Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Awesomehp.com What to do now?


  • Please log in to reply
2 replies to this topic

#1 Gammelgaard

Gammelgaard

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:19 AM

Posted 12 March 2014 - 01:57 PM

All my browsers are being redirected to "awesomehp.com" and my symantec endpoint protection is from time to time reporting a "trojan.gen.2" detectet.

 

So i think i have a spyware/adware problem.

 

What to do???

 

I got an hijackthis log, if thats to any help.



BC AdBot (Login to Remove)

 


#2 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:19 AM

Posted 12 March 2014 - 02:02 PM

Download Minitoolbox - http://www.bleepingcomputer.com/download/minitoolbox/

Start the application.Set ticks everywhere.Click GO button.After scan is done a log will appear.Save and attach it here.



#3 Gammelgaard

Gammelgaard
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:19 AM

Posted 12 March 2014 - 02:34 PM

It came out like this:

 

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Sandra Gammelgård (administrator) on 12-03-2014 at 20:32:38
Running from "C:\Users\Sandra Gammelgård\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A7B9NCKK"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-konfiguration

DNS Resolver Cache blev t›mt.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

HUAWEI Mobile Connect - Network Adapter = Mobilbredbåndsforbindelse 2 (Connected)
Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet NIC (NDIS 6.20) = LAN-forbindelse (Media disconnected)
Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter = Trådløs netværksforbindelse (Media disconnected)
Bluetooth-enhed (Personal Area Network) = Bluetooth-netværksforbindelse (Media disconnected)

# ----------------------------------
# IPv4-konfiguration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# Slut p† IPv4-konfiguration.

 

Windows IP-konfiguration

   V‘rtsnavn. . . . . . . . . . . . . . . . . . : Elsker_dig
   Prim‘rt DNS-suffiks. . . . . . . . . . . . . :
   Nodetype . . . . . . . . . . . . . . . . . . : Hybrid
   IP-routing aktiveret . . . . . . . . . . . . : Nej
   WINS-proxy aktiveret . . . . . . . . . . . . : Nej

Netv‘rkskort til mobilbredb†nd Mobilbredb†ndsforbindelse 2:

   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : HUAWEI Mobile Connect - Network Adapter #2
   Fysisk adresse . . . . . . . . . . . . . . . : 58-2C-80-13-92-63
   DHCP aktiveret . . . . . . . . . . . . . . . : Nej
   Automatisk konfiguration aktiveret . . . . . : Ja
   Link-local-IPv6-adresse . . . . . : fe80::448b:a20:6d16:6a57%21(Foretrukken)
   IPv4-adresse . . . . . . . . . . . . . . . . : 10.206.18.182(Foretrukken)
   Undernetmaske. . . . . . . . . . . . . . . . : 255.255.255.252
   Standardgateway. . . . . . . . . . . . . . . : 10.206.18.181
   DHCPv6 IAID . . . . . . . . . . . : 441986176
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-50-E4-52-00-26-9E-25-C6-82
   DNS-servere. . . . . . . . . . . . . . . . . : 95.209.200.69
                                                  95.209.200.70
   NetBIOS over Tcpip . . . . . . . . . . . . . : Aktiveret

Ethernet-netv‘rkskort Bluetooth-netv‘rksforbindelse:

   Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Bluetooth-enhed (Personal Area Network)
   Fysisk adresse . . . . . . . . . . . . . . . : 00-24-7E-B3-FB-A0
   DHCP aktiveret . . . . . . . . . . . . . . . : Ja
   Automatisk konfiguration aktiveret . . . . . : Ja

Tr†dl›st LAN-kort Tr†dl›s netv‘rksforbindelse:

   Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
   Fysisk adresse . . . . . . . . . . . . . . . : 00-26-5E-75-A6-42
   DHCP aktiveret . . . . . . . . . . . . . . . : Ja
   Automatisk konfiguration aktiveret . . . . . : Ja

Ethernet-netv‘rkskort LAN-forbindelse:

   Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
   Fysisk adresse . . . . . . . . . . . . . . . : 00-26-9E-25-C6-82
   DHCP aktiveret . . . . . . . . . . . . . . . : Ja
   Automatisk konfiguration aktiveret . . . . . : Ja

Tunnel-netv‘rkskort isatap.{164671CF-732F-4F95-85FE-A3A80426D758}:

   Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Microsoft ISATAP-netv‘rkskort
   Fysisk adresse . . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiveret . . . . . . . . . . . . . . . : Nej
   Automatisk konfiguration aktiveret . . . . . : Ja

Tunnel-netv‘rkskort isatap.{BB5AC321-6DA9-4B45-9D47-52C1A140041A}:

   Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Microsoft ISATAP-netv‘rkskort #2
   Fysisk adresse . . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiveret . . . . . . . . . . . . . . . : Nej
   Automatisk konfiguration aktiveret . . . . . : Ja

Tunnel-netv‘rkskort isatap.{2B111948-37DB-4A14-BE38-C30AB7EEBD4B}:

   Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Microsoft ISATAP-netv‘rkskort #3
   Fysisk adresse . . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiveret . . . . . . . . . . . . . . . : Nej
   Automatisk konfiguration aktiveret . . . . . : Ja

Tunnel-netv‘rkskort Teredo Tunneling Pseudo-Interface:

   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Fysisk adresse . . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiveret . . . . . . . . . . . . . . . : Nej
   Automatisk konfiguration aktiveret . . . . . : Ja
   IPv6-adresse. . . . . . . . . . . : 2001:0:9d38:6ab8:2054:1822:a140:41dd(Foretrukken)
   Link-local-IPv6-adresse . . . . . : fe80::2054:1822:a140:41dd%23(Foretrukken)
   Standardgateway. . . . . . . . . . . . . . . : ::
   NetBIOS via TCP/IP . . . . . . . . . . . . . : Deaktiveret

Tunnel-netv‘rkskort isatap.{66D1D737-AAE5-40C7-B007-F4FE1EC9B81B}:

   Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
   Forbindelsesspecifikt DNS-suffiks. . . . . . :
   Beskrivelse. . . . . . . . . . . . . . . . . : Microsoft ISATAP-netv‘rkskort #4
   Fysisk adresse . . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiveret . . . . . . . . . . . . . . . : Nej
   Automatisk konfiguration aktiveret . . . . . : Ja
Server:   UnKnown
Address:  95.209.200.69

Navn:    google.com
Addresses:  2a00:1450:400f:801::100e
   74.125.232.99
   74.125.232.96
   74.125.232.105
   74.125.232.98
   74.125.232.102
   74.125.232.101
   74.125.232.103
   74.125.232.97
   74.125.232.110
   74.125.232.100
   74.125.232.104

Pinger google.com [173.194.32.36] med 32 byte data:
Svar fra 173.194.32.36: byte=32 tid=74ms TTL=52
Svar fra 173.194.32.36: byte=32 tid=88ms TTL=52

Ping-statistikker for 173.194.32.36:
    Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),
Beregnet tid for rundtur i millisekunder:
    Minimum = 74ms, Maksimum = 88ms, Gennemsnitlig = 81ms
Server:   UnKnown
Address:  95.209.200.69

Navn:    yahoo.com
Addresses:  98.139.183.24
   98.138.253.109
   206.190.36.45

Pinger yahoo.com [98.138.253.109] med 32 byte data:
Svar fra 98.138.253.109: byte=32 tid=274ms TTL=45
Svar fra 98.138.253.109: byte=32 tid=238ms TTL=45

Ping-statistikker for 98.138.253.109:
    Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),
Beregnet tid for rundtur i millisekunder:
    Minimum = 238ms, Maksimum = 274ms, Gennemsnitlig = 256ms

Pinger 127.0.0.1 med 32 byte data:
Svar fra 127.0.0.1: byte=32 tid<1ms TTL=128
Svar fra 127.0.0.1: byte=32 tid<1ms TTL=128

Ping-statistikker for 127.0.0.1:
    Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),
Beregnet tid for rundtur i millisekunder:
    Minimum = 0ms, Maksimum = 0ms, Gennemsnitlig = 0ms
===========================================================================
Liste over gr‘nseflader
 21...58 2c 80 13 92 63 ......HUAWEI Mobile Connect - Network Adapter #2
 13...00 24 7e b3 fb a0 ......Bluetooth-enhed (Personal Area Network)
 11...00 26 5e 75 a6 42 ......Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
 10...00 26 9e 25 c6 82 ......Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
  1...........................Software Loopback Interface 1
 26...00 00 00 00 00 00 00 e0 Microsoft ISATAP-netv‘rkskort
 25...00 00 00 00 00 00 00 e0 Microsoft ISATAP-netv‘rkskort #2
 27...00 00 00 00 00 00 00 e0 Microsoft ISATAP-netv‘rkskort #3
 23...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 24...00 00 00 00 00 00 00 e0 Microsoft ISATAP-netv‘rkskort #4
===========================================================================

