Computer attacked by 3 trojans [Solved] - Geeks to Go Forums

Jump to content

Log in Register Register Malware removal guide How it works

Computer attacked by 3 trojans [Solved]

#1 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 24 January 2010 - 07:30 PM

Just recently my computer was attacked by 3 trojans. My Avast! security detected it but couldn't remove nor put it in quarantine. I am now running malwarebytes to see if it can detect it. I also downloaded spymalwarbytes to try it afterwards. Are there any other things I should do?

Should I move all my stuff I want to save to another harddrive? Any other precautions I should do?

I heard this forum was good for this kind of things. :)

/ Dante

#2 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 24 January 2010 - 09:06 PM

This is the only trojan malwarebytes found. I deleted it afterwards. Should I do anything else?

Quote

Malwarebytes' Anti-Malware 1.44
Databasversion: 3510
Windows 6.0.6000
Internet Explorer 7.0.6000.16982

2010-01-25 03:56:42
mbam-log-2010-01-25 (03-56-31).txt

Skanningstyp: Fullständig skanning (C:\|D:\|E:\|)
Antal skannade objekt: 301486
Förfluten tid: 1 hour(s), 58 minute(s), 5 second(s)

Infekterade minnesprocesser: 0
Infekterade minnesmoduler: 0
Infekterade registernycklar: 0
Infekterade registervärden: 0
Infekterade registerdataposter: 0
Infekterade mappar: 0
Infekterade filer: 1

Infekterade minnesprocesser:
(Inga illasinnade poster hittades)

Infekterade minnesmoduler:
(Inga illasinnade poster hittades)

Infekterade registernycklar:
(Inga illasinnade poster hittades)

Infekterade registervärden:
(Inga illasinnade poster hittades)

Infekterade registerdataposter:
(Inga illasinnade poster hittades)

Infekterade mappar:
(Inga illasinnade poster hittades)

Infekterade filer:
C:\Users\Oscar\Documents\My Documents.url (Trojan.Zlob) -> No action taken.

#3 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 25 January 2010 - 05:03 AM

So now I have went through my computer with both malwarebytes and supermalwarebytes. Malwarebytes found one trojan, trojan.zlob and I think it put it in quarantine. Supermalwarebytes found only adware.tracking.cookies which according to their website is not dangerous at all but removed it anyway.

So my avast detects 3 trojans, or I get alerted that 3 trojans come very fast. But only one found with malwarebytes and I put it in quarantine. The strange thing is that my computer seem to be working better now than before. The reason i got alerted that I had trojans was that I downloaded pokertracker from torrentz.com. I simply removed that file, could that be the solution? After this malwarebytes and supermalwarebytes didn't find anything. Or are those trojans running somewhere in the background?

Is it safe to visit the internetbank? :/

#4 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 25 January 2010 - 07:04 AM

Now I scanned it with Avast again and:

Win32:Malware-gen was found and put in quarantine.

#5 mpascal

  • Group: Retired Staff
  • Posts: 3,644
  • Joined: 13-April 09

Posted 27 January 2010 - 08:01 PM

Hi DanteAlighieri,

Welcome to Geeks To Go!

My name is mpascal, and I will be helping you fix your problem.

Before we begin, I would like to make a few things clear so that we can fix your problem as efficiently as possible:
  • Be sure to follow all my instructions carefully! If there is anything you don't understand, don't hesitate to ask.
  • Please do not do anything or perform other steps unless I have asked you to do so.
  • Please make sure you post all logs I ask you to, and make sure that the entire log gets posted.
  • If you are unsure of how to reply, or need help with anything regarding the website, please look here.
I also recommend that you print these instructions as you may be required to boot in safe mode

Please follow the instructions found in the Malware and Spyware Cleaning Guide, and post back with the following logs:

  • MBAM Log
  • GMER Log
  • OTL Log
If you find you can't do one of the steps listed, simply make note of it and move on to the next one.

#6 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 29 January 2010 - 03:40 AM

View Postmpascal, on Jan 28 2010, 03:01 AM, said:

Hi DanteAlighieri,

Welcome to Geeks To Go!

My name is mpascal, and I will be helping you fix your problem.

Before we begin, I would like to make a few things clear so that we can fix your problem as efficiently as possible:
  • Be sure to follow all my instructions carefully! If there is anything you don't understand, don't hesitate to ask.
  • Please do not do anything or perform other steps unless I have asked you to do so.
  • Please make sure you post all logs I ask you to, and make sure that the entire log gets posted.
  • If you are unsure of how to reply, or need help with anything regarding the website, please look here.
I also recommend that you print these instructions as you may be required to boot in safe mode

Please follow the instructions found in the Malware and Spyware Cleaning Guide, and post back with the following logs:

  • MBAM Log
  • GMER Log
  • OTL Log
If you find you can't do one of the steps listed, simply make note of it and move on to the next one.


MBAM log below. My computer died when doing the GMER log, dare I try it again? (took me 2-3 tries to get it restarted). And OTL Log below.

Quote

Malwarebytes' Anti-Malware 1.44
Database version: 3510
Windows 6.0.6000
Internet Explorer 7.0.6000.16982

2010-01-29 09:59:42
mbam-log-2010-01-29 (09-59-42).txt

Scan type: Quick Scan
Objects scanned: 109273
Time elapsed: 6 minute(s), 0 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


