Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Strange disk behavior and Win32\Zperm


  • Please log in to reply
11 replies to this topic

#1 jefferysitz

jefferysitz

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 28 October 2013 - 02:15 PM

A few weeks ago you aided me in cleaning an infection off my computer and I thought it was clean.  However, the last week strange things have been happening.  Here is the original thread http://www.bleepingcomputer.com/forums/t/508728/dds-and-combofix-logs-as-requested/?hl=requested#entry3174075

 

I am running Windows XP Pro SP3, AVG internet security, Ad-Aware antivirus in compatibility mode and from time to time I run I-obit antivirus and Mal-warebytes free version.

 

Within the last week,

1.  I several times got a boot disk not found error while booting.  I thought it was the hard drive going bad but after a couple of days it was fine.

 

2.  AVG has several times detected and quarentined Win32/Zperm.  It seems to come back.

 

The last full system virus scans with I-Obit picked up a few things, I think Trojans, most of which I think are false positive, in old data files in an external backup.   These files have not been accessed for years except for copying them from one place to another.

 

3 This morning WinPatrol informed me that a number of things had been removed from my startup.  These included WinPatrol, AVG Toolbar, RTHDCPL.exe, Ad-Aware AV (set in compatiblity mode), spybot search and destroy's tea timer and maybe some more that I can't remember.

 

The programs were still in my system tray but I am reinstalling them just in case now.

 

Any help would be appreciated.

Thank you in advance,

Jeffery Sitz



BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:38 AM

Posted 28 October 2013 - 02:51 PM

Hi -

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

 

 

Download MiniToolBox, Save it to your desktop and run it.
Checkmark the following boxes:
•Flush DNS
•List last 10 Event Viewer log
•List Installed Programs
•List Users, Partitions and Memory size.
•List Minidump Files
 Click Go and copy / paste the result (Result.txt).

 

 

Please download Malwarebytes Anti-Malware Free (a.k.a. MBAM) and save it to your desktop.
NOTE : Do not accept the Free Trial Version at this time
* Follow these instructions for doing a Quick Scan in Normal Mode.
* Check for database Updates through the program's interface before scanning.
* Click on Scanner > Place a dot in Perform Quick Scan > Click Scan
* After completing the scan, a log report will open in Notepad.
* The log is automatically saved and can be viewed by clicking the Logs tab .
* Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
* Exit Malwarebytes when done.
* Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately.
* Failure to reboot normally can prevent Malwarebytes from removing all the malware.

Check the list of found items and review any PUPs (Potentially Unwanted Programs) or PUMs Potentially Unwanted Modifications, as these can be Unticked if known to be wanted programs.

 

 

Thank You -



#3 Netghost56

Netghost56

  • Members
  • 973 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:07:38 PM

Posted 28 October 2013 - 03:21 PM

On top of that I wouldn't install anything else until instructed to do so, including the ones that disappeared.



#4 jefferysitz

jefferysitz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 28 October 2013 - 09:22 PM

I did just notice that the Ad-aware icon is gone from the system tray even after being reinstalled this morning.  Some of the services on Ad-aware might be turned off because it is in compatiblity mode but I don't know which ones.

 

