Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

think im hacked


  • This topic is locked This topic is locked
7 replies to this topic

#1 alexthecat613

alexthecat613

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:02 AM

Posted 30 May 2012 - 07:57 AM

Think I'm hacked

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31
Run by Ramu at 8:56:22 on 2012-05-30
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8162.3919 [GMT -4:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\xampp\apache\bin\httpd.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
c:\xampp\filezillaftp\filezillaserver.exe
C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\xampp\apache\bin\httpd.exe
C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Logitech Gaming Software\LCore.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Users\Ramu\Local Settings\Apps\F.lux\flux.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\SnagIMG\SnagIMG.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\mIRC\mirc.exe
C:\Program Files (x86)\Ventrilo\Ventrilo.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\DllHost.exe
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\notepad.exe
C:\Windows\notepad.exe
C:\Windows\notepad.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\notepad.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\notepad.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\PROGRA~2\Java\jre6\bin\jp2launcher.exe
C:\Program Files (x86)\Java\jre6\bin\java.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
uRun: [F.lux] "C:\Users\Ramu\Local Settings\Apps\F.lux\flux.exe" /noshow
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [SnagIMG] C:\Program Files (x86)\SnagIMG\SnagIMG.exe
uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
StartupFolder: C:\Users\Ramu\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} - hxxp://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{19A2D3F4-A757-4BF9-B036-57A8C5995CB0} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{25506DD3-BF03-4940-B559-8B146F433952} : DhcpNameServer = 192.168.1.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO-X64: Increase performance and video formats for your HTML5 <video> - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
mRun-x64: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun-x64: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Ramu\AppData\Roaming\Mozilla\Firefox\Profiles\stklg72n.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.zybez.net/|http://forums.zybez.net/
FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Users\Ramu\AppData\Roaming\Mozilla\Firefox\Profiles\stklg72n.default\extensions\DeviceDetection@logitech.com\plugins\npLogitechDeviceDetection.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 Apache2.2;Apache2.2;C:\xampp\apache\bin\httpd.exe [2010-10-17 20549]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [2011-9-2 98304]
R2 Ramu;Ramu;"C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld" --defaults-file="C:\ProgramData\MySQL\MySQL Server 5.5\my.ini" Ramu --> C:\Program Files\MySQL\MySQL Server

