Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

EasyAppLife on Windows 7


  • Please log in to reply
5 replies to this topic

#1 Lhinelle

Lhinelle

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:10 AM

Posted 28 July 2013 - 02:29 PM

Hi there, another poor sod who got this trash via the internets. Not terribly computer literate; from what I can figure out, there's a program called HijackThis which lets me post information on forums like this so those who are computer literate can help. Much thanks in advance.

 

Running Windows 7 64 bit, was using latest version of Firefox when I installed the easyapplife crap by mistake. Completely uninstalled firefox, it's on Explorer too. Downloaded HijackThis, that's all I've done so far.

 

Admins, sorry if I'm posting in the wrong place.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:10 AM

Posted 28 July 2013 - 03:21 PM

Hello and welcome Lhinelle. I moved this to the Am I Infected forum.
 
Thru control panel..Uninstall remove these
 
EasyLife Gadget (Version: 1.0)
EasyLife Search 1.74
EasyLife Updater (Version: 1.0)
and if you see a "unknown" remove that also/.
Reboot.
 
In Chrome, look in the Add ons/Plugins. disable any thing easy life.
 [url="
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.
 
 
>>>>>>>
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Lhinelle

Lhinelle
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:10 AM

Posted 28 July 2013 - 03:55 PM

Uninstalled 2 EasyLifeApp programs through control panel. Rebooted.

 

Do not have Chrome installed. Tried deleting EasyAppLife toolbar from Explorer and setting Bing as default, result was no change.

 

MiniToolBox says:

 

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Lhinelle (administrator) on 28-07-2013 at 15:52:13
Running from "C:\Users\Lhinelle\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 802.11n Network Adapter = Wireless Network Connection (Connected)
Atheros AR8151 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled mldversion=version2


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Lhinelle-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.mn.comcast.net.

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : hsd1.mn.comcast.net.
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 00-26-82-E0-ED-95
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::9dd:441:6d13:a2e%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.102(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, July 28, 2013 3:43:54 PM
   Lease Expires . . . . . . . . . . : Monday, July 29, 2013 3:43:54 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 318776962
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-1A-ED-EA-88-AE-1D-39-E8-9D
   DNS Servers . . . . . . . . . . . : 75.75.76.76
                                       75.75.75.75
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : domain.actdsltmp
   Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : 88-AE-1D-39-E8-9D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:c11:245f:3f57:fe99(Preferred)
   Link-local IPv6 Address . . . . . : fe80::c11:245f:3f57:fe99%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.hsd1.mn.comcast.net.:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.mn.comcast.net.
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns02.comcast.net
Address:  75.75.76.76

Name:    google.com
Addresses:  2607:f8b0:4009:804::1004
      74.125.225.132
      74.125.225.133
      74.125.225.142
      74.125.225.130
      74.125.225.129
      74.125.225.135
      74.125.225.136
      74.125.225.131
      74.125.225.128
      74.125.225.137
      74.125.225.134


Pinging google.com [173.194.46.68] with 32 bytes of data:
Reply from 173.194.46.68: bytes=32 time=20ms TTL=55
Reply from 173.194.46.68: bytes=32 time=21ms TTL=55

Ping statistics for 173.194.46.68:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 20ms, Maximum = 21ms, Average = 20ms
Server:  cdns02.comcast.net
Address:  75.75.76.76

DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=233ms TTL=50
Reply from 98.138.253.109: bytes=32 time=616ms TTL=50

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 233ms, Maximum = 616ms, Average = 424ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...00 26 82 e0 ed 95 ......Broadcom 802.11n Network Adapter
 10...88 ae 1d 39 e8 9d ......Atheros AR8151 PCI-E Gigabit Ethernet Controller
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.102     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.102    281
    192.168.1.102  255.255.255.255         On-link     192.168.1.102    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.102    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.102    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.102    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:6ab8:c11:245f:3f57:fe99/128
                                    On-link
 12    281 fe80::/64                On-link
 13    306 fe80::/64                On-link
 12    281 fe80::9dd:441:6d13:a2e/128
                                    On-link
 13    306 fe80::c11:245f:3f57:fe99/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

