Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Regularly short-freezing computer


  • This topic is locked This topic is locked
7 replies to this topic

#1 FlorianK

FlorianK

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:33 PM

Posted 10 January 2015 - 02:45 PM

Hello all,

 

I'm a bit frustrated about my computer lately. It often responds slow, or freezes for a brief period of time.

I'd love it if someone could help me to check if my pc is okay.

 

I tried to run dds.com to create a logfile, but I only get the pop-up that dds.com isn't meant to run in compatibility mode. But under 'properties', I can't find any tab for compatibility settings.

Is there some other tool to create a log for Windows 8.1, 64 bits?

 

I will appreciate your help with this situation.


Edited by FlorianK, 10 January 2015 - 02:45 PM.


BC AdBot (Login to Remove)

 


m

#2 nasdaq

nasdaq

  • Malware Response Team
  • 38,249 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:33 PM

Posted 12 January 2015 - 08:40 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Download Malwarebytes' Anti-Malware from Here

Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).
  • Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • The scan may take some time to finish,so please be patient.
  • If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.
POST THE LOG FOR MY REVIEW.

Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.

===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
===

Download the version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.
To attach a file select the "More Reply Option" and follow the instructions.

How is the computer running?
Wait for further instructions.

#3 FlorianK

FlorianK
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:33 PM

Posted 12 January 2015 - 11:09 AM

Thank you very much for your help.

The computer is running relatively quick (it should be, with 8 GB of RAM and Windows on SSD), but still has the short moment-freezes. (after a program started up (Firefox, Word, File explorer, etc) it often freezes for a second or 3 before it is possible to work further with it.

It isn't a huge problem, but it does make me wonder why this keeps happening.

 

Here are the logs you asked (as asked, Addition.txt is attached):

I'm sorry some logs are in Dutch. If you'd like me to translate something, feel free to ask.

 

 

 

 

==========================================

Malwarebytes log:

==========================================

 

 

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scandatum: 12-1-2015
Scantijd: 15:13:57
Logbestand: mbam-log.txt
Beheerder: Ja

Versie: 2.00.4.1028
Malwaredatabase: v2015.01.12.04
Rootkitdatabase: v2015.01.07.01
Licentie: Gratis
Malwarebescherming: Uitgeschakeld
Kwaadaardige Website Bescherming: Uitgeschakeld
Zelfbescherming: Uitgeschakeld

Besturingssysteem: Windows 8.1
Processor: x64
Bestandssysteem: NTFS
Gebruiker: Florian

Scantype: Bedreigingsscan
Resultaat: Voltooid
Objecten Gescand: 383821
Verstreken Tijd: 26 m, 57 s

Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Ingeschakeld
Heuristiek: Ingeschakeld
POP: Waarschuwen
POA: Ingeschakeld

Processen: 0
(Geen kwaadaardige items gedetecteerd)

Modules: 0
(Geen kwaadaardige items gedetecteerd)

Registersleutels: 1
PUP.Optional.Softonic.A, HKU\S-1-5-21-3261896035-1313622233-3554768069-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Softonic, In Quarantaine, [a2f603f16d1cfa3cdc74fa74e22122de],

Registerwaardes: 0
(Geen kwaadaardige items gedetecteerd)

Registerdata: 0
(Geen kwaadaardige items gedetecteerd)

Mappen: 0
(Geen kwaadaardige items gedetecteerd)

Bestanden: 0
(Geen kwaadaardige items gedetecteerd)

Fysieke Sectoren: 0
(Geen kwaadaardige items gedetecteerd)


(end)

 

 

 

 

 

 

================================================

AdwCleaner log:

================================================

 

 

 

 

# AdwCleaner v4.107 - Rapport aangemaakt 12/01/2015 op 16:49:17
# Laatste Update 07/01/2015 door Xplode
# Database : 2015-01-11.2 [Live]
# Besturingssysteem : Windows 8.1 Pro  (64 bits)
# Gebruikersnaam : Florian - FLORIANK
# Gestart vanuit : C:\Users\Florian\Desktop\adwcleaner_4.107.exe
# Optie : Verwijderen

***** [ Services ] *****


***** [ Bestanden / Mappen ] *****

[x] Geen Verwijderd : C:\Users\Florian\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
Map Verwijderd : C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Map Verwijderd : C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Bestand Verwijderd : D:\Temp\Usertemp\Uninstall.exe

***** [ Taken ] *****


***** [ Snelkoppelingen ] *****


***** [ Register ] *****

Waarde Verwijderd : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}]
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\S
[x] Geen Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Sleutel Verwijderd : HKCU\Software\eSupport.com
[x] Geen Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v34.0.5 (x86 nl)


