Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

trojangeneric5667367


  • This topic is locked This topic is locked
17 replies to this topic

#1 Whitenoise!

Whitenoise!

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 03 January 2012 - 09:55 PM

Hi!

My computer popped up that I have aforementioned trojan and I select "destroy"...then it stated that it has been removed. Well, after re-boot it came right back again same story...

Anyways I'm a total newbie when it comes to computers so, what should I do first?

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:11 PM

Posted 03 January 2012 - 10:10 PM

Hello Whitenoise! Welcome. I moved this to the Am I Infected forum.. There are certaipre requisites for this one. It's OK,you're new.
What is your Antivirus and Operating System?
Are you on a router? Are other machines on it,if so are they redirecting?

Do you use Firefox?


I neeed you to do these.
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1 <<<== Use this one first.

Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware



I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Whitenoise!

Whitenoise!
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 04 January 2012 - 01:53 AM

My antivirus is F-secure -10 and Im using Windows 7
And yes I am on router...um I dont know if they redirect...probably this is no help but its wireless router and all other computers are for sure clean
And I used to use firefox but now its on my secondary one, chrome being the primary


but are the data...
unfortunately this one is in Finnish


MiniToolBox by Farbar
Ran by Käyttäjä (administrator) on 04-01-2012 at 05:22:35
Microsoft Windows 7 Home Premium (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-m„„ritykset

DNS-tulkintatoiminnon v„limuistin tyhjent„minen onnistui.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1 localhost


127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom 802.11b/g -verkkosovitin = Langaton verkkoyhteys (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth-verkkoyhteys (Media disconnected)


# ----------------------------------
# IPv4-m„„ritys
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# IPv4-kokoonpanon loppu.



Windows IP-m„„ritykset

Is„nt„nimi . . . . . . . . . . . : K„ytt„j„-PC
Ensisijainen DNS-liite . . . . . :
Solmutyyppi . . . . . . . . . . . : Hybridi
IP-reititys k„yt”ss„ . . . . . . : Ei
WINS-v„lityspalvelin k„yt”ss„ . . : Ei

Ethernet-sovitin Bluetooth-verkkoyhteys:

Laitteen tila . . . . . . . . . . : Ei kytketty
Yhteyskohtainen DNS-liite . . . . :
Kuvaus . . . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Fyysinen osoite . . . . . . . . . : 00-24-7E-F9-7E-3E
DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Langattoman l„hiverkon sovitin Langaton verkkoyhteys:

Yhteyskohtainen DNS-liite . . . . :
Kuvaus . . . . . . . . . . . . . : Broadcom 802.11b/g -verkkosovitin
Fyysinen osoite . . . . . . . . . : 0C-60-76-7D-85-D1
DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
Automaattinen m„„ritys k„yt”ss„ . : Kyll„
Linkin paikallinen IPv6-osoite. . : fe80::6488:bd2c:a731:90cb%12(Ensisijainen)
IPv4-osoite . . . . . . . . . . . : 192.168.1.3(Ensisijainen)
Aliverkon peite . . . . . . . . . : 255.255.255.0
K„ytt”lupa my”nnetty . . . . . . : 2. tammikuuta 2012 15:45:22
K„ytt”lupa vanhenee . . . . . . : 5. tammikuuta 2012 2:51:19
Oletusyhdysk„yt„v„. . . . . . . . : 192.168.1.1
DHCP-palvelin . . . . . . . . . . : 192.168.1.1
DHCPv6-IAID . . . . . . . . . . . : 302801014
DHCPv6-asiakkaan DUID-tunnus . . : 00-01-00-01-12-8F-5C-21-00-26-55-CF-F3-A2
DNS-palvelimet . . . . . . . . . : 192.168.1.1
NetBIOS TCP/IP:n p„„ll„ . . . . . : K„yt”ss„

Tunnelisovitin isatap.{57FD0975-065F-433A-A039-FD040E6C4D0F}:

Laitteen tila . . . . . . . . . . : Ei kytketty
Yhteyskohtainen DNS-liite . . . . :
Kuvaus . . . . . . . . . . . . . : Microsoft ISATAP -sovitin #2
Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP k„yt”ss„ . . . . . . . . . . : Ei
Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Tunnelisovitin Teredo Tunneling Pseudo-Interface:

Yhteyskohtainen DNS-liite . . . . :
Kuvaus . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP k„yt”ss„ . . . . . . . . . . : Ei
Automaattinen m„„ritys k„yt”ss„ . : Kyll„
Linkin paikallinen IPv6-osoite. . : fe80::18f9:8ac:3f57:fefc%15(Ensisijainen)
Oletusyhdysk„yt„v„. . . . . . . . :
DHCPv6-IAID . . . . . . . . . . . : 452984832
DHCPv6-asiakkaan DUID-tunnus . . : 00-01-00-01-12-8F-5C-21-00-26-55-CF-F3-A2
NetBIOS TCP/IP:n p„„ll„ . . . . . : Ei k„yt”ss„

Tunnelisovitin isatap.{15B2BB2A-ADA7-4C7F-816C-B78C5B68008F}:

Laitteen tila . . . . . . . . . . : Ei kytketty
Yhteyskohtainen DNS-liite . . . . :
Kuvaus . . . . . . . . . . . . . : Microsoft ISATAP -sovitin #4
Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP k„yt”ss„ . . . . . . . . . . : Ei
Automaattinen m„„ritys k„yt”ss„ . : Kyll„
Palvelin: UnKnown
Address: 192.168.1.1

Nimi: google.com
Addresses: 209.85.173.147
209.85.173.99
209.85.173.103
209.85.173.104
209.85.173.105


Ping-is„nt„: google.com [209.85.173.103] 32 tavua tietoja:
Vastaus is„nn„lt„ 209.85.173.103: tavuja=32 aika=45 ms TTL=54
Vastaus is„nn„lt„ 209.85.173.103: tavuja=32 aika=44 ms TTL=54

Ping-tilastot 209.85.173.103:
Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
(0% h„vikki),
Arvioitu kiertoaika millisekunteina:
Pienin = 44 ms, Suurin = 45 ms, Keskiarvo = 44 ms
Palvelin: UnKnown
Address: 192.168.1.1

Nimi: yahoo.com
Addresses: 98.137.149.56
98.139.180.149
209.191.122.70
72.30.2.43


Ping-is„nt„: yahoo.com [72.30.2.43] 32 tavua tietoja:
Vastaus is„nn„lt„ 72.30.2.43: tavuja=32 aika=267 ms TTL=53
Vastaus is„nn„lt„ 72.30.2.43: tavuja=32 aika=258 ms TTL=53

Ping-tilastot 72.30.2.43:
Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
(0% h„vikki),
Arvioitu kiertoaika millisekunteina:
Pienin = 258 ms, Suurin = 267 ms, Keskiarvo = 262 ms
Palvelin: UnKnown
Address: 192.168.1.1

Nimi: bleepingcomputer.com
Address: 208.43.87.2


Ping-is„nt„: bleepingcomputer.com [208.43.87.2] 32 tavua tietoja:
Vastaus is„nn„lt„ 208.43.87.2: Kohdeis„nt„„n ei saada yhteytt„.
Vastaus is„nn„lt„ 208.43.87.2: Kohdeis„nt„„n ei saada yhteytt„.

Ping-tilastot 208.43.87.2:
Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
(0% h„vikki),

Ping-is„nt„: 127.0.0.1 32 tavua tietoja:
Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128
Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128

Ping-tilastot 127.0.0.1:
Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
(0% h„vikki),
Arvioitu kiertoaika millisekunteina:
Pienin = 0 ms, Suurin = 0 ms, Keskiarvo = 0 ms
===========================================================================
Sovitinluettelo
14...00 24 7e f9 7e 3e ......Bluetooth Device (Personal Area Network)
12...0c 60 76 7d 85 d1 ......Broadcom 802.11b/g -verkkosovitin
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin #2
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin #4
===========================================================================

IPv4 -reititystaulukko
===========================================================================
Active Routes:
Verkkokohde Verkon peite Yhdysk„yt„v„ Liittym„ Metric-arvo
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 30
127.0.0.0 255.0.0.0 Linkin m„„ritt„m„ 127.0.0.1 306
127.0.0.1 255.255.255.255 Linkin m„„ritt„m„ 127.0.0.1 306
127.255.255.255 255.255.255.255 Linkin m„„ritt„m„ 127.0.0.1 306
192.168.1.0 255.255.255.0 Linkin m„„ritt„m„ 192.168.1.3 286
192.168.1.3 255.255.255.255 Linkin m„„ritt„m„ 192.168.1.3 286
192.168.1.255 255.255.255.255 Linkin m„„ritt„m„ 192.168.1.3 286
224.0.0.0 240.0.0.0 Linkin m„„ritt„m„ 127.0.0.1 306
224.0.0.0 240.0.0.0 Linkin m„„ritt„m„ 192.168.1.3 286
255.255.255.255 255.255.255.255 Linkin m„„ritt„m„ 127.0.0.1 306
255.255.255.255 255.255.255.255 Linkin m„„ritt„m„ 192.168.1.3 286
===========================================================================
Jatkuvat reitit:
Ei mit„„n