OTL Log


Quote

OTL logfile created on: 2010-01-25 14:20:56 - Run 1
OTL by OldTimer - Version 3.1.26.0 Folder = C:\Users\Oscar\Desktop\Program\OTL
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16982)
Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 45,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 64,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 223,40 Gb Total Space | 36,84 Gb Free Space | 16,49% Space Free | Partition Type: NTFS
Drive D: | 9,48 Gb Total Space | 2,95 Gb Free Space | 31,14% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 465,64 Gb Total Space | 15,82 Gb Free Space | 3,40% Space Free | Partition Type: FAT32
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: OSCAR-DATOR
Current User Name: Oscar
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010-01-25 14:18:28 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Oscar\Desktop\Program\OTL\OTL.exe
PRC - [2010-01-05 07:56:02 | 02,002,160 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
PRC - [2009-12-13 15:44:38 | 00,135,664 | ---- | M] (Google Inc.) -- C:\Users\Oscar\AppData\Local\Google\Update\GoogleUpdate.exe
PRC - [2009-10-11 04:17:36 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-02-05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009-01-22 10:45:14 | 00,910,864 | ---- | M] (Technology Nexus AB) -- C:\Program Files\Personal\bin\Personal.exe
PRC - [2008-12-04 02:42:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2008-11-25 12:57:52 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008-10-29 07:20:29 | 02,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-10-08 08:47:58 | 00,468,224 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008-10-08 08:46:42 | 01,451,264 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008-09-29 17:57:48 | 21,755,688 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2008-09-19 06:30:34 | 03,674,112 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files\PostgreSQL\8.3\bin\postgres.exe
PRC - [2008-09-19 02:03:58 | 00,065,536 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe
PRC - [2008-08-04 00:02:20 | 00,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2008-06-09 10:21:58 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2008-06-09 10:16:32 | 02,363,392 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2008-05-29 21:40:34 | 02,580,480 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN
PRC - [2008-05-29 21:40:34 | 02,363,392 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
PRC - [2008-03-27 12:30:32 | 00,086,016 | R--- | M] (Popwire AB) -- C:\Program Files\Common Files\Teleca Shared\logger.exe
PRC - [2008-02-26 03:16:23 | 01,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007-12-25 15:00:00 | 00,491,520 | R--- | M] (Teleca AB) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2007-12-25 14:53:20 | 00,548,864 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe
PRC - [2007-10-31 13:37:31 | 00,086,016 | ---- | M] (Symbian Software Ltd.) -- C:\PROGRA~1\Symbian\Shared\SYMBIA~1\SCBAL.exe
PRC - [2007-10-31 13:37:30 | 00,962,560 | ---- | M] (Symbian Software Ltd.) -- C:\PROGRA~1\Symbian\Shared\SYMBIA~1\SYMBIA~1.EXE
PRC - [2007-10-01 03:34:54 | 00,271,760 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
PRC - [2007-10-01 03:34:54 | 00,112,016 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
PRC - [2007-10-01 03:34:14 | 00,181,544 | ---- | M] (CyberLink Corp.) -- C:\Program Files\HP\QuickPlay\QPService.exe
PRC - [2007-09-20 02:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
PRC - [2007-09-19 22:31:34 | 00,202,032 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2007-09-15 09:50:54 | 01,021,224 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007-09-15 09:29:10 | 00,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2007-09-13 17:47:52 | 00,480,560 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
PRC - [2007-09-04 21:54:20 | 00,554,320 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
PRC - [2007-07-10 15:28:08 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\drivers\XAudio.exe
PRC - [2007-06-11 14:57:14 | 00,079,488 | ---- | M] (CASIO COMPUTER CO.,LTD.) -- C:\Program Files\CASIO\YouTube Uploader for CASIO\YStart.exe
PRC - [2007-05-16 19:43:06 | 00,677,432 | R--- | M] () -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2007-05-08 16:24:20 | 00,054,840 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2007-03-29 15:41:26 | 00,222,128 | ---- | M] (Macrovision Corporation) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
PRC - [2007-01-09 11:25:30 | 00,272,024 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe
PRC - [2007-01-09 00:53:06 | 00,311,296 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
PRC - [2006-11-02 13:36:04 | 00,201,728 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2006-11-02 10:45:50 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2006-05-03 00:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
PRC - [2006-03-02 10:55:24 | 00,634,947 | ---- | M] (Intuwave Ltd.) -- C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterRuntime.exe
PRC - [2006-03-02 10:54:16 | 00,290,816 | ---- | M] (Intuwave Ltd.) -- C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterConfig.exe


========== Modules (SafeList) ==========

MOD - [2010-01-25 14:18:28 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Oscar\Desktop\Program\OTL\OTL.exe
MOD - [2006-11-02 10:38:57 | 01,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2008-12-04 02:42:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Windows\System32\nvvsvc.exe -- (nvsvc)
SRV - [2008-11-25 12:57:52 | 00,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008-10-08 08:53:20 | 00,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EHttpSrv)
SRV - [2008-10-08 08:47:58 | 00,468,224 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008-09-19 02:03:58 | 00,065,536 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe -- (pgsql-8.3)
SRV - [2008-06-09 10:21:58 | 00,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2008-02-26 03:16:23 | 00,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2007-10-01 03:34:54 | 00,271,760 | ---- | M] () [Auto | Running] -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe -- (QPCapSvc) QuickPlay Background Capture Service (QBCS)
SRV - [2007-10-01 03:34:54 | 00,112,016 | ---- | M] () [Auto | Running] -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe -- (QPSched) QuickPlay Task Scheduler (QTS)
SRV - [2007-09-20 02:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) [Auto | Running] -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service)
SRV - [2007-07-10 15:28:08 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\System32\drivers\XAudio.exe -- (XAudioService)
SRV - [2007-03-05 18:30:06 | 00,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Stopped] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb)
SRV - [2007-01-09 11:25:30 | 00,272,024 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2006-11-02 13:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\ehome\ehstart.dll -- (ehstart)
SRV - [2006-05-03 00:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe -- (hpqwmiex)
SRV - [2004-10-22 12:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.google.se/firefox?client=firefox-a&rls=org.mozilla:sv-SE:official"
FF - prefs.js..extensions.enabledItems: npfax@microgaming.co.uk:2.1.0.19
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 4
FF - prefs.js..extensions.enabledItems: 9
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: {7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.5.1.8

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-01-03 12:00:36 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-03 12:00:36 | 00,000,000 | ---D | M]