Security Check

 Results of screen317's Security Check version 0.99.74  
 Windows XP Service Pack 3 x86   
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled!  
Ad-Aware Antivirus           
AVG Internet Security 2014   
 Antivirus out of date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Ad-Aware
 WinPatrol
 Out of date HijackThis  installed!
 CloneSpy 2.7    
 SpywareBlaster 5.0    
 Spybot - Search & Destroy
 HijackThis 2.0.2    
 CCleaner     
 Adobe Flash Player     11.9.900.117  
 Adobe Reader XI  
 Mozilla Firefox (25.0)
 Google Chrome 30.0.1599.101  
 Google Chrome 30.0.1599.69  
````````Process Check: objlist.exe by Laurent````````  
 Ad-Aware AAWService.exe is disabled!
 Ad-Aware AAWTray.exe is disabled!
 WinPatrol winpatrol.exe
 AVG avgwdsvc.exe
 AVG avgrsx.exe
 AVG avgnsx.exe
 AVG avgemc.exe
 Lavasoft Ad-Aware Antivirus Ad-Aware Antivirus 11.0.4555.0\AdAwareService.exe
 Lavasoft Ad-Aware Antivirus Ad-Aware Antivirus 11.0.4555.0\AdAwareTray.exe
 IObit IObit Malware Fighter IMFsrv.exe  
 BillP Studios WinPatrol winpatrol.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 27% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
 

 

Mini Toolbox

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Possumsjagger (administrator) on 28-10-2013 at 20:57:47
Running from "C:\Documents and Settings\Possumsjagger\Desktop"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= Event log errors: ===============================

Application errors:
==================
Error: (10/26/2013 07:33:12 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (10/26/2013 07:33:12 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (10/15/2013 02:07:32 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (10/14/2013 04:32:43 PM) (Source: Application Error) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\cscui.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Client Side Caching UI because of this error.

Program: Client Side Caching UI
File: C:\WINDOWS\system32\cscui.dll

The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
    - It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
    - It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C0000185
Disk type: 3

Error: (10/14/2013 04:32:27 PM) (Source: Winlogon) (User: )
Description: A critical system process, C:\WINDOWS\system32\lsass.exe, failed with status code c0000006.  The machine
must now be restarted.

Error: (10/14/2013 04:27:13 PM) (Source: Application Error) (User: )
Description: Windows cannot access the file C:\WINDOWS\system32\lsasrv.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program LSA Server DLL because of this error.

Program: LSA Server DLL
File: C:\WINDOWS\system32\lsasrv.dll

The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
    - It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
    - It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C0000185
Disk type: 3

Error: (10/14/2013 03:02:07 PM) (Source: Application Error) (User: )
Description: Faulting application everquest2.exe, version 1.0.0.1, faulting module everquest2.exe, version 1.0.0.1, fault address 0x00925d03.
Processing media-specific event for [everquest2.exe!ws!]

Error: (10/11/2013 05:25:35 PM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: SyncToy 2.1 (x86) -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.

Error: (10/11/2013 05:24:10 PM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: SyncToy 2.1 (x86) -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.

Error: (10/11/2013 05:23:27 PM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: SyncToy 2.1 (x86) -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.


System errors:
=============
Error: (10/28/2013 08:48:10 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 08:47:40 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 08:47:10 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 08:46:40 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 08:46:02 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 08:45:24 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 02:25:11 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 02:24:41 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 02:24:11 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/28/2013 02:23:41 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.


Microsoft Office Sessions:
=========================
Error: (10/26/2013 07:33:12 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (10/26/2013 07:33:12 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (10/15/2013 02:07:32 PM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (10/14/2013 04:32:43 PM) (Source: Application Error)(User: )
Description: C:\WINDOWS\system32\cscui.dllClient Side Caching UIC00001853

Error: (10/14/2013 04:32:27 PM) (Source: Winlogon)(User: )
Description: C:\WINDOWS\system32\lsass.exec0000006

Error: (10/14/2013 04:27:13 PM) (Source: Application Error)(User: )
Description: C:\WINDOWS\system32\lsasrv.dllLSA Server DLLC00001853

Error: (10/14/2013 03:02:07 PM) (Source: Application Error)(User: )
Description: everquest2.exe1.0.0.1everquest2.exe1.0.0.100925d03

Error: (10/11/2013 05:25:35 PM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: SyncToy 2.1 (x86) -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)

Error: (10/11/2013 05:24:10 PM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: SyncToy 2.1 (x86) -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)

Error: (10/11/2013 05:23:27 PM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: SyncToy 2.1 (x86) -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)


=========================== Installed Programs ============================

µTorrent (Version: 3.3.1.30017)
135 HP Piper Tripacer, N3343A
Ad-Aware Antivirus (Version: 11.0.4555.0)
AdAwareInstaller (Version: 11.0.4555.0)
AdAwareUpdater (Version: 11.0.4555.0)
Adobe AIR (Version: 3.3.0.3670)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Adobe Shockwave Player 12.0 (Version: 12.0.0.112)
Age of Conan: Unchained
AMD Catalyst Install Manager (Version: 8.0.891.0)
AMD Processor Driver (Version: 1.3.2.0053)
AntimalwareEngine (Version: 2.6.0.0)
ArtistScope Plugin FX (Version: 4.2.0.3)
ATI AVIVO Codecs (Version: 10.0.0.31121)
ATI Parental Control & Encoder (Version: 3.0)
AVG 2012 (Version: 12.0.2433)
AVG 2014 (Version: 14.0.3615)
AVG 2014 (Version: 14.0.4158)
AVG 2014 (Version: 2014.0.4158)
AVG SafeGuard toolbar (Version: 17.0.2.13)
Beechcraft Bonanza F33A For FS2004
Belarc Advisor 8.1
BitRaider Web Client (Version: 1.1.9.4)
BringFocus
BTGuard 2.6
calibre (Version: 1.3.0)
Carenado C 152 II
Carenado Mooney M20J
Carenado Piper Dakota 236
Carenado Premium Cessna 210M Centurion II
CCleaner (Version: 3.18)
Cisco Connect (Version: 1.3.11027.1)
CloneSpy 2.7
Defraggler (Version: 2.13)
EditVoicepack (Version: 3.1.0)
EQ2MAP Updater 1.2.10 (Version: 1.2.10)
EverQuest
EverQuest II
Explorer Suite IV
EZ Scenery Library
FSGenesis Afghanistan - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Afghanistan - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Alabama 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Alaska 38.2m Terrain
FSGenesis Alaska 76.4m Terrain
FSGenesis Alberta 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Alps 19.1m Terrain
FSGenesis Andes Mountains 76.4m Terrain
FSGenesis Appalachians & Northeast 38m Terrain
FSGenesis Arizona 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Arkansas 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Atlantic Canada 38.2m Terrain