IPv6 -reititystaulukko
===========================================================================
Active Routes:
Jos verkkokohde on Metric-kohdeyhdysk„yt„v„
1 306 ::1/128 Linkin m„„ritt„m„
12 286 fe80::/64 Linkin m„„ritt„m„
15 306 fe80::/64 Linkin m„„ritt„m„
15 306 fe80::18f9:8ac:3f57:fefc/128
Linkin m„„ritt„m„
12 286 fe80::6488:bd2c:a731:90cb/128
Linkin m„„ritt„m„
1 306 ff00::/8 Linkin m„„ritt„m„
15 306 ff00::/8 Linkin m„„ritt„m„
12 286 ff00::/8 Linkin m„„ritt„m„
===========================================================================
Jatkuvat reitit:
Ei mit„„n
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [35840] (Microsoft Corporation)
Catalog9 01 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 02 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 03 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 04 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 05 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 06 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 07 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Program Files\F-Secure\FSPS\program\FSLSP.DLL [179808] (F-Secure Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/02/2012 01:14:04 AM) (Source: Application Hang) (User: )
Description: Ohjelman YouTubeDownloader.exe versio 3.5.0.5, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 1554

Alkamisaika: 01ccc8da29a498aa

Päättymisaika: 29

Sovelluksen polku: C:\Program Files\YouTube Downloader\YouTubeDownloader.exe

Raportin tunnus: daa4ae8c-34cd-11e1-91ac-00247ef97e3e

Error: (01/02/2012 01:07:35 AM) (Source: Application Hang) (User: )
Description: Ohjelman YouTubeDownloader.exe versio 3.5.0.5, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 9b0

Alkamisaika: 01ccc8d9f77c91fe

Päättymisaika: 30

Sovelluksen polku: C:\Program Files\YouTube Downloader\YouTubeDownloader.exe

Raportin tunnus: 603ae8da-34cd-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:51:20 AM) (Source: Application Hang) (User: )
Description: Ohjelman YouTubeDownloader.exe versio 3.5.0.5, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 1334

Alkamisaika: 01ccc8d7c8ae4283

Päättymisaika: 40

Sovelluksen polku: C:\Program Files\YouTube Downloader\YouTubeDownloader.exe

Raportin tunnus: 1d25677d-34cb-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:50:38 AM) (Source: Application Hang) (User: )
Description: Ohjelman youtubedownloader.exe versio 3.5.0.5, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 1118

Alkamisaika: 01ccc8d798680684

Päättymisaika: 13

Sovelluksen polku: C:\Program Files\YouTube Downloader\youtubedownloader.exe

Raportin tunnus: 036c15fc-34cb-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:46:39 AM) (Source: Application Hang) (User: )
Description: Ohjelman YouTubeDownloader.exe versio 3.4.0.2, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 1cb8

Alkamisaika: 01ccc8d68ce33876

Päättymisaika: 16

Sovelluksen polku: C:\Program Files\YouTube Downloader\YouTubeDownloader.exe

Raportin tunnus: 7526aa7b-34ca-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:37:00 AM) (Source: Application Hang) (User: )
Description: Ohjelman YouTubeDownloader.exe versio 3.4.0.2, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 1ce8

Alkamisaika: 01ccc8d5804295c7

Päättymisaika: 51

Sovelluksen polku: C:\Program Files\YouTube Downloader\YouTubeDownloader.exe

Raportin tunnus: 1c036ec7-34c9-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:34:16 AM) (Source: Application Hang) (User: )
Description: Ohjelman YouTubeDownloader.exe versio 3.4.0.2, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 7a8