-\\ Google Chrome v39.0.2171.95

[C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\preferences] - Verwijderd [Extension] : apdfllckaahabafndbhieahigkjlhalf
[C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\preferences] - Verwijderd [Extension] : pjkljhegncpnkpknbcohdijeoejaedia

*************************

AdwCleaner[R0].txt - [1443 octets] - [10/01/2015 20:37:10]
AdwCleaner[R1].txt - [1932 octets] - [12/01/2015 16:47:27]
AdwCleaner[S0].txt - [1828 octets] - [12/01/2015 16:49:17]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1888 octets] ##########
 

 

 

 

 

 

 

========================================================

FRST log:

========================================================

 

 

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-01-2015
Ran by Florian (administrator) on FLORIANK on 12-01-2015 16:51:25
Running from C:\Users\Florian\Desktop
Loaded Profile: Florian (Available profiles: Florian)
Platform: Windows 8.1 Pro (X64) OS Language: Nederlands (Nederland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\AKL\AkSVC.exe
(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\AKL\AkSA.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Company) C:\Program Files (x86)\Popcorn Time\Updater.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\AntiTheft\Antitheft.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(BitTorrent Inc.) C:\Users\Florian\AppData\Roaming\BitTorrent\BitTorrent.exe
(Dropbox, Inc.) C:\Users\Florian\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ThreatEmulation.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [2419512 2012-11-04] (Logitech, Inc.)
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5675184 2013-05-10] (VIA)
HKLM\...\Run: [ISW] => C:\Program Files (x86)\CheckPoint\AKL\AkSA.exe [935544 2014-07-17] (Check Point Software Technologies LTD)
HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [137352 2014-08-13] (Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2014-10-14] (Microsoft Corporation)
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-08-30] (AMD)
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30879328 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\...\Run: [BitTorrent] => C:\Users\Florian\AppData\Roaming\BitTorrent\BitTorrent.exe [1388888 2014-11-27] (BitTorrent Inc.)
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\...\MountPoints2: {e28a1824-4004-11e4-8228-001966f13acb} - "G:\HTC_Sync_Manager_PC.exe"
Startup: C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Florian\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Productregistratie.lnk
ShortcutTarget: Logitech . Productregistratie.lnk -> C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe (Leader Technologies/Logitech)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.nl.msn.com/
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3261896035-1313622233-3554768069-1001 -> {9758770B-0B67-4E81-B62B-7BA9335902BD} URL = http://www.google.nl/search?hl=nl&q={searchTerms}
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SMART Notebook Download Utility -> {67BCF957-85FC-4036-8DC4-D4D80E00A77B} -> C:\Program Files (x86)\SMART Technologies\Education Software\NotebookPlugin.dll (SMART Technologies ULC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKU\S-1-5-21-3261896035-1313622233-3554768069-1001 -> No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} -  No File
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Florian\AppData\Roaming\Mozilla\Firefox\Profiles\9hklmrn7.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.nl
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2012-12-04]