FSGenesis Australia 76.4m Terrain
FSGenesis Belarus 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Brazilian Highlands 76.4m Terrain
FSGenesis British Columbia - NE 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis British Columbia - NW 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis British Columbia - SE 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis British Columbia - SW 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Bulgaria 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis California 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Canada 76.4m Terrain
FSGenesis Canada Interior Plains 38.2m Terrain
FSGenesis Central Africa 76.4m Terrain
FSGenesis Colorado 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Cordillera Canada 38.2m Terrain
FSGenesis Cuba 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Cypress 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Eastern Hemisphere - North 153m Terrain
FSGenesis Eastern Hemisphere - Southeast 153m Terrain
FSGenesis Eastern Hemisphere - Southwest 153m Terrain
FSGenesis Eastern Hemisphere 306m Terrain
FSGenesis Eastern Siberia Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Egypt - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Egypt - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ethiopia - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ethiopia - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Europe 76.4m Terrain
FSGenesis Florida 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Georgia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Greece 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Hawaiian Islands 10m Terrain & Landclass
FSGenesis Himalayas 76.4m Terrain
FSGenesis Hungary 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Idaho 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Illinois 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Indiana 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iowa 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iran - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iran - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iraq 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Israel 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Jordan 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Kansas 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Kentucky 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Lebanon 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Libya - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Libya - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Libya - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Louisiana 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Madagascar 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Maine 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Manitoba 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Maryland-Delaware 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Massachutsetts-Connecticut-Rhode Island 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Mexico 38.2m Terrain
FSGenesis Michigan 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Middle East 76.4m Terrain
FSGenesis Minnesota 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Mississippi 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Missouri 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Montana 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Nebraska 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Nevada 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Brunswick 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Hampshire 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Jersey 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Mexico 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New York 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Newfoundland 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis North Asia 76.4m Terrain
FSGenesis North Atlantic Terrain for FS2004 (Version: 1.0.0)
FSGenesis North Carolina 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis North Dakota 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northern Africa 76.4m Terrain
FSGenesis Northern Canada 76.4m Terrain
FSGenesis Northern Russia Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northwest Territories - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northwest Territories - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northwest Territories - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Nova Scotia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ohio 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Oklahoma 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Oman 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ontario - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ontario - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ontario 38.2m Terrain
FSGenesis Oregon 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Pacific Islands 76.4m Terrain
FSGenesis Pakistan - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Pakistan - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Pennsylvania 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Poland 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Quebec - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Quebec - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Quebec - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Romania 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Russia 76.4m Terrain
FSGenesis Saskatchewan 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Saudi Arabia - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Saudi Arabia - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Saudi Arabia - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Scandinavia Terrain Mesh for FS2004 (Version: 1.2)
FSGenesis Slovakia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis South Asia & Indonesia 76.4m Terrain
FSGenesis South Carolina 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis South Dakota 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Southern Africa 76.4m Terrain
FSGenesis Syria 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Tennessee 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Texas & Southeast 38m Terrain
FSGenesis Texas 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis The Balkans 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis The Great Plains 38m Terrain
FSGenesis The Orient 76.4m Terrain
FSGenesis The Rockies 38m Terrain
FSGenesis The West Coast 38m Terrain
FSGenesis Turkey - East 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Turkey - West 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ukraine - East 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ukraine - West 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis United States 76.4m Terrain
FSGenesis Utah 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Venezuela & Angel Falls 76.4m Terrain
FSGenesis Vermont 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Virginia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Washington 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis West Virginia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Western Hemisphere - North 153m Terrain
FSGenesis Western Hemisphere - South 153m Terrain