Alkamisaika: 01ccc8ccfe616f4f

Päättymisaika: 28

Sovelluksen polku: C:\Program Files\YouTube Downloader\YouTubeDownloader.exe

Raportin tunnus: ba18017b-34c8-11e1-91ac-00247ef97e3e

Error: (01/01/2012 11:02:57 PM) (Source: Application Hang) (User: )
Description: Ohjelman YouTubeDownloader.exe versio 3.4.0.2, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: 1f54

Alkamisaika: 01ccc8c8775b73b2

Päättymisaika: 9

Sovelluksen polku: C:\Program Files\YouTube Downloader\YouTubeDownloader.exe

Raportin tunnus: f8060710-34bb-11e1-91ac-00247ef97e3e

Error: (01/01/2012 09:59:42 PM) (Source: Application Hang) (User: )
Description: Ohjelman firefox.exe versio 7.0.1.4288, lakkasi olemasta yhteydessä Windowsiin, joten se suljettiin. Voit tarkistaa, onko ongelmasta saatavilla lisätietoja, ohjauspaneelin Toimintokeskus-kohdasta.

Prosessin tunnus: ac4

Alkamisaika: 01ccc89c38c023c2

Päättymisaika: 6883

Sovelluksen polku: C:\Program Files\Mozilla Firefox\firefox.exe

Raportin tunnus: 182a401a-34b3-11e1-91ac-00247ef97e3e

Error: (01/01/2012 07:05:08 PM) (Source: Windows Backup) (User: )
Description: Varmuuskopiointi epäonnistui. Virhe: Tässä asemassa ei ole tarpeeksi tilaa varmuuskopion tallentamiseen. Vapauta tilaa poistamalla vanhoja varmuuskopioita ja tarpeettomia tietoja tai muuta varmuuskopiointiasetuksia. (0x81000005).


System errors:
=============
Error: (01/04/2012 00:57:16 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/03/2012 09:24:11 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/03/2012 07:30:05 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/03/2012 04:58:08 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/03/2012 01:29:10 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/03/2012 03:09:06 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/02/2012 11:35:21 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/02/2012 10:16:29 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/02/2012 07:50:08 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (01/02/2012 02:43:15 PM) (Source: atikmdag) (User: )
Description: Display is not active


Microsoft Office Sessions:
=========================
Error: (01/02/2012 01:14:04 AM) (Source: Application Hang)(User: )
Description: YouTubeDownloader.exe3.5.0.5155401ccc8da29a498aa29C:\Program Files\YouTube Downloader\YouTubeDownloader.exedaa4ae8c-34cd-11e1-91ac-00247ef97e3e

Error: (01/02/2012 01:07:35 AM) (Source: Application Hang)(User: )
Description: YouTubeDownloader.exe3.5.0.59b001ccc8d9f77c91fe30C:\Program Files\YouTube Downloader\YouTubeDownloader.exe603ae8da-34cd-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:51:20 AM) (Source: Application Hang)(User: )
Description: YouTubeDownloader.exe3.5.0.5133401ccc8d7c8ae428340C:\Program Files\YouTube Downloader\YouTubeDownloader.exe1d25677d-34cb-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:50:38 AM) (Source: Application Hang)(User: )
Description: youtubedownloader.exe3.5.0.5111801ccc8d79868068413C:\Program Files\YouTube Downloader\youtubedownloader.exe036c15fc-34cb-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:46:39 AM) (Source: Application Hang)(User: )
Description: YouTubeDownloader.exe3.4.0.21cb801ccc8d68ce3387616C:\Program Files\YouTube Downloader\YouTubeDownloader.exe7526aa7b-34ca-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:37:00 AM) (Source: Application Hang)(User: )
Description: YouTubeDownloader.exe3.4.0.21ce801ccc8d5804295c751C:\Program Files\YouTube Downloader\YouTubeDownloader.exe1c036ec7-34c9-11e1-91ac-00247ef97e3e

Error: (01/02/2012 00:34:16 AM) (Source: Application Hang)(User: )
Description: YouTubeDownloader.exe3.4.0.27a801ccc8ccfe616f4f28C:\Program Files\YouTube Downloader\YouTubeDownloader.exeba18017b-34c8-11e1-91ac-00247ef97e3e

Error: (01/01/2012 11:02:57 PM) (Source: Application Hang)(User: )
Description: YouTubeDownloader.exe3.4.0.21f5401ccc8c8775b73b29C:\Program Files\YouTube Downloader\YouTubeDownloader.exef8060710-34bb-11e1-91ac-00247ef97e3e

