDVD 9D2300D2300_HelpDestinationsDeviceFunctionQFolderDeviceManagementQFolderDivXLand Media SubtitlerDocProcDocumentViewerDocumentViewerQFolderDownload Manager 2.0DropboxDVD Audio Extractor 4.2.1DVD Flick 1.3.0.7DVD Shrink 3.2DVDStyler v1.8.2Dziobas Rar Player 0.009.39EASE RM Converter 3.00Easy-WebPrintEnhanced Multimedia Keyboard SolutionFacebook Plug-InFaceGen Modeller 3.4FaxFighter Factory 1.0.9.2005 + Update Pack 1FLAC 1.2.1b (remove only)FormatFactory 2.96Free Audio Extractor V1.22GdiplusUpgradeGIMP 2.6.11GoldWave v5.23High Definition Audio - KB888111Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)Hotfix for Windows Media Format 11 SDK (KB929399)Hotfix for Windows XP (KB954550-v5)Hotfix for Windows XP (KB976002-v5)hp deskjet 656c series (Bare fjerning)HP Deskjet Printer PreloadHP Document Viewer 5.3HP Imaging Device Functions 7.0HP Photosmart-kameraer 5.0HP Photosmart-kameraer 6.0HP Photosmart 330,380,420,470,7800,8000,8200 SeriesHP Photosmart and Deskjet 7.0 Software (nob)HP Photosmart EssentialHP Product AssistantHP PSC & OfficeJet 5.3.BHP Solution Center 7.0HP Updatehph_ProductContexthph_readmehph_softwarehph_software_reqhpiCamDrvQFolderHPPhotoSmartExpressHPProductAssistantHurtigreparasjon for Windows Internet Explorer 7 (KB947864)Hurtigreparasjon for Windows Media Player 11 (KB939683)Hurtigreparasjon for Windows XP (KB2158563)Hurtigreparasjon for Windows XP (KB2443685)Hurtigreparasjon for Windows XP (KB2570791)Hurtigreparasjon for Windows XP (KB2633952)Hurtigreparasjon for Windows XP (KB2756822)Hurtigreparasjon for Windows XP (KB2779562)Hurtigreparasjon for Windows XP (KB942288-v3)Hurtigreparasjon for Windows XP (KB952287)Hurtigreparasjon for Windows XP (KB961118)Hurtigreparasjon for Windows XP (KB970653-v3)Hurtigreparasjon for Windows XP (KB976098-v2)Hurtigreparasjon for Windows XP (KB979306)Hurtigreparasjon for Windows XP (KB981793)Icon Restore 1.0InterActual PlayerInterVideo WinDVD PlayeriPhoto Plus 4IrfanView (remove only)iSofter DVD Audio Ripper Deluxe 3.0.2007.228iTunesJava 7 Update 25Java Auto UpdaterKritisk oppdatering for Windows Media Player 11 (KB959772)LightScribe 1.4.42.1Magic DVD Ripper V5.4.1MakeTorrent v2.1Malwarebytes Anti-Malware versjon 1.75.0.1300Media-Codec 4.0Media GoMedia Go Video Playback Engine 1.116.103.02020Melodyne 3.1Memeo AutoBackupMemeo AutoSyncMemoriesOnWeb 3.1.7Microsoft .NET Framework 1.1Microsoft .NET Framework 1.1 Norwegian Language PackMicrosoft .NET Framework 1.1 Security Update (KB2698023)Microsoft .NET Framework 1.1 Security Update (KB2833941)Microsoft .NET Framework 1.1 Security Update (KB979906)Microsoft .NET Framework 2.0 Language Pack - NORMicrosoft .NET Framework 2.0 Service Pack 2Microsoft .NET Framework 3.0 Service Pack 2Microsoft .NET Framework 3.5 SP1Microsoft Application Error ReportingMicrosoft Choice GuardMicrosoft Compression Client Pack 1.0 for Windows XPMicrosoft Encarta 98 EncyclopediaMicrosoft FrontPage 2000Microsoft Internationalized Domain Names Mitigation APIsMicrosoft Kernel-Mode Driver Framework Feature Pack 1.9Microsoft National Language Support Downlevel APIsMicrosoft SilverlightMicrosoft SQL Server Desktop Engine (SONY_MEDIAMGR)Microsoft User-Mode Driver Framework Feature Pack 1.0Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ Run Time Lib SetupMicrosoft WorksMixMeister BPM Analyzer 1.0Monkey's AudioMozilla Firefox 16.0.1 (x86 nb-NO)Mozilla Maintenance ServiceMp3tag v2.57MSVCRTMSXML 4.0 SP2 (KB927978)MSXML 4.0 SP2 (KB936181)MSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)MSXML 4.0 SP3 ParserMSXML 4.0 SP3 Parser (KB2721691)MSXML 4.0 SP3 Parser (KB2758694)MSXML 4.0 SP3 Parser (KB973685)MSXML 6.0 Parser (KB933579)Myspace Video Downloader 3.15Nero 8 DemoneroxmlNewCopyOctoshape add-in for Adobe Flash Playeroffice Convert Pdf to Jpg Jpeg Tiff Free 6.4OJOsoft Audio ConverterOn2 VP7 Personal EditionOpenOffice.org 3.2Oppdatering for Windows Internet Explorer 8 (KB971930)Oppdatering for Windows Internet Explorer 8 (KB976662)Oppdatering for Windows Internet Explorer 8 (KB976749)Oppdatering for Windows Internet Explorer 8 (KB980182)Oppdatering for Windows XP (KB2141007)Oppdatering for Windows XP (KB2345886)Oppdatering for Windows XP (KB2467659)Oppdatering for Windows XP (KB2541763)Oppdatering for Windows XP (KB2607712)Oppdatering for Windows XP (KB2616676)Oppdatering for Windows XP (KB2641690)Oppdatering for Windows XP (KB2661254-v2)Oppdatering for Windows XP (KB2718704)Oppdatering for Windows XP (KB2736233)Oppdatering for Windows XP (KB2749655)Oppdatering for Windows XP (KB2863058)Oppdatering for Windows XP (KB951072-v2)Oppdatering for Windows XP (KB951978)Oppdatering for Windows XP (KB955759)Oppdatering for Windows XP (KB955839)Oppdatering for Windows XP (KB961503)Oppdatering for Windows XP (KB967715)Oppdatering for Windows XP (KB968389)Oppdatering for Windows XP (KB971029)Oppdatering for Windows XP (KB971737)Oppdatering for Windows XP (KB973687)Oppdatering for Windows XP (KB973815)Opplastingsverktøy for Windows LivePackard Bell Diamond 1200Plus v1.0PanoStandAlonePazera Free FLV to AVI Converter 1.5Pazera Free MOV to AVI Converter 1.4PC SWOS-Total Pack version V1.34PearlMountain Image Converter 1.2.6Plato DVD Ripper Professional 6.66.14PlayStation®Network DownloaderPlayStation®StorePåloggingsassistent for Windows LivePower MP3 WMA Converter 2010, (ver 5.0)PrioPROSONIQ Timefactory IIPS2PSPrinters08PSTAPluginPuzzl'Em 1.0 Beta2Python 2.2 pywin32 extensions (build 203)Python 2.2.3QFolderQuickSFV (Remove only)QuickTimeRAR Password Cracker 4.12RAR Password Recovery v1.1 RC17 (remove only)ReadmeRealNetworks - Microsoft Visual C++ 2008 RuntimeRealPlayerRealUpgrade 1.1Samsung USB DriverScanScannerCopySecurity Update for CAPICOM (KB931906)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)Segoe UISFPackSikkerhetsoppdatering for Microsoft Windows (KB2564958)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB928090)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB929969)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB931768)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB933566)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB937143)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB938127)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB939653)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB942615)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB944533)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB950759)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB953838)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB956390)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB958215)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB960714)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB961260)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB963027)Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB969897)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2183461)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2360131)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2416400)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2482017)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2497640)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2510531)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2530548)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2544521)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2559049)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2586448)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2618444)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2647516)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2675157)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2699988)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2722913)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2744842)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2761465)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2792100)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2797052)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2799329)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2809289)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2817183)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2829530)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2838727)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2846071)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2847204)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2862772)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB969897)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB971961)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB972260)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB974455)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB976325)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB978207)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB981332)Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB982381)Sikkerhetsoppdatering for Windows Media Encoder (KB2447961)Sikkerhetsoppdatering for Windows Media Encoder (KB954156)Sikkerhetsoppdatering for Windows Media Encoder (KB979332)Sikkerhetsoppdatering for Windows Media Player (KB2378111)Sikkerhetsoppdatering for Windows Media Player (KB2834904-v2)Sikkerhetsoppdatering for Windows Media Player (KB2834904)Sikkerhetsoppdatering for Windows Media Player (KB911564)Sikkerhetsoppdatering for Windows Media Player (KB952069)Sikkerhetsoppdatering for Windows Media