5.5\bin\mysqld [?]
R2 TeamViewer6;TeamViewer 6;C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-11-3 2358656]
R2 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-2-23 2886528]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [2011-9-2 3735552]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\system32\drivers\LGBusEnum.sys --> C:\Windows\system32\drivers\LGBusEnum.sys [?]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\system32\drivers\LGVirHid.sys --> C:\Windows\system32\drivers\LGVirHid.sys [?]
R3 MEIx64;Intel® Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\system32\DRIVERS\netr28x.sys --> C:\Windows\system32\DRIVERS\netr28x.sys [?]
R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-2-29 158856]
S2 XAMPP;XAMPP Service;C:\xampp\service.exe [2007-12-20 60928]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-10 129976]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-3-26 291696]
S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== File Associations ===============
.
JSEFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
VBEFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
VBSFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
.
=============== Created Last 30 ================
.
2012-05-30 12:34:21 388096 ----a-r- C:\Users\Ramu\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-05-30 12:34:20 -------- d-----w- C:\Program Files (x86)\Trend Micro
2012-05-30 12:31:13 -------- d-----w- C:\Program Files\CCleaner
2012-05-30 06:23:20 8955792 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9D3D9027-11CA-4FFD-B6D2-8D4B0E45F6ED}\mpengine.dll
2012-05-30 03:45:32 -------- d-----w- C:\Users\Ramu\AppData\Local\{79F3C8FC-3D53-4922-9698-86A8E1659C47}
2012-05-30 01:04:55 8955792 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-05-29 15:45:07 -------- d-----w- C:\Users\Ramu\AppData\Local\{5B4DD1A4-7265-4383-8365-02259A3F22E7}
2012-05-29 03:44:43 -------- d-----w- C:\Users\Ramu\AppData\Local\{8CE7C9FC-CAFC-44AF-B94B-82536D13299F}
2012-05-28 15:44:18 -------- d-----w- C:\Users\Ramu\AppData\Local\{14B8688A-7BB3-44C7-91FA-E0D2E64A1443}
2012-05-28 03:43:53 -------- d-----w- C:\Users\Ramu\AppData\Local\{187AC44D-1798-4C01-A3A1-584FB0988AB1}
2012-05-27 16:18:54 8955792 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AA4A3E5A-D0E8-4341-8433-2D9D6EE35BD0}\mpengine.dll
2012-05-27 15:43:29 -------- d-----w- C:\Users\Ramu\AppData\Local\{F0A62C26-494E-4ADA-96EC-1BBCC6B42B45}
2012-05-27 03:43:05 -------- d-----w- C:\Users\Ramu\AppData\Local\{85A286DA-F1BE-4A54-BE6B-29FFD895A755}
2012-05-26 15:42:41 -------- d-----w- C:\Users\Ramu\AppData\Local\{17E16598-52AA-4399-90F0-D1FBBCEF82BD}
2012-05-26 03:42:17 -------- d-----w- C:\Users\Ramu\AppData\Local\{A3E7B189-521A-4793-BB13-735D43F07D24}
2012-05-25 15:41:53 -------- d-----w- C:\Users\Ramu\AppData\Local\{2576F0FE-48B4-45F7-A101-56228939BEFF}
2012-05-25 15:41:42 -------- d-----w- C:\Users\Ramu\AppData\Local\{FB5C1F63-1F9C-4CD4-8DD7-060DBA2E7724}
2012-05-25 03:41:16 -------- d-----w- C:\Users\Ramu\AppData\Local\{2FE697DF-F610-4C2C-B729-E627BF3BE470}
2012-05-24 15:40:52 -------- d-----w- C:\Users\Ramu\AppData\Local\{62644384-82F2-4DAD-BED5-B0A7668A0D85}
2012-05-24 03:40:27 -------- d-----w- C:\Users\Ramu\AppData\Local\{CCB9750E-E28D-404C-8174-32A832B54CAE}
2012-05-23 15:40:03 -------- d-----w- C:\Users\Ramu\AppData\Local\{61DA02BD-6C84-424C-9616-DC0CE4F5AB90}
2012-05-23 03:39:40 -------- d-----w- C:\Users\Ramu\AppData\Local\{2A4A9FB5-CEC5-4654-9EFD-C3A859EE3E40}
2012-05-22 15:39:16 -------- d-----w- C:\Users\Ramu\AppData\Local\{CE2E7A6C-C158-4876-B02F-2915A7B3F1E0}
2012-05-22 03:38:52 -------- d-----w- C:\Users\Ramu\AppData\Local\{74098D57-3BBC-4F9B-B5FC-0CAE8FA9C6F3}
2012-05-22 03:38:41 -------- d-----w- C:\Users\Ramu\AppData\Local\{7F8C2DEE-031D-4645-A117-ED4361F26D64}
2012-05-21 15:38:15 -------- d-----w- C:\Users\Ramu\AppData\Local\{35F74CB2-416C-4CB1-B940-7A3DABE0999F}
2012-05-21 15:38:04 -------- d-----w- C:\Users\Ramu\AppData\Local\{AF1F0447-9AAB-4893-87CA-9ABC70743415}
2012-05-19 14:56:30 -------- d-----w- C:\Users\Ramu\AppData\Local\{03E75E53-1154-4AC6-A2A0-52BBFD66F073}
2012-05-19 02:55:47 -------- d-----w- C:\Users\Ramu\AppData\Local\{15A471D9-57C1-45BF-98E8-1404CFD2B03D}
2012-05-19 02:55:28 -------- d-----w- C:\Users\Ramu\AppData\Local\{A98445D6-A0DC-416C-A221-82D9C4FECE09}
2012-05-15 02:08:55 -------- d-----w- C:\Users\Ramu\AppData\Local\{B07D3B5D-001C-4D7B-BF6D-DE619C0255A3}
2012-05-14 14:08:31 -------- d-----w- C:\Users\Ramu\AppData\Local\{417978CA-3BA1-4C50-B3DE-BBB548C254EA}
2012-05-14 02:08:06 -------- d-----w- C:\Users\Ramu\AppData\Local\{6D109000-AF4B-41E5-AFEA-468F1B5EEE0E}
2012-05-13 14:07:41 -------- d-----w- C:\Users\Ramu\AppData\Local\{AE35CB8E-0A96-40B2-B02B-4EA73F13B978}
2012-05-13 02:07:10 -------- d-----w- C:\Users\Ramu\AppData\Local\{A249880C-0EB9-4AC7-A099-C5A5FA291FB1}