FSGenesis Western Hemisphere 306m Terrain
FSGenesis Western Siberia Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Wisconsin 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Worldwide LOD 4/5/6 Terrain
FSGenesis Wyoming 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yemen 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yukon Territory - N 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yukon Territory - S 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yukon Territory 38.2m Terrain
FSNavigator
FSrealWX lite version 1.06.1469 (Version: 1.06.1469)
GomezPEER (Version: 3.2)
Google Chrome (Version: 30.0.1599.101)
Google Drive (Version: 1.12.5329.1887)
Google Earth Plug-in (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.165)
Hawker Hurricane IIA for FS2004
HiJackThis (Version: 1.0.0)
HijackThis 2.0.2 (Version: 2.0.2)
ICQ7M (Version: 7.8)
ImgBurn (Version: 2.5.7.0)
IObit Malware Fighter (Version: 2.1)
IrfanView (remove only) (Version: 4.36)
LibreOffice 4.0 Help Pack (English) (Version: 4.0.1.2)
LibreOffice 4.0.1.2 (Version: 4.0.1.2)
LightScribe  1.4.142.1 (Version: 1.4.142.1)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Combat Flight Simulator
Microsoft Flight (Version: 1.0.0003.129)
Microsoft Flight Simulator 2004 A Century of Flight (Version: 9.0)
Microsoft Flight Simulator X Demo (Version: 10.0.60905)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Sync Framework 2.0 Core Components (x86) ENU  (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x86) ENU  (Version: 2.0.1578.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 25.0 (x86 en-US) (Version: 25.0)
Mozilla Maintenance Service (Version: 25.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MyDefrag v4.3.1 (Version: 4.0.0.0)
MySQL Server 5.5 (Version: 5.5.34)
neroxml (Version: 1.0.0)
OpenAL
Oracle VM VirtualBox 4.1.20 (Version: 4.1.20)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
Plan-G (Version: 2.0.3)
Plan-G v3 (Version: 3.0.2)
PowerISO (Version: 5.5)
Radio Range v4.0
REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.35.0000)
Realtek HDMI Audio Driver for ATI
Realtek High Definition Audio Driver (Version: 5.10.0.6526)
RIFT
RoboForm 7-9-0-0 (All Users) (Version: 7-9-0-0)
Rwy12 Library
SecondLifeViewer (remove only)
Secure Download Manager (Version: 3.1.0)
Skyhawk 172R by Flight One Software
Spybot - Search & Destroy (Version: 1.6.2)
SpywareBlaster 5.0 (Version: 5.0.0)
Star Wars The Old Republic (Version: 7.0.0.21)
Star Wars: The Old Republic (Version: 1.00)
Strongvault Online Backup (Version: 5.0.2.34)
swMSM (Version: 12.0.0.1)
SyncToy 2.1 (x86) (Version: 2.1.0)
T Utility Over Clock II
Tseries BIOS Update
Tweak UI
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.0.3 (Version: 2.0.3)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format Runtime
WinPatrol (Version: 29.0.2013)
WinRAR archiver
Xtreme RDP ActiveX Control (Version: 1.1.1)
Yahoo! Messenger
Youtube Downloader HD v. 2.9.6
ZoneAlarm Firewall (Version: 10.1.101.000)
ZoneAlarm Security (Version: 10.1.101.000)

========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 3327.23 MB
Available physical RAM: 2517.24 MB
Total Pagefile: 11164.9 MB
Available Pagefile: 10143.67 MB
Total Virtual: 2047.88 MB
Available Virtual: 1975.16 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:73.24 GB) (Free:25.26 GB) NTFS
10 Drive s: (Games) (Fixed) (Total:185.55 GB) (Free:14.66 GB) NTFS
11 Drive y: (Downloads) (Fixed) (Total:74.5 GB) (Free:34.68 GB) NTFS
12 Drive z: (Data) (Fixed) (Total:195.31 GB) (Free:53.61 GB) NTFS

========================= Users: ========================================

User accounts for \\POSSUM

Administrator            ASPNET                   Guest                    
HelpAssistant            Possumsjagger            SUPPORT_388945a0         
Werner                   Zerohour                 

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
 

 

MBAM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.10.29.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Possumsjagger :: POSSUM [administrator]

10/28/2013 21:04:23
mbam-log-2013-10-28 (21-04-23).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 270719
Time elapsed: 11 minute(s), 12 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 



#5 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:38 AM

Posted 28 October 2013 - 10:42 PM

First - Remove / Uninstall these programs if you wish to run AVG -

More than one Antivirus will affect your computer at kernel level, and prevent detection of infections .....

 

Lavasoft Ad-Aware Antivirus Ad-Aware Antivirus 11.0.4555.0
IObit IObit Malware Fighter IMFsrv.exe 
Ad-Aware Antivirus
AntimalwareEngine (Version: 2.6.0.0)
GomezPEER (Version: 3.2)
Out of date HijackThis installed!

 

Tell me if a SSD (Solid State Drive) is installed - Total Fragmentation on Drive C:: 27% Defragment your hard drive soon! (Do NOT defrag if SSD!)

µTorrent (Version: 3.3.1.30017) <= Full of infections (uninstall)
 

"CloneSpy will free up drive space on your PC by finding and removing duplicate files". Ha . Actually if you install a second version of the same program, Windows will notify you (I think it is just a scam)

 

Was FSGenesis, or any other game downloaded from a Torrent site?

 

WinPatrol (Version: 29.0.2013) is still installed, but you must remove all of the above first.

Do not install any more programs yet or your system will reject them, like it has already.

 

Once you remove the top items, Please post a snapshot with Speccy for more system details -
How to Publish a snapshot with Speccy <<-- Full Directions Here

 

Thank You -



#6 jefferysitz

jefferysitz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 29 October 2013 - 11:00 AM

Due to a really huge file on the C: drive it cannot be defragmented any more unless you know of a program which will move the swapfile.  It is a legitimate virtual installation of Windows 7 Enterprise that I use as a student.

 

AdAware AV is still listed after 4 hours of removing every trace of it I can find.  It is impossible to totally uninstall and in my opinion malware.

 

Clonespy is not for detecting duplicate programs, it is for detecting duplicate photographs (I have over 10,000) , it was recommended by Kim Kommando.

 

All the FSGenesis and all other programs installed on this computer are bought and paid for, there are none from torrents.

The only things that have been downloaded are jpg and pdf files.

New logs from the last instructions:

 

Security Check

 Results of screen317's Security Check version 0.99.74  
 Windows XP Service Pack 3 x86   
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled!  
Ad-Aware Antivirus           
AVG Internet Security 2014   
 Antivirus out of date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 WinPatrol
 CloneSpy 2.7    
 SpywareBlaster 5.0    
 Spybot - Search & Destroy
 Malwarebytes Anti-Malware version 1.75.0.1300  
 CCleaner     
 Adobe Flash Player     11.9.900.117  
 Adobe Reader XI  
 Mozilla Firefox (25.0)
 Google Chrome 30.0.1599.101  
 Google Chrome 30.0.1599.69  
````````Process Check: objlist.exe by Laurent````````  
 WinPatrol winpatrol.exe
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 AVG avgwdsvc.exe
 AVG avgrsx.exe
 AVG avgnsx.exe
 AVG avgemc.exe
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 BillP Studios WinPatrol winpatrol.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 27% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
 

mini toolbox

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Possumsjagger (administrator) on 29-10-2013 at 10:44:32
Running from "C:\Documents and Settings\Possumsjagger\Desktop"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= Event log errors: ===============================

Application errors:
==================
Error: (10/29/2013 08:27:01 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.

Error: (10/29/2013 08:18:17 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.

Error: (10/29/2013 08:17:59 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.

Error: (10/29/2013 08:17:18 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.

Error: (10/29/2013 08:16:21 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.

Error: (10/29/2013 08:15:40 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.

Error: (10/29/2013 08:07:52 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\\AdAwareSecurityCenter.exe, command: --uninstall

Error: (10/29/2013 08:06:19 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\\AdAwareSecurityCenter.exe, command: --uninstall

Error: (10/29/2013 07:58:46 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.

Error: (10/29/2013 07:58:02 AM) (Source: MsiInstaller) (User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.


System errors:
=============
Error: (10/29/2013 07:54:51 AM) (Source: Service Control Manager) (User: )
Description: The Ad-Aware Service 11 service failed to start due to the following error:
%%2

Error: (10/29/2013 07:44:23 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (10/29/2013 07:43:10 AM) (Source: DCOM) (User: POSSUM)
Description: DCOM got error "%%1084" attempting to start the service MSIServer with arguments ""
in order to run the server:
{000C101C-0000-0000-C000-000000000046}

Error: (10/29/2013 07:43:04 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AmdPPM
Avgdiskx
AVGIDSDriver
AVGIDSShim
Avgldx86
BANTExt
BS_I2cIo
Fips
SCDEmu
VBoxDrv
VBoxUSBMon

Error: (10/29/2013 07:43:04 AM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error:
%%31

Error: (10/29/2013 07:41:50 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (10/29/2013 07:36:32 AM) (Source: Service Control Manager) (User: )
Description: The Ad-Aware Service 11 service terminated unexpectedly.  It has done this 1 time(s).