Player (KB954155)Sikkerhetsoppdatering for Windows Media Player (KB968816)Sikkerhetsoppdatering for Windows Media Player (KB973540)Sikkerhetsoppdatering for Windows Media Player (KB975558)Sikkerhetsoppdatering for Windows Media Player (KB978695)Sikkerhetsoppdatering for Windows Media Player 10 (KB911565)Sikkerhetsoppdatering for Windows Media Player 10 (KB917734)Sikkerhetsoppdatering for Windows Media Player 11 (KB936782)Sikkerhetsoppdatering for Windows Media Player 6.4 (KB925398)Sikkerhetsoppdatering for Windows XP (KB2079403)Sikkerhetsoppdatering for Windows XP (KB2121546)Sikkerhetsoppdatering for Windows XP (KB2160329)Sikkerhetsoppdatering for Windows XP (KB2229593)Sikkerhetsoppdatering for Windows XP (KB2259922)Sikkerhetsoppdatering for Windows XP (KB2279986)Sikkerhetsoppdatering for Windows XP (KB2286198)Sikkerhetsoppdatering for Windows XP (KB2296011)Sikkerhetsoppdatering for Windows XP (KB2296199)Sikkerhetsoppdatering for Windows XP (KB2347290)Sikkerhetsoppdatering for Windows XP (KB2360937)Sikkerhetsoppdatering for Windows XP (KB2387149)Sikkerhetsoppdatering for Windows XP (KB2393802)Sikkerhetsoppdatering for Windows XP (KB2412687)Sikkerhetsoppdatering for Windows XP (KB2419632)Sikkerhetsoppdatering for Windows XP (KB2423089)Sikkerhetsoppdatering for Windows XP (KB2436673)Sikkerhetsoppdatering for Windows XP (KB2440591)Sikkerhetsoppdatering for Windows XP (KB2443105)Sikkerhetsoppdatering for Windows XP (KB2476490)Sikkerhetsoppdatering for Windows XP (KB2476687)Sikkerhetsoppdatering for Windows XP (KB2478960)Sikkerhetsoppdatering for Windows XP (KB2478971)Sikkerhetsoppdatering for Windows XP (KB2479628)Sikkerhetsoppdatering for Windows XP (KB2479943)Sikkerhetsoppdatering for Windows XP (KB2481109)Sikkerhetsoppdatering for Windows XP (KB2483185)Sikkerhetsoppdatering for Windows XP (KB2485376)Sikkerhetsoppdatering for Windows XP (KB2485663)Sikkerhetsoppdatering for Windows XP (KB2491683)Sikkerhetsoppdatering for Windows XP (KB2503658)Sikkerhetsoppdatering for Windows XP (KB2503665)Sikkerhetsoppdatering for Windows XP (KB2506212)Sikkerhetsoppdatering for Windows XP (KB2506223)Sikkerhetsoppdatering for Windows XP (KB2507618)Sikkerhetsoppdatering for Windows XP (KB2507938)Sikkerhetsoppdatering for Windows XP (KB2508272)Sikkerhetsoppdatering for Windows XP (KB2508429)Sikkerhetsoppdatering for Windows XP (KB2509553)Sikkerhetsoppdatering for Windows XP (KB2511455)Sikkerhetsoppdatering for Windows XP (KB2524375)Sikkerhetsoppdatering for Windows XP (KB2535512)Sikkerhetsoppdatering for Windows XP (KB2536276-v2)Sikkerhetsoppdatering for Windows XP (KB2536276)Sikkerhetsoppdatering for Windows XP (KB2544893-v2)Sikkerhetsoppdatering for Windows XP (KB2544893)Sikkerhetsoppdatering for Windows XP (KB2555917)Sikkerhetsoppdatering for Windows XP (KB2562937)Sikkerhetsoppdatering for Windows XP (KB2566454)Sikkerhetsoppdatering for Windows XP (KB2567053)Sikkerhetsoppdatering for Windows XP (KB2567680)Sikkerhetsoppdatering for Windows XP (KB2570222)Sikkerhetsoppdatering for Windows XP (KB2570947)Sikkerhetsoppdatering for Windows XP (KB2584146)Sikkerhetsoppdatering for Windows XP (KB2585542)Sikkerhetsoppdatering for Windows XP (KB2592799)Sikkerhetsoppdatering for Windows XP (KB2598479)Sikkerhetsoppdatering for Windows XP (KB2603381)Sikkerhetsoppdatering for Windows XP (KB2618451)Sikkerhetsoppdatering for Windows XP (KB2619339)Sikkerhetsoppdatering for Windows XP (KB2620712)Sikkerhetsoppdatering for Windows XP (KB2621440)Sikkerhetsoppdatering for Windows XP (KB2624667)Sikkerhetsoppdatering for Windows XP (KB2631813)Sikkerhetsoppdatering for Windows XP (KB2633171)Sikkerhetsoppdatering for Windows XP (KB2639417)Sikkerhetsoppdatering for Windows XP (KB2641653)Sikkerhetsoppdatering for Windows XP (KB2646524)Sikkerhetsoppdatering for Windows XP (KB2647518)Sikkerhetsoppdatering for Windows XP (KB2653956)Sikkerhetsoppdatering for Windows XP (KB2655992)Sikkerhetsoppdatering for Windows XP (KB2659262)Sikkerhetsoppdatering for Windows XP (KB2660465)Sikkerhetsoppdatering for Windows XP (KB2661637)Sikkerhetsoppdatering for Windows XP (KB2676562)Sikkerhetsoppdatering for Windows XP (KB2685939)Sikkerhetsoppdatering for Windows XP (KB2686509)Sikkerhetsoppdatering for Windows XP (KB2691442)Sikkerhetsoppdatering for Windows XP (KB2695962)Sikkerhetsoppdatering for Windows XP (KB2698365)Sikkerhetsoppdatering for Windows XP (KB2705219)Sikkerhetsoppdatering for Windows XP (KB2707511)Sikkerhetsoppdatering for Windows XP (KB2709162)Sikkerhetsoppdatering for Windows XP (KB2712808)Sikkerhetsoppdatering for Windows XP (KB2718523)Sikkerhetsoppdatering for Windows XP (KB2719985)Sikkerhetsoppdatering for Windows XP (KB2723135)Sikkerhetsoppdatering for Windows XP (KB2724197)Sikkerhetsoppdatering for Windows XP (KB2727528)Sikkerhetsoppdatering for Windows XP (KB2731847)Sikkerhetsoppdatering for Windows XP (KB2753842-v2)Sikkerhetsoppdatering for Windows XP (KB2753842)Sikkerhetsoppdatering for Windows XP (KB2757638)Sikkerhetsoppdatering for Windows XP (KB2758857)Sikkerhetsoppdatering for Windows XP (KB2761226)Sikkerhetsoppdatering for Windows XP (KB2770660)Sikkerhetsoppdatering for Windows XP (KB2778344)Sikkerhetsoppdatering for Windows XP (KB2779030)Sikkerhetsoppdatering for Windows XP (KB2780091)Sikkerhetsoppdatering for Windows XP (KB2799494)Sikkerhetsoppdatering for Windows XP (KB2802968)Sikkerhetsoppdatering for Windows XP (KB2807986)Sikkerhetsoppdatering for Windows XP (KB2808735)Sikkerhetsoppdatering for Windows XP (KB2813170)Sikkerhetsoppdatering for Windows XP (KB2813345)Sikkerhetsoppdatering for Windows XP (KB2820197)Sikkerhetsoppdatering for Windows XP (KB2820917)Sikkerhetsoppdatering for Windows XP (KB2829361)Sikkerhetsoppdatering for Windows XP (KB2834886)Sikkerhetsoppdatering for Windows XP (KB2839229)Sikkerhetsoppdatering for Windows XP (KB2845187)Sikkerhetsoppdatering for Windows XP (KB2849470)Sikkerhetsoppdatering for Windows XP (KB2850851)Sikkerhetsoppdatering for Windows XP (KB2850869)Sikkerhetsoppdatering for Windows XP (KB2859537)Sikkerhetsoppdatering for Windows XP (KB923561)Sikkerhetsoppdatering for Windows XP (KB923689)Sikkerhetsoppdatering for Windows XP (KB938464)Sikkerhetsoppdatering for Windows XP (KB941569)Sikkerhetsoppdatering for Windows XP (KB946648)Sikkerhetsoppdatering for Windows XP (KB950760)Sikkerhetsoppdatering for Windows XP (KB950762)Sikkerhetsoppdatering for Windows XP (KB950974)Sikkerhetsoppdatering for Windows XP (KB951066)Sikkerhetsoppdatering for Windows XP (KB951376-v2)Sikkerhetsoppdatering for Windows XP (KB951376)Sikkerhetsoppdatering for Windows XP (KB951698)Sikkerhetsoppdatering for Windows XP (KB951748)Sikkerhetsoppdatering for Windows XP (KB952004)Sikkerhetsoppdatering for Windows XP (KB952954)Sikkerhetsoppdatering for Windows XP (KB953839)Sikkerhetsoppdatering for Windows XP (KB954211)Sikkerhetsoppdatering for Windows XP (KB954459)Sikkerhetsoppdatering for Windows XP (KB954600)Sikkerhetsoppdatering for Windows XP (KB955069)Sikkerhetsoppdatering for Windows XP (KB956391)Sikkerhetsoppdatering for Windows XP (KB956572)Sikkerhetsoppdatering for Windows XP (KB956744)Sikkerhetsoppdatering for Windows XP (KB956802)Sikkerhetsoppdatering for Windows XP (KB956803)Sikkerhetsoppdatering for Windows XP (KB956841)Sikkerhetsoppdatering for Windows XP (KB956844)Sikkerhetsoppdatering for Windows XP (KB957095)Sikkerhetsoppdatering for Windows XP (KB957097)Sikkerhetsoppdatering for Windows XP (KB958644)Sikkerhetsoppdatering for Windows XP (KB958687)Sikkerhetsoppdatering for Windows XP (KB958690)Sikkerhetsoppdatering for Windows XP (KB958869)Sikkerhetsoppdatering for Windows XP (KB959426)Sikkerhetsoppdatering for Windows XP (KB960225)Sikkerhetsoppdatering for Windows XP (KB960715)Sikkerhetsoppdatering for Windows XP (KB960803)Sikkerhetsoppdatering for Windows XP (KB960859)Sikkerhetsoppdatering for Windows XP (KB961371)Sikkerhetsoppdatering for Windows XP (KB961373)Sikkerhetsoppdatering for Windows XP (KB961501)Sikkerhetsoppdatering for Windows XP (KB968537)Sikkerhetsoppdatering for Windows XP (KB969059)Sikkerhetsoppdatering for Windows XP (KB969898)Sikkerhetsoppdatering for Windows XP (KB969947)Sikkerhetsoppdatering for Windows XP (KB970238)Sikkerhetsoppdatering for Windows XP (KB970430)Sikkerhetsoppdatering for Windows XP (KB971468)Sikkerhetsoppdatering for Windows XP (KB971486)Sikkerhetsoppdatering for Windows XP (KB971557)Sikkerhetsoppdatering for Windows XP (KB971633)Sikkerhetsoppdatering for Windows XP (KB971657)Sikkerhetsoppdatering for Windows XP (KB972270)Sikkerhetsoppdatering for Windows XP (KB973346)Sikkerhetsoppdatering for Windows XP (KB973354)Sikkerhetsoppdatering for Windows XP (KB973507)Sikkerhetsoppdatering for Windows XP (KB973525)Sikkerhetsoppdatering for Windows XP (KB973869)Sikkerhetsoppdatering for Windows XP (KB973904)Sikkerhetsoppdatering for Windows XP (KB974112)Sikkerhetsoppdatering for Windows XP (KB974318)Sikkerhetsoppdatering for Windows XP (KB974392)Sikkerhetsoppdatering for Windows XP (KB974571)Sikkerhetsoppdatering for Windows XP (KB975025)Sikkerhetsoppdatering for Windows XP (KB975467)Sikkerhetsoppdatering for Windows XP (KB975560)Sikkerhetsoppdatering for Windows XP (KB975561)Sikkerhetsoppdatering for Windows XP (KB975562)Sikkerhetsoppdatering for Windows XP (KB975713)Sikkerhetsoppdatering for Windows XP (KB977165)Sikkerhetsoppdatering for Windows XP (KB977816)Sikkerhetsoppdatering for Windows XP (KB977914)Sikkerhetsoppdatering for Windows XP (KB978037)Sikkerhetsoppdatering for Windows XP (KB978251)Sikkerhetsoppdatering for