Error: (01/01/2012 09:59:42 PM) (Source: Application Hang)(User: )
Description: firefox.exe7.0.1.4288ac401ccc89c38c023c26883C:\Program Files\Mozilla Firefox\firefox.exe182a401a-34b3-11e1-91ac-00247ef97e3e

Error: (01/01/2012 07:05:08 PM) (Source: Windows Backup)(User: )
Description: Tässä asemassa ei ole tarpeeksi tilaa varmuuskopion tallentamiseen. Vapauta tilaa poistamalla vanhoja varmuuskopioita ja tarpeettomia tietoja tai muuta varmuuskopiointiasetuksia. (0x81000005)


=========================== Installed Programs ============================

Adobe Flash Player 10 ActiveX (Version: 10.1.53.64)
Adobe Flash Player 11 Plugin (Version: 11.0.1.152)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
ATI Catalyst Install Manager (Version: 3.0.732.0)
avast! Antivirus (Version: 4.8)
AVS Audio Converter version 6.1
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.3
Broadcom 802.11 Wireless LAN Adapter (Version: 5.30.21.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0804.1118.18368)
Catalyst Control Center Graphics Full Existing (Version: 2009.0804.1118.18368)
Catalyst Control Center Graphics Full New (Version: 2009.0804.1118.18368)
Catalyst Control Center Graphics Light (Version: 2009.0804.1118.18368)
Catalyst Control Center InstallProxy (Version: 2009.0804.1118.18368)
Catalyst Control Center Localization All (Version: 2009.0804.1118.18368)
ccc-core-static (Version: 2009.0804.1118.18368)
ccc-utility (Version: 2009.0804.1118.18368)
CCC Help Chinese Standard (Version: 2009.0804.1117.18368)
CCC Help Chinese Traditional (Version: 2009.0804.1117.18368)
CCC Help Czech (Version: 2009.0804.1117.18368)
CCC Help Danish (Version: 2009.0804.1117.18368)
CCC Help Dutch (Version: 2009.0804.1117.18368)
CCC Help English (Version: 2009.0804.1117.18368)
CCC Help Finnish (Version: 2009.0804.1117.18368)
CCC Help French (Version: 2009.0804.1117.18368)
CCC Help German (Version: 2009.0804.1117.18368)
CCC Help Greek (Version: 2009.0804.1117.18368)
CCC Help Hungarian (Version: 2009.0804.1117.18368)
CCC Help Italian (Version: 2009.0804.1117.18368)
CCC Help Japanese (Version: 2009.0804.1117.18368)
CCC Help Korean (Version: 2009.0804.1117.18368)
CCC Help Norwegian (Version: 2009.0804.1117.18368)
CCC Help Polish (Version: 2009.0804.1117.18368)
CCC Help Portuguese (Version: 2009.0804.1117.18368)
CCC Help Russian (Version: 2009.0804.1117.18368)
CCC Help Spanish (Version: 2009.0804.1117.18368)
CCC Help Swedish (Version: 2009.0804.1117.18368)
CCC Help Thai (Version: 2009.0804.1117.18368)
CCC Help Turkish (Version: 2009.0804.1117.18368)
Choice Guard (Version: 1.2.87.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
CPQ Wallpaper (Version: 1.0.1.1)
DirectX 9 Runtime (Version: 1.00.0000)
F-Secure Internet Security 2010
F-Secure PSC Prerequisites (Version: 1.0.5)
Hewlett-Packard ACLM.NET v1.1.1.0 (Version: 1.00.0000)
HP Advisor (Version: 3.2.8946.3086)
HP Common Access Service Library (Version: 3.0.28.1)
HP Customer Experience Enhancements (Version: 6.0.1.3)
HP ESU for Microsoft Windows 7 (Version: 1.0.1.1)
HP Integrated Module with Bluetooth wireless technology (Version: 6.2.0.9602)
HP Quick Launch Buttons (Version: 6.50.4.2)
HP Setup (Version: 1.2.3215.3078)
HP Software Setup (Version: 1.0.0.15)
HP Support Assistant (Version: 6.0.5.4)
HP User Guides 0133 (Version: 1.02.0001)
HP Web Camera (Version: 1.0.0)
HP Webcam (Version: 1.0)
HP Webcam Driver (Version: 5.8.50008.0)
HP Wireless Assistant (Version: 3.50.9.1)
IDT Audio (Version: 1.0.6222.0)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 23 (Version: 6.0.230)
LightScribe System Software (Version: 1.18.6.1)
LSI HDA Modem (Version: 2.1.94)
Malwarebytes' Anti-Malware
Marvell Miniport Driver (Version: 10.70.5.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Suite Activation Assistant (Version: 2.7)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 8.0.1 (x86 fi) (Version: 8.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PartyPoker (Version: 143)
PDF Complete Special Edition (Version: 3.5.108)
QLBCASL (Version: 6.40.17.2)
Roxio Activation Module (Version: 1.0)
Roxio Creator Audio (Version: 3.8.0)
Roxio Creator Business (Version: 10.3)
Roxio Creator Business v10 (Version: 3.8.0)
Roxio Creator Copy (Version: 3.8.0)
Roxio Creator Data (Version: 3.8.0)
Roxio Creator Tools (Version: 3.8.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio MyDVD (Version: 10.3.349)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Streaming Video Recorder V2.1.0 (Version: 2.1.0)
SUPERAntiSpyware (Version: 4.40.1002)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 13.2.6.2)
Windows 7 Default Setting (Version: 1.0.0.6)
Windows Live Call (Version: 14.0.8050.1202)
Windows Live Communications Platform (Version: 14.0.8050.1202)
Windows Live Messenger (Version: 14.0.8050.1202)
Windows Liven asennustyökalu (Version: 14.0.8050.1202)
Windows Liven kirjautumisavustaja (Version: 5.000.818.6)
Windows Liven lataustyökalu (Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinZip 16.0 (Version: 16.0.9691)
YouTube Downloader 3.5
YouTube Downloader Toolbar v4.6 (Version: 4.6)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 75%
Total physical RAM: 1788.87 MB
Available physical RAM: 442.88 MB
Total Pagefile: 3577.73 MB
Available Pagefile: 1637.84 MB
Total Virtual: 2047.88 MB
Available Virtual: 1935.43 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:280.8 GB) (Free:244.1 GB) NTFS
2 Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:0 GB) FAT32

