Please help

[Aphasia]

Hi.

 

I ran a full scan with the free version of MBAM and then I updated to the Pro version and ran another full scan. Both times I was notified that 7 files were infected. The only option I had was to remove the files, but I didn't do it because I don't know if it's safe to remove them.

 

Here are the DDS.txt and Attach.txt logs:

 

*** DDS.txt ***

-----------------------------------------------------

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.25.2
Run by HP_Eier at 7:39:31 on 2013-08-29
Microsoft Windows XP Home Edition  5.1.2600.3.1252.47.1044.18.2558.1678 [GMT 2:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\Programfiler\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Programfiler\Canon\IJPLM\IJPLMSVC.EXE
C:\Programfiler\Java\jre7\bin\jqs.exe
C:\Programfiler\Fellesfiler\LightScribe\LSSrvc.exe
C:\Programfiler\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Programfiler\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
C:\Programfiler\Prio\prio_svc.exe
C:\Documents and Settings\All Users\Programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Programfiler\Fellesfiler\Ulead Systems\DVD\ULCDRSvr.exe
C:\Programfiler\UPHClean\uphclean.exe
C:\Programfiler\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\windows\system\hpsysdrv.exe
C:\Programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Programfiler\HP\HP Software Update\HPWuSchd2.exe
C:\HP\KBD\KBD.EXE
C:\Programfiler\Cyberlink\Shared Files\brs.exe
C:\Programfiler\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Programfiler\Alwil Software\Avast5\avastUI.exe
C:\Programfiler\iTunes\iTunesHelper.exe
C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe
C:\Programfiler\Fellesfiler\Nero\Lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programfiler\iPod\bin\iPodService.exe
C:\Programfiler\Fellesfiler\Nero\Lib\NMIndexingService.exe
C:\Programfiler\Fellesfiler\Nero\Lib\NMIndexStoreSvr.exe
C:\Programfiler\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Programfiler\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Programfiler\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.

uURLSearchHooks: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - <orphaned>
BHO: SnagIt Toolbar Loader: {00C6482D-C502-44C8-8409-FCE54AD9C208} - c:\programfiler\techsmith\snagit 9\SnagItBHO.dll
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Telenorhjelpen: {2EF1BAF9-1988-42a1-82BC-5CB6197AED28} - c:\programfiler\telenor norway\telenorhjelpen\bho\IEBHO.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} -
BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - c:\programfiler\canon\easy-webprint ex\ewpexbho.dll
BHO: EWPBrowseObject Class: {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - c:\programfiler\canon\easy-webprint\EWPBrowseLoader.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\programfiler\java\jre7\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\programfiler\alwil software\avast5\aswWebRepIE.dll
BHO: Påloggingshjelp for Windows Live: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\programfiler\fellesfiler\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\programfiler\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programfiler\java\jre7\bin\jp2ssv.dll
BHO: SimpleAdblock Class: {FFCB3198-32F3-4E8B-9539-4324694ED664} - c:\programfiler\fellesfiler\simple adblock\SimpleAdblock.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - c:\programfiler\canon\easy-webprint ex\ewpexhlp.dll
TB: Easy-WebPrint: {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - c:\programfiler\canon\easy-webprint\Toolband.dll
TB: SnagIt: {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - c:\programfiler\techsmith\snagit 9\SnagItIEAddin.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - c:\programfiler\canon\easy-webprint ex\ewpexhlp.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\programfiler\alwil software\avast5\aswWebRepIE.dll
EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - c:\programfiler\canon\easy-webprint ex\ewpexhlp.dll
EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - <orphaned>
EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - <orphaned>
uRun: [Photozig Albums Media Detector] c:\programfiler\photozig albums\pzAlbumsDetect.exe
uRun: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\programfiler\fellesfiler\nero\lib\NMBgMonitor.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRunOnce: [FFTI] c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\extensions\{b13721c7-f507-4982-b2e5-502a71474fed}\ffti.exe /verysilent /suppressmsgboxes /norestart /destpath="c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles/lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}"
mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
mRun: [ATIPTA] c:\programfiler\ati technologies\ati control panel\atiptaxx.exe
mRun: [HPHUPD08] c:\programfiler\hp\digital imaging\{33d6cc28-9f75-4d1b-a11d-98895b3a3729}\hphupd08.exe
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [HP Software Update] c:\programfiler\hp\hp software update\HPWuSchd2.exe
mRun: [regcmdcons] c:\hp\bin\cloaker.exe c:\hp\bin\cmdcons.cmd
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe
mRun: [KBD] c:\hp\kbd\KBD.EXE
mRun: [NeroFilterCheck] c:\programfiler\fellesfiler\nero\lib\NeroCheck.exe
mRun: [NBKeyScan] "c:\programfiler\nero\nero8\nero backitup\NBKeyScan.exe"
mRun: [bDRegion] c:\programfiler\cyberlink\shared files\brs.exe
mRun: [ContentTransferWMDetector.exe] c:\programfiler\sony\content transfer\ContentTransferWMDetector.exe
mRun: [APSDaemon] "c:\programfiler\fellesfiler\apple\apple application support\APSDaemon.exe"
mRun: [iSUSPM Startup] c:\progra~1\felles~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [KernelFaultCheck] c:\windows\system32\dumprep 0 -k
mRun: [avast] "c:\programfiler\alwil software\avast5\avastUI.exe" /nogui
mRun: [TkBellExe] "c:\programfiler\real\realplayer\update\realsched.exe"  -osboot
mRun: [Adobe ARM] "c:\programfiler\fellesfiler\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\programfiler\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\programfiler\itunes\iTunesHelper.exe"
mRun: [sunJavaUpdateSched] "c:\programfiler\fellesfiler\java\java update\jusched.exe"
StartupFolder: c:\docume~1\alluse~1\start-~1\progra~1\oppstart\adobeg~1.lnk - c:\programfiler\fellesfiler\adobe\calibration\Adobe Gamma Loader.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: Download files with BH - c:\programfiler\bilderherunterlader\ieplugin\BHIEScript.htm
IE: Easy-WebPrint Add To Print List - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\programfiler\canon\easy-webprint\Toolband.dll/RC_Print.html
IE: Legg mål-linken i kø med BID - c:\programfiler\bulk image downloader\iemenu\iebidlinkqueue.htm
IE: Legg nåværende side til med BID Image Downloader - c:\programfiler\bulk image downloader\iemenu\iebidqueue.htm
IE: Åpne mål-linken med BID - c:\programfiler\bulk image downloader\iemenu\iebidlink.htm
IE: Åpne nåværende side med BID Image Downloader - c:\programfiler\bulk image downloader\iemenu\iebid.htm
IE: Åpne nåværende side med BID Link Explorer Image Downloader - c:\programfiler\bulk image downloader\iemenu\iebidlinkexplorer.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-001010-0002-0010-ABCDEFFEDCBC} - <orphaned>
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\programfiler\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programfiler\messenger\msmsgs.exe






TCP: NameServer = 130.67.15.198 193.213.112.4 10.0.0.138
TCP: Interfaces\{6AEC86C2-693B-4F76-8E32-83EC86171176} : DHCPNameServer = 16.92.3.242 16.92.3.243 16.81.3.243 16.114.3.243
TCP: Interfaces\{7029FD28-C845-4426-BF5C-81A7284627A4} : DHCPNameServer = 130.67.15.198 193.213.112.4 10.0.0.138
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\programfiler\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\programfiler\fellesfiler\skype\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
AppInit_DLLs= prio.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
Hosts: 130.0.234.27 razlyuli.org
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\