[2009-01-07 15:09:05 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\mozilla\Extensions
[2010-01-01 18:58:36 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\mozilla\Firefox\Profiles\qtoo8q0k.default\extensions
[2009-11-24 10:20:20 | 00,000,000 | ---D | M] (Zynga Toolbar) -- C:\Users\Oscar\AppData\Roaming\mozilla\Firefox\Profiles\qtoo8q0k.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2009-12-09 23:51:17 | 00,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Oscar\AppData\Roaming\mozilla\Firefox\Profiles\qtoo8q0k.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009-11-10 08:33:06 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\mozilla\Firefox\Profiles\qtoo8q0k.default\extensions\firefox@tvunetworks.com
[2009-09-26 21:30:24 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\mozilla\Firefox\Profiles\qtoo8q0k.default\extensions\npfax@microgaming.co.uk
[2009-12-06 11:35:37 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-06-12 17:28:41 | 00,001,470 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allaannonser-sv-SE.xml
[2009-06-12 17:28:42 | 00,002,670 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\prisjakt-sv-SE.xml
[2009-06-12 17:28:42 | 00,000,948 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\tyda-sv-SE.xml
[2009-06-12 17:28:42 | 00,001,174 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-sv-SE.xml
[2009-06-12 17:28:42 | 00,000,647 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-sv-SE.xml

O1 HOSTS File: ([2006-09-18 22:41:30 | 00,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Länkhjälp till Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HP Health Check Scheduler] File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [MBBalloon] C:\Program Files\HOTALBUMMyBOX\MBBalloon.exe (PLANNING Co., Ltd.)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [PC Suite for Smartphones] C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe ()
O4 - HKLM..\Run: [QlbCtrl] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QPService] C:\Program Files\HP\QuickPlay\QPService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Google Update] C:\Users\Oscar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKCU..\Run: [ISUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKCU..\Run: [mRouterConfig] C:\Program Files\Intuwave\Shared\mRouterRuntime\mRouterConfig.exe (Intuwave Ltd.)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Oscar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe ()
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: 3 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net/co...ex/qtplugin.cab (QuickTime Object)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.1...toUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} https://wimpro.cce.h...ads/sysinfo.cab (SysData Class)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx2.hotmail.com/mail/w3/resources/...NPUpldsv-se.cab (MSN Photo Upload Tool)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2....re/HPDEXAXO.cab (HP Download Manager)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab (Minesweeper Flags Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.54.122.199 195.54.122.204
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Users\Oscar\AppData\Roaming\Microsoft\Windows Photo Gallery\Skrivbordsunderlägg från Windows Fotogalleri.jpg
O24 - Desktop BackupWallPaper: C:\Users\Oscar\AppData\Roaming\Microsoft\Windows Photo Gallery\Skrivbordsunderlägg från Windows Fotogalleri.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 22:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005-09-11 16:18:54 | 00,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]
O32 - AutoRun File - [2007-03-29 11:19:44 | 00,000,000 | ---D | M] - F:\autorun -- [ FAT32 ]
O32 - AutoRun File - [2007-08-23 19:06:50 | 00,000,090 | ---- | M] () - F:\autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2006-11-03 12:58:30 | 00,000,038 | -H-- | M] () - F:\AUTORUN.FCB -- [ FAT32 ]
O33 - MountPoints2\{f6eee87a-826e-11dd-9515-001e68b3933c}\Shell\AutoRun\command - "" = C:\Windows\System32\setupSNK.exe -- [2006-11-02 13:34:31 | 00,013,312 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\F\Shell\AutoRun\command - "" = C:\Windows\System32\setupSNK.exe -- [2006-11-02 13:34:31 | 00,013,312 | ---- | M] (Microsoft Corporation)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias [2006-11-02 12:18:47 | 00,000,000 | ---D | M]
NetSvcs: Irmon - C:\Windows\System32\irmon.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
OTL cannot create restorepoints on Vista OSs!

========== Files/Folders - Created Within 14 Days ==========

[2010-01-25 02:21:35 | 00,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2010-01-25 02:20:50 | 00,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010-01-25 02:20:48 | 00,000,000 | ---D | C] -- C:\Users\Oscar\AppData\Roaming\SUPERAntiSpyware.com
[2010-01-25 02:17:54 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010-01-22 15:15:28 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-01-18 15:23:36 | 00,000,000 | ---D | C] -- C:\Users\Oscar\Desktop\Fördjupad affärsredovisning