========================= Users: ========================================

K„ytt„j„tilit \\KŽYTTŽJŽ-PC

J„rjestelm„nvalvoja K„ytt„j„ Vieras
Komento on suoritettu.

========================= Minidump Files ==================================

No minidump file found

**** End of log ****









Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.03.05

Windows 7 x86 NTFS
Internet Explorer 8.0.7600.16385
Käyttäjä :: KÄYTTÄJÄ-PC [administrator]

4.1.2012 5:37:35
mbam-log-2012-01-04 (05-37-35).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 171716
Time elapsed: 7 minute(s), 23 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)






C:\Program Files\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5 a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.6 a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Program Files\YouTube Downloader Toolbar\IE\4.6\youtubedownloaderToolbarIE.dll a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Users\Käyttäjä\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ADHIEQQ0\YouTubeDownloaderSetup35[2].exe probably a variant of Win32/Toolbar.Widgi application deleted - quarantined
C:\Users\Käyttäjä\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\88743cf-65c88485 a variant of Java/TrojanDownloader.Agent.ME trojan cleaned by deleting - quarantined
C:\Users\Käyttäjä\Downloads\warsong.zip Win32/OpenCandy application deleted - quarantined
C:\Users\Käyttäjä\Downloads\YouTubeDownloaderSetup34.exe a variant of Win32/Toolbar.Widgi application deleted - quarantined
C:\Windows\Installer\573c96d.msi a variant of Win32/Adware.Toolbar.Dealio application deleted - quarantined
E:\KÄYTTÄJÄ-PC\Backup Set 2011-10-19 220150\Backup Files 2011-10-19 220150\Backup files 2.zip a variant of Java/TrojanDownloader.Agent.ME trojan deleted - quarantined




Btw: Huuuuge thx for quick reply, waiting for the next step :D

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:11 PM

Posted 04 January 2012 - 03:10 PM

Ok, please run this and then see if FSecure is happy.

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.


OH and you're welcome!!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Whitenoise!