FF - prefs.js: browser.search.selectedEngine - Ask.com


FF - component: c:\programfiler\orbitdownloader\addons\oneclickyoutubedownloader\components\GrabXpcom.dll
FF - plugin: c:\documents and settings\hp_eier\programdata\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\programfiler\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\programfiler\canon\easy-photoprint ex\NPEZFFPI.DLL
FF - plugin: c:\programfiler\canon\mycamera download plugin\NPCIG.dll
FF - plugin: c:\programfiler\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\programfiler\microsoft silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: c:\programfiler\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\programfiler\sony\media go\npmediago.dll
FF - plugin: c:\programfiler\vizky\npVizky.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1202122.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: 2013-07-18 13:31; jid1-4P0kohSJxU1qGg@jetpack; c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\extensions\jid1-4P0kohSJxU1qGg@jetpack.xpi
FF - ExtSQL: 2019-09-25 23:40; {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}; c:\documents and settings\hp_eier\programdata\mozilla\firefox\profiles\lendhffs.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
FF - ExtSQL: !HIDDEN! 2009-09-02 02:01; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-3-13 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-3-13 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-3-14 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2008-4-3 369584]
R1 prio;Prio;c:\windows\system32\drivers\prio.sys [2012-11-8 54128]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/05/18 02:00:34];c:\programfiler\cyberlink\powerdvd9\000.fcl [2009-2-28 87536]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-4-3 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-3-13 66336]
R2 avast! Antivirus;avast! Antivirus;c:\programfiler\alwil software\avast5\AvastSvc.exe [2010-7-10 46808]
R2 MBAMScheduler;MBAMScheduler;c:\programfiler\malwarebytes' anti-malware\mbamscheduler.exe [2012-10-12 418376]
R2 MBAMService;MBAMService;c:\programfiler\malwarebytes' anti-malware\mbamservice.exe [2009-3-26 701512]
R2 OMSI download service;Sony Ericsson OMSI download service;c:\programfiler\sony ericsson\sony ericsson pc suite\SupServ.exe [2011-4-15 90112]
R2 prio_svc;Prio Service;c:\programfiler\prio\prio_svc.exe [2012-11-8 12656]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2012-10-2 3064000]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-3-26 22856]
S2 SkypeUpdate;Skype Updater;c:\programfiler\skype\updater\Updater.exe [2012-7-13 160944]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2012-8-31 12400]
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys --> c:\windows\system32\drivers\npf.sys [?]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [2011-4-15 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [2011-4-15 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [2011-4-15 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [2011-4-15 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [2011-4-15 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [2011-4-15 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [2011-4-15 109736]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2011-4-15 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2011-4-15 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2011-4-15 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [2011-4-15 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [2011-4-15 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [2011-4-15 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [2011-4-15 109864]
S3 Sony PC Companion;Sony PC Companion;c:\programfiler\sony\sony pc companion\PCCService.exe [2012-8-31 155824]
S3 USBAAPL;Apple Mobile USB Driver;c:\windows\system32\drivers\usbaapl.sys [2010-11-18 41984]
S3 WN5401;Liteon Wireless LAN PCI 802.11 a/b/g adapter WN5401A;c:\windows\system32\drivers\wn5401.sys [2005-1-2 449920]
S4 ESUSClient_TNO;Telenor Norway Software Update Service;c:\programfiler\telenor norway\esus_tno\ESUS_TNO.exe [2010-12-17 358808]
S4 TelenorhjelpenSvc;Telenorhjelpen Service;c:\programfiler\telenor norway\telenorhjelpen\Service.exe [2011-2-15 463240]
.
=============== File Associations ===============
.
ShellExec: FRONTPG.EXE: edit=c:\progra~1\micros~3\office\FRONTPG.EXE
.
=============== Created Last 30 ================
.
2013-08-27 20:45:11    --------    d--h--r-    c:\documents and settings\hp_eier\Siste
2013-08-15 12:36:40    --------    d-----w-    c:\windows\system32\MRT
2013-08-13 18:52:49    --------    d-----w-    c:\documents and settings\hp_eier\programdata\com.aspiro.wimp
.
==================== Find3M  ====================
.
2013-08-02 23:48:38    1543680    ------w-    c:\windows\system32\wmvdecod.dll
2013-07-26 02:48:59    920064    ----a-w-    c:\windows\system32\wininet.dll
2013-07-26 02:48:58    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-07-26 02:48:58    1469440    ------w-    c:\windows\system32\inetcpl.cpl
2013-07-25 15:58:11    385024    ----a-w-    c:\windows\system32\html.iec
2013-07-15 21:17:05    94632    ----a-w-    c:\windows\system32\WindowsAccessBridge.dll
2013-07-15 21:16:56    144896    ----a-w-    c:\windows\system32\javacpl.cpl
2013-07-15 21:16:54    867240    ----a-w-    c:\windows\system32\npdeployJava1.dll
2013-07-15 21:16:53    789416    ----a-w-    c:\windows\system32\deployJava1.dll
2013-07-14 21:20:29    692104    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-07-14 21:20:28    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-07-10 10:37:48    406016    ----a-w-    c:\windows\system32\usp10.dll
2013-07-04 07:33:59    2195328    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-07-04 07:33:59    2071936    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-06-27 19:30:20    770344    ----a-w-    c:\windows\system32\drivers\aswSnx.sys
2013-06-27 19:30:20    175176    ----a-w-    c:\windows\system32\drivers\aswVmm.sys
2013-06-05 09:08:28    1876736    ----a-w-    c:\windows\system32\win32k.sys
2013-06-04 07:22:58    563200    ----a-w-    c:\windows\system32\qedit.dll
2005-05-13 16:12:00    217073    --sha-r-    c:\windows\meta4.exe
2005-10-24 10:13:58    66560    --sha-r-    c:\windows\MOTA113.exe
2005-10-13 20:27:00    422400    --sha-r-    c:\windows\x2.64.exe
2005-06-26 14:32:28    616448    --sha-r-    c:\windows\system32\cygwin1.dll
2005-06-21 21:37:42    45568    --sha-r-    c:\windows\system32\cygz.dll
2008-09-03 06:25:48    77312    --sh--r-    c:\windows\system32\devcon_001.exe
2004-01-24 23:00:00    70656    --sha-r-    c:\windows\system32\i420vfw.dll
2006-04-27 09:24:24    2945024    --sha-r-    c:\windows\system32\Smab.dll
2005-02-28 12:16:22    240128    --sha-r-    c:\windows\system32\x.264.exe
2004-01-24 23:00:00    70656    --sha-r-    c:\windows\system32\yv12vfw.dll
.
============= FINISH:  7:40:54,00 ===============
 