Windows XP (KB978262)Sikkerhetsoppdatering for Windows XP (KB978338)Sikkerhetsoppdatering for Windows XP (KB978542)Sikkerhetsoppdatering for Windows XP (KB978601)Sikkerhetsoppdatering for Windows XP (KB978706)Sikkerhetsoppdatering for Windows XP (KB979309)Sikkerhetsoppdatering for Windows XP (KB979482)Sikkerhetsoppdatering for Windows XP (KB979559)Sikkerhetsoppdatering for Windows XP (KB979683)Sikkerhetsoppdatering for Windows XP (KB979687)Sikkerhetsoppdatering for Windows XP (KB980195)Sikkerhetsoppdatering for Windows XP (KB980218)Sikkerhetsoppdatering for Windows XP (KB980232)Sikkerhetsoppdatering for Windows XP (KB980436)Sikkerhetsoppdatering for Windows XP (KB981322)Sikkerhetsoppdatering for Windows XP (KB981852)Sikkerhetsoppdatering for Windows XP (KB981957)Sikkerhetsoppdatering for Windows XP (KB981997)Sikkerhetsoppdatering for Windows XP (KB982132)Sikkerhetsoppdatering for Windows XP (KB982214)Sikkerhetsoppdatering for Windows XP (KB982665)Sikkerhetsoppdatering for Windows XP (KB982802)Simple AdblockSkype Click to CallSkype™ 5.10SMI Grabber DeviceSnagIt 9SolutionCenterSonic Express LabelerSonic MyDVD PlusSonic RecordNow AudioSonic RecordNow CopySonic RecordNow DataSonic Update ManagerSony Ericsson PC SuiteSony Ericsson PC Suite 6.011.00Sony Media Manager 2.2Sony PC Companion 2.10.155SpotifyStatusSubtitle Workshop 2.51swMSMTelenor Software Update ServiceTelenorhjelpenTetra Blocks v1.54ToolboxTrayAppTrust WB-3100P Portable WebcamTunaticUlead GIF Animator 5Ulead VideoStudio SE DVDUnloadUpdate for Microsoft .NET Framework 3.5 SP1 (KB963707)Update for Windows XP (KB953356)User Profile Hive Cleanup ServiceVCRedistSetupVeoh Web PlayerVideo iCodec 3.15Viewpoint Media PlayerVintage Vocoder 1.03 Build 1Vizrt Vizky version 1.5.8VLC media player 2.0.7VST Bridge 1.1WD DiagnosticsWebFldrs XPWebRegWiMP 2.4.1WinampWinamp Detector Plug-inWinamp Essentials PackWinAVIVideoConverterWindows Genuine Advantage Notifications (KB905474)Windows Genuine Advantage Validation Tool (KB892130)Windows Grep 2.3Windows Imaging ComponentWindows Internet Explorer 7Windows Internet Explorer 8Windows Live Communications PlatformWindows Live EssentialsWindows Live MessengerWindows Media Encoder 9 SeriesWindows Media Format 11 runtimeWindows Media Player 11Windows PowerShell 1.0Windows Presentation FoundationWindows XP Service Pack 3WinFF v0.23WinRAR 4.20 (32-bit)XML Paper Specification Shared Components Pack 1.0Xvid 1.1.3 final uninstallYahoo! MessengerYahoo! Software Update.==== End Of File =========================== Link to post Share on other sites More sharing options...
MrCharlie Posted August 29, 2013 ID:722327 Share Posted August 29, 2013 Welcome to the forum, can you post the log from Malwarebytes. Please download and run RogueKiller 32 Bit to your desktop. RogueKiller 64 Bit <---use this one for 64 bit systems Quit all running programs. For Windows XP, double-click to start. For Vista or Windows 7-8, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run. Click Scan to scan the system. When the scan completes > Close out the program > Don't Fix anything! Don't run any other options, they're not all bad!!!!!!! Post back the report which should be located on your desktop. (please don't put logs in code or quotes) P2P/Piracy Warning: 1. If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here. Failure to remove or disable such software will result in your topic being closed and no further assistance being provided. 2. If you have illegal/cracked software, cracks, keygens, Adobe host file, etc. on the system, please remove or uninstall them now and read the policy on Piracy. Failure to remove such software will result in your topic being closed and no further assistance being provided. MrC Note: Please read all of my instructions completely including these. Make sure you're subscribed to this topic: Click on the Follow This Topic Button (at the top right of this page), make sure that the Receive notification box is checked and that it is set to Instantly Removing malware can be unpredictable...unlikely but things can go very wrong! Backup any files that cannot be replaced. You can copy them to a CD/DVD, external drive or a pen drive <+>Please don't run any other scans, download, install or uninstall any programs while I'm working with you. <+>The removal of malware isn't instantaneous, please be patient. <+>When we are done, I'll give to instructions on how to cleanup all the tools and logs <+>Please stick with me until I give you the "all clear" and Please don't waste my time by leaving before that. ------->Your topic will be closed if you haven't replied within 3 days!<-------- (If I don't respond within 24 hours, please send me a PM) Link to post Share on other sites More sharing options...