Whitenoise!
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 04 January 2012 - 03:43 PM

I have already done it....result was in last post. But sure I can do it again if necessary
And no f-secure doesnt work yet


C:\Program Files\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5 a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.6 a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Program Files\YouTube Downloader Toolbar\IE\4.6\youtubedownloaderToolbarIE.dll a variant of Win32/Adware.Toolbar.Dealio application cleaned by deleting - quarantined
C:\Users\Käyttäjä\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ADHIEQQ0\YouTubeDownloaderSetup35[2].exe probably a variant of Win32/Toolbar.Widgi application deleted - quarantined
C:\Users\Käyttäjä\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\88743cf-65c88485 a variant of Java/TrojanDownloader.Agent.ME trojan cleaned by deleting - quarantined
C:\Users\Käyttäjä\Downloads\warsong.zip Win32/OpenCandy application deleted - quarantined
C:\Users\Käyttäjä\Downloads\YouTubeDownloaderSetup34.exe a variant of Win32/Toolbar.Widgi application deleted - quarantined
C:\Windows\Installer\573c96d.msi a variant of Win32/Adware.Toolbar.Dealio application deleted - quarantined
E:\KÄYTTÄJÄ-PC\Backup Set 2011-10-19 220150\Backup Files 2011-10-19 220150\Backup files 2.zip a variant of Java/TrojanDownloader.Agent.ME trojan deleted - quarantined




#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:11 PM

Posted 07 January 2012 - 09:55 PM

Hello, sorry i lost this topic. how is it now?
Java needs an update ,this is old. >>Java™ 6 Update 23 (Version: 6.0.230)


Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u2-windows-i586.exe (or jre-7u2-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Whitenoise!

Whitenoise!
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 09 January 2012 - 02:58 PM

While removing older java...this pops-up

Java ™ 6 Update 16
Error 1723. There is a problem with this Windows Installer package. A DLL required for this install to complete could not be run. Contact your support personnel or package vendor.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:11 PM

Posted 09 January 2012 - 03:54 PM

OK, try running PuraRa to remove it.

PuraRa is a simple tool that does a simple job: it removes files from your computer that other mainstream cleaning programs tend to oversee. Some of our targets can simply be removed to create some valuable space while others are removed in an attempt to repair certain problems because they will simply recreate themselves.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Whitenoise!

Whitenoise!
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 10 January 2012 - 12:24 PM

I ran PuraRa but still no help with java

and tried to remove it via "remove programs"...it just says "preparing for removal..." and then it asks permission run this program to update!? java 6 after that same error pop-ups as in my last post

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:11 PM

Posted 10 January 2012 - 12:41 PM

OK, let's use MBAM's FileAssassin feature.

Java™ 6 Update 23 (Version: 6.0.230)


Open MBAM again.
Click the More Tools tab and then the Run Tool button
Now browse to the file(s) we want to remove using the drop down box next to Look in: at the top.
Locate the file(s), click Open.
You will be prompted with a message warning: This file will be permanently deleted. Are you sure you want to continue?. Click Yes.
If removal did not require a reboot, you will receive a message indicating the file was deleted successfully, however, I recommend you reboot anyway.

Caution: Be careful what you delete. FileAssassin is a powerful program, designed to move highly persistent files. Using it incorrectly could lead to disastrous problems with your operating system.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 Whitenoise!

Whitenoise!
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 10 January 2012 - 01:31 PM

deleted it but still its in the list of programs and as I try to remove it... it says following

"windows Installer -program"

(my translation from it may not be 100% accurate)

Trying to use feature from network resource (not sure if correct term), that is not available.

Try again by choosing OK or type box under installationpackage jre.1.6.0_16-c-l.msi route.

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:11 PM

Posted 10 January 2012 - 10:20 PM

I think it's because the tool will not work in a 64 bit system.
But all else is OK?
I will ask around about this.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 Whitenoise!

Whitenoise!
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 11 January 2012 - 10:05 PM

well my computer works better now I mean a bit faster but still cant run scan on f-secure so I guess we still need to dig deeper :D

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:11 PM

Posted 11 January 2012 - 10:11 PM

OK, Iagrre as you cannoy run an AV there musr be something we cannot see as it is being protected,

We need a deeper look. Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Include a link back to this topic.

Let me know if that went well
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 Whitenoise!

Whitenoise!
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:11 PM

Posted 11 January 2012 - 10:42 PM

Um... everything goes well to the point when I should download dds...when I press download icon it does everything as it was about to start download but it just doesnt start...tried to restart computer, copy download link and open it even open link in new tab. I tried and I can download anything else just fine




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users