*** Attach.txt ***

-----------------------------------------------------

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 06.01.2006 11:25:55
System Uptime: 28.08.2013 11:42:55 (20 hours ago)
.
Motherboard: MSI |  | AMETHYST-M
Processor: AMD Athlon 64 Processor 3500+ | Socket 939 | 1772/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 908 GiB total, 765,488 GiB free.
D: is FIXED (FAT32) - 24 GiB total, 20,566 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
K: is FIXED (FAT32) - 298 GiB total, 2,503 GiB free.
N: is FIXED (NTFS) - 932 GiB total, 734,47 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Wireless LAN PCI 802.11 a/b/g adapter WN5401A
Device ID: PCI\VEN_168C&DEV_001B&SUBSYS_500011AD&REV_01\4&1C88B56&0&08A4
Manufacturer: Liteon
Name: Wireless LAN PCI 802.11 a/b/g adapter WN5401A
PNP Device ID: PCI\VEN_168C&DEV_001B&SUBSYS_500011AD&REV_01\4&1C88B56&0&08A4
Service: WN5401
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Beep
Device ID: ROOT\LEGACY_BEEP\0000
Manufacturer:
Name: Beep
PNP Device ID: ROOT\LEGACY_BEEP\0000
Service: Beep
.
==== System Restore Points ===================
.
RP2271: 23.06.2013 14:04:52 - Kontrollpunkt for system
RP2272: 24.06.2013 16:33:34 - Kontrollpunkt for system
RP2273: 25.06.2013 16:38:37 - Kontrollpunkt for system
RP2274: 26.06.2013 17:32:06 - Kontrollpunkt for system
RP2275: 27.06.2013 23:55:07 - Kontrollpunkt for system
RP2276: 29.06.2013 11:47:32 - Kontrollpunkt for system
RP2277: 30.06.2013 12:16:50 - Kontrollpunkt for system
RP2278: 01.07.2013 12:20:31 - Kontrollpunkt for system
RP2279: 02.07.2013 12:51:17 - Kontrollpunkt for system
RP2280: 07.07.2013 10:18:30 - Kontrollpunkt for system
RP2281: 08.07.2013 12:36:31 - Kontrollpunkt for system
RP2282: 09.07.2013 13:39:17 - Kontrollpunkt for system
RP2283: 10.07.2013 14:00:18 - Kontrollpunkt for system
RP2284: 13.07.2013 17:18:01 - Software Distribution Service 3.0
RP2285: 13.07.2013 18:08:39 - Software Distribution Service 3.0
RP2286: 14.07.2013 19:03:15 - Kontrollpunkt for system
RP2287: 15.07.2013 19:58:33 - Kontrollpunkt for system
RP2288: 15.07.2013 23:15:49 - Removed Java 7 Update 25
RP2289: 15.07.2013 23:16:49 - Installed Java 7 Update 25
RP2290: 17.07.2013 12:39:42 - Kontrollpunkt for system
RP2291: 17.07.2013 18:47:26 - Removed WinZip 17.5
RP2292: 18.07.2013 18:52:05 - Kontrollpunkt for system
RP2293: 19.07.2013 20:56:12 - Kontrollpunkt for system
RP2294: 20.07.2013 23:24:12 - Kontrollpunkt for system
RP2295: 22.07.2013 12:39:54 - Kontrollpunkt for system
RP2296: 23.07.2013 15:43:03 - Kontrollpunkt for system
RP2297: 24.07.2013 15:47:55 - Kontrollpunkt for system
RP2298: 26.07.2013 11:12:21 - Kontrollpunkt for system
RP2299: 27.07.2013 12:11:11 - Kontrollpunkt for system
RP2300: 28.07.2013 13:19:37 - Kontrollpunkt for system
RP2301: 29.07.2013 17:18:15 - Kontrollpunkt for system
RP2302: 31.07.2013 00:02:12 - Kontrollpunkt for system
RP2303: 01.08.2013 15:35:48 - Kontrollpunkt for system
RP2304: 02.08.2013 16:38:27 - Kontrollpunkt for system
RP2305: 04.08.2013 00:16:33 - Kontrollpunkt for system
RP2306: 06.08.2013 13:26:08 - Kontrollpunkt for system
RP2307: 07.08.2013 15:25:41 - Kontrollpunkt for system
RP2308: 09.08.2013 13:28:16 - Kontrollpunkt for system
RP2309: 10.08.2013 13:50:52 - Kontrollpunkt for system
RP2310: 11.08.2013 16:21:40 - Kontrollpunkt for system
RP2311: 12.08.2013 17:11:20 - Kontrollpunkt for system
RP2312: 13.08.2013 17:25:06 - Kontrollpunkt for system
RP2313: 14.08.2013 18:21:17 - Kontrollpunkt for system
RP2314: 15.08.2013 14:26:54 - Software Distribution Service 3.0
RP2315: 16.08.2013 15:37:31 - Kontrollpunkt for system
RP2316: 17.08.2013 23:12:38 - Kontrollpunkt for system
RP2317: 19.08.2013 18:16:33 - Kontrollpunkt for system
RP2318: 21.08.2013 16:01:59 - Kontrollpunkt for system
RP2319: 23.08.2013 15:35:20 - Kontrollpunkt for system
RP2320: 24.08.2013 23:45:40 - Kontrollpunkt for system
RP2321: 26.08.2013 22:48:08 - Kontrollpunkt for system
RP2322: 28.08.2013 12:03:27 - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
 Leawo Free AVI Converter version  2.4.0.0
3DSexVilla2
AC3Filter (remove only)
AC3Tools Pro
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Photoshop 6.0
Adobe Reader XI (11.0.03) - Norsk
Adobe Shockwave Player 12.0
AiO_Scan
AiOSoftware
AnalogX DXMan
AnalogX Vocal Remover (WinAmp)
AoA DVD Ripper
Apple-programsupport
Apple Mobile Device Support
Apple Software Update
Applian FLV and Media Player 3.1.1.12
ATI Control Panel
ATI Display Driver
µTorrent
Audacity 1.2.4
Audio Transcoder
Audiograbber 1.83 SE
avast! Free Antivirus
Batch Image Resizer Full Version
BilderHerunterlader 3.6.6
BilderHerunterlader IE-Plugin 8.0
Bink and Smacker
Bonjour
Brukerregistrering for Canon iP4300
Brukerregistrering for Canon iP4800 series
Bulk Image Downloader v4.58.0.0
Bulk Rename Utility 2.7.1.1
CameraDrivers
CameraUserGuides
Canon Camera Access Library
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
CANON iMAGE GATEWAY MyCamera Download Plugin
CANON iMAGE GATEWAY Task for ZoomBrowser EX
Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Canon iP4300
Canon iP4800 series Printer Driver
Canon MOV Decoder
Canon MOV Encoder
Canon MovieEdit Task for ZoomBrowser EX
Canon My Printer
Canon Setup Utility 2.3
Canon Solution Menu EX
Canon Utilities CameraWindow DC 8
Canon Utilities CameraWindow Launcher
Canon Utilities Easy-PhotoPrint
Canon Utilities Easy-PrintToolBox
Canon Utilities Movie Uploader for YouTube
Canon Utilities MyCamera
Canon Utilities PhotoStitch
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
CD-LabelPrint
Content Transfer
CPU-Control
Crush'Em 2.0
CyberLink PowerDVD 9
D2300
D2300_Help
Destinations
DeviceFunctionQFolder
DeviceManagementQFolder
DivXLand Media Subtitler
DocProc
DocumentViewer
DocumentViewerQFolder
Download Manager 2.0
Dropbox
DVD Audio Extractor 4.2.1
DVD Flick 1.3.0.7
DVD Shrink 3.2
DVDStyler v1.8.2
Dziobas Rar Player 0.009.39
EASE RM Converter 3.00
Easy-WebPrint
Enhanced Multimedia Keyboard Solution
Facebook Plug-In
FaceGen Modeller 3.4
Fax
Fighter Factory 1.0.9.2005 + Update Pack 1
FLAC 1.2.1b (remove only)
FormatFactory 2.96
Free Audio Extractor V1.22
GdiplusUpgrade
GIMP 2.6.11
GoldWave v5.23
High Definition Audio - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB976002-v5)
hp deskjet 656c series (Bare fjerning)
HP Deskjet Printer Preload
HP Document Viewer 5.3
HP Imaging Device Functions 7.0
HP Photosmart-kameraer 5.0
HP Photosmart-kameraer 6.0
HP Photosmart 330,380,420,470,7800,8000,8200 Series
HP Photosmart and Deskjet 7.0 Software (nob)
HP Photosmart Essential
HP Product Assistant
HP PSC & OfficeJet 5.3.B
HP Solution Center 7.0