2012-05-12 14:06:36 -------- d-----w- C:\Users\Ramu\AppData\Local\{56AC1B3F-DDEB-4D41-9E5B-2947070A39BB}
2012-05-12 02:06:13 -------- d-----w- C:\Users\Ramu\AppData\Local\{27F53B15-0648-44B7-91BA-CBF456D2D720}
2012-05-11 14:05:49 -------- d-----w- C:\Users\Ramu\AppData\Local\{F714A71F-5B45-4343-B7F3-74C040B96EBF}
2012-05-11 14:05:38 -------- d-----w- C:\Users\Ramu\AppData\Local\{B3F0E796-BA84-4224-A54D-99593852EC0C}
2012-05-11 03:04:11 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
2012-05-11 03:04:09 157352 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2012-05-11 03:04:09 129976 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe
2012-05-11 02:30:43 -------- d-----w- C:\Program Files (x86)\AMD AVT
2012-05-11 02:30:38 -------- d-----w- C:\Program Files (x86)\AMD APP
2012-05-11 02:05:06 -------- d-----w- C:\Users\Ramu\AppData\Local\{D6D473C2-D886-4036-AF8A-4B82232C10E8}
2012-05-11 02:04:48 -------- d-----w- C:\Users\Ramu\AppData\Local\{103E1D6B-E857-4E88-A759-1E397037437A}
2012-05-11 01:48:25 3146240 ----a-w- C:\Windows\System32\win32k.sys
2012-05-11 01:48:24 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-05-11 01:48:24 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-05-11 01:48:23 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-05-11 01:46:25 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2012-05-10 04:06:02 1544704 ----a-w- C:\Windows\System32\DWrite.dll
2012-05-10 04:06:02 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll
2012-05-10 04:04:06 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2012-05-10 04:03:27 1918320 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-05-10 04:03:25 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2012-05-10 04:03:25 1732096 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2012-05-10 04:03:25 1402880 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2012-05-10 04:03:25 1393664 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2012-05-10 04:03:25 1367552 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2012-05-08 08:00:43 -------- d-----w- C:\Users\Ramu\AppData\Local\{583D7FED-B040-4EDF-B816-B0BC3556BC9A}
2012-05-08 08:00:32 -------- d-----w- C:\Users\Ramu\AppData\Local\{40B79202-5FB6-4447-90AF-5E5C80C7DDE0}
2012-05-07 20:00:15 -------- d-----w- C:\Users\Ramu\AppData\Local\{6A3A2BDD-156C-41DD-8321-36AD5E86127B}
2012-05-07 20:00:02 -------- d-----w- C:\Users\Ramu\AppData\Local\{CC8CE978-32F6-4DC0-B5AB-368F6FC0CDA4}
2012-05-07 07:59:47 -------- d-----w- C:\Users\Ramu\AppData\Local\{B45B1696-8A11-4B70-8606-2918EB25FD9D}
2012-05-07 07:59:35 -------- d-----w- C:\Users\Ramu\AppData\Local\{6D2078B5-D726-4F88-AAAB-2C49C4552F31}
2012-05-06 19:59:19 -------- d-----w- C:\Users\Ramu\AppData\Local\{44BB9EF4-463D-48B6-B31B-19CA87B22A3E}
2012-05-06 19:59:08 -------- d-----w- C:\Users\Ramu\AppData\Local\{CE7AC511-A7D8-4522-83EF-858E08B5B13A}
2012-05-06 07:58:53 -------- d-----w- C:\Users\Ramu\AppData\Local\{1DE4B45D-682D-48A6-87BB-461901C070F1}
2012-05-06 07:58:41 -------- d-----w- C:\Users\Ramu\AppData\Local\{4DAA1D1D-8888-4F7A-913F-E760920CCDE8}
2012-05-05 19:58:27 -------- d-----w- C:\Users\Ramu\AppData\Local\{E945910B-BC1C-4BA5-B4E3-8FDBBC6BD8F2}
2012-05-05 19:58:15 -------- d-----w- C:\Users\Ramu\AppData\Local\{4861EE10-27F0-4DD3-8413-8622E1C01841}
2012-05-05 07:58:01 -------- d-----w- C:\Users\Ramu\AppData\Local\{B0D29497-AB2E-4A4C-87BA-96E66C4CF3A5}
2012-05-05 07:57:49 -------- d-----w- C:\Users\Ramu\AppData\Local\{EE287862-2BDB-49B4-95DD-451D68E773BB}
2012-05-04 19:57:36 -------- d-----w- C:\Users\Ramu\AppData\Local\{415EA714-A407-4A89-87A4-81F3BDE9D1C3}
2012-05-04 19:57:24 -------- d-----w- C:\Users\Ramu\AppData\Local\{1D8893AA-829A-4D99-BD6D-60161C9A9B6C}
2012-05-04 07:57:10 -------- d-----w- C:\Users\Ramu\AppData\Local\{AAB142F9-477A-48B3-A8BE-20883BF0B063}
2012-05-04 07:56:58 -------- d-----w- C:\Users\Ramu\AppData\Local\{C06FD882-9A8B-4FFC-8D1A-ACEEF74F390F}
2012-05-03 19:56:44 -------- d-----w- C:\Users\Ramu\AppData\Local\{E760E17A-C89C-4B42-93A0-A4FFFA3DEB7E}
2012-05-03 19:56:33 -------- d-----w- C:\Users\Ramu\AppData\Local\{DD5F9AC6-2164-44AE-B1BD-BE4CC3DA854F}
2012-05-03 07:56:19 -------- d-----w- C:\Users\Ramu\AppData\Local\{0950B1CF-C772-40B7-B791-5197FE384000}
2012-05-03 07:56:07 -------- d-----w- C:\Users\Ramu\AppData\Local\{79395B82-2D10-4152-A6D9-D1714C1DEE85}
2012-05-02 19:55:54 -------- d-----w- C:\Users\Ramu\AppData\Local\{DD51A5A6-FDC0-47E8-8F8C-C3EAD8BBB1E6}
2012-05-02 19:55:43 -------- d-----w- C:\Users\Ramu\AppData\Local\{41D5F358-F2F2-45C3-AFAE-5D910FF634F9}
2012-05-02 07:55:29 -------- d-----w- C:\Users\Ramu\AppData\Local\{38856C5D-4BC1-4019-8144-E66B113A957C}
2012-05-02 07:55:17 -------- d-----w- C:\Users\Ramu\AppData\Local\{39AD26F0-B690-42E0-9DE4-E82355F3E525}
2012-05-01 19:55:04 -------- d-----w- C:\Users\Ramu\AppData\Local\{D02E8C82-F136-4211-BA63-B4DFF75E1FF7}
2012-05-01 19:54:53 -------- d-----w- C:\Users\Ramu\AppData\Local\{967A530C-58E1-40FF-BE7F-C5C9BEE17943}