=========================== Installed Programs ============================

Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 Plugin 64-bit (Version: 10.3.162.28)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader 9.5.4 (Version: 9.5.4)
Age of Empires III - The Asian Dynasties (Version: 1.00.0000)
Age of Empires III - The WarChiefs (Version: 1.00.0000)
Age of Empires III (Version: 1.00.0000)
AIM 7
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0806.1213.19931)
AMD Media Foundation Decoders (Version: 1.0.70727.2220)
AMD VISION Engine Control Center (Version: 2012.0806.1213.19931)
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.26)
avast! Free Antivirus (Version: 6.0.1289.0)
Bing Bar (Version: 7.0.850.0)
Broadcom 802.11 Wireless Driver (Version: 1.0.0.0)
Call of Duty® - World at War™ (Version: 1.0)
Call of Duty® - World at War™ (Version: 1.7)
Call of Duty® - World at War™ 1.1 Patch
Call of Duty® - World at War™ 1.1 Patch (Version: 1.1)
Call of Duty® - World at War™ 1.2 Patch
Call of Duty® - World at War™ 1.2 Patch (Version: 1.2)
Call of Duty® - World at War™ 1.4 Patch
Call of Duty® - World at War™ 1.4 Patch (Version: 1.4)
Call of Duty® - World at War™ 1.5 Patch
Call of Duty® - World at War™ 1.5 Patch (Version: 1.5)
Call of Duty® - World at War™ 1.6 Patch
Call of Duty® - World at War™ 1.6 Patch (Version: 1.6)
Call of Duty® - World at War™ 1.7 Patch
Call of Duty® - World at War™ 1.7 Patch (Version: 1.7)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1213.19931)
Catalyst Control Center InstallProxy (Version: 2010.0302.2233.40412)
Catalyst Control Center InstallProxy (Version: 2012.0806.1213.19931)
Catalyst Control Center Localization All (Version: 2012.0806.1213.19931)
CCC Help Chinese Standard (Version: 2012.0806.1212.19931)
CCC Help Chinese Traditional (Version: 2012.0806.1212.19931)
CCC Help Czech (Version: 2012.0806.1212.19931)
CCC Help Danish (Version: 2012.0806.1212.19931)
CCC Help Dutch (Version: 2012.0806.1212.19931)
CCC Help English (Version: 2012.0806.1212.19931)
CCC Help Finnish (Version: 2012.0806.1212.19931)
CCC Help French (Version: 2012.0806.1212.19931)
CCC Help German (Version: 2012.0806.1212.19931)
CCC Help Greek (Version: 2012.0806.1212.19931)
CCC Help Hungarian (Version: 2012.0806.1212.19931)
CCC Help Italian (Version: 2012.0806.1212.19931)
CCC Help Japanese (Version: 2012.0806.1212.19931)
CCC Help Korean (Version: 2012.0806.1212.19931)
CCC Help Norwegian (Version: 2012.0806.1212.19931)
CCC Help Polish (Version: 2012.0806.1212.19931)
CCC Help Portuguese (Version: 2012.0806.1212.19931)
CCC Help Russian (Version: 2012.0806.1212.19931)
CCC Help Spanish (Version: 2012.0806.1212.19931)
CCC Help Swedish (Version: 2012.0806.1212.19931)
CCC Help Thai (Version: 2012.0806.1212.19931)
CCC Help Turkish (Version: 2012.0806.1212.19931)
ccc-utility64 (Version: 2012.0806.1213.19931)
Combined Community Codec Pack 2011-11-11 (Version: 2011.11.11.0)
Conduit Engine (Version: )
Counter-Strike Source version 1807769 (Version: 1807769)
CyberLink YouCam (Version: 3.0.2626)
DAEMON Tools Lite (Version: 4.40.2.0131)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Dell Driver Download Manager (Version: 2.1.0.0)
Diablo III (Version: 1.0.7.15295)
DivX Setup (Version: 2.6.0.34)
Download Updater (AOL LLC)
Energy Management (Version: 5.4.1.9)
ETDWare PS/2-x64 7.0.4.17_WHQL (Version: 7.0.4.17)
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Google Earth Plug-in (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.153)
Guild Wars 2
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
Junk Mail filter update (Version: 14.0.8089.726)
Lenovo DirectShare (Version: 1.0.1.38)
Lenovo EasyCamera (Version: 5.38.2.9)
Lenovo OneKey Recovery (Version: 7.0.1230)
Lenovo ReadyComm 5 (Version: 5.1.1.20)
Lenovo ReadyComm 5.0 Service (Version: 5.0.0.1)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Access 2010 (Version: 14.0.6029.1000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Excel 2010 (Version: 14.0.6029.1000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access 2010 (Version: 14.0.6029.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Neverwinter
Neverwinter Nights 2 (Version: 1.00.0000)
NVIDIA PhysX v8.10.29 (Version: 8.10.29)
Oasis2Service 1.0 (Version: 1.0.0)
Oblivion - Horse Armor Pack (Version: 1.00.0000)
Oblivion - Knights of the Nine (Version: 1.00.0000)
Oblivion - Mehrunes Razor (Version: 1.00.0000)
Oblivion - Orrery (Version: 1.00.0000)
Oblivion - Spell Tomes (Version: 1.00.0000)
Oblivion - The Fighter's Stronghold (Version: 1.00.0000)
Oblivion - Thieves Den (Version: 1.00.0000)
Oblivion - Vile Lair (Version: 1.00.0000)
Oblivion - Wizard's Tower (Version: 1.00.0000)
Oblivion (Version: 1.00.0000)
Onekey Theater (Version: 2.0.1.7)
OpenOffice.org 3.2 (Version: 3.2.9502)
Portal
Power2Go (Version: 5.6.0.4809d4)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.6235)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30116)
Sid Meier's Civilization V
Skype Toolbars (Version: 5.3.7555)
Skype™ 5.10 (Version: 5.10.116)
Spotify (Version: 0.9.0.133.gd18ed589)
Star Wars: The Old Republic (Version: 1.00)
Steam (Version: 1.0.0.0)
The Lord of the Rings Online™ v03.02.03.8013 (Version: 03.02.03.8013)
Titan Quest (Version: 1.00.0000)
Titan Quest Immortal Throne (Version: 1.00.0000)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 64-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2598242) 64-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 64-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 64-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VeriFace (Version: 3.6.1.0226)
Vuze (Version: 4.6)
Vuze Remote Toolbar (Version: 6.2.3.0)
Windows Driver Package - Lenovo (ACPIVPC) System  (10/19/2009 5.4.0.1) (Version: 10/19/2009 5.4.0.1)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
WinRAR 4.00 beta 1 (64-bit) (Version: 4.00.1)