HP Update
hph_ProductContext
hph_readme
hph_software
hph_software_req
hpiCamDrvQFolder
HPPhotoSmartExpress
HPProductAssistant
Hurtigreparasjon for Windows Internet Explorer 7 (KB947864)
Hurtigreparasjon for Windows Media Player 11 (KB939683)
Hurtigreparasjon for Windows XP (KB2158563)
Hurtigreparasjon for Windows XP (KB2443685)
Hurtigreparasjon for Windows XP (KB2570791)
Hurtigreparasjon for Windows XP (KB2633952)
Hurtigreparasjon for Windows XP (KB2756822)
Hurtigreparasjon for Windows XP (KB2779562)
Hurtigreparasjon for Windows XP (KB942288-v3)
Hurtigreparasjon for Windows XP (KB952287)
Hurtigreparasjon for Windows XP (KB961118)
Hurtigreparasjon for Windows XP (KB970653-v3)
Hurtigreparasjon for Windows XP (KB976098-v2)
Hurtigreparasjon for Windows XP (KB979306)
Hurtigreparasjon for Windows XP (KB981793)
Icon Restore 1.0
InterActual Player
InterVideo WinDVD Player
iPhoto Plus 4
IrfanView (remove only)
iSofter DVD Audio Ripper Deluxe 3.0.2007.228
iTunes
Java 7 Update 25
Java Auto Updater
Kritisk oppdatering for Windows Media Player 11 (KB959772)
LightScribe  1.4.42.1
Magic DVD Ripper V5.4.1
MakeTorrent v2.1
Malwarebytes Anti-Malware versjon 1.75.0.1300
Media-Codec 4.0
Media Go
Media Go Video Playback Engine 1.116.103.02020
Melodyne 3.1
Memeo AutoBackup
Memeo AutoSync
MemoriesOnWeb 3.1.7
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Norwegian Language Pack
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Language Pack - NOR
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Encarta 98 Encyclopedia
Microsoft FrontPage 2000
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Silverlight
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ Run Time  Lib Setup
Microsoft Works
MixMeister BPM Analyzer 1.0
Monkey's Audio
Mozilla Firefox 16.0.1 (x86 nb-NO)
Mozilla Maintenance Service
Mp3tag v2.57
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
MSXML 4.0 SP3 Parser (KB973685)
MSXML 6.0 Parser (KB933579)
Myspace Video Downloader 3.15
Nero 8 Demo
neroxml
NewCopy
Octoshape add-in for Adobe Flash Player
office Convert Pdf to Jpg Jpeg Tiff Free 6.4
OJOsoft Audio Converter
On2 VP7 Personal Edition
OpenOffice.org 3.2
Oppdatering for Windows Internet Explorer 8 (KB971930)
Oppdatering for Windows Internet Explorer 8 (KB976662)
Oppdatering for Windows Internet Explorer 8 (KB976749)
Oppdatering for Windows Internet Explorer 8 (KB980182)
Oppdatering for Windows XP (KB2141007)
Oppdatering for Windows XP (KB2345886)
Oppdatering for Windows XP (KB2467659)
Oppdatering for Windows XP (KB2541763)
Oppdatering for Windows XP (KB2607712)
Oppdatering for Windows XP (KB2616676)
Oppdatering for Windows XP (KB2641690)
Oppdatering for Windows XP (KB2661254-v2)
Oppdatering for Windows XP (KB2718704)
Oppdatering for Windows XP (KB2736233)
Oppdatering for Windows XP (KB2749655)
Oppdatering for Windows XP (KB2863058)
Oppdatering for Windows XP (KB951072-v2)
Oppdatering for Windows XP (KB951978)
Oppdatering for Windows XP (KB955759)
Oppdatering for Windows XP (KB955839)
Oppdatering for Windows XP (KB961503)
Oppdatering for Windows XP (KB967715)
Oppdatering for Windows XP (KB968389)
Oppdatering for Windows XP (KB971029)
Oppdatering for Windows XP (KB971737)
Oppdatering for Windows XP (KB973687)
Oppdatering for Windows XP (KB973815)
Opplastingsverktøy for Windows Live
Packard Bell Diamond 1200Plus v1.0
PanoStandAlone
Pazera Free FLV to AVI Converter 1.5
Pazera Free MOV to AVI Converter 1.4
PC SWOS-Total Pack version V1.34
PearlMountain Image Converter 1.2.6
Plato DVD Ripper Professional 6.66.14
PlayStation®Network Downloader
PlayStation®Store
Påloggingsassistent for Windows Live
Power MP3 WMA Converter 2010, (ver 5.0)
Prio
PROSONIQ Timefactory II
PS2
PSPrinters08
PSTAPlugin
Puzzl'Em 1.0 Beta2
Python 2.2 pywin32 extensions (build 203)
Python 2.2.3
QFolder
QuickSFV (Remove only)
QuickTime
RAR Password Cracker 4.12
RAR Password Recovery v1.1 RC17 (remove only)
Readme
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
RealUpgrade 1.1
Samsung USB Driver
Scan
ScannerCopy
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Segoe UI
SFPack
Sikkerhetsoppdatering for Microsoft Windows (KB2564958)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB928090)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB929969)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB931768)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB933566)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB937143)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB938127)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB939653)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB942615)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB944533)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB950759)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB953838)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB956390)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB958215)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB960714)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB961260)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB963027)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB969897)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2183461)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2360131)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2416400)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2482017)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2497640)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2510531)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2530548)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2544521)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2559049)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2586448)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2618444)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2647516)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2675157)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2699988)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2722913)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2744842)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2761465)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2792100)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2797052)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2799329)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2809289)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2817183)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2829530)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2838727)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2846071)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2847204)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2862772)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB969897)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB971961)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB972260)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB974455)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB976325)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB978207)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB981332)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB982381)