Aphasia Posted August 29, 2013 Author ID:722349 Share Posted August 29, 2013 MalvareBytes log (it's in Norwegian, sorry): Malwarebytes Anti-Malware (PRO) 1.75.0.1300www.malwarebytes.orgDatabaseversjon: v2013.08.28.05Windows XP Service Pack 3 x86 NTFSInternet Explorer 8.0.6001.18702HP_Eier :: STEIN-VIDAR [administrator]Beskyttelse: Aktivert28.08.2013 20:27:16MBAM-log-2013-08-29 (07-34-18).txtSkanntype: Full skann (C:\|K:\|N:\|)Aktiverte skanningsinnstillinger: Minne | Oppstart | Register | Filsystem | Heuristikk/Ekstra | Heuristikk/Shuriken | PUP | PUMDeaktiverte skanninnstillinger: P2PObjekter skannet: 1325697Tid tilbakelagt: 6 time®, 13 minutt(er), 2 sekund(er)Minneprosesser oppdaget: 0(Ingen skadelige objekter funnet)Minnemoduler oppdaget: 0(Ingen skadelige objekter funnet)Registernøkler oppdaget: 4HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Ingen tiltak tatt.HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Ingen tiltak tatt.HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Ingen tiltak tatt.HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Ingen tiltak tatt.Registerverdier oppdaget: 2HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {EF72F02F-FA7D-11E1-BDA7-0013D396EFC3} -> Ingen tiltak tatt.HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {EF72F02F-FA7D-11E1-BDA7-0013D396EFC3} -> Ingen tiltak tatt.Registerfiler oppdaget: 0(Ingen skadelige objekter funnet)Mapper oppdaget: 0(Ingen skadelige objekter funnet)Filer oppdaget 1C:\WINDOWS\Downloaded Installations\{C1379C57-0336-4779-B6AB-2D05B1C29FE5}\iTunes.msi (Malware.Packer.as) -> Ingen tiltak tatt.(klar) RougeKiller report: RogueKiller V8.6.7 [Aug 28 2013] by Tigzymail : tigzyRK<at>gmail<dot>comFeedback : http://www.adlice.com/forum/Website : http://www.adlice.com/softwares/roguekiller/Blog : http://tigzyrk.blogspot.com/Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits versionStarted in : Normal modeUser : HP_Eier [Admin rights]Mode : Scan -- Date : 08/29/2013 15:07:06| ARK || FAK || MBR |¤¤¤ Bad processes : 0 ¤¤¤¤¤¤ Registry Entries : 3 ¤¤¤[RUN][sUSP PATH] HKCU\[...]\RunOnce : FFTI (C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles/lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" [x][x]) -> FOUND[RUN][sUSP PATH] HKUS\S-1-5-21-447377850-251095157-4162229340-1008\[...]\RunOnce : FFTI (C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles/lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" [x][x]) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND¤¤¤ Scheduled tasks : 0 ¤¤¤¤¤¤ Startup Entries : 0 ¤¤¤¤¤¤ Web browsers : 0 ¤¤¤¤¤¤ Particular Files / Folders: ¤¤¤¤¤¤ Driver : [LOADED] ¤¤¤¤¤¤ External Hives: ¤¤¤¤¤¤ Infection : ¤¤¤¤¤¤ HOSTS File: ¤¤¤--> %SystemRoot%\System32\drivers\etc\hosts127.0.0.1 localhost130.0.234.27 razlyuli.org¤¤¤ MBR Check: ¤¤¤+++++ PhysicalDrive0: WDC WD10EARS-00Y5B1 +++++--- User ---[MBR] 404081da8461be1261004f6877a2decf[bSP] a5913414cd949427fde62ae4681028bf : Legit.C MBR CodePartition table:0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 2048 | Size: 24570 Mo1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 50321408 | Size: 929298 MoUser = LL1 ... OK!User = LL2 ... OK!+++++ PhysicalDrive1: WDC WD10EARS-00Y5B1 +++++--- User ---[MBR] 11e0a617195c6f16b53194b380f031bd[bSP] 607cb11bd20da2134302d5ede90c32e1 : Windows XP MBR CodePartition table:0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953866 MoUser = LL1 ... OK!User = LL2 ... OK!+++++ PhysicalDrive2: WDC WD10EARS-00Y5B1 +++++--- User ---[MBR] beea9460a2ac537379dfeacfce6df664[bSP] 1343860dbef73a961735f1522ff55311 : Windows XP MBR CodePartition table:0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 305242 MoUser = LL1 ... OK!Error reading LL2 MBR!Finished : << RKreport[0]_S_08292013_150706.txt >> Link to post Share on other sites More sharing options...
MrCharlie Posted August 29, 2013 ID:722353 Share Posted August 29, 2013 That's adware, you can clean it all up like this: Please download AdwCleaner by Xplode and save to your Desktop.Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As AdministratorClick on the Scan button.AdwCleaner will begin...be patient as the scan may take some time to complete.After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.Copy and paste the contents of that logfile in your next reply.A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.If you agree with everything listed to be removed in the folders section........... Double click on AdwCleaner.exe to run the tool again.Click on the Scan button.AdwCleaner will begin to scan your computer like it did before.After the scan has finished...This time click on the Clean button.Press OK when asked to close all programs and follow the onscreen prompts.Press OK again to allow AdwCleaner to restart the computer and complete the removal process.After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.Copy and paste the contents of that logfile in your next reply.A copy of that logfile will also be saved in the C:\AdwCleaner folder.Then.................. Open up Malwarebytes > Settings Tab > Scanner Settings > Under action for PUP > Select Show in Results List and Check for removal. Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report. Make sure that everything is checked, and click Remove Selected. Please let me know how computer is running now, MrC Link to post Share on other sites More sharing options...