Error: (10/29/2013 00:19:41 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/29/2013 00:19:10 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.

Error: (10/29/2013 00:12:51 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the TrkWks service.


Microsoft Office Sessions:
=========================
Error: (10/29/2013 08:27:01 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 08:18:17 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 08:17:59 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 08:17:18 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 08:16:21 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 08:15:40 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 08:07:52 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\\AdAwareSecurityCenter.exe, command: --uninstall(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 08:06:19 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: UnInstallSecurityCenterApp, location: C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\\AdAwareSecurityCenter.exe, command: --uninstall(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 07:58:46 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)

Error: (10/29/2013 07:58:02 AM) (Source: MsiInstaller)(User: POSSUM)
Description: Product: AdAwareInstaller -- Error 1706. No valid source could be found for product AdAwareInstaller.  The Windows Installer cannot continue.(NULL)(NULL)(NULL)(NULL)


=========================== Installed Programs ============================

135 HP Piper Tripacer, N3343A
Adobe AIR (Version: 3.3.0.3670)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Adobe Shockwave Player 12.0 (Version: 12.0.0.112)
Age of Conan: Unchained
AMD Catalyst Install Manager (Version: 8.0.891.0)
AMD Processor Driver (Version: 1.3.2.0053)
AntimalwareEngine (Version: 2.6.0.0)
ArtistScope Plugin FX (Version: 4.2.0.3)
ATI AVIVO Codecs (Version: 10.0.0.31121)
ATI Parental Control & Encoder (Version: 3.0)
AVG 2012 (Version: 12.0.2433)
AVG 2014 (Version: 14.0.3615)
AVG 2014 (Version: 14.0.4158)
AVG 2014 (Version: 2014.0.4158)
AVG SafeGuard toolbar (Version: 17.0.2.13)
Beechcraft Bonanza F33A For FS2004
Belarc Advisor 8.1
BTGuard 2.6
calibre (Version: 1.3.0)
Carenado C 152 II
Carenado Mooney M20J
Carenado Piper Dakota 236
Carenado Premium Cessna 210M Centurion II
CCleaner (Version: 3.18)
Cisco Connect (Version: 1.3.11027.1)
CloneSpy 2.7
Defraggler (Version: 2.13)
EditVoicepack (Version: 3.1.0)
EQ2MAP Updater 1.2.10 (Version: 1.2.10)
EverQuest
EverQuest II
Explorer Suite IV
EZ Scenery Library
FSGenesis Afghanistan - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Afghanistan - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Alabama 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Alaska 38.2m Terrain
FSGenesis Alaska 76.4m Terrain
FSGenesis Alberta 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Alps 19.1m Terrain
FSGenesis Andes Mountains 76.4m Terrain
FSGenesis Appalachians & Northeast 38m Terrain
FSGenesis Arizona 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Arkansas 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Atlantic Canada 38.2m Terrain
FSGenesis Australia 76.4m Terrain
FSGenesis Belarus 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Brazilian Highlands 76.4m Terrain
FSGenesis British Columbia - NE 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis British Columbia - NW 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis British Columbia - SE 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis British Columbia - SW 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Bulgaria 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis California 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Canada 76.4m Terrain
FSGenesis Canada Interior Plains 38.2m Terrain
FSGenesis Central Africa 76.4m Terrain
FSGenesis Colorado 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Cordillera Canada 38.2m Terrain
FSGenesis Cuba 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Cypress 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Eastern Hemisphere - North 153m Terrain
FSGenesis Eastern Hemisphere - Southeast 153m Terrain
FSGenesis Eastern Hemisphere - Southwest 153m Terrain
FSGenesis Eastern Hemisphere 306m Terrain
FSGenesis Eastern Siberia Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Egypt - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Egypt - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ethiopia - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ethiopia - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Europe 76.4m Terrain
FSGenesis Florida 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Georgia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Greece 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Hawaiian Islands 10m Terrain & Landclass
FSGenesis Himalayas 76.4m Terrain
FSGenesis Hungary 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Idaho 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Illinois 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Indiana 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iowa 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iran - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iran - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Iraq 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Israel 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Jordan 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Kansas 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Kentucky 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Lebanon 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Libya - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Libya - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Libya - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Louisiana 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Madagascar 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Maine 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Manitoba 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Maryland-Delaware 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Massachutsetts-Connecticut-Rhode Island 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Mexico 38.2m Terrain
FSGenesis Michigan 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Middle East 76.4m Terrain