Sikkerhetsoppdatering for Windows Media Encoder (KB2447961)
Sikkerhetsoppdatering for Windows Media Encoder (KB954156)
Sikkerhetsoppdatering for Windows Media Encoder (KB979332)
Sikkerhetsoppdatering for Windows Media Player (KB2378111)
Sikkerhetsoppdatering for Windows Media Player (KB2834904-v2)
Sikkerhetsoppdatering for Windows Media Player (KB2834904)
Sikkerhetsoppdatering for Windows Media Player (KB911564)
Sikkerhetsoppdatering for Windows Media Player (KB952069)
Sikkerhetsoppdatering for Windows Media Player (KB954155)
Sikkerhetsoppdatering for Windows Media Player (KB968816)
Sikkerhetsoppdatering for Windows Media Player (KB973540)
Sikkerhetsoppdatering for Windows Media Player (KB975558)
Sikkerhetsoppdatering for Windows Media Player (KB978695)
Sikkerhetsoppdatering for Windows Media Player 10 (KB911565)
Sikkerhetsoppdatering for Windows Media Player 10 (KB917734)
Sikkerhetsoppdatering for Windows Media Player 11 (KB936782)
Sikkerhetsoppdatering for Windows Media Player 6.4 (KB925398)
Sikkerhetsoppdatering for Windows XP (KB2079403)
Sikkerhetsoppdatering for Windows XP (KB2121546)
Sikkerhetsoppdatering for Windows XP (KB2160329)
Sikkerhetsoppdatering for Windows XP (KB2229593)
Sikkerhetsoppdatering for Windows XP (KB2259922)
Sikkerhetsoppdatering for Windows XP (KB2279986)
Sikkerhetsoppdatering for Windows XP (KB2286198)
Sikkerhetsoppdatering for Windows XP (KB2296011)
Sikkerhetsoppdatering for Windows XP (KB2296199)
Sikkerhetsoppdatering for Windows XP (KB2347290)
Sikkerhetsoppdatering for Windows XP (KB2360937)
Sikkerhetsoppdatering for Windows XP (KB2387149)
Sikkerhetsoppdatering for Windows XP (KB2393802)
Sikkerhetsoppdatering for Windows XP (KB2412687)
Sikkerhetsoppdatering for Windows XP (KB2419632)
Sikkerhetsoppdatering for Windows XP (KB2423089)
Sikkerhetsoppdatering for Windows XP (KB2436673)
Sikkerhetsoppdatering for Windows XP (KB2440591)
Sikkerhetsoppdatering for Windows XP (KB2443105)
Sikkerhetsoppdatering for Windows XP (KB2476490)
Sikkerhetsoppdatering for Windows XP (KB2476687)
Sikkerhetsoppdatering for Windows XP (KB2478960)
Sikkerhetsoppdatering for Windows XP (KB2478971)
Sikkerhetsoppdatering for Windows XP (KB2479628)
Sikkerhetsoppdatering for Windows XP (KB2479943)
Sikkerhetsoppdatering for Windows XP (KB2481109)
Sikkerhetsoppdatering for Windows XP (KB2483185)
Sikkerhetsoppdatering for Windows XP (KB2485376)
Sikkerhetsoppdatering for Windows XP (KB2485663)
Sikkerhetsoppdatering for Windows XP (KB2491683)
Sikkerhetsoppdatering for Windows XP (KB2503658)
Sikkerhetsoppdatering for Windows XP (KB2503665)
Sikkerhetsoppdatering for Windows XP (KB2506212)
Sikkerhetsoppdatering for Windows XP (KB2506223)
Sikkerhetsoppdatering for Windows XP (KB2507618)
Sikkerhetsoppdatering for Windows XP (KB2507938)
Sikkerhetsoppdatering for Windows XP (KB2508272)
Sikkerhetsoppdatering for Windows XP (KB2508429)
Sikkerhetsoppdatering for Windows XP (KB2509553)
Sikkerhetsoppdatering for Windows XP (KB2511455)
Sikkerhetsoppdatering for Windows XP (KB2524375)
Sikkerhetsoppdatering for Windows XP (KB2535512)
Sikkerhetsoppdatering for Windows XP (KB2536276-v2)
Sikkerhetsoppdatering for Windows XP (KB2536276)
Sikkerhetsoppdatering for Windows XP (KB2544893-v2)
Sikkerhetsoppdatering for Windows XP (KB2544893)
Sikkerhetsoppdatering for Windows XP (KB2555917)
Sikkerhetsoppdatering for Windows XP (KB2562937)
Sikkerhetsoppdatering for Windows XP (KB2566454)
Sikkerhetsoppdatering for Windows XP (KB2567053)
Sikkerhetsoppdatering for Windows XP (KB2567680)
Sikkerhetsoppdatering for Windows XP (KB2570222)
Sikkerhetsoppdatering for Windows XP (KB2570947)
Sikkerhetsoppdatering for Windows XP (KB2584146)
Sikkerhetsoppdatering for Windows XP (KB2585542)
Sikkerhetsoppdatering for Windows XP (KB2592799)
Sikkerhetsoppdatering for Windows XP (KB2598479)
Sikkerhetsoppdatering for Windows XP (KB2603381)
Sikkerhetsoppdatering for Windows XP (KB2618451)
Sikkerhetsoppdatering for Windows XP (KB2619339)
Sikkerhetsoppdatering for Windows XP (KB2620712)
Sikkerhetsoppdatering for Windows XP (KB2621440)
Sikkerhetsoppdatering for Windows XP (KB2624667)
Sikkerhetsoppdatering for Windows XP (KB2631813)
Sikkerhetsoppdatering for Windows XP (KB2633171)
Sikkerhetsoppdatering for Windows XP (KB2639417)
Sikkerhetsoppdatering for Windows XP (KB2641653)
Sikkerhetsoppdatering for Windows XP (KB2646524)
Sikkerhetsoppdatering for Windows XP (KB2647518)
Sikkerhetsoppdatering for Windows XP (KB2653956)
Sikkerhetsoppdatering for Windows XP (KB2655992)
Sikkerhetsoppdatering for Windows XP (KB2659262)
Sikkerhetsoppdatering for Windows XP (KB2660465)
Sikkerhetsoppdatering for Windows XP (KB2661637)
Sikkerhetsoppdatering for Windows XP (KB2676562)
Sikkerhetsoppdatering for Windows XP (KB2685939)
Sikkerhetsoppdatering for Windows XP (KB2686509)
Sikkerhetsoppdatering for Windows XP (KB2691442)
Sikkerhetsoppdatering for Windows XP (KB2695962)
Sikkerhetsoppdatering for Windows XP (KB2698365)
Sikkerhetsoppdatering for Windows XP (KB2705219)
Sikkerhetsoppdatering for Windows XP (KB2707511)
Sikkerhetsoppdatering for Windows XP (KB2709162)
Sikkerhetsoppdatering for Windows XP (KB2712808)
Sikkerhetsoppdatering for Windows XP (KB2718523)
Sikkerhetsoppdatering for Windows XP (KB2719985)
Sikkerhetsoppdatering for Windows XP (KB2723135)
Sikkerhetsoppdatering for Windows XP (KB2724197)
Sikkerhetsoppdatering for Windows XP (KB2727528)
Sikkerhetsoppdatering for Windows XP (KB2731847)
Sikkerhetsoppdatering for Windows XP (KB2753842-v2)
Sikkerhetsoppdatering for Windows XP (KB2753842)
Sikkerhetsoppdatering for Windows XP (KB2757638)
Sikkerhetsoppdatering for Windows XP (KB2758857)
Sikkerhetsoppdatering for Windows XP (KB2761226)
Sikkerhetsoppdatering for Windows XP (KB2770660)
Sikkerhetsoppdatering for Windows XP (KB2778344)
Sikkerhetsoppdatering for Windows XP (KB2779030)
Sikkerhetsoppdatering for Windows XP (KB2780091)
Sikkerhetsoppdatering for Windows XP (KB2799494)
Sikkerhetsoppdatering for Windows XP (KB2802968)