2012-05-01 07:54:39 -------- d-----w- C:\Users\Ramu\AppData\Local\{51CAAC3A-AABE-4442-A784-C82EDBF0FEC8}
2012-05-01 07:54:28 -------- d-----w- C:\Users\Ramu\AppData\Local\{7A501050-FC56-4DA9-B871-D32FDEF6295B}
2012-04-30 19:54:15 -------- d-----w- C:\Users\Ramu\AppData\Local\{A7E3F677-AF45-47B7-BB68-31DC66D9FC6F}
2012-04-30 19:54:03 -------- d-----w- C:\Users\Ramu\AppData\Local\{3D681FEF-FB84-421D-BD48-E941A1C4FB71}
.
==================== Find3M ====================
.
2012-05-11 02:05:35 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-11 02:05:35 419488 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-04-06 05:22:40 11174400 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2012-04-06 02:34:26 187392 ----a-w- C:\Windows\System32\clinfo.exe
2012-04-06 02:34:10 74752 ----a-w- C:\Windows\System32\OpenVideo64.dll
2012-04-06 02:34:04 64512 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2012-04-06 02:33:56 63488 ----a-w- C:\Windows\System32\OVDecode64.dll
2012-04-06 02:33:52 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2012-04-06 02:33:44 16457216 ----a-w- C:\Windows\System32\amdocl64.dll
2012-04-06 02:32:56 13007872 ----a-w- C:\Windows\SysWow64\amdocl.dll
2012-04-06 02:22:00 159744 ----a-w- C:\Windows\System32\atiapfxx.exe
2012-04-06 02:21:52 909312 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2012-04-06 02:20:04 1067520 ----a-w- C:\Windows\System32\aticfx64.dll
2012-04-06 02:16:52 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2012-04-06 02:16:46 503808 ----a-w- C:\Windows\System32\atieclxx.exe
2012-04-06 02:16:02 236544 ----a-w- C:\Windows\System32\atiesrxx.exe
2012-04-06 02:14:44 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2012-04-06 02:14:30 21504 ----a-w- C:\Windows\System32\atimuixx.dll
2012-04-06 02:14:26 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2012-04-06 02:14:20 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2012-04-06 02:13:42 6800896 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2012-04-06 02:10:50 26181632 ----a-w- C:\Windows\System32\atio6axx.dll
2012-04-06 02:00:10 64000 ----a-w- C:\Windows\System32\coinst.dll
2012-04-06 01:54:46 7479296 ----a-w- C:\Windows\System32\atidxx64.dll
2012-04-06 01:50:56 19753984 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2012-04-06 01:35:24 1120768 ----a-w- C:\Windows\System32\atiumd6v.dll
2012-04-06 01:34:50 1831424 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
2012-04-06 01:34:34 4731904 ----a-w- C:\Windows\System32\atiumd6a.dll
2012-04-06 01:34:04 6203392 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2012-04-06 01:30:16 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2012-04-06 01:30:14 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2012-04-06 01:30:08 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2012-04-06 01:30:06 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2012-04-06 01:29:54 16090624 ----a-w- C:\Windows\System32\aticaldd64.dll
2012-04-06 01:25:30 13764096 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2012-04-06 01:23:24 7431680 ----a-w- C:\Windows\System32\atiumd64.dll
2012-04-06 01:22:54 4795904 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2012-04-06 01:11:28 514560 ----a-w- C:\Windows\System32\atiadlxx.dll
2012-04-06 01:11:20 360448 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2012-04-06 01:11:06 17408 ----a-w- C:\Windows\System32\atig6pxx.dll
2012-04-06 01:11:04 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2012-04-06 01:11:04 14848 ----a-w- C:\Windows\System32\atiglpxx.dll
2012-04-06 01:11:00 41984 ----a-w- C:\Windows\System32\atig6txx.dll
2012-04-06 01:10:52 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2012-04-06 01:10:44 343040 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2012-04-06 01:09:56 54784 ----a-w- C:\Windows\System32\atiuxp64.dll
2012-04-06 01:09:48 41984 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2012-04-06 01:09:42 44544 ----a-w- C:\Windows\System32\atiu9p64.dll
2012-04-06 01:09:34 32256 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2012-04-06 01:09:02 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2012-04-06 01:06:08 54784 ----a-w- C:\Windows\System32\atimpc64.dll
2012-04-06 01:06:08 54784 ----a-w- C:\Windows\System32\amdpcom64.dll
2012-04-06 01:06:04 53760 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2012-04-06 01:06:04 53760 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2012-03-21 00:44:12 98688 ----a-w- C:\Windows\System32\drivers\NisDrvWFP.sys
2012-03-21 00:44:12 203888 ----a-w- C:\Windows\System32\drivers\MpFilter.sys
2012-03-09 18:07:04 29184 ----a-w- C:\Windows\System32\kdbsdk64.dll
2012-03-09 18:06:14 24576 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll
2012-03-08 22:50:28 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll
.
============= FINISH: 8:56:33.85 ===============