IPv4 Rutetabel
===========================================================================
Aktive ruter:
Netv‘rksdestination     Netmaske        Gateway       Gr‘nseflade  Metrikv‘rdi
          0.0.0.0          0.0.0.0    10.206.18.181    10.206.18.182    286
    10.206.18.180  255.255.255.252         On-link     10.206.18.182    286
    10.206.18.182  255.255.255.255         On-link     10.206.18.182    286
    10.206.18.183  255.255.255.255         On-link     10.206.18.182    286
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     10.206.18.182    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     10.206.18.182    286
===========================================================================
Vedvarende ruter:
  Ingen

IPv6 Rutetabel
===========================================================================
Aktive ruter:
 Hvis Metrik Netv‘rk Destination      Gateway
 23     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 23     58 2001::/32                On-link
 23    306 2001:0:9d38:6ab8:2054:1822:a140:41dd/128
                                    On-link
 21    286 fe80::/64                On-link
 23    306 fe80::/64                On-link
 23    306 fe80::2054:1822:a140:41dd/128
                                    On-link
 21    286 fe80::448b:a20:6d16:6a57/128
                                    On-link
  1    306 ff00::/8                 On-link
 23    306 ff00::/8                 On-link
 21    286 ff00::/8                 On-link
===========================================================================
Vedvarende ruter:
  Ingen
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/12/2014 07:51:38 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHDF4E.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:44:37 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHCA56.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:42:34 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHAEDA.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:41:31 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWH8E1F.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:40:23 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWH70A0.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:39:25 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHF43F.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:37:32 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHF43F.tmp by: Auto-Protect scan.  Action: Clean failed : Quarantine failed : Access denied.  Action Description: The file was left unchanged.

Error: (03/12/2014 07:28:17 PM) (Source: System Restore) (User: )
Description: Gendannelsespunktet blev ikke oprettet (proces = C:\Program Files (x86)\STOPzilla!\SZScanner.exe Files (x86)\STOPzilla!\SZScanner.exe" ; beskrivelse = STOPzilla Restore Point.; fejl = 0x80042319).

Error: (03/12/2014 06:58:19 PM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error.  Available content updates may have failed to install.

Error: (03/12/2014 06:41:13 PM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error.  Available content updates may have failed to install.

System errors:
=============
Error: (03/12/2014 08:24:05 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten hpqwmiex kunne ikke starte pga. følgende fejl:
%%1053

Error: (03/12/2014 08:24:05 PM) (Source: Service Control Manager) (User: )
Description: Der opstod timeout (30000 millisekunder), mens systemet ventede på, at der blev oprettet forbindelse til tjenesten hpqwmiex.

Error: (03/12/2014 08:24:05 PM) (Source: DCOM) (User: )
Description: 1053hpqwmiex{F5539356-2F02-40D4-999E-FA61F45FE12E}

Error: (03/12/2014 08:23:32 PM) (Source: Service Control Manager) (User: )
Description: Følgende boot-start- eller system-start-driver kunne ikke indlæses:
is3srv

Error: (03/12/2014 08:23:23 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten Update PacFunction kunne ikke starte pga. følgende fejl:
%%2

Error: (03/12/2014 08:23:21 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten Mobile Partner. OUC kunne ikke starte pga. følgende fejl:
%%1053

Error: (03/12/2014 08:23:21 PM) (Source: Service Control Manager) (User: )
Description: Der opstod timeout (30000 millisekunder), mens systemet ventede på, at der blev oprettet forbindelse til tjenesten Mobile Partner. OUC.

Error: (03/12/2014 08:22:50 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten Freemake Improver kunne ikke starte pga. følgende fejl:
%%1053

Error: (03/12/2014 08:22:50 PM) (Source: Service Control Manager) (User: )
Description: Der opstod timeout (30000 millisekunder), mens systemet ventede på, at der blev oprettet forbindelse til tjenesten Freemake Improver.