Sikkerhetsoppdatering for Windows XP (KB2807986)
Sikkerhetsoppdatering for Windows XP (KB2808735)
Sikkerhetsoppdatering for Windows XP (KB2813170)
Sikkerhetsoppdatering for Windows XP (KB2813345)
Sikkerhetsoppdatering for Windows XP (KB2820197)
Sikkerhetsoppdatering for Windows XP (KB2820917)
Sikkerhetsoppdatering for Windows XP (KB2829361)
Sikkerhetsoppdatering for Windows XP (KB2834886)
Sikkerhetsoppdatering for Windows XP (KB2839229)
Sikkerhetsoppdatering for Windows XP (KB2845187)
Sikkerhetsoppdatering for Windows XP (KB2849470)
Sikkerhetsoppdatering for Windows XP (KB2850851)
Sikkerhetsoppdatering for Windows XP (KB2850869)
Sikkerhetsoppdatering for Windows XP (KB2859537)
Sikkerhetsoppdatering for Windows XP (KB923561)
Sikkerhetsoppdatering for Windows XP (KB923689)
Sikkerhetsoppdatering for Windows XP (KB938464)
Sikkerhetsoppdatering for Windows XP (KB941569)
Sikkerhetsoppdatering for Windows XP (KB946648)
Sikkerhetsoppdatering for Windows XP (KB950760)
Sikkerhetsoppdatering for Windows XP (KB950762)
Sikkerhetsoppdatering for Windows XP (KB950974)
Sikkerhetsoppdatering for Windows XP (KB951066)
Sikkerhetsoppdatering for Windows XP (KB951376-v2)
Sikkerhetsoppdatering for Windows XP (KB951376)
Sikkerhetsoppdatering for Windows XP (KB951698)
Sikkerhetsoppdatering for Windows XP (KB951748)
Sikkerhetsoppdatering for Windows XP (KB952004)
Sikkerhetsoppdatering for Windows XP (KB952954)
Sikkerhetsoppdatering for Windows XP (KB953839)
Sikkerhetsoppdatering for Windows XP (KB954211)
Sikkerhetsoppdatering for Windows XP (KB954459)
Sikkerhetsoppdatering for Windows XP (KB954600)
Sikkerhetsoppdatering for Windows XP (KB955069)
Sikkerhetsoppdatering for Windows XP (KB956391)
Sikkerhetsoppdatering for Windows XP (KB956572)
Sikkerhetsoppdatering for Windows XP (KB956744)
Sikkerhetsoppdatering for Windows XP (KB956802)
Sikkerhetsoppdatering for Windows XP (KB956803)
Sikkerhetsoppdatering for Windows XP (KB956841)
Sikkerhetsoppdatering for Windows XP (KB956844)
Sikkerhetsoppdatering for Windows XP (KB957095)
Sikkerhetsoppdatering for Windows XP (KB957097)
Sikkerhetsoppdatering for Windows XP (KB958644)
Sikkerhetsoppdatering for Windows XP (KB958687)
Sikkerhetsoppdatering for Windows XP (KB958690)
Sikkerhetsoppdatering for Windows XP (KB958869)
Sikkerhetsoppdatering for Windows XP (KB959426)
Sikkerhetsoppdatering for Windows XP (KB960225)
Sikkerhetsoppdatering for Windows XP (KB960715)
Sikkerhetsoppdatering for Windows XP (KB960803)
Sikkerhetsoppdatering for Windows XP (KB960859)
Sikkerhetsoppdatering for Windows XP (KB961371)
Sikkerhetsoppdatering for Windows XP (KB961373)
Sikkerhetsoppdatering for Windows XP (KB961501)
Sikkerhetsoppdatering for Windows XP (KB968537)
Sikkerhetsoppdatering for Windows XP (KB969059)
Sikkerhetsoppdatering for Windows XP (KB969898)
Sikkerhetsoppdatering for Windows XP (KB969947)
Sikkerhetsoppdatering for Windows XP (KB970238)
Sikkerhetsoppdatering for Windows XP (KB970430)
Sikkerhetsoppdatering for Windows XP (KB971468)
Sikkerhetsoppdatering for Windows XP (KB971486)
Sikkerhetsoppdatering for Windows XP (KB971557)
Sikkerhetsoppdatering for Windows XP (KB971633)
Sikkerhetsoppdatering for Windows XP (KB971657)
Sikkerhetsoppdatering for Windows XP (KB972270)
Sikkerhetsoppdatering for Windows XP (KB973346)
Sikkerhetsoppdatering for Windows XP (KB973354)
Sikkerhetsoppdatering for Windows XP (KB973507)
Sikkerhetsoppdatering for Windows XP (KB973525)
Sikkerhetsoppdatering for Windows XP (KB973869)
Sikkerhetsoppdatering for Windows XP (KB973904)
Sikkerhetsoppdatering for Windows XP (KB974112)
Sikkerhetsoppdatering for Windows XP (KB974318)
Sikkerhetsoppdatering for Windows XP (KB974392)
Sikkerhetsoppdatering for Windows XP (KB974571)
Sikkerhetsoppdatering for Windows XP (KB975025)
Sikkerhetsoppdatering for Windows XP (KB975467)
Sikkerhetsoppdatering for Windows XP (KB975560)
Sikkerhetsoppdatering for Windows XP (KB975561)
Sikkerhetsoppdatering for Windows XP (KB975562)
Sikkerhetsoppdatering for Windows XP (KB975713)
Sikkerhetsoppdatering for Windows XP (KB977165)
Sikkerhetsoppdatering for Windows XP (KB977816)
Sikkerhetsoppdatering for Windows XP (KB977914)
Sikkerhetsoppdatering for Windows XP (KB978037)
Sikkerhetsoppdatering for Windows XP (KB978251)
Sikkerhetsoppdatering for Windows XP (KB978262)
Sikkerhetsoppdatering for Windows XP (KB978338)
Sikkerhetsoppdatering for Windows XP (KB978542)
Sikkerhetsoppdatering for Windows XP (KB978601)
Sikkerhetsoppdatering for Windows XP (KB978706)
Sikkerhetsoppdatering for Windows XP (KB979309)
Sikkerhetsoppdatering for Windows XP (KB979482)
Sikkerhetsoppdatering for Windows XP (KB979559)
Sikkerhetsoppdatering for Windows XP (KB979683)
Sikkerhetsoppdatering for Windows XP (KB979687)
Sikkerhetsoppdatering for Windows XP (KB980195)
Sikkerhetsoppdatering for Windows XP (KB980218)
Sikkerhetsoppdatering for Windows XP (KB980232)
Sikkerhetsoppdatering for Windows XP (KB980436)
Sikkerhetsoppdatering for Windows XP (KB981322)
Sikkerhetsoppdatering for Windows XP (KB981852)
Sikkerhetsoppdatering for Windows XP (KB981957)
Sikkerhetsoppdatering for Windows XP (KB981997)
Sikkerhetsoppdatering for Windows XP (KB982132)
Sikkerhetsoppdatering for Windows XP (KB982214)
Sikkerhetsoppdatering for Windows XP (KB982665)
Sikkerhetsoppdatering for Windows XP (KB982802)
Simple Adblock
Skype Click to Call
Skype™ 5.10
SMI Grabber Device
SnagIt 9
SolutionCenter
Sonic Express Labeler
Sonic MyDVD Plus
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sony Ericsson PC Suite
Sony Ericsson PC Suite 6.011.00
Sony Media Manager 2.2
Sony PC Companion 2.10.155
Spotify
Status
Subtitle Workshop 2.51
swMSM
Telenor Software Update Service
Telenorhjelpen
Tetra Blocks v1.54
Toolbox
TrayApp
Trust WB-3100P Portable Webcam
Tunatic
Ulead GIF Animator 5
Ulead VideoStudio SE DVD
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB953356)
User Profile Hive Cleanup Service
VCRedistSetup
Veoh Web Player
Video iCodec 3.15
Viewpoint Media Player
Vintage Vocoder 1.03 Build 1
Vizrt Vizky version 1.5.8
VLC media player 2.0.7
VST Bridge 1.1
WD Diagnostics
WebFldrs XP
WebReg
WiMP 2.4.1
Winamp
Winamp Detector Plug-in
Winamp Essentials Pack
WinAVIVideoConverter
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Grep 2.3
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Media Encoder 9 Series
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell 1.0
Windows Presentation Foundation
Windows XP Service Pack 3
WinFF v0.23
WinRAR 4.20 (32-bit)
XML Paper Specification Shared Components Pack 1.0
Xvid 1.1.3 final uninstall
Yahoo! Messenger
Yahoo! Software Update
.
==== End Of File ===========================
 