FSGenesis Minnesota 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Mississippi 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Missouri 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Montana 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Nebraska 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Nevada 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Brunswick 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Hampshire 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Jersey 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New Mexico 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis New York 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Newfoundland 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis North Asia 76.4m Terrain
FSGenesis North Atlantic Terrain for FS2004 (Version: 1.0.0)
FSGenesis North Carolina 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis North Dakota 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northern Africa 76.4m Terrain
FSGenesis Northern Canada 76.4m Terrain
FSGenesis Northern Russia Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northwest Territories - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northwest Territories - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Northwest Territories - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Nova Scotia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ohio 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Oklahoma 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Oman 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ontario - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ontario - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ontario 38.2m Terrain
FSGenesis Oregon 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Pacific Islands 76.4m Terrain
FSGenesis Pakistan - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Pakistan - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Pennsylvania 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Poland 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Quebec - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Quebec - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Quebec - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Romania 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Russia 76.4m Terrain
FSGenesis Saskatchewan 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Saudi Arabia - Central 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Saudi Arabia - North 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Saudi Arabia - South 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Scandinavia Terrain Mesh for FS2004 (Version: 1.2)
FSGenesis Slovakia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis South Asia & Indonesia 76.4m Terrain
FSGenesis South Carolina 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis South Dakota 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Southern Africa 76.4m Terrain
FSGenesis Syria 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Tennessee 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Texas & Southeast 38m Terrain
FSGenesis Texas 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis The Balkans 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis The Great Plains 38m Terrain
FSGenesis The Orient 76.4m Terrain
FSGenesis The Rockies 38m Terrain
FSGenesis The West Coast 38m Terrain
FSGenesis Turkey - East 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Turkey - West 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ukraine - East 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Ukraine - West 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis United States 76.4m Terrain
FSGenesis Utah 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Venezuela & Angel Falls 76.4m Terrain
FSGenesis Vermont 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Virginia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Washington 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis West Virginia 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Western Hemisphere - North 153m Terrain
FSGenesis Western Hemisphere - South 153m Terrain
FSGenesis Western Hemisphere 306m Terrain
FSGenesis Western Siberia Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Wisconsin 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Worldwide LOD 4/5/6 Terrain
FSGenesis Wyoming 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yemen 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yukon Territory - N 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yukon Territory - S 19m Terrain Mesh for FS2004 (Version: 1.0.0)
FSGenesis Yukon Territory 38.2m Terrain
FSNavigator
FSrealWX lite version 1.06.1469 (Version: 1.06.1469)
Google Chrome (Version: 30.0.1599.101)
Google Drive (Version: 1.12.5329.1887)
Google Earth Plug-in (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.165)
Hawker Hurricane IIA for FS2004
HiJackThis (Version: 1.0.0)
ICQ7M (Version: 7.8)
ImgBurn (Version: 2.5.7.0)
IrfanView (remove only) (Version: 4.36)
LibreOffice 4.0 Help Pack (English) (Version: 4.0.1.2)
LibreOffice 4.0.1.2 (Version: 4.0.1.2)
LightScribe  1.4.142.1 (Version: 1.4.142.1)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Combat Flight Simulator
Microsoft Flight (Version: 1.0.0003.129)
Microsoft Flight Simulator 2004 A Century of Flight (Version: 9.0)
Microsoft Sync Framework 2.0 Core Components (x86) ENU  (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x86) ENU  (Version: 2.0.1578.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 25.0 (x86 en-US) (Version: 25.0)
Mozilla Maintenance Service (Version: 25.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MyDefrag v4.3.1 (Version: 4.0.0.0)
MySQL Server 5.5 (Version: 5.5.34)
OpenAL
Oracle VM VirtualBox 4.1.20 (Version: 4.1.20)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
Plan-G (Version: 2.0.3)
Plan-G v3 (Version: 3.0.2)
PowerISO (Version: 5.5)
Radio Range v4.0
REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.35.0000)
Realtek HDMI Audio Driver for ATI
Realtek High Definition Audio Driver (Version: 5.10.0.6526)
RIFT
RoboForm 7-9-0-0 (All Users) (Version: 7-9-0-0)
Rwy12 Library
SecondLifeViewer (remove only)
Secure Download Manager (Version: 3.1.0)
Skyhawk 172R by Flight One Software
Spybot - Search & Destroy (Version: 1.6.2)
SpywareBlaster 5.0 (Version: 5.0.0)
Star Wars: The Old Republic (Version: 1.00)
Strongvault Online Backup (Version: 5.0.2.34)
swMSM (Version: 12.0.0.1)
SyncToy 2.1 (x86) (Version: 2.1.0)
T Utility Over Clock II
Tseries BIOS Update
Tweak UI
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.0.3 (Version: 2.0.3)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format Runtime
WinPatrol (Version: 29.0.2013)
WinRAR archiver
Xtreme RDP ActiveX Control (Version: 1.1.1)
Yahoo! Messenger
Youtube Downloader HD v. 2.9.6
ZoneAlarm Firewall (Version: 10.1.101.000)
ZoneAlarm Security (Version: 10.1.101.000)