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 4090.9 MB
Available physical RAM: 2548.7 MB
Total Pagefile: 8179.98 MB
Available Pagefile: 6398.77 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.44 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:421.81 GB) (Free:179.63 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:28.02 GB) NTFS
5 Drive g: (TQIT) (CDROM) (Total:2.11 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\LHINELLE-PC

Administrator            ASPNET                   Ewe                      
Guest                    Lhinelle                 


**** End of log ****
 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:10 AM

Posted 28 July 2013 - 06:58 PM

OK, let's see what ESET says.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Lhinelle

Lhinelle
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:10 AM

Posted 29 July 2013 - 01:13 PM

Okay, here are the ESET results:

 

C:\Users\All Users\SearchNewTab\51f55eb24b5b2.dll    a variant of Win32/Adware.MultiPlug.I application    
C:\Users\All Users\seavenshayree\51f55e90d8878.dll    a variant of Win32/Adware.MultiPlug.I application    
C:\Program Files\Strogino CS Portal\Counter-Strike Source\Counter-Strike_Source.exe    a variant of Win32/GameHack.B application    cleaned by deleting - quarantined
C:\Program Files\Strogino CS Portal\Counter-Strike Source\UltimateNameChanger.exe    Win32/GameTool.D application    cleaned by deleting - quarantined
C:\ProgramData\SearchNewTab\51f55eb24b5b2.dll    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\ProgramData\seavenshayree\51f55e90d8878.dll    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\Users\Lhinelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkhancjaidmabfofbkofffncggcdhmoe\1\51f55e90d86217.70921417.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Lhinelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkjgohmmcdnbelbamkmfgddphhiabhfb\1\51f55eb24b35f6.16406355.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Lhinelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\15NRKKNK\51f55eb263fc1[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Lhinelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\86I87U87\51f55e90f06b7[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Lhinelle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZI68JNUG\search_defender_166[1].exe    a variant of Win32/SProtector.A application    cleaned by deleting - quarantined
C:\Users\Lhinelle\AppData\Local\Temp\Free Desktop Clock.exe    Win32/Toolbar.Zugo application    cleaned by deleting - quarantined
C:\Users\Lhinelle\AppData\Local\Temp\plugtmp-1\plugin-    PDF/Exploit.Pidief.PDS.Gen trojan    cleaned by deleting - quarantined
C:\Users\Lhinelle\Downloads\Download.exe    Win32/InstalleRex.J application    cleaned by deleting - quarantined
C:\Users\Lhinelle\Downloads\SoftonicDownloader_for_spotify.exe    a variant of Win32/SoftonicDownloader.E application    cleaned by deleting - quarantined
 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:10 AM

Posted 29 July 2013 - 07:57 PM

How is it now?

WE need to remove older exploitable apps.
Adobe Reader 9.5.4 (Version: 9.5.4)
Java 7 Update 21 (Version: 7.0.210)

 

Reboot

 

Install...

Adobe Reader XI

Java Version 7 Update 25

 

 

NOTE: Un tick any boxes that may want to install extras like this

Google_banner_225x66.png

Yes, install Chrome as my default browser and Google Toolbar for Internet Explorer – optional. (32.11 MB) Install Options

 

 

 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users