========== Files - Modified Within 14 Days ==========

[2010-01-25 14:19:33 | 03,145,728 | -HS- | M] () -- C:\Users\Oscar\NTUSER.DAT
[2010-01-25 14:18:14 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010-01-25 14:18:14 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010-01-25 14:15:15 | 00,016,896 | ---- | M] () -- C:\Users\Oscar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-25 13:49:01 | 00,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2041847127-2263786699-726390678-1000UA.job
[2010-01-25 12:28:36 | 00,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{B808A6CA-AD14-4661-88DF-5C6E6D8A2248}.job
[2010-01-25 12:15:28 | 00,027,839 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010-01-25 11:19:13 | 00,000,163 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[2010-01-25 11:18:17 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010-01-25 11:18:07 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010-01-25 11:18:02 | 20,792,48384 | -HS- | M] () -- C:\hiberfil.sys
[2010-01-25 05:04:57 | 02,957,227 | -H-- | M] () -- C:\Users\Oscar\AppData\Local\IconCache.db
[2010-01-25 02:21:00 | 00,000,902 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010-01-25 01:50:52 | 00,000,818 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010-01-24 15:49:01 | 00,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2041847127-2263786699-726390678-1000Core.job
[2010-01-22 15:15:29 | 00,001,670 | ---- | M] () -- C:\Users\Oscar\Desktop\CCleaner.lnk
[2010-01-22 09:13:34 | 01,277,902 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010-01-22 09:13:34 | 00,616,832 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010-01-22 09:13:34 | 00,479,104 | ---- | M] () -- C:\Windows\System32\perfh01D.dat
[2010-01-22 09:13:34 | 00,106,908 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010-01-22 09:13:34 | 00,084,498 | ---- | M] () -- C:\Windows\System32\perfc01D.dat
[2010-01-14 09:04:56 | 00,380,040 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2010-01-25 02:21:00 | 00,000,902 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010-01-25 01:50:52 | 00,000,818 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010-01-22 15:15:29 | 00,001,670 | ---- | C] () -- C:\Users\Oscar\Desktop\CCleaner.lnk
[2010-01-11 00:26:58 | 00,000,065 | ---- | C] () -- C:\Windows\minitab.ini
[2010-01-05 16:38:02 | 00,001,025 | ---- | C] () -- C:\Windows\System32\sysprs7.dll
[2010-01-05 16:38:02 | 00,000,205 | ---- | C] () -- C:\Windows\System32\lsprst7.dll
[2009-09-14 19:51:37 | 00,004,985 | ---- | C] () -- C:\ProgramData\ojvzdisj.xda
[2009-02-10 15:20:57 | 00,000,286 | ---- | C] () -- C:\Windows\Code.ini
[2009-02-04 11:18:11 | 00,001,236 | ---- | C] () -- C:\Users\Oscar\AppData\Roaming\wklnhst.dat
[2009-01-28 17:16:02 | 00,006,944 | ---- | C] () -- C:\Users\Oscar\AppData\Local\d3d9caps.dat
[2008-12-19 17:56:14 | 00,027,839 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2008-12-19 17:56:14 | 00,027,839 | ---- | C] () -- C:\ProgramData\nvModes.001
[2008-11-08 18:40:33 | 00,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008-10-12 18:12:28 | 00,000,722 | ---- | C] () -- C:\Windows\ODBC.INI
[2008-10-08 08:50:14 | 00,034,312 | ---- | C] () -- C:\Windows\System32\drivers\epfwtdir.sys
[2008-09-05 10:57:12 | 00,027,335 | ---- | C] () -- C:\Users\Oscar\AppData\Roaming\nvModes.001
[2008-09-05 10:38:24 | 00,016,896 | ---- | C] () -- C:\Users\Oscar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-09-05 08:51:07 | 00,027,335 | ---- | C] () -- C:\Users\Oscar\AppData\Roaming\nvModes.dat
[2008-09-04 17:40:00 | 00,036,616 | ---- | C] () -- C:\Windows\System32\drivers\fses.sys
[2008-09-04 17:02:09 | 00,000,000 | ---- | C] () -- C:\Users\Oscar\AppData\Local\QSwitch.txt
[2008-09-04 17:02:09 | 00,000,000 | ---- | C] () -- C:\Users\Oscar\AppData\Local\DSwitch.txt
[2008-09-04 17:02:09 | 00,000,000 | ---- | C] () -- C:\Users\Oscar\AppData\Local\AtStart.txt
[2008-07-25 11:19:11 | 00,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2006-11-02 13:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 11:25:21 | 00,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006-11-02 08:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006-03-09 23:58:00 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[1999-01-23 02:46:58 | 00,065,536 | ---- | C] () -- C:\Windows\System32\MSRTEDIT.DLL

========== LOP Check ==========

[2010-01-25 01:52:02 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\Azureus
[2009-01-24 16:36:01 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\CASIO
[2008-11-21 16:11:42 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\Hasbro
[2009-12-09 22:57:25 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\Microgaming
[2009-02-25 14:01:54 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\OneSwarm
[2009-01-22 10:46:33 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\Personal
[2010-01-24 14:09:04 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\Spotify
[2009-02-16 21:19:21 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\SystemRequirementsLab
[2009-09-02 14:54:48 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\Teleca
[2009-02-04 11:18:13 | 00,000,000 | ---D | M] -- C:\Users\Oscar\AppData\Roaming\Template
[2010-01-25 05:05:49 | 00,032,560 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010-01-25 12:28:36 | 00,000,422 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{B808A6CA-AD14-4661-88DF-5C6E6D8A2248}.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2008-01-19 08:42:25 | 00,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008-02-26 05:22:52 | 00,053,864 | ---- | M] (Microsoft Corporation) MD5=313FF294978EA6AF715722D708FB249F -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.20494_none_b858f78adaed51b3\AGP440.sys
[2008-02-26 05:22:53 | 00,053,864 | ---- | M] (Microsoft Corporation) MD5=CE71AFD6738AA025D742CDBCFBDC8B9C -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f2490cb0\AGP440.sys
[2008-02-26 05:22:53 | 00,053,864 | ---- | M] (Microsoft Corporation) MD5=CE71AFD6738AA025D742CDBCFBDC8B9C -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.16399_none_b7d45c31c1cb309c\AGP440.sys
[2006-11-02 10:49:52 | 00,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006-11-02 10:49:52 | 00,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

< MD5 for: ATAPI.SYS >
[2008-01-19 08:41:30 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006-11-02 10:49:36 | 00,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008-09-04 17:58:08 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\drivers\atapi.sys
[2008-09-04 17:58:08 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2008-09-04 17:58:08 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008-09-04 17:58:07 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2006-11-02 10:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006-11-02 10:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

< MD5 for: EVENTLOG.DLL >
[2007-01-13 07:30:08 | 00,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 -- C:\Program Files\CyberLink\PowerDirector\EventLog.dll

< MD5 for: IASTORV.SYS >
[2008-01-19 08:42:51 | 00,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006-11-02 10:51:25 | 00,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006-11-02 10:51:25 | 00,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2006-11-02 10:46:11 | 00,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\System32\netlogon.dll
[2006-11-02 10:46:11 | 00,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2008-01-19 08:35:36 | 00,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2006-11-02 10:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006-11-02 10:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008-01-19 08:42:09 | 00,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys

< MD5 for: SCECLI.DLL >
[2008-01-19 08:36:19 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006-11-02 10:46:12 | 00,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\System32\scecli.dll
[2006-11-02 10:46:12 | 00,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2006-11-02 10:47:18 | 00,228,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rsaenh.dll
[2008-02-26 03:29:48 | 00,223,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\SLC.dll

< %systemroot%\Tasks\*.job /lockedfiles >

========== Alternate Data Streams ==========

@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:8CEFE51A
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:466F9D5D
< End of report >