========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 3327.23 MB
Available physical RAM: 2207.92 MB
Total Pagefile: 11164.9 MB
Available Pagefile: 10136.84 MB
Total Virtual: 2047.88 MB
Available Virtual: 1976.78 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:73.24 GB) (Free:32.33 GB) NTFS
10 Drive s: (Games) (Fixed) (Total:185.55 GB) (Free:14.86 GB) NTFS
11 Drive y: (Downloads) (Fixed) (Total:74.5 GB) (Free:43.43 GB) NTFS
12 Drive z: (Data) (Fixed) (Total:195.31 GB) (Free:53.61 GB) NTFS

========================= Users: ========================================

User accounts for \\POSSUM

Administrator            ASPNET                   Guest                    
HelpAssistant            Possumsjagger            SUPPORT_388945a0         
Werner                   Zerohour                 

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
 

Malware Bytes

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.10.29.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Possumsjagger :: POSSUM [administrator]

10/29/2013 10:48:35
mbam-log-2013-10-29 (10-48-35).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 270158
Time elapsed: 9 minute(s), 14 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

Thank you



#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:38 AM

Posted 29 October 2013 - 05:25 PM

The version of AdAware AV you had instaled was a 100% genuine program ........

Due to a really huge file on the C: drive it cannot be defragmented any more unless you know of a program which will move the swapfile.
It is called reinstall or get a bigger drive / computer. You have totally "clogged the system" .....

 

The only things that have been downloaded are jpg and pdf files.
And most likely all infected .......

 

You have now stopped AVG but left it installed ???

............ None of those logs were requested .........

 

 

Please read Preparation Guide from Step #6 and post a new topic in Virus, Trojan, Spyware, and Malware Removal Logs

 

Please post to the Malware Removal Logs area and describe your problem, even if you are unable to produce the requested logs, and an Expert will assist you with the problem -

 

Thank You -



#8 jefferysitz

jefferysitz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 29 October 2013 - 07:16 PM

No, I uninstalled Adaware AV as you instructed.  AVG was what you told me to keep.  The logs show Ad-aware as being there but it has been uninstalled and the folder erased.

 



#9 jefferysitz

jefferysitz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 29 October 2013 - 07:25 PM

I am a little confused.  It was my understanding that a jpg could not contain a virus according to the symantec site.  Nowhere have I ever seen a warning against jpgs and viri except the the case of a duel file name.

 

I guess a pdf might have some sort of a program embedded in it but according to Adobe the program icon would have to be double clicked while reading the pdf.  I am sure I have never done that.



#10 jefferysitz

jefferysitz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 29 October 2013 - 07:29 PM

ok, now I understand.  You thought I stopped AVG.  No, I did not.  This seems to be an effect of the virus, it disables security software.



#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:38 AM

Posted 29 October 2013 - 08:53 PM

Can JPG, GIF, and other image files be infected?

Some software programs have vulnerabilities that contaminate JPG image files with malicious code.

Contaminated JPG files can carry or launch a virus, worm, or Trojan on unpatched systems.
 

Just one of dozens of items I could have quoted from -

 

First scan =
AVG Internet Security 2014  
Antivirus out of date! (On Access scanning disabled!)

 

Second scan =
AVG Internet Security 2014  
Antivirus out of date! (On Access scanning disabled!)

 

Please folow my last directions -

 

Thank You -



#12 Netghost56

Netghost56

  • Members
  • 973 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:07:38 PM

Posted 30 October 2013 - 09:37 AM

Remember that a picture (jpg, bmp, etc) is still just a package of data. And it's easy to hide extra data in a picture file. If you have a 100x100 pixel image that takes up as much space as a 1600x1400 pixel image, you should be suspicious.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users