 

[MrCharlie]

Welcome to the forum, can you post the log from Malwarebytes.

Please download and run RogueKiller 32 Bit to your desktop.

RogueKiller 64 Bit <---use this one for 64 bit systems

Quit all running programs.

For Windows XP, double-click to start.

For Vista or Windows 7-8, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

Click Scan to scan the system.

When the scan completes > Close out the program > Don't Fix anything!

Don't run any other options, they're not all bad!!!!!!!

Post back the report which should be located on your desktop.

(please don't put logs in code or quotes)

P2P/Piracy Warning:

1. If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

2. If you have illegal/cracked software, cracks, keygens, Adobe host file, etc. on the system, please remove or uninstall them now and read the policy on Piracy.

Failure to remove such software will result in your topic being closed and no further assistance being provided.

MrC

Note:

Please read all of my instructions completely including these.

Make sure you're subscribed to this topic: Click on the Follow This Topic Button (at the top right of this page), make sure that the Receive notification box is checked and that it is set to Instantly

Removing malware can be unpredictable...unlikely but things can go very wrong! Backup any files that cannot be replaced. You can copy them to a CD/DVD, external drive or a pen drive

<+>Please don't run any other scans, download, install or uninstall any programs while I'm working with you.

<+>The removal of malware isn't instantaneous, please be patient.

<+>When we are done, I'll give to instructions on how to cleanup all the tools and logs

<+>Please stick with me until I give you the "all clear" and Please don't waste my time by leaving before that.

------->Your topic will be closed if you haven't replied within 3 days!<--------

(If I don't respond within 24 hours, please send me a PM)

[Aphasia]

MalvareBytes log (it's in Norwegian, sorry):

 

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Databaseversjon: v2013.08.28.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
HP_Eier :: STEIN-VIDAR [administrator]

Beskyttelse: Aktivert

28.08.2013 20:27:16
MBAM-log-2013-08-29 (07-34-18).txt

Skanntype: Full skann (C:\|K:\|N:\|)
Aktiverte skanningsinnstillinger: Minne | Oppstart | Register | Filsystem | Heuristikk/Ekstra | Heuristikk/Shuriken | PUP | PUM
Deaktiverte skanninnstillinger: P2P
Objekter skannet: 1325697
Tid tilbakelagt: 6 time®, 13 minutt(er), 2 sekund(er)

Minneprosesser oppdaget: 0
(Ingen skadelige objekter funnet)

Minnemoduler oppdaget: 0
(Ingen skadelige objekter funnet)

Registernøkler oppdaget: 4
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Ingen tiltak tatt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Ingen tiltak tatt.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Ingen tiltak tatt.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Ingen tiltak tatt.

Registerverdier oppdaget: 2
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {EF72F02F-FA7D-11E1-BDA7-0013D396EFC3} -> Ingen tiltak tatt.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {EF72F02F-FA7D-11E1-BDA7-0013D396EFC3} -> Ingen tiltak tatt.

Registerfiler oppdaget: 0
(Ingen skadelige objekter funnet)

Mapper oppdaget: 0
(Ingen skadelige objekter funnet)

Filer oppdaget 1
C:\WINDOWS\Downloaded Installations\{C1379C57-0336-4779-B6AB-2D05B1C29FE5}\iTunes.msi (Malware.Packer.as) -> Ingen tiltak tatt.

(klar)
 

RougeKiller report:

 

RogueKiller V8.6.7 [Aug 28 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : HP_Eier [Admin rights]
Mode : Scan -- Date : 08/29/2013 15:07:06
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤
[RUN][sUSP PATH] HKCU\[...]\RunOnce : FFTI (C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles/lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" [x][x]) -> FOUND
[RUN][sUSP PATH] HKUS\S-1-5-21-447377850-251095157-4162229340-1008\[...]\RunOnce : FFTI (C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles/lendhffs.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" [x][x]) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1       localhost
130.0.234.27       razlyuli.org


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD10EARS-00Y5B1 +++++
--- User ---
[MBR] 404081da8461be1261004f6877a2decf
[bSP] a5913414cd949427fde62ae4681028bf : Legit.C MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 2048 | Size: 24570 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 50321408 | Size: 929298 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WDC WD10EARS-00Y5B1 +++++
--- User ---
[MBR] 11e0a617195c6f16b53194b380f031bd
[bSP] 607cb11bd20da2134302d5ede90c32e1 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953866 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: WDC WD10EARS-00Y5B1 +++++
--- User ---
[MBR] beea9460a2ac537379dfeacfce6df664
[bSP] 1343860dbef73a961735f1522ff55311 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[0]_S_08292013_150706.txt >>

[MrCharlie]

That's adware, you can clean it all up like this:

Please download AdwCleaner by Xplode and save to your Desktop.

• Double click on AdwCleaner.exe to run the tool.

  Vista/Windows 7/8 users right-click and select Run As Administrator

• Click on the Scan button.
• AdwCleaner will begin...be patient as the scan may take some time to complete.
• After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
• The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
• Copy and paste the contents of that logfile in your next reply.
• A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

If you agree with everything listed to be removed in the folders section...........

Double click on AdwCleaner.exe to run the tool again.

• Click on the Scan button.
• AdwCleaner will begin to scan your computer like it did before.
• After the scan has finished...
• This time click on the Clean button.
• Press OK when asked to close all programs and follow the onscreen prompts.
• Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
• After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.
• Copy and paste the contents of that logfile in your next reply.
• A copy of that logfile will also be saved in the C:\AdwCleaner folder.

Then..................

Open up Malwarebytes > Settings Tab > Scanner Settings > Under action for PUP > Select Show in Results List and Check for removal.

Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report.

Make sure that everything is checked, and click Remove Selected.