OTL log extras

Quote

OTL Extras logfile created on: 2010-01-25 14:20:56 - Run 1
OTL by OldTimer - Version 3.1.26.0 Folder = C:\Users\Oscar\Desktop\Program\OTL
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16982)
Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 45,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 64,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 223,40 Gb Total Space | 36,84 Gb Free Space | 16,49% Space Free | Partition Type: NTFS
Drive D: | 9,48 Gb Total Space | 2,95 Gb Free Space | 31,14% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 465,64 Gb Total Space | 15,82 Gb Free Space | 3,40% Space Free | Partition Type: FAT32
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: OSCAR-DATOR
Current User Name: Oscar
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] --

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Users\Oscar\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
"InternetSettingsDisableNotify" = 0
"AutoUpdateDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{60F00D02-1909-4FDE-B3E5-894FCC8DFE17}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6703DC78-B4D5-4ED2-B39B-D4013432ADF4}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{6DA03478-9D6C-4472-B803-BA399AC0D0BC}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8C4AA274-D462-4AEE-A686-DE6CB8633B8D}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{D428061E-BCAF-4A93-829E-87499ABEC2AD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DFFC7E32-306D-451D-8684-11CBA6075541}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{6D5471FF-DE17-4FA1-AA9D-12F8EFB527DB}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{725A7399-31F9-49DB-A6C7-9B894B70D16C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8BB9DFB4-D02B-428F-A0FB-D32EDDD5F2E2}" = dir=in | app=c:\program files\hp\quickplay\qpservice.exe |
"{AD5E3543-8E40-4AE1-ADD5-46641026CE4C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{EBB4E011-FD3D-4D29-8AFB-10E806E0F4E5}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{EFB7048E-22ED-4EFD-9FBC-502A78EB5F6E}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{FD7F9D2D-7248-4B0F-855C-3F934D5D2E19}" = dir=in | app=c:\program files\hp\quickplay\qp.exe |
"TCP Query User{23119D0B-C6EE-462E-BAAB-2CAF755E4081}C:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"TCP Query User{33D85289-187A-41A1-AA9F-59872D02EF44}C:\program files\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\program files\spotify\spotify.exe |
"TCP Query User{37DBA3E5-CB28-401C-8648-BDB530593712}C:\users\oscar\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\users\oscar\mirc\mirc.exe |
"TCP Query User{63B080E2-59C1-4224-8338-793531651F16}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{93B85681-3190-4D17-8AE4-FF225798B916}C:\users\oscar\documents\azureus downloads\aoe 2 exp\age2_x1.exe" = protocol=6 | dir=in | app=c:\users\oscar\documents\azureus downloads\aoe 2 exp\age2_x1.exe |
"TCP Query User{9500956F-40C3-44A0-A6A4-29A59DF9C3A8}C:\program files\intuwave\shared\mrouterruntime\mrouterruntime.exe" = protocol=6 | dir=in | app=c:\program files\intuwave\shared\mrouterruntime\mrouterruntime.exe |
"TCP Query User{B1D33D04-7C90-4923-AA29-82167ED76992}C:\program files\hamachi\hamachi.exe" = protocol=6 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"TCP Query User{E2813D23-2904-4015-A682-5917B2550E59}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{F079B0DC-1F3F-4B0D-BC46-BF1A8B1627FD}C:\program files\look@lan\lookatlan.exe" = protocol=6 | dir=in | app=c:\program files\look@lan\lookatlan.exe |
"TCP Query User{F2B3BAA5-0265-4237-8801-A6B07714B944}C:\program files\look@lan\lookathost.exe" = protocol=6 | dir=in | app=c:\program files\look@lan\lookathost.exe |
"UDP Query User{091A4323-5085-4C2F-B9EB-A03C87D43DA2}C:\users\oscar\documents\azureus downloads\aoe 2 exp\age2_x1.exe" = protocol=17 | dir=in | app=c:\users\oscar\documents\azureus downloads\aoe 2 exp\age2_x1.exe |
"UDP Query User{46912DE3-A3C4-4561-B81F-D9BFE2674AD5}C:\program files\look@lan\lookatlan.exe" = protocol=17 | dir=in | app=c:\program files\look@lan\lookatlan.exe |
"UDP Query User{6CB4D077-CA73-40A9-B1A5-4E4BD5E612E4}C:\program files\look@lan\lookathost.exe" = protocol=17 | dir=in | app=c:\program files\look@lan\lookathost.exe |
"UDP Query User{72098173-24D2-446A-8935-7AF59E91D99C}C:\program files\intuwave\shared\mrouterruntime\mrouterruntime.exe" = protocol=17 | dir=in | app=c:\program files\intuwave\shared\mrouterruntime\mrouterruntime.exe |
"UDP Query User{73751A9A-514A-4969-81C9-91EB5E1AA2B9}C:\users\oscar\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\users\oscar\mirc\mirc.exe |
"UDP Query User{B48FADFA-F458-451D-BED8-CF39E8F31C09}C:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"UDP Query User{BA2EB7D1-27F1-40F8-8E44-6D1F0683E5A5}C:\program files\hamachi\hamachi.exe" = protocol=17 | dir=in | app=c:\program files\hamachi\hamachi.exe |
"UDP Query User{C5C1E95B-1861-4C4D-B84D-68F7528623C2}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{E1F645F1-76D8-4AD7-BE69-48EBF2FC9565}C:\program files\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\program files\spotify\spotify.exe |
"UDP Query User{F3FBB4E1-A181-4BC4-A060-055FD2A7B251}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0004041D-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 CD-ROM 2
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{02627ee5-eaca-4742-a9cc-e687631773e4}" = Nero ShowTime
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{086a7d8c-0a38-4c7f-819a-620275550d5c}" = Nero Burning ROM Help
"{08A247F5-E34F-4D17-8731-0906DF56947E}" = Windows Live Sync
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software 1.14.17.1
"{0E93710D-31E5-477C-8A4B-5032B484BE74}" = Windows Live inloggningsassistenten
"{11BB336F-0E58-4977-B866-F24FA334616B}" = HP Active Support Library
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}" = Adobe Shockwave Player
"{1c00c7c5-e615-4139-b817-7f4003de68c0}" = Nero PhotoSnap Help
"{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}" = Google Earth
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
"{20400dbd-e6db-45b8-9b6b-1dd7033818ec}" = Nero InfoTool
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2348b586-c9ae-46ce-936c-a68e9426e214}" = Nero StartSmart Help
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java™ 6 Update 17
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Driver Installation Program
"{28EDCE9C-3304-4331-8AB3-F3EBE94C35B4}" = HP Help and Support
"{2C1B58D5-6549-472C-86B7-17BE57186628}" = Microsoft Works
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java™ 6 Update 2
"{33cf58f5-48d8-4575-83d6-96f574e4d83a}" = Nero DriveSpeed
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.30 E1
"{359cfc0a-beb1-440d-95ba-cf63a86da34f}" = Nero Recode
"{368ba326-73ad-4351-84ed-3c0a7a52cc53}" = Nero Rescue Agent
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{43e39830-1826-415d-8bae-86845787b54b}" = Nero Vision
"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 3.6
"{4AAC5AE8-EDE6-44D4-AA87-E90870178FDE}" = Minitab 15 English
"{4D49757C-367A-4333-BDB3-68966162B14E}" = HP User Guides 0087
"{51062D62-C81B-4912-B74C-1FE11E19287E}" = HOT ALBUM MYBOX
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{595a3116-40bb-4e0f-a2e8-d7951da56270}" = NeroExpress
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
"{5A70922D-9365-43CC-ADA9-CB84E4A54E4E}" = Windows Live Essentials
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5D2EB27A-7388-40EE-A2D7-BF8E7A83F9CF}" = ESET NOD32 Antivirus
"{5d9be3c1-8ba4-4e7e-82fd-9f74fa6815d1}" = Nero Vision
"{5e08ecd1-c98e-4711-bf65-8fd736b3f969}" = Nero RescueAgent Help
"{60c731fb-c951-41ce-ad41-8e54c8594609}" = Nero Disc Copy Gadget Help
"{62ac81f6-bdd3-4110-9d36-3e9eaab40999}" = Nero CoverDesigner
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D0C6BE4-F674-43D2-96BC-3509345108C9}_is1" = PokerStove version 1.23
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{7829db6f-a066-4e40-8912-cb07887c20bb}" = Nero BurnRights
"{7D7152AF-581B-316F-8CA4-15342C3EFA4B}" = Microsoft .NET Framework 3.5 Language Pack SP1 - sve
"{7DC4A410-9986-4329-9E5D-687B2C42CA39}" = HP QuickTouch 1.00 C4
"{83202942-84b3-4c50-8622-b8c0aa2d2885}" = Nero Express Help
"{841C8380-3273-407C-91CE-6C644F327E6A}" = CODE Multimedia
"{865DB1C9-D5E4-408B-B37D-9927E605BD2D}" = ESU for Microsoft Vista
"{869200db-287a-4dc0-b02b-2b6787fbcd4c}" = Nero DiscSpeed
"{8DC42D05-680B-41B0-8878-6C14D24602DB}" = QuickTime
"{90120000-0020-041D-0000-0000000FF1CE}" = Compatibility Pack för Office 2007-systemet
"{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage
"{9112041D-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Standard
"{95120000-00AF-041D-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Swedish)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9885A11E-60E4-417C-B58B-8B31B21C0B8A}" = HP Easy Setup - Frontend
"{98a67610-a3b5-4098-a423-3708040026d3}" = "Nero SoundTrax Help
"{997A9ADA-6F3D-4B1D-868F-FE5D943116AF}" = YouTube Uploader for CASIO
"{9BBE7AA1-AFA8-4D76-8FC2-1FDFD9BD3371}" = Windows Live Mail
"{9e82b934-9a25-445b-b8df-8012808074ac}" = Nero PhotoSnap
"{a209525b-3377-43f4-b886-32f6b6e7356f}" = Nero WaveEditor
"{A589DA26-51BD-475D-8C32-E19E34145842}" = Camtasia Studio 6
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AC76BA86-7AD7-1053-7B44-A81300000003}" = Adobe Reader 8.1.5 - Svenska
"{AC76BA86-7AD7-1053-7B44-A81300000003}_814" = KB408682
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AD501749-CD49-499A-AD54-51DC42A57434}" = PC Suite for Sony Ericsson
"{ad6bc5cc-2ef0-49c4-b33d-cdc8b2c4dc80}" = Nero Recode Help
"{b1adf008-e898-4fe2-8a1f-690d9a06acaf}" = DolbyFiles
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{b78120a0-cf84-4366-a393-4d0a59bc546c}" = Menu Templates - Starter Kit
"{B823632F-3B72-4514-8861-B961CE263224}" = PostgreSQL 8.3
"{BD0E2B92-3814-46F0-893B-4612EA010C7E}" = HP Customer Experience Enhancements
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{C25215FC-5900-48B0-B93C-8D3379027312}" = PASW Statistics 18
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{c5a7cb6c-e76d-408f-ba0e-85605420fe9d}" = SoundTrax
"{c64991a1-22b0-4f50-b01b-6419ed808833}" = Nero 9 Trial
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}" = HP Wireless Assistant
"{cc019e3f-59d2-4486-8d4b-878105b62a71}" = Nero DiscSpeed
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{ce96f5a5-584d-4f8f-aa3e-9baed413db72}" = Nero CoverDesigner Help
"{d025a639-b9c9-417d-8531-208859000af8}" = NeroBurningROM
"{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}" = Full Tilt Poker
"{d9dcf92e-72eb-412d-ac71-3b01276e5f8b}" = Nero ShowTime
"{E1252473-6306-4d5d-904D-B06AA7F38161}" = PC Suite for Sony Ericsson
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{e498385e-1c51-459a-b45f-1721e37aa1a0}" = Movie Templates - Starter Kit
"{e5c7d048-f9b4-4219-b323-8bdb01a2563d}" = Nero DriveSpeed
"{e8631efb-6b9a-426c-b1ce-e7173ca26bf8}" = Nero WaveEditor Help
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{EC928237-A3BD-4640-ABD0-E49E758F2315}" = Windows Live Messenger
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{f1861f30-3419-44db-b2a1-c274825698b3}" = Nero Disc Copy Gadget
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{f6bdd7c5-89ed-4569-9318-469aa9732572}" = Nero BurnRights
"{fbcdfd61-7dcf-4e71-9226-873ba0053139}" = Nero InfoTool
"{FE57DE70-95DE-4B64-9266-84DA811053DB}" = HP Update
"{FF328A0C-9054-4FD7-8ACB-9837994BF9AB}" = OpenOffice.org 2.4
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"avast!" = avast! Antivirus
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"CNXT_MODEM_HDA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP
"DC++" = DC++ 0.707
"FLV Player" = FLV Player 2.0, build 24
"GOM Player" = GOM Player
"Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.25149)
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{51062D62-C81B-4912-B74C-1FE11E19287E}" = HOT ALBUM MYBOX
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"Look@LAN_1.0" = Look@LAN 2.50 Build 35
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mariapoker (Poker)" = Maria Poker
"Microsoft .NET Framework 3.5 Language Pack SP1 - sve" = Språkpaket för Microsoft .NET Framework 3.5 SP 1 - sve
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"Mozilla Firefox (3.0.16)" = Mozilla Firefox (3.0.16)
"NVIDIA Drivers" = NVIDIA Drivers
"OneSwarm 0.5" = OneSwarm 0.5
"Personal" = Personal 4.9.3
"PokerStars" = PokerStars
"PokerTracker3" = PokerTracker 3 (remove only)
"Shockwave" = Shockwave
"SlingMedia.QPSlingPlayer_is1" = QuickPlay SlingPlayer 0.4.4
"Sony Ericsson" = Sony Ericsson Symbian 9 Drivers
"Spotify" = Spotify
"Svenska Spels Poker" = Svenska Spels Poker
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"Telia Supportassistent_is1" = Telia Supportassistent
"Trivial Pursuit Digital Choice_is1" = Trivial Pursuit Digital Choice v1.2.5 for Windows XP/Vista
"unibetpoker (Poker)" = Unibet
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"VLC media player" = VLC media player 0.9.2
"Vuze" = Vuze

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Move Networks Player - IE" = Move Networks Media Player for Internet Explorer

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2010-01-24 20:15:17 | Computer Name = Oscar-dator | Source = Application Error | ID = 1000
Description = Felet uppstod i programmet PokerTracker.exe, version 0.0.0.0, tidsstämpel
0x48e147a3, felet uppstod i modulen SSLEAY32.dll, version 6.0.6000.16386, tidsstämpel
0x4549bdc9, undantagskod 0xc0000135, felförskjutning 0x00008fc7, process-ID 0x553c,
programmets starttid 0x01ca9d53762b7698.

Error - 2010-01-24 20:16:48 | Computer Name = Oscar-dator | Source = Application Error | ID = 1000
Description = Felet uppstod i programmet PokerTracker.exe, version 0.0.0.0, tidsstämpel
0x48e147a3, felet uppstod i modulen VSINIT.dll, version 6.0.6000.16386, tidsstämpel
0x4549bdc9, undantagskod 0xc0000135, felförskjutning 0x00008fc7, process-ID 0x5a14,
programmets starttid 0x01ca9d53ac07ea58.

Error - 2010-01-24 20:17:41 | Computer Name = Oscar-dator | Source = Application Error | ID = 1000
Description = Felet uppstod i programmet PokerTracker.exe, version 0.0.0.0, tidsstämpel
0x48e147a3, felet uppstod i modulen SSLEAY32.dll!SSLv2_client_method, version 6.0.6000.16386,
tidsstämpel 0x4549bdc9, undantagskod 0xc0000139, felförskjutning 0x00008fc7, process-ID
0x5e40, programmets starttid 0x01ca9d53ca214c78.

Error - 2010-01-24 20:56:05 | Computer Name = Oscar-dator | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 2010-01-24 21:55:03 | Computer Name = Oscar-dator | Source = WerSvc | ID = 5007
Description =

Error - 2010-01-24 22:50:42 | Computer Name = Oscar-dator | Source = Application Hang | ID = 1002
Description = Programmet vlc.exe, version 0.9.2.0, avslutades eftersom det slutade
att samverka med Windows. Ytterligare information kan finnas i problemhistoriken
på kontrollpanelen för Problemrapporter och lösningar. Process-ID: fc0 Starttid:
01ca9d690ff84c31 Avslutningstid: 22

Error - 2010-01-24 23:01:32 | Computer Name = Oscar-dator | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 2010-01-25 00:00:41 | Computer Name = Oscar-dator | Source = WerSvc | ID = 5007
Description =

Error - 2010-01-25 00:05:34 | Computer Name = Oscar-dator | Source = Application Error | ID = 1000
Description = Felet uppstod i programmet postgres.exe, version 8.3.4.8262, tidsstämpel
0x48d39b63, felet uppstod i modulen kernel32.dll, version 6.0.6000.16386, tidsstämpel
0x4549bdc9, undantagskod 0xc0000142, felförskjutning 0x00008fc7, process-ID 0x488,
programmets starttid 0x01ca9d73a44fe0c2.

Error - 2010-01-25 06:19:15 | Computer Name = Oscar-dator | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

[ System Events ]
Error - 2010-01-24 20:55:48 | Computer Name = Oscar-dator | Source = Service Control Manager | ID = 7000
Description =

Error - 2010-01-24 22:57:17 | Computer Name = Oscar-dator | Source = DCOM | ID = 10010
Description =

Error - 2010-01-24 22:59:32 | Computer Name = Oscar-dator | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS har inte någon IRQ för enheten i PCI-fack 12, funktion
0. Kontakta återförsäljaren för teknisk support.

Error - 2010-01-24 22:59:32 | Computer Name = Oscar-dator | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS har inte någon IRQ för enheten i PCI-fack 13, funktion
0. Kontakta återförsäljaren för teknisk support.

Error - 2010-01-24 23:00:22 | Computer Name = Oscar-dator | Source = Microsoft-Windows-Kernel-WHEA | ID = 10
Description =

Error - 2010-01-24 23:01:30 | Computer Name = Oscar-dator | Source = Service Control Manager | ID = 7000
Description =

Error - 2010-01-25 06:17:24 | Computer Name = Oscar-dator | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS har inte någon IRQ för enheten i PCI-fack 12, funktion
0. Kontakta återförsäljaren för teknisk support.

Error - 2010-01-25 06:17:24 | Computer Name = Oscar-dator | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS har inte någon IRQ för enheten i PCI-fack 13, funktion
0. Kontakta återförsäljaren för teknisk support.

Error - 2010-01-25 06:17:51 | Computer Name = Oscar-dator | Source = Microsoft-Windows-Kernel-WHEA | ID = 6
Description =

Error - 2010-01-25 06:19:14 | Computer Name = Oscar-dator | Source = Service Control Manager | ID = 7000
Description =


< End of report >

#7 mpascal

  • Group: Retired Staff
  • Posts: 3,644
  • Joined: 13-April 09

Posted 29 January 2010 - 08:24 AM

Nah don't worry about the GMER log for now, those will do. :)

#8 mpascal

  • Group: Retired Staff
  • Posts: 3,644
  • Joined: 13-April 09

Posted 29 January 2010 - 08:49 AM

Looks good so far, try running this. Also, run another MBAM scan once you've finished and post the log here.

Please do an online scan with Kaspersky WebScanner

Click on Accept

You will be promted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files:
  • Once the files have been downloaded click on NEXT

  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database:
      Extended (if available otherwise Standard)
    • Scan Options:
      Scan Archives
      Scan Mail Bases

  • Click OK
  • Now under select a target to scan:
      Select My Computer

  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    • Now click on the Save as Text button:

  • Save the file to your desktop.
  • Copy and paste that information in your next post.

#9 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 30 January 2010 - 05:26 AM

View Postmpascal, on Jan 29 2010, 03:49 PM, said:

Looks good so far, try running this. Also, run another MBAM scan once you've finished and post the log here.

Please do an online scan with Kaspersky WebScanner

Click on Accept

You will be promted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files:
  • Once the files have been downloaded click on NEXT

  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database:
      Extended (if available otherwise Standard)
    • Scan Options:
      Scan Archives
      Scan Mail Bases

  • Click OK
  • Now under select a target to scan:
      Select My Computer

  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    • Now click on the Save as Text button:

  • Save the file to your desktop.
  • Copy and paste that information in your next post.



It said my computer didnt meet the requirements to launch kaspersky online scanner. What is wrong?

#10 mpascal

  • Group: Retired Staff
  • Posts: 3,644
  • Joined: 13-April 09

Posted 30 January 2010 - 11:49 AM

Try running this quick:

Download Security Check from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

#11 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 31 January 2010 - 05:36 AM

View Postmpascal, on Jan 30 2010, 06:49 PM, said:

Try running this quick:

Download Security Check from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


Here:

Results of screen317's Security Check version 0.99.1
Windows Vista (UAC is enabled)
Out of date service pack!!
``````````````````````````````
Antivirus/Firewall Check:
avast! Antivirus
ESET NOD32 Antivirus
Antivirus out of date!
``````````````````````````````
Anti-malware/Other Utilities Check:
SUPERAntiSpyware Free Edition
CCleaner
Java™ 6 Update 17
Java™ 6 Update 2
Out of date Java installed!
Adobe Flash Player 10
Adobe Reader 8.1.5 - Svenska
Out of date Adobe Reader installed!
``````````````````````````````
Process Check:
objlist.exe by Laurent
Windows Defender MSASCui.exe
``````````````````````````````
DNS Vulnerability Check:

`````````End of Log```````````

Doesnt look good. O_o

#12 mpascal

  • Group: Retired Staff
  • Posts: 3,644
  • Joined: 13-April 09

Posted 31 January 2010 - 03:01 PM

Try running the following, and then try Kaspersky again.

Please download JavaRa to your desktop and unzip it to its own folder
  • Run JavaRa.exe, pick the language of your choice and click Select. Then click Remove Older Versions.
  • Accept any prompts.
  • Open JavaRa.exe again and select Search For Updates.
  • Select Update Using Sun Java's Website then click Search and click on the Open Webpage button. Download and install the latest Java Runtime Environment (JRE) version for your computer.

#13 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 01 February 2010 - 05:07 AM

View Postmpascal, on Jan 31 2010, 10:01 PM, said:

Try running the following, and then try Kaspersky again.

Please download JavaRa to your desktop and unzip it to its own folder
  • Run JavaRa.exe, pick the language of your choice and click Select. Then click Remove Older Versions.
  • Accept any prompts.
  • Open JavaRa.exe again and select Search For Updates.
  • Select Update Using Sun Java's Website then click Search and click on the Open Webpage button. Download and install the latest Java Runtime Environment (JRE) version for your computer.


I still get this:

Quote

OS type: Windows Vista
Browser: Safari 532.5
Java vendor: Sun Microsystems Inc.
Java version: 1.6.0_17
OS architecture: x86
Java support by the browser: true


Computer does not meet the requirements for Kaspersky Online Scanner 7.0 launch. To check the hardware and software system requirements, press the Help button.


Should I do securitycheck?

#14 mpascal

  • Group: Retired Staff
  • Posts: 3,644
  • Joined: 13-April 09

Posted 01 February 2010 - 09:44 AM

Don't use Safari, try using Internet Explorer or Firefox if you have them.

#15 DanteAlighieri

  • Group: Member
  • Posts: 50
  • Joined: 24-January 10

Posted 01 February 2010 - 05:57 PM

View Postmpascal, on Feb 1 2010, 04:44 PM, said:

Don't use Safari, try using Internet Explorer or Firefox if you have them.



edit: OH WAIT, IT STARTED will be back with log and info. :)

I used Google Chrome all along...and my IE doesn't work.

I tried it on firefox and it started downloading the files in step one...it took about 1 hour. After that I clicked settings (instantly, no NEXT button) and could not find any of the settings i should check/uncheck. Whats wrong?

Is it possible that my Avast from the beginning gave me 3 false warnings about trojans? Anyway, I would like to have this solved so I appreciate your help, was just wondering. :)

Share this topic:


  • 2 Pages +
  • 1
  • 2