Chrome:
=======
CHR Profile: C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Documenten) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-04]
CHR Extension: (YouTube) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-04]
CHR Extension: (Google Zoeken) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-04]
CHR Extension: (Logitech SetPoint) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\edaibbiobngpbmeonadpbfafbkimjbdd [2014-08-04]
CHR Extension: (Google Wallet) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-04]
CHR HKLM-x32\...\Chrome\Extension: [edaibbiobngpbmeonadpbfafbkimjbdd] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx [2012-12-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 IswSvc; C:\Program Files (x86)\CheckPoint\AKL\AkSVC.exe [1144952 2014-07-17] (Check Point Software Technologies LTD)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [179712 2014-10-14] (Company) [File not signed]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3596752 2014-08-13] (Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [96272 2014-08-13] (Check Point Software Technologies, Ltd.)
R2 ZoneAlarm AntiTheft; C:\Program Files (x86)\CheckPoint\AntiTheft\Antitheft.exe [3129992 2014-08-13] (Check Point Software Technologies Ltd.)
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe /launchService [X]
S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2013-12-19] (Advanced Micro Devices)
R3 icsak; C:\Program Files (x86)\CheckPoint\AKL\ak\icsak.sys [48512 2014-07-17] (Check Point Software Technologies LTD)
R2 ISWKL; C:\Program Files (x86)\CheckPoint\AKL\ISWKL.sys [54144 2014-07-17] (Check Point Software Technologies LTD)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2014-06-11] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2014-06-11] (Kaspersky Lab)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [92768 2014-06-11] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [490080 2014-06-11] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2014-06-11] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [49760 2014-06-11] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [177760 2014-06-11] (Kaspersky Lab ZAO)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [129752 2015-01-12] (Malwarebytes Corporation)
S3 MirayVirtualDisk; C:\Windows\System32\drivers\mvd.sys [62576 2011-04-17] (Miray)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [450456 2014-08-13] (Check Point Software Technologies Ltd.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S2 AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-12 16:51 - 2015-01-12 16:53 - 00015471 _____ () C:\Users\Florian\Desktop\FRST.txt
2015-01-12 16:50 - 2015-01-12 16:51 - 00000000 ____D () C:\FRST
2015-01-12 16:50 - 2015-01-12 16:50 - 00001972 _____ () C:\Users\Florian\Desktop\AdwCleaner[S0].txt
2015-01-12 15:17 - 2015-01-12 15:17 - 02191360 _____ () C:\Users\Florian\Desktop\adwcleaner_4.107.exe
2015-01-12 15:15 - 2015-01-12 15:15 - 02124288 _____ (Farbar) C:\Users\Florian\Desktop\FRST64.exe
2015-01-12 15:13 - 2015-01-12 15:13 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-12 15:12 - 2015-01-12 15:12 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Florian\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-12 15:12 - 2015-01-12 15:12 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-12 15:12 - 2015-01-12 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-12 15:12 - 2015-01-12 15:12 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-12 15:12 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-01-12 15:12 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-01-10 20:37 - 2015-01-12 16:49 - 00000000 ____D () C:\AdwCleaner
2015-01-10 20:25 - 2015-01-10 20:25 - 00688992 _____ (Swearware) C:\Users\Florian\Desktop\dds.com
2015-01-10 20:23 - 2015-01-10 20:23 - 00009950 _____ () C:\Users\Florian\Desktop\hijackthis.log
2015-01-10 20:22 - 2015-01-10 20:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Florian\Downloads\HijackThis.exe
2015-01-10 15:10 - 2015-01-10 15:10 - 05317104 _____ (Piriform Ltd) C:\Users\Florian\Downloads\ccsetup501.exe
2015-01-10 15:09 - 2015-01-10 15:09 - 05609736 _____ (Swearware) C:\Users\Florian\Downloads\ComboFix.exe
2015-01-10 15:09 - 2015-01-10 15:09 - 04187592 _____ (Kaspersky Lab ZAO) C:\Users\Florian\Downloads\tdsskiller.exe
2015-01-10 15:09 - 2015-01-10 15:09 - 01707939 _____ (Thisisu) C:\Users\Florian\Downloads\Junkware Removal Tool.exe
2015-01-10 15:08 - 2015-01-10 15:08 - 02191360 _____ () C:\Users\Florian\Downloads\AdwCleaner.exe
2015-01-09 06:51 - 2015-01-09 06:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5
2015-01-09 06:51 - 2015-01-09 06:51 - 00000000 ____D () C:\Program Files (x86)\GeoGebra 5.0
2014-12-25 02:09 - 2014-12-25 02:09 - 00003886 _____ () C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2014-12-22 01:19 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-12-22 01:19 - 2014-10-30 23:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-12 16:52 - 2012-12-01 21:37 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\BitTorrent
2015-01-12 16:50 - 2014-08-04 00:19 - 00001078 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-12 16:50 - 2013-10-29 12:24 - 00000000 ___DO () C:\Users\Florian\SkyDrive
2015-01-12 16:50 - 2013-09-09 17:15 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\Dropbox
2015-01-12 16:50 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-12 16:50 - 2012-12-10 23:30 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\Skype
2015-01-12 16:49 - 2013-11-30 04:02 - 00000940 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-12 16:49 - 2013-09-29 20:06 - 00046420 _____ () C:\WINDOWS\PFRO.log
2015-01-12 16:49 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-12 16:35 - 2014-08-04 00:19 - 00001082 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-12 16:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-12 15:28 - 2012-11-29 17:57 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3261896035-1313622233-3554768069-1001
2015-01-12 15:12 - 2012-12-31 03:25 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\Malwarebytes
2015-01-12 15:12 - 2012-12-31 03:25 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-12 14:20 - 2013-10-29 10:58 - 01602537 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-12 14:07 - 2013-10-29 15:50 - 00003966 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{57CDBA0C-DDC1-48D6-B5BD-3A37C51498EB}
2015-01-12 13:56 - 2013-09-30 05:15 - 00005670 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-12 13:56 - 2013-09-30 04:59 - 00931738 _____ () C:\WINDOWS\system32\perfh013.dat
2015-01-12 13:56 - 2013-09-30 04:59 - 00203630 _____ () C:\WINDOWS\system32\perfc013.dat
2015-01-12 13:52 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-11 03:39 - 2012-12-01 22:07 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\vlc
2015-01-09 18:11 - 2014-10-15 21:52 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-09 18:11 - 2012-12-10 23:30 - 00000000 ____D () C:\ProgramData\Skype
2015-01-09 06:51 - 2013-05-13 19:54 - 00001867 _____ () C:\Users\Public\Desktop\GeoGebra.lnk
2015-01-08 00:49 - 2012-12-03 06:17 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\Outlook
2015-01-07 06:54 - 2012-12-03 16:14 - 00107529 ____H () C:\WINDOWS\SysWOW64\BTImages.dat
2015-01-06 09:58 - 2013-10-29 10:54 - 00000000 ____D () C:\Users\Florian
2015-01-06 02:23 - 2012-12-03 14:18 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\Winamp
2014-12-28 02:25 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-12-22 15:53 - 2012-12-06 21:15 - 00000000 ____D () C:\Users\Florian\AppData\Roaming\Belastingdienst
2014-12-22 01:51 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-12 14:01