Edited by alexthecat613, 30 May 2012 - 07:58 AM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,921 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:02 PM

Posted 03 June 2012 - 08:30 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Nothing suspicious was found on your DDS log.

What difficulties are you having with this computer?

==

Third party programs if not up to date can be an open door for an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

#3 alexthecat613

alexthecat613
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:02 AM

Posted 03 June 2012 - 05:08 PM

Somehow my email got hacked.

Results of screen317's Security Check version 0.99.41
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.61.0.1400
Java™ 6 Update 31
Java version out of date!
Adobe Flash Player 11.2.202.235
Adobe Reader X (10.1.3)
Mozilla Firefox (12.0)
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,921 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:02 PM

Posted 04 June 2012 - 07:56 AM

Somehow my email got hacked.

If your E-mail address is beeing used to send spam I can only suggest you get a new E-mail address.
Inform all you contacts and ask them to confirm the change.

When all confirmations received cancel the old one.


===

Secure your system by updating 3rd party programs.

Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.

Check your present version and update as recommended.
https://www.java.com/en/download/installed.jsp

If present remove the old version(s) of Java using the Add/Remove Programs applet.


Java™ 6 Update 31


===

#5 alexthecat613

alexthecat613
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:02 AM

Posted 04 June 2012 - 11:28 AM

Results of screen317's Security Check version 0.99.41
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.61.0.1400
JavaFX 2.1.0
Java™ 7 Update 4
Adobe Flash Player 11.2.202.235
Adobe Reader X (10.1.3)
Mozilla Firefox (12.0)
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

#6 nasdaq

nasdaq

  • Malware Response Team
  • 39,921 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:02 PM

Posted 04 June 2012 - 12:22 PM

Looking good.

You can delete the SecurityCheck tool.

#7 alexthecat613

alexthecat613
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:02 AM

Posted 04 June 2012 - 12:58 PM

I was looking through my programs and features and I have 4 Microsoft Visual C++ redistributable thingys. two that say 2008 then two that say 2010. Do I need them at all or should I uninstall them all?

#8 nasdaq

nasdaq

  • Malware Response Team
  • 39,921 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:02 PM

Posted 05 June 2012 - 06:40 AM

I was looking through my programs and features and I have 4 Microsoft Visual C++ redistributable thingys. two that say 2008 then two that say 2010. Do I need them at all or should I uninstall them all?


No not remove any of them.

Some programs may not work properly if removed.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users