Aphasia Posted August 29, 2013 Author ID:722389 Share Posted August 29, 2013 AdwCleaner - first scan log: # AdwCleaner v3.001 - Report created 29/08/2013 at 15:19:31# Updated 24/08/2013 by Xplode# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)# Username : HP_Eier - STEIN-VIDAR# Running from : C:\Documents and Settings\HP_Eier\Skrivebord\AdwCleaner.exe# Option : Scan***** [ Services ] ********** [ Files / Folders ] *****File Found : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\searchplugins\SweetIm.xmlFile Found : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\user.jsFolder Found C:\Documents and Settings\All Users\Programdata\ViewpointFolder Found C:\Documents and Settings\HP_Eier\IECompatCacheFolder Found C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\jetpackFolder Found C:\Programfiler\Free Offers from Freeze.comFolder Found C:\Programfiler\ViewpointFolder Found C:\WINDOWS\system32\TempDir***** [ Shortcuts ] ********** [ Registry ] *****Key Found : HKCU\Software\AppDataLow\Software\SmartBarKey Found : HKCU\Software\ConduitKey Found : HKCU\Software\HeadlightKey Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF0118D4-63FF-4138-9327-F3028FB1A578}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}Key Found : HKCU\Software\SoftonicKey Found : HKCU\Software\YahooPartnerToolbarKey Found : HKLM\SOFTWARE\Classes\AppID\BHO.DLLKey Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlKey Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondaryKey Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}Key Found : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Found : HKLM\SOFTWARE\Classes\CLSID\{BF0118D4-63FF-4138-9327-F3028FB1A578}Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}Key Found : HKLM\SOFTWARE\Classes\toolband.eb_explorerbarKey Found : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar.1Key Found : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsinkKey Found : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsink.1Key Found : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitemKey Found : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem.1Key Found : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandlerKey Found : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandler.1Key Found : HKLM\SOFTWARE\Classes\toolband.pm_launcherKey Found : HKLM\SOFTWARE\Classes\toolband.pm_launcher.1Key Found : HKLM\SOFTWARE\Classes\toolband.pm_printmanagerKey Found : HKLM\SOFTWARE\Classes\toolband.pm_printmanager.1Key Found : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallbackKey Found : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback.1Key Found : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandlerKey Found : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler.1Key Found : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallbackKey Found : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallback.1Key Found : HKLM\SOFTWARE\Classes\toolband.tbtoolbandKey Found : HKLM\SOFTWARE\Classes\toolband.tbtoolband.1Key Found : HKLM\SOFTWARE\Classes\toolband.useroptionsKey Found : HKLM\SOFTWARE\Classes\toolband.useroptions.1Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}Key Found : HKLM\Software\ConduitKey Found : HKLM\Software\eRightSoft\OpenCandyKey Found : HKLM\Software\Freeze.comKey Found : HKLM\Software\MetaStreamKey Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayerKey Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayerKey Found : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMPKey Found : HKLM\Software\ViewpointValue Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Programfiler\SweetIM\Communicator\SweetPacksUpdateManager.exe]***** [ Browsers ] *****-\\ Internet Explorer v8.0.6001.18702-\\ Mozilla Firefox v16.0.1 (nb-NO)[ File : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\prefs.js ]Line Found : user_pref("browser.search.order.1", "Ask.com");Line Found : user_pref("browser.search.selectedEngine", "Ask.com");Line Found : user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{20a82645-c095-46ed-80e3-08825760534b}\":{\"descriptor\":\"C:\\\\WINDOWS\\\\Microsoft.NET\\\\Framework\\\\v3.5\\\\W[...]Line Found : user_pref("extensions.veohsearchrecs.SupportedSites", "<?xml version=\"1.0\" ?>\r\n<results revision=\"1.5.2\">\r\n <sites>\r\n <searchsite MatchesDomain=\"google.\" MatchesPath=\"/search\" [...]Line Found : user_pref("extensions.veohsearchrecs.VeohVersion", "1.5.2");Line Found : user_pref("extensions.veohsearchrecs.id", "665923cb3-0708-2632-4eec-8eb4e66edc1");Line Found : user_pref("extensions.veohsearchrecs.lastsitedate", "26");Line Found : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]Line Found : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");*************************AdwCleaner[R0].txt - [8683 octets] - [29/08/2013 15:19:31]########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [8743 octets] ########## AdwCleaner - second scan log: # AdwCleaner v3.001 - Report created 29/08/2013 at 15:28:11# Updated 24/08/2013 by Xplode# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)# Username : HP_Eier - STEIN-VIDAR# Running from : C:\Documents and Settings\HP_Eier\Skrivebord\AdwCleaner.exe# Option : Clean***** [ Services ] ********** [ Files / Folders ] *****Folder Deleted : C:\Documents and Settings\All Users\Programdata\ViewpointFolder Deleted : C:\Programfiler\Free Offers from Freeze.comFolder Deleted : C:\Programfiler\ViewpointFolder Deleted : C:\WINDOWS\system32\TempDirFolder Deleted : C:\Documents and Settings\HP_Eier\IECompatCacheFolder Deleted : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\jetpackFile Deleted : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\searchplugins\SweetIm.xmlFile Deleted : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\user.js***** [ Shortcuts ] ********** [ Registry ] *****Key Deleted : HKLM\SOFTWARE\Classes\AppID\BHO.DLLKey Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlKey Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondaryKey Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.eb_explorerbarKey Deleted : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsinkKey Deleted : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsink.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitemKey Deleted : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandlerKey Deleted : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandler.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_launcherKey Deleted : HKLM\SOFTWARE\Classes\toolband.pm_launcher.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_printmanagerKey Deleted : HKLM\SOFTWARE\Classes\toolband.pm_printmanager.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallbackKey Deleted : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandlerKey Deleted : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallbackKey Deleted : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallback.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.tbtoolbandKey Deleted : HKLM\SOFTWARE\Classes\toolband.tbtoolband.1Key Deleted : HKLM\SOFTWARE\Classes\toolband.useroptionsKey Deleted : HKLM\SOFTWARE\Classes\toolband.useroptions.1Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMPKey Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BF0118D4-63FF-4138-9327-F3028FB1A578}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF0118D4-63FF-4138-9327-F3028FB1A578}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Programfiler\SweetIM\Communicator\SweetPacksUpdateManager.exe]Key Deleted : HKCU\Software\ConduitKey Deleted : HKCU\Software\HeadlightKey Deleted : HKCU\Software\SoftonicKey Deleted : HKCU\Software\YahooPartnerToolbarKey Deleted : HKCU\Software\AppDataLow\Software\SmartBarKey Deleted : HKLM\Software\ConduitKey Deleted : HKLM\Software\eRightSoft\OpenCandyKey Deleted : HKLM\Software\Freeze.comKey Deleted : HKLM\Software\MetaStreamKey Deleted : HKLM\Software\ViewpointKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayerKey Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer***** [ Browsers ] *****-\\ Internet Explorer v8.0.6001.18702-\\ Mozilla Firefox v16.0.1 (nb-NO)[ File : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\prefs.js ]Line Deleted : user_pref("browser.search.order.1", "Ask.com");Line Deleted : user_pref("browser.search.selectedEngine", "Ask.com");Line Deleted : user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{20a82645-c095-46ed-80e3-08825760534b}\":{\"descriptor\":\"C:\\\\WINDOWS\\\\Microsoft.NET\\\\Framework\\\\v3.5\\\\W[...]Line Deleted : user_pref("extensions.veohsearchrecs.SupportedSites", "<?xml version=\"1.0\" ?>\r\n<results revision=\"1.5.2\">\r\n <sites>\r\n <searchsite MatchesDomain=\"google.\" MatchesPath=\"/search\" [...]Line Deleted : user_pref("extensions.veohsearchrecs.VeohVersion", "1.5.2");Line Deleted : user_pref("extensions.veohsearchrecs.id", "665923cb3-0708-2632-4eec-8eb4e66edc1");Line Deleted : user_pref("extensions.veohsearchrecs.lastsitedate", "26");Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");*************************AdwCleaner[R0].txt - [8823 octets] - [29/08/2013 15:19:31]AdwCleaner[R1].txt - [8883 octets] - [29/08/2013 15:27:01]AdwCleaner[s0].txt - [9002 octets] - [29/08/2013 15:28:11]########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [9062 octets] ########## MalwareBytes - Quick scan log: Malwarebytes Anti-Malware (PRO) 1.75.0.1300www.malwarebytes.orgDatabaseversjon: v2013.08.29.05Windows XP Service Pack 3 x86 NTFSInternet Explorer 8.0.6001.18702HP_Eier :: STEIN-VIDAR [administrator]Beskyttelse: Aktivert29.08.2013 15:37:28mbam-log-2013-08-29 (15-37-28).txtSkanntype: HurtigsøkAktiverte skanningsinnstillinger: Minne | Oppstart | Register| Filsystem | Heuristikk/Ekstra | Heuristikk/Shuriken | PUP |PUMDeaktiverte skanninnstillinger: P2PObjekter skannet: 292026Tid tilbakelagt: 9 minutt(er), 20 sekund(er)Minneprosesser oppdaget: 0(Ingen skadelige objekter funnet)Minnemoduler oppdaget: 0(Ingen skadelige objekter funnet)Registernøkler oppdaget: 0(Ingen skadelige objekter funnet)Registerverdier oppdaget: 0(Ingen skadelige objekter funnet)Registerfiler oppdaget: 0(Ingen skadelige objekter funnet)Mapper oppdaget: 0(Ingen skadelige objekter funnet)Filer oppdaget 0(Ingen skadelige objekter funnet)(klar) Link to post Share on other sites More sharing options...
MrCharlie Posted August 29, 2013 ID:722510 Share Posted August 29, 2013 How is it??? MrC Link to post Share on other sites More sharing options...
Aphasia Posted August 29, 2013 Author ID:722513 Share Posted August 29, 2013 Well, the computer seems to be running just fine, but can I be certain that all the infected files are gone now? Link to post Share on other sites More sharing options...
MrCharlie Posted August 29, 2013 ID:722518 Share Posted August 29, 2013 Well, the computer seems to be running just fine, but can I be certain that all the infected files are gone now? Why do you say that?? PUP = Potentially Unwanted Program http://forums.malwarebytes.org/index.php?showtopic=130156 You didn't have a "Virus" MrC Link to post Share on other sites More sharing options...
Aphasia Posted August 29, 2013 Author ID:722524 Share Posted August 29, 2013 Well, alright. Sorry then. The only thing I'm still curious about is the file iTunes.msi which had been infected by Malware.Packer.as. Was that also Adware? Link to post Share on other sites More sharing options...
MrCharlie Posted August 29, 2013 ID:722547 Share Posted August 29, 2013 Yes, it was part of the installer....MrC Link to post Share on other sites More sharing options...
Aphasia Posted August 29, 2013 Author ID:722553 Share Posted August 29, 2013 OK, then I guess everythings OK now. Thanks. Just one more question. Silly question, perhaps, but I'll ask it anyway just to be sure: I'm currently using the free version of avast!. I've been thinking about upgrading to the paid version, like I did with MBAM. Is it safe to upgrade now since I've cleaned out the Adware? Link to post Share on other sites More sharing options...
MrCharlie Posted August 29, 2013 ID:722593 Share Posted August 29, 2013 It's OK but since you have MB Pro, I don't see the need but that's up to you.MrC Link to post Share on other sites More sharing options...
MrCharlie Posted August 31, 2013 ID:723139 Share Posted August 31, 2013 Take a look at My Preventive Maintenance to avoid being infected again. Good Luck and Thanks for using the forum, MrC Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted August 31, 2013 Root Admin ID:723170 Share Posted August 31, 2013 Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts