QuestionGhost
Posts: 72 +0
Should I run the other ones?
Solved "Detekt" found "Ghost"_ MWB removed Babylon from Unlocker
- Thread starter QuestionGhost
- Start date
QuestionGhost
Posts: 72 +0
Results of screen317's Security Check version 0.99.93
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Warten Sie, w„hrend WMIC installiert wird.d
I
s
p
l
a
y
N
a
m
e
ECHO ist ausgeschaltet (OFF).
A
v
I
r
a
ECHO ist ausgeschaltet (OFF).
D
e
s
k
t
o
p
ECHO ist ausgeschaltet (OFF).
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
CCleaner
Adobe Flash Player 16.0.0.235
Adobe Reader XI
Mozilla Firefox (34.0.5)
Mozilla Thunderbird (24.3.0)
Google Chrome 34.0.1847.131 Google Chrome out of date!
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C::
````````````````````End of Log``````````````````````
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Warten Sie, w„hrend WMIC installiert wird.d
I
s
p
l
a
y
N
a
m
e
ECHO ist ausgeschaltet (OFF).
A
v
I
r
a
ECHO ist ausgeschaltet (OFF).
D
e
s
k
t
o
p
ECHO ist ausgeschaltet (OFF).
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
CCleaner
Adobe Flash Player 16.0.0.235
Adobe Reader XI
Mozilla Firefox (34.0.5)
Mozilla Thunderbird (24.3.0)
Google Chrome 34.0.1847.131 Google Chrome out of date!
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C::
````````````````````End of Log``````````````````````
QuestionGhost
Posts: 72 +0
Results of screen317's Security Check version 0.99.93
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Avira Desktop
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
CCleaner
Adobe Flash Player 16.0.0.235
Adobe Reader XI
Mozilla Firefox (34.0.5)
Mozilla Thunderbird (24.3.0)
Google Chrome 34.0.1847.131 Google Chrome out of date!
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C::
````````````````````End of Log``````````````````````
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Avira Desktop
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
CCleaner
Adobe Flash Player 16.0.0.235
Adobe Reader XI
Mozilla Firefox (34.0.5)
Mozilla Thunderbird (24.3.0)
Google Chrome 34.0.1847.131 Google Chrome out of date!
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C::
````````````````````End of Log``````````````````````
QuestionGhost
Posts: 72 +0
Please ignore the first log from Security Check, it was run from "Download". The second log is from Security check run from the desktop.
QuestionGhost
Posts: 72 +0
Farbar Service Scanner Version: 21-07-2014
Ran by Admin (administrator) on 08-01-2015 at 16:34:02
Running from "C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Disabled Policy:
========================
Security Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Other Services:
==============
File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\afd.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\netbt.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\tcpip.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\ipsec.sys => File is digitally signed
C:\WINDOWS\system32\dnsrslvr.dll => File is digitally signed
C:\WINDOWS\system32\ipnathlp.dll => File is digitally signed
C:\WINDOWS\system32\netman.dll => File is digitally signed
C:\WINDOWS\system32\wbem\WMIsvc.dll => File is digitally signed
C:\WINDOWS\system32\srsvc.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\sr.sys => File is digitally signed
C:\WINDOWS\system32\wscsvc.dll => File is digitally signed
C:\WINDOWS\system32\wbem\WMIsvc.dll => File is digitally signed
C:\WINDOWS\system32\wuauserv.dll => File is digitally signed
C:\WINDOWS\system32\qmgr.dll => File is digitally signed
C:\WINDOWS\system32\es.dll => File is digitally signed
C:\WINDOWS\system32\cryptsvc.dll => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x0700000005000000010000000200000003000000040000000600000007000000
IpSec Tag value is correct.
**** End of log ****
Ran by Admin (administrator) on 08-01-2015 at 16:34:02
Running from "C:\Dokumente und Einstellungen\Admin\Eigene Dateien\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Disabled Policy:
========================
Security Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Other Services:
==============
File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\afd.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\netbt.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\tcpip.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\ipsec.sys => File is digitally signed
C:\WINDOWS\system32\dnsrslvr.dll => File is digitally signed
C:\WINDOWS\system32\ipnathlp.dll => File is digitally signed
C:\WINDOWS\system32\netman.dll => File is digitally signed
C:\WINDOWS\system32\wbem\WMIsvc.dll => File is digitally signed
C:\WINDOWS\system32\srsvc.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\sr.sys => File is digitally signed
C:\WINDOWS\system32\wscsvc.dll => File is digitally signed
C:\WINDOWS\system32\wbem\WMIsvc.dll => File is digitally signed
C:\WINDOWS\system32\wuauserv.dll => File is digitally signed
C:\WINDOWS\system32\qmgr.dll => File is digitally signed
C:\WINDOWS\system32\es.dll => File is digitally signed
C:\WINDOWS\system32\cryptsvc.dll => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x0700000005000000010000000200000003000000040000000600000007000000
IpSec Tag value is correct.
**** End of log ****
QuestionGhost
Posts: 72 +0
2015-01-08 15:44:35.953 Sophos Virus Removal Tool version 2.5.4
2015-01-08 15:44:35.953 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2015-01-08 15:44:35.953 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2015-01-08 15:44:35.953 Windows version 5.1 SP 3.0 Service Pack 3 build 2600 SM=0x100 PT=0x1 Win32
2015-01-08 15:44:35.953 Checking for updates...
2015-01-08 15:44:36.500 Update progress: proxy server not available
2015-01-08 15:45:21.171 Downloading updates...
2015-01-08 15:45:21.187 Update progress: [I96736] Looking for package C1A903B2-E63E-483b-982D-04BB9C457C60 1.0
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement SAVIW32 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE509 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE510 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE511 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE512 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE513 LATEST
2015-01-08 15:45:21.187 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 1
2015-01-08 15:45:21.187 Update progress: [I19463] Syncing product SAVIW32 48
2015-01-08 15:45:33.234 Option all = no
2015-01-08 15:45:33.234 Option recurse = yes
2015-01-08 15:45:33.234 Option archive = no
2015-01-08 15:45:33.234 Option service = yes
2015-01-08 15:45:33.234 Option confirm = yes
2015-01-08 15:45:33.234 Option sxl = yes
2015-01-08 15:45:33.281 Option max-data-age = 35
2015-01-08 15:45:33.281 Option EnableSafeClean = yes
2015-01-08 15:45:38.343 Update progress: [I19463] Syncing product IDE509 177
2015-01-08 15:45:42.078 Option vdl-logging = yes
2015-01-08 15:45:42.125 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-08 15:45:42.125 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-08 15:45:42.250 Component SVRTcli.exe version 2.5.4
2015-01-08 15:45:42.250 Component control.dll version 2.5.4
2015-01-08 15:45:42.250 Component SVRTservice.exe version 2.5.4
2015-01-08 15:45:42.250 Component engine\osdp.dll version 1.44.1.2183
2015-01-08 15:45:42.250 Component engine\veex.dll version 3.58.3.2183
2015-01-08 15:45:42.250 Component engine\savi.dll version 8.1.5.2183
2015-01-08 15:45:42.328 Component rkdisk.dll version 1.5.30.0
2015-01-08 15:45:42.328 Version info: Product version 2.5.4
2015-01-08 15:45:42.343 Version info: Detection engine 3.58.3
2015-01-08 15:45:42.343 Version info: Detection data 5.08
2015-01-08 15:45:42.343 Version info: Build date 11.11.2014
2015-01-08 15:45:42.343 Version info: Data files added 533
2015-01-08 15:45:42.343 Version info: Last successful update (not yet updated)
2015-01-08 15:45:46.218 Update progress: [I19463] Syncing product IDE510 179
2015-01-08 15:45:46.218 Update progress: [I19463] Syncing product IDE511 170
2015-01-08 15:45:46.218 Update progress: [I19463] Syncing product IDE512 18
2015-01-08 15:45:46.953 Installing updates...
2015-01-08 15:45:49.203 Error level 1
2015-01-08 15:45:49.375 Update progress: [I19463] Syncing product IDE513 1
2015-01-08 15:46:32.421 Update successful
2015-01-08 15:47:10.843 Option all = no
2015-01-08 15:47:10.843 Option recurse = yes
2015-01-08 15:47:10.843 Option archive = no
2015-01-08 15:47:10.843 Option service = yes
2015-01-08 15:47:10.843 Option confirm = yes
2015-01-08 15:47:10.843 Option sxl = yes
2015-01-08 15:47:10.843 Option max-data-age = 35
2015-01-08 15:47:10.843 Option EnableSafeClean = yes
2015-01-08 15:47:10.937 Option vdl-logging = yes
2015-01-08 15:47:10.953 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-08 15:47:10.953 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-08 15:47:10.953 Component SVRTcli.exe version 2.5.4
2015-01-08 15:47:10.953 Component control.dll version 2.5.4
2015-01-08 15:47:10.953 Component SVRTservice.exe version 2.5.4
2015-01-08 15:47:10.953 Component engine\osdp.dll version 1.44.1.2183
2015-01-08 15:47:10.953 Component engine\veex.dll version 3.58.3.2183
2015-01-08 15:47:10.953 Component engine\savi.dll version 8.1.5.2183
2015-01-08 15:47:10.953 Component rkdisk.dll version 1.5.30.0
2015-01-08 15:47:10.953 Version info: Product version 2.5.4
2015-01-08 15:47:10.953 Version info: Detection engine 3.58.3
2015-01-08 15:47:10.953 Version info: Detection data 5.08G
2015-01-08 15:47:10.953 Version info: Build date 11.11.2014
2015-01-08 15:47:10.953 Version info: Data files added 539
2015-01-08 15:47:10.953 Version info: Last successful update 08.01.2015 16:46:32
2015-01-08 19:39:28.750 Could not open C:\hiberfil.sys
2015-01-08 22:47:37.031 SafeClean bin directory is empty.
2015-01-09 06:11:51.640 Sophos Virus Removal Tool version 2.5.4
2015-01-09 06:11:51.640 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2015-01-09 06:11:51.640 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2015-01-09 06:11:51.640 Windows version 5.1 SP 3.0 Service Pack 3 build 2600 SM=0x100 PT=0x1 Win32
2015-01-09 06:11:51.640 Checking for updates...
2015-01-09 06:11:52.500 Update progress: proxy server not available
2015-01-09 06:14:35.750 Option all = no
2015-01-09 06:14:35.750 Option recurse = yes
2015-01-09 06:14:35.750 Option archive = no
2015-01-09 06:14:35.750 Option service = yes
2015-01-09 06:14:35.750 Option confirm = yes
2015-01-09 06:14:35.750 Option sxl = yes
2015-01-09 06:14:35.765 Option max-data-age = 35
2015-01-09 06:14:35.765 Option EnableSafeClean = yes
2015-01-09 06:14:38.109 Option vdl-logging = yes
2015-01-09 06:14:38.421 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-09 06:14:38.421 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-09 06:14:39.375 Component SVRTcli.exe version 2.5.4
2015-01-09 06:14:39.375 Component control.dll version 2.5.4
2015-01-09 06:14:39.375 Component SVRTservice.exe version 2.5.4
2015-01-09 06:14:39.390 Component engine\osdp.dll version 1.44.1.2183
2015-01-09 06:14:39.390 Component engine\veex.dll version 3.58.3.2183
2015-01-09 06:14:39.390 Component engine\savi.dll version 8.1.5.2183
2015-01-09 06:14:40.203 Component rkdisk.dll version 1.5.30.0
2015-01-09 06:14:40.203 Version info: Product version 2.5.4
2015-01-09 06:14:40.250 Version info: Detection engine 3.58.3
2015-01-09 06:14:40.343 Version info: Detection data 5.08G
2015-01-09 06:14:40.343 Version info: Build date 11.11.2014
2015-01-09 06:14:40.343 Version info: Data files added 539
2015-01-09 06:14:40.343 Version info: Last successful update 08.01.2015 16:46:32
2015-01-09 06:15:25.093 Downloading updates...
2015-01-09 06:15:25.093 Update progress: [I96736] Looking for package C1A903B2-E63E-483b-982D-04BB9C457C60 1.0
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement SAVIW32 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE509 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE510 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE511 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE512 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE513 LATEST
2015-01-09 06:15:25.093 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 1
2015-01-09 06:15:25.093 Update progress: [I19463] Syncing product SAVIW32 48
2015-01-09 06:15:25.093 Update progress: [I19463] Syncing product IDE509 177
2015-01-09 06:15:45.671 Update progress: [I19463] Syncing product IDE510 179
2015-01-09 06:15:45.671 Update progress: [I19463] Syncing product IDE511 170
2015-01-09 06:15:45.671 Update progress: [I19463] Syncing product IDE512 23
2015-01-09 06:15:46.296 Installing updates...
2015-01-09 06:15:47.953 Error level 1
2015-01-09 06:15:48.546 Update progress: [I19463] Syncing product IDE513 1
2015-01-09 06:15:48.750 Update successful
2015-01-09 06:16:14.203 Option all = no
2015-01-09 06:16:14.203 Option recurse = yes
2015-01-09 06:16:14.203 Option archive = no
2015-01-09 06:16:14.203 Option service = yes
2015-01-09 06:16:14.203 Option confirm = yes
2015-01-09 06:16:14.203 Option sxl = yes
2015-01-09 06:16:14.203 Option max-data-age = 35
2015-01-09 06:16:14.203 Option EnableSafeClean = yes
2015-01-09 06:16:14.296 Option vdl-logging = yes
2015-01-09 06:16:14.328 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-09 06:16:14.343 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-09 06:16:14.343 Component SVRTcli.exe version 2.5.4
2015-01-09 06:16:14.343 Component control.dll version 2.5.4
2015-01-09 06:16:14.343 Component SVRTservice.exe version 2.5.4
2015-01-09 06:16:14.343 Component engine\osdp.dll version 1.44.1.2183
2015-01-09 06:16:14.343 Component engine\veex.dll version 3.58.3.2183
2015-01-09 06:16:14.343 Component engine\savi.dll version 8.1.5.2183
2015-01-09 06:16:14.343 Component rkdisk.dll version 1.5.30.0
2015-01-09 06:16:14.343 Version info: Product version 2.5.4
2015-01-09 06:16:14.343 Version info: Detection engine 3.58.3
2015-01-09 06:16:14.343 Version info: Detection data 5.08G
2015-01-09 06:16:14.343 Version info: Build date 11.11.2014
2015-01-09 06:16:14.343 Version info: Data files added 544
2015-01-09 06:16:14.343 Version info: Last successful update 09.01.2015 07:15:48
2015-01-08 15:44:35.953 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2015-01-08 15:44:35.953 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2015-01-08 15:44:35.953 Windows version 5.1 SP 3.0 Service Pack 3 build 2600 SM=0x100 PT=0x1 Win32
2015-01-08 15:44:35.953 Checking for updates...
2015-01-08 15:44:36.500 Update progress: proxy server not available
2015-01-08 15:45:21.171 Downloading updates...
2015-01-08 15:45:21.187 Update progress: [I96736] Looking for package C1A903B2-E63E-483b-982D-04BB9C457C60 1.0
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement SAVIW32 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE509 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE510 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE511 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE512 LATEST
2015-01-08 15:45:21.187 Update progress: [I49502] Found supplement IDE513 LATEST
2015-01-08 15:45:21.187 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 1
2015-01-08 15:45:21.187 Update progress: [I19463] Syncing product SAVIW32 48
2015-01-08 15:45:33.234 Option all = no
2015-01-08 15:45:33.234 Option recurse = yes
2015-01-08 15:45:33.234 Option archive = no
2015-01-08 15:45:33.234 Option service = yes
2015-01-08 15:45:33.234 Option confirm = yes
2015-01-08 15:45:33.234 Option sxl = yes
2015-01-08 15:45:33.281 Option max-data-age = 35
2015-01-08 15:45:33.281 Option EnableSafeClean = yes
2015-01-08 15:45:38.343 Update progress: [I19463] Syncing product IDE509 177
2015-01-08 15:45:42.078 Option vdl-logging = yes
2015-01-08 15:45:42.125 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-08 15:45:42.125 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-08 15:45:42.250 Component SVRTcli.exe version 2.5.4
2015-01-08 15:45:42.250 Component control.dll version 2.5.4
2015-01-08 15:45:42.250 Component SVRTservice.exe version 2.5.4
2015-01-08 15:45:42.250 Component engine\osdp.dll version 1.44.1.2183
2015-01-08 15:45:42.250 Component engine\veex.dll version 3.58.3.2183
2015-01-08 15:45:42.250 Component engine\savi.dll version 8.1.5.2183
2015-01-08 15:45:42.328 Component rkdisk.dll version 1.5.30.0
2015-01-08 15:45:42.328 Version info: Product version 2.5.4
2015-01-08 15:45:42.343 Version info: Detection engine 3.58.3
2015-01-08 15:45:42.343 Version info: Detection data 5.08
2015-01-08 15:45:42.343 Version info: Build date 11.11.2014
2015-01-08 15:45:42.343 Version info: Data files added 533
2015-01-08 15:45:42.343 Version info: Last successful update (not yet updated)
2015-01-08 15:45:46.218 Update progress: [I19463] Syncing product IDE510 179
2015-01-08 15:45:46.218 Update progress: [I19463] Syncing product IDE511 170
2015-01-08 15:45:46.218 Update progress: [I19463] Syncing product IDE512 18
2015-01-08 15:45:46.953 Installing updates...
2015-01-08 15:45:49.203 Error level 1
2015-01-08 15:45:49.375 Update progress: [I19463] Syncing product IDE513 1
2015-01-08 15:46:32.421 Update successful
2015-01-08 15:47:10.843 Option all = no
2015-01-08 15:47:10.843 Option recurse = yes
2015-01-08 15:47:10.843 Option archive = no
2015-01-08 15:47:10.843 Option service = yes
2015-01-08 15:47:10.843 Option confirm = yes
2015-01-08 15:47:10.843 Option sxl = yes
2015-01-08 15:47:10.843 Option max-data-age = 35
2015-01-08 15:47:10.843 Option EnableSafeClean = yes
2015-01-08 15:47:10.937 Option vdl-logging = yes
2015-01-08 15:47:10.953 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-08 15:47:10.953 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-08 15:47:10.953 Component SVRTcli.exe version 2.5.4
2015-01-08 15:47:10.953 Component control.dll version 2.5.4
2015-01-08 15:47:10.953 Component SVRTservice.exe version 2.5.4
2015-01-08 15:47:10.953 Component engine\osdp.dll version 1.44.1.2183
2015-01-08 15:47:10.953 Component engine\veex.dll version 3.58.3.2183
2015-01-08 15:47:10.953 Component engine\savi.dll version 8.1.5.2183
2015-01-08 15:47:10.953 Component rkdisk.dll version 1.5.30.0
2015-01-08 15:47:10.953 Version info: Product version 2.5.4
2015-01-08 15:47:10.953 Version info: Detection engine 3.58.3
2015-01-08 15:47:10.953 Version info: Detection data 5.08G
2015-01-08 15:47:10.953 Version info: Build date 11.11.2014
2015-01-08 15:47:10.953 Version info: Data files added 539
2015-01-08 15:47:10.953 Version info: Last successful update 08.01.2015 16:46:32
2015-01-08 19:39:28.750 Could not open C:\hiberfil.sys
2015-01-08 22:47:37.031 SafeClean bin directory is empty.
2015-01-09 06:11:51.640 Sophos Virus Removal Tool version 2.5.4
2015-01-09 06:11:51.640 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2015-01-09 06:11:51.640 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2015-01-09 06:11:51.640 Windows version 5.1 SP 3.0 Service Pack 3 build 2600 SM=0x100 PT=0x1 Win32
2015-01-09 06:11:51.640 Checking for updates...
2015-01-09 06:11:52.500 Update progress: proxy server not available
2015-01-09 06:14:35.750 Option all = no
2015-01-09 06:14:35.750 Option recurse = yes
2015-01-09 06:14:35.750 Option archive = no
2015-01-09 06:14:35.750 Option service = yes
2015-01-09 06:14:35.750 Option confirm = yes
2015-01-09 06:14:35.750 Option sxl = yes
2015-01-09 06:14:35.765 Option max-data-age = 35
2015-01-09 06:14:35.765 Option EnableSafeClean = yes
2015-01-09 06:14:38.109 Option vdl-logging = yes
2015-01-09 06:14:38.421 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-09 06:14:38.421 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-09 06:14:39.375 Component SVRTcli.exe version 2.5.4
2015-01-09 06:14:39.375 Component control.dll version 2.5.4
2015-01-09 06:14:39.375 Component SVRTservice.exe version 2.5.4
2015-01-09 06:14:39.390 Component engine\osdp.dll version 1.44.1.2183
2015-01-09 06:14:39.390 Component engine\veex.dll version 3.58.3.2183
2015-01-09 06:14:39.390 Component engine\savi.dll version 8.1.5.2183
2015-01-09 06:14:40.203 Component rkdisk.dll version 1.5.30.0
2015-01-09 06:14:40.203 Version info: Product version 2.5.4
2015-01-09 06:14:40.250 Version info: Detection engine 3.58.3
2015-01-09 06:14:40.343 Version info: Detection data 5.08G
2015-01-09 06:14:40.343 Version info: Build date 11.11.2014
2015-01-09 06:14:40.343 Version info: Data files added 539
2015-01-09 06:14:40.343 Version info: Last successful update 08.01.2015 16:46:32
2015-01-09 06:15:25.093 Downloading updates...
2015-01-09 06:15:25.093 Update progress: [I96736] Looking for package C1A903B2-E63E-483b-982D-04BB9C457C60 1.0
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement SAVIW32 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE509 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE510 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE511 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE512 LATEST
2015-01-09 06:15:25.093 Update progress: [I49502] Found supplement IDE513 LATEST
2015-01-09 06:15:25.093 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 1
2015-01-09 06:15:25.093 Update progress: [I19463] Syncing product SAVIW32 48
2015-01-09 06:15:25.093 Update progress: [I19463] Syncing product IDE509 177
2015-01-09 06:15:45.671 Update progress: [I19463] Syncing product IDE510 179
2015-01-09 06:15:45.671 Update progress: [I19463] Syncing product IDE511 170
2015-01-09 06:15:45.671 Update progress: [I19463] Syncing product IDE512 23
2015-01-09 06:15:46.296 Installing updates...
2015-01-09 06:15:47.953 Error level 1
2015-01-09 06:15:48.546 Update progress: [I19463] Syncing product IDE513 1
2015-01-09 06:15:48.750 Update successful
2015-01-09 06:16:14.203 Option all = no
2015-01-09 06:16:14.203 Option recurse = yes
2015-01-09 06:16:14.203 Option archive = no
2015-01-09 06:16:14.203 Option service = yes
2015-01-09 06:16:14.203 Option confirm = yes
2015-01-09 06:16:14.203 Option sxl = yes
2015-01-09 06:16:14.203 Option max-data-age = 35
2015-01-09 06:16:14.203 Option EnableSafeClean = yes
2015-01-09 06:16:14.296 Option vdl-logging = yes
2015-01-09 06:16:14.328 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2015-01-09 06:16:14.343 Machine ID: c8f9698d7db14ae2863922fbb3705be5
2015-01-09 06:16:14.343 Component SVRTcli.exe version 2.5.4
2015-01-09 06:16:14.343 Component control.dll version 2.5.4
2015-01-09 06:16:14.343 Component SVRTservice.exe version 2.5.4
2015-01-09 06:16:14.343 Component engine\osdp.dll version 1.44.1.2183
2015-01-09 06:16:14.343 Component engine\veex.dll version 3.58.3.2183
2015-01-09 06:16:14.343 Component engine\savi.dll version 8.1.5.2183
2015-01-09 06:16:14.343 Component rkdisk.dll version 1.5.30.0
2015-01-09 06:16:14.343 Version info: Product version 2.5.4
2015-01-09 06:16:14.343 Version info: Detection engine 3.58.3
2015-01-09 06:16:14.343 Version info: Detection data 5.08G
2015-01-09 06:16:14.343 Version info: Build date 11.11.2014
2015-01-09 06:16:14.343 Version info: Data files added 544
2015-01-09 06:16:14.343 Version info: Last successful update 09.01.2015 07:15:48
QuestionGhost
Posts: 72 +0
Maybe I didn't run it from the desktop, I don't know (I'm at a different compter now). If so, I'll repeat running Sophos.
QuestionGhost
Posts: 72 +0
Does it matter that maybe I didn't run it from the desktop? It takes very long to run Sophos, like a whole day more or less - that's why I ask! Thank you!
QuestionGhost
Posts: 72 +0
I correct my last statemants - actually, Sophos WAS run from my desktop - Sorry about my confusion.
Broni
Posts: 56,041 +516
Your computer is clean
1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download
DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.
Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
Once finished a logfile will be created. You don't have to attach it to your next reply.
2. Make sure Windows Updates are current.
3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!
4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")
5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.
6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.
7. Run Temporary File Cleaner (TFC), AdwCleaner and Junkware Removal Tool (JRT) weekly (you need to redownload these tools since they were removed by DelFix).
8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.
9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.
10. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.
11. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642
12. Please, let me know, how your computer is doing.
1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download
Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
- Activate UAC (optional; some users prefer to keep it off)
- Remove disinfection tools
- Create registry backup
- Purge System Restore
- Reset system settings
Once finished a logfile will be created. You don't have to attach it to your next reply.
2. Make sure Windows Updates are current.
3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!
4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")
5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.
6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.
7. Run Temporary File Cleaner (TFC), AdwCleaner and Junkware Removal Tool (JRT) weekly (you need to redownload these tools since they were removed by DelFix).
8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.
9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.
10. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.
11. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642
12. Please, let me know, how your computer is doing.
QuestionGhost
Posts: 72 +0
Thank you. I will do that. But what should I do after that? I am especially concerned not to "infect" a brand new computer that I will eventually be using in the future by using old USB-Sticks, Smartphones or Cameras or WLAM Router with it. Is it enough to scan those devices with my usual virus protection software (Avira Antivir) which did not find the "Ghost" in the first place?
QuestionGhost
Posts: 72 +0
All I know is that it was first found by "Detekt" and then found and put into quarantine by Malwarebytes, appearently end of November 2014. Would you need any more log files? I don't know if there are log files from the "Detekt" program, Im suppose so, and I could try and look for them.
QuestionGhost
Posts: 72 +0
About the last scans and tasks: I ran DelFix; Log not posted as you requested; XP cannot be updated but will be replaced soon (New PC);
Mozila plugins : VLC needs to be updated which I am doing now ;Plus, there a many
Unknown Plugins - should I d osomething about them?:
Windows Presentation Foundation (v. 3.5.30729.1)Windows Presentation Foundation (WPF) plug-in for Mozilla browsers Research
Windows Media Player Plug-in Dynamic Link Library (v. 3.0.2.629)Npdsplay dll Research
Nokia Suite Enabler Plugin (v. 1.0.0.1)Nokia Suite Enabler Plugin Research
Microsoft® DRM (v. 9.0.0.4503)DRM Netscape Network Object Research
Microsoft Download Manager Plugin (v. 1.2.1.2044)1,2,1,2044 Research
Google Update (v. 1.3.25.11)Google Update Research
Mozila plugins : VLC needs to be updated which I am doing now ;Plus, there a many
Unknown Plugins - should I d osomething about them?:
Windows Presentation Foundation (v. 3.5.30729.1)Windows Presentation Foundation (WPF) plug-in for Mozilla browsers Research
Windows Media Player Plug-in Dynamic Link Library (v. 3.0.2.629)Npdsplay dll Research
Nokia Suite Enabler Plugin (v. 1.0.0.1)Nokia Suite Enabler Plugin Research
Microsoft® DRM (v. 9.0.0.4503)DRM Netscape Network Object Research
Microsoft Download Manager Plugin (v. 1.2.1.2044)1,2,1,2044 Research
Google Update (v. 1.3.25.11)Google Update Research
QuestionGhost
Posts: 72 +0
Or should I just try to get rid of those unknown firefox plugins (since I don't know if I need any of them, and I did not install them on purpose)? I suppose they were pre-installed
QuestionGhost
Posts: 72 +0
Thank you. I was very glad to learn that my computer was safe. Until today - Malwarebytes seems to have found and quarantined a new trojan on my PC! It's called "Trojan.Carberp.ED"
Now what's that - and where did I get get that from? Is it dangerous? Should I do more about it?
I'll post the log file under this.
Also, today I tried for the first time to connect my new Smartphone to the computer, a Samsung Galaxy 4S Zoom, which I bought used and which has newly updated Avira Antivir on it and is appearently "safe", Antivir says. Maybe it isn't? I'm not yet running any Samsung/Kies software, I just wanted to download some Pics I had taken. Thanks again.
Now what's that - and where did I get get that from? Is it dangerous? Should I do more about it?
I'll post the log file under this.
Also, today I tried for the first time to connect my new Smartphone to the computer, a Samsung Galaxy 4S Zoom, which I bought used and which has newly updated Avira Antivir on it and is appearently "safe", Antivir says. Maybe it isn't? I'm not yet running any Samsung/Kies software, I just wanted to download some Pics I had taken. Thanks again.
QuestionGhost
Posts: 72 +0
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11.01.2015
Scan Time: 12:58:19
Logfile: MBytes2015_01_11.txt
Administrator: No
Version: 2.00.4.1028
Malware Database: v2015.01.11.05
Rootkit Database: v2015.01.07.01
License: Trial
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: P
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 208501
Time Elapsed: 19 min, 10 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
Trojan.Carberp.ED, C:\WINDOWS\Installer\3e28a.msi, Delete-on-Reboot, [849dda1c08810d2976b98a692dd46a96],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 11.01.2015
Scan Time: 12:58:19
Logfile: MBytes2015_01_11.txt
Administrator: No
Version: 2.00.4.1028
Malware Database: v2015.01.11.05
Rootkit Database: v2015.01.07.01
License: Trial
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: P
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 208501
Time Elapsed: 19 min, 10 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
Trojan.Carberp.ED, C:\WINDOWS\Installer\3e28a.msi, Delete-on-Reboot, [849dda1c08810d2976b98a692dd46a96],
Physical Sectors: 0
(No malicious items detected)
(end)
QuestionGhost
Posts: 72 +0
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11.01.2015
Scan Time: 12:58:19
Logfile: MBytes_2015_01_11_b.txt
Administrator: No
Version: 2.00.4.1028
Malware Database: v2015.01.11.05
Rootkit Database: v2015.01.07.01
License: Trial
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: P
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 208501
Time Elapsed: 19 min, 10 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
Trojan.Carberp.ED, C:\WINDOWS\Installer\3e28a.msi, Delete-on-Reboot, [849dda1c08810d2976b98a692dd46a96],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 11.01.2015
Scan Time: 12:58:19
Logfile: MBytes_2015_01_11_b.txt
Administrator: No
Version: 2.00.4.1028
Malware Database: v2015.01.11.05
Rootkit Database: v2015.01.07.01
License: Trial
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: P
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 208501
Time Elapsed: 19 min, 10 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
Trojan.Carberp.ED, C:\WINDOWS\Installer\3e28a.msi, Delete-on-Reboot, [849dda1c08810d2976b98a692dd46a96],
Physical Sectors: 0
(No malicious items detected)
(end)
QuestionGhost
Posts: 72 +0
Malwarebytes Anti-Malware
www.malwarebytes.org
Update, 11.01.2015 01:53:59, SYSTEM, COMPUTER-P, Scheduler, Failed, Unable to access update server,
Update, 11.01.2015 12:53:44, SYSTEM, COMPUTER-P, Scheduler, Failed, Unable to access update server,
Update, 11.01.2015 12:57:38, SYSTEM, COMPUTER-P, Manual, Malware Database, 2015.1.10.10, 2015.1.11.5,
Scan, 11.01.2015 12:58:06, SYSTEM, COMPUTER-P, Manual, Start:11.01.2015 12:53:47, Duration:4 min 17 sec, Threat Scan, Cancelled, 0 Malware Detections, 0 Non-Malware Detections,
Scan, 11.01.2015 13:20:32, SYSTEM, COMPUTER-P, Manual, Start:11.01.2015 12:58:19, Duration:19 min 10 sec, Threat Scan, Completed, 1 Malware Detection, 0 Non-Malware Detections,
(end)
www.malwarebytes.org
Update, 11.01.2015 01:53:59, SYSTEM, COMPUTER-P, Scheduler, Failed, Unable to access update server,
Update, 11.01.2015 12:53:44, SYSTEM, COMPUTER-P, Scheduler, Failed, Unable to access update server,
Update, 11.01.2015 12:57:38, SYSTEM, COMPUTER-P, Manual, Malware Database, 2015.1.10.10, 2015.1.11.5,
Scan, 11.01.2015 12:58:06, SYSTEM, COMPUTER-P, Manual, Start:11.01.2015 12:53:47, Duration:4 min 17 sec, Threat Scan, Cancelled, 0 Malware Detections, 0 Non-Malware Detections,
Scan, 11.01.2015 13:20:32, SYSTEM, COMPUTER-P, Manual, Start:11.01.2015 12:58:19, Duration:19 min 10 sec, Threat Scan, Completed, 1 Malware Detection, 0 Non-Malware Detections,
(end)
QuestionGhost
Posts: 72 +0
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11.01.2015
Scan Time: 12:53:47
Logfile: MBytes_Scan_Cancelled_2015_01_11_.txt
Administrator: No
Version: 2.00.4.1028
Malware Database: v2015.01.10.10
Rootkit Database: v2015.01.07.01
License: Trial
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: P
Scan Type: Threat Scan
Result: Cancelled
Objects Scanned: 231
Time Elapsed: 4 min, 17 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 11.01.2015
Scan Time: 12:53:47
Logfile: MBytes_Scan_Cancelled_2015_01_11_.txt
Administrator: No
Version: 2.00.4.1028
Malware Database: v2015.01.10.10
Rootkit Database: v2015.01.07.01
License: Trial
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: P
Scan Type: Threat Scan
Result: Cancelled
Objects Scanned: 231
Time Elapsed: 4 min, 17 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
QuestionGhost
Posts: 72 +0
If I recall this right, I cancelled the scan first in order to update MWBytes, then scanned again. The second scan produced the result: Infected with "Trojan.Carberp.ED".-I then restarted the computer in order to have the cleaning finished.
QuestionGhost
Posts: 72 +0
AGAIN! MWB found the same Trojan again ... what's going on?
Latest posts
-
All Cybertrucks recalled because acceleration pedals can become stuck- Daniel Sims replied
-
Astronomers gather additional evidence suggesting Planet Nine is real- Plutoisaplanet replied
-
These credit cards feature OLEDs that light up upon payment- Uncle Al replied
-
Amazon denies reports it started a business just to spy on rivals- nitebird replied
-
PlayStation 5 Pro will be bigger, faster, and better using the same CPU
- anastrophe replied