Error: (03/12/2014 08:22:11 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten IMF Service kunne ikke starte pga. følgende fejl:
%%1053

Microsoft Office Sessions:
=========================
Error: (03/12/2014 07:51:38 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHDF4E.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:44:37 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHCA56.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:42:34 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHAEDA.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:41:31 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWH8E1F.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:40:23 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWH70A0.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:39:25 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHF43F.tmp by: Auto-Protect scan.  Action: Quarantine succeeded : Access denied.  Action Description: The file was quarantined successfully.

Error: (03/12/2014 07:37:32 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Users\Sandra Gammelgård\AppData\Local\Temp\DWHF43F.tmp by: Auto-Protect scan.  Action: Clean failed : Quarantine failed : Access denied.  Action Description: The file was left unchanged.

Error: (03/12/2014 07:28:17 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\STOPzilla!\SZScanner.exe Files (x86)\STOPzilla!\SZScanner.exe" STOPzilla Restore Point.0x80042319

Error: (03/12/2014 06:58:19 PM) (Source: SescLU)(User: )
Description: LiveUpdate returned a non-critical error.  Available content updates may have failed to install.

Error: (03/12/2014 06:41:13 PM) (Source: SescLU)(User: )
Description: LiveUpdate returned a non-critical error.  Available content updates may have failed to install.

=========================== Installed Programs ============================

µTorrent (Version: 3.4.0.30635)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Flash Player 12 Plugin (Version: 12.0.0.77)
Adobe Reader XI (11.0.06) - Dansk (Version: 11.0.06)
Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
Ashampoo Burning Studio 11 v.11.0.3 (Version: 11.0.3)
ConvertXtoDVD 4.1.19.365 (Version: 4.1.19.365)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Documents To Go (Version: 6.002.643)
DVDFab 9.1.1.0 (28/11/2013)
eMule
ENE CIR Receiver Driver (Version: 2.7.4.0)
Free MKV to AVI Converter (Version: 2.1.0.0)
HiJackThis (Version: 1.0.0)
HP Quick Launch Buttons (Version: 6.50.16.1)
IObit Malware Fighter (Version: 2.2.1)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
K-Lite Codec Pack 8.7.0 (Basic) (Version: 8.7.0)
LiveUpdate 3.3 (Symantec Corporation) (Version: 3.3.0.96)
Microsoft .NET Framework 4.5.1 (DAN) (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 (dansk) (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Office Access MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Groove MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Professionel Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Swedish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (Danish) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mobile Partner (Version: 23.007.09.02.26)
Mozilla Firefox 27.0.1 (x86 da) (Version: 27.0.1)
Mozilla Maintenance Service (Version: 27.0.1)
Palm Desktop (Version: 4.1.0300)
QLBCASL (Version: 6.40.17.2)
Registry Repair Wizard
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
SpyHunter (Version: 4.17.6.4336)
STOPzilla (Version: 6.1.70.15)
swMSM (Version: 12.0.0.1)
Symantec Endpoint Protection (Version: 11.0.6005.562)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition
VLC media player 2.1.3 (Version: 2.1.3)
WBFS Manager 3.0 (Version: 3.0)
WinRAR 5.00 beta 5 (64-bit) (Version: 5.00.5)

========================= Devices: ================================

========================= Memory info: ===================================

Percentage of memory in use: 54%
Total physical RAM: 3069.84 MB
Available physical RAM: 1401.7 MB
Total Pagefile: 6137.85 MB
Available Pagefile: 4211.45 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.52 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:97.56 GB) (Free:48.94 GB) NTFS
2 Drive d: () (Fixed) (Total:200.43 GB) (Free:164.37 GB) NTFS
4 Drive f: (Mobile Partner) (CDROM) (Total:0.03 GB) (Free:0 GB) CDFS

========================= Users: ========================================

Brugerkonti for \\ELSKER_DIG

Administrator            G‘st                     Sandra Gammelg†rd       
Kommandoen blev udf›rt.

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

11-03-2014 08:52:49 Windows Update
11-03-2014 18:21:33 Removed HP Product Detection
11-03-2014 19:25:30 Removed IObit Apps Toolbar v8.8.
11-03-2014 19:34:32 Installed SpyHunter
11-03-2014 19:56:38 Installed HiJackThis
12-03-2014 13:11:35 Windows Update
12-03-2014 18:12:32 Installed STOPzilla
12-03-2014 18:28:57 Removed SpyHunter
12-03-2014 19:06:47 Removed SpyHunter

**** End of log ****






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users