Please let me know how computer is running now, MrC

[Aphasia]

AdwCleaner - first scan log:

 

# AdwCleaner v3.001 - Report created 29/08/2013 at 15:19:31
# Updated 24/08/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : HP_Eier - STEIN-VIDAR
# Running from : C:\Documents and Settings\HP_Eier\Skrivebord\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\searchplugins\SweetIm.xml
File Found : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\user.js
Folder Found C:\Documents and Settings\All Users\Programdata\Viewpoint
Folder Found C:\Documents and Settings\HP_Eier\IECompatCache
Folder Found C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\jetpack
Folder Found C:\Programfiler\Free Offers from Freeze.com
Folder Found C:\Programfiler\Viewpoint
Folder Found C:\WINDOWS\system32\TempDir

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Headlight
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF0118D4-63FF-4138-9327-F3028FB1A578}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{BF0118D4-63FF-4138-9327-F3028FB1A578}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar
Key Found : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar.1
Key Found : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsink
Key Found : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsink.1
Key Found : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem
Key Found : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandler
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandler.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_launcher
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_launcher.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_printmanager
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_printmanager.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallback
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallback.1
Key Found : HKLM\SOFTWARE\Classes\toolband.tbtoolband
Key Found : HKLM\SOFTWARE\Classes\toolband.tbtoolband.1
Key Found : HKLM\SOFTWARE\Classes\toolband.useroptions
Key Found : HKLM\SOFTWARE\Classes\toolband.useroptions.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\eRightSoft\OpenCandy
Key Found : HKLM\Software\Freeze.com
Key Found : HKLM\Software\MetaStream
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Found : HKLM\Software\Viewpoint
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Programfiler\SweetIM\Communicator\SweetPacksUpdateManager.exe]

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v16.0.1 (nb-NO)

[ File : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\prefs.js ]

Line Found : user_pref("browser.search.order.1", "Ask.com");
Line Found : user_pref("browser.search.selectedEngine", "Ask.com");
Line Found : user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{20a82645-c095-46ed-80e3-08825760534b}\":{\"descriptor\":\"C:\\\\WINDOWS\\\\Microsoft.NET\\\\Framework\\\\v3.5\\\\W[...]
Line Found : user_pref("extensions.veohsearchrecs.SupportedSites", "<?xml version=\"1.0\" ?>\r\n<results revision=\"1.5.2\">\r\n    <sites>\r\n        <searchsite MatchesDomain=\"google.\" MatchesPath=\"/search\" [...]
Line Found : user_pref("extensions.veohsearchrecs.VeohVersion", "1.5.2");
Line Found : user_pref("extensions.veohsearchrecs.id", "665923cb3-0708-2632-4eec-8eb4e66edc1");
Line Found : user_pref("extensions.veohsearchrecs.lastsitedate", "26");
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Found : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");

*************************

AdwCleaner[R0].txt - [8683 octets] - [29/08/2013 15:19:31]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [8743 octets] ##########
 

 

 

AdwCleaner - second scan log:

 

# AdwCleaner v3.001 - Report created 29/08/2013 at 15:28:11
# Updated 24/08/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : HP_Eier - STEIN-VIDAR
# Running from : C:\Documents and Settings\HP_Eier\Skrivebord\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Programdata\Viewpoint
Folder Deleted : C:\Programfiler\Free Offers from Freeze.com
Folder Deleted : C:\Programfiler\Viewpoint
Folder Deleted : C:\WINDOWS\system32\TempDir
Folder Deleted : C:\Documents and Settings\HP_Eier\IECompatCache
Folder Deleted : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\jetpack
File Deleted : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\searchplugins\SweetIm.xml
File Deleted : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar
Key Deleted : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsink
Key Deleted : HKLM\SOFTWARE\Classes\toolband.fh_hookeventsink.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem
Key Deleted : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandler
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_dialogeventshandler.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_launcher
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_launcher.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_printmanager
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pm_printmanager.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallback
Key Deleted : HKLM\SOFTWARE\Classes\toolband.pr_printdialogcallback.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.tbtoolband
Key Deleted : HKLM\SOFTWARE\Classes\toolband.tbtoolband.1
Key Deleted : HKLM\SOFTWARE\Classes\toolband.useroptions
Key Deleted : HKLM\SOFTWARE\Classes\toolband.useroptions.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BF0118D4-63FF-4138-9327-F3028FB1A578}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF0118D4-63FF-4138-9327-F3028FB1A578}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Programfiler\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\eRightSoft\OpenCandy
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\Software\Viewpoint
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v16.0.1 (nb-NO)

[ File : C:\Documents and Settings\HP_Eier\Programdata\Mozilla\Firefox\Profiles\lendhffs.default\prefs.js ]

Line Deleted : user_pref("browser.search.order.1", "Ask.com");
Line Deleted : user_pref("browser.search.selectedEngine", "Ask.com");
Line Deleted : user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{20a82645-c095-46ed-80e3-08825760534b}\":{\"descriptor\":\"C:\\\\WINDOWS\\\\Microsoft.NET\\\\Framework\\\\v3.5\\\\W[...]
Line Deleted : user_pref("extensions.veohsearchrecs.SupportedSites", "<?xml version=\"1.0\" ?>\r\n<results revision=\"1.5.2\">\r\n    <sites>\r\n        <searchsite MatchesDomain=\"google.\" MatchesPath=\"/search\" [...]
Line Deleted : user_pref("extensions.veohsearchrecs.VeohVersion", "1.5.2");
Line Deleted : user_pref("extensions.veohsearchrecs.id", "665923cb3-0708-2632-4eec-8eb4e66edc1");
Line Deleted : user_pref("extensions.veohsearchrecs.lastsitedate", "26");
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");

*************************

AdwCleaner[R0].txt - [8823 octets] - [29/08/2013 15:19:31]
AdwCleaner[R1].txt - [8883 octets] - [29/08/2013 15:27:01]
AdwCleaner[s0].txt - [9002 octets] - [29/08/2013 15:28:11]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [9062 octets] ##########
 

 

 

MalwareBytes - Quick scan log:

 

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Databaseversjon: v2013.08.29.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
HP_Eier :: STEIN-VIDAR [administrator]

Beskyttelse: Aktivert

29.08.2013 15:37:28
mbam-log-2013-08-29 (15-37-28).txt

Skanntype: Hurtigsøk
Aktiverte skanningsinnstillinger: Minne | Oppstart | Register

| Filsystem | Heuristikk/Ekstra | Heuristikk/Shuriken | PUP |

PUM
Deaktiverte skanninnstillinger: P2P
Objekter skannet: 292026
Tid tilbakelagt: 9 minutt(er), 20 sekund(er)

Minneprosesser oppdaget: 0
(Ingen skadelige objekter funnet)

Minnemoduler oppdaget: 0
(Ingen skadelige objekter funnet)

Registernøkler oppdaget: 0
(Ingen skadelige objekter funnet)

Registerverdier oppdaget: 0
(Ingen skadelige objekter funnet)

Registerfiler oppdaget: 0
(Ingen skadelige objekter funnet)

Mapper oppdaget: 0
(Ingen skadelige objekter funnet)

Filer oppdaget 0
(Ingen skadelige objekter funnet)

(klar)
 

[MrCharlie]

How is it??? MrC

[Aphasia]

Well, the computer seems to be running just fine, but can I be certain that all the infected files are gone now?

[MrCharlie]

Well, the computer seems to be running just fine, but can I be certain that all the infected files are gone now?

Why do you say that??

PUP = Potentially Unwanted Program

http://forums.malwarebytes.org/index.php?showtopic=130156

You didn't have a "Virus"

MrC

[Aphasia]

Well, alright. Sorry then.

 

The only thing I'm still curious about is the file iTunes.msi which had been infected by Malware.Packer.as. Was that also Adware?

[MrCharlie]

Yes, it was part of the installer....MrC

[Aphasia]

OK, then I guess everythings OK now. Thanks.

 

Just one more question. Silly question, perhaps, but I'll ask it anyway just to be sure: I'm currently using the free version of avast!. I've been thinking about upgrading to the paid version, like I did with MBAM. Is it safe to upgrade now since I've cleaned out the Adware?

[MrCharlie]

It's OK but since you have MB Pro, I don't see the need but that's up to you.

MrC

[MrCharlie]

Take a look at My Preventive Maintenance to avoid being infected again.

Good Luck and Thanks for using the forum, MrC

[AdvancedSetup]

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!