==================== End Of Log ============================

 

Attached Files



#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,249 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:33 PM

Posted 12 January 2015 - 02:30 PM

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
start

CloseProcesses:

(Company) C:\Program Files (x86)\Popcorn Time\Updater.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-3261896035-1313622233-3554768069-1001 -> No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} -  No File
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll No File
CHR Extension: (Google Wallet) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-04]
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [179712 2014-10-14] (Company) [File not signed]
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe /launchService [X]
S2 AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
C:\Program Files (x86)\Popcorn Time

End
Save the files as fixlist.txt into the same folder as FRST

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log Fixlog.txt please post it to your reply.
===

Download Security Check by screen317 from here
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.

If the site is busy or not available use this mirror site:
http://www.bleepingcomputer.com/download/securitycheck/

How is the computer running now?

======

#5 FlorianK

FlorianK
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:33 PM

Posted 13 January 2015 - 09:45 AM

Hello  nasdaq, thanks again.

The computer seems to run smoothly now. After starting a program, I can inmediately start typing, or move the window (changing the position of a window right after a program started often caused a short freeze).

 

What do you think exactly did cause these problems?

In the code you send me I see some lines for Internet Explorer and Chrome, but I don't often use them. So was it related then to Popcorn Time and the ATI-programs?

 

 

 

Here is the log of FRST:

 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-01-2015
Ran by Florian at 2015-01-13 15:23:15 Run:1
Running from C:\Users\Florian\Desktop
Loaded Profile: Florian (Available profiles: Florian)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start

CloseProcesses:

(Company) C:\Program Files (x86)\Popcorn Time\Updater.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-3261896035-1313622233-3554768069-1001 -> No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} -  No File
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll No File
CHR Extension: (Google Wallet) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-04]
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [179712 2014-10-14] (Company) [File not signed]
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe /launchService [X]
S2 AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
C:\Program Files (x86)\Popcorn Time

End
*****************

Processes closed successfully.
C:\Program Files (x86)\Popcorn Time\Updater.exe => No running process found
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-21-3261896035-1313622233-3554768069-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} => value deleted successfully.
HKCR\CLSID\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} => Key not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@checkpoint.com/FFApi" => Key deleted successfully.
C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda => Moved successfully.
Update service => Service deleted successfully.
AMD FUEL Service => Service deleted successfully.
AODDriver4.2 => Service deleted successfully.
C:\Program Files (x86)\Popcorn Time => Moved successfully.


The system needed a reboot.

==== End of Fixlog 15:23:17 ====

 

 

 

 

And this is checkup.txt:

 

 

 

 Results of screen317's Security Check version 0.99.93  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled!  
Windows Defender                       
ZoneAlarm Extreme Security Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Java 7 Update 71  
 Java 7 Update 45  
  Adobe Flash Player     15.0.0.246 Flash Player out of Date!  
 Adobe Reader XI  
 Mozilla Firefox (34.0.5)
 Google Chrome (39.0.2171.71)
 Google Chrome (39.0.2171.95)
````````Process Check: objlist.exe by Laurent````````  
 CheckPoint ZoneAlarm ThreatEmulation.exe  
 CheckPoint ZoneAlarm vsmon.exe  
 CheckPoint ZoneAlarm ZAPrivacyService.exe  
 CheckPoint ZoneAlarm zatray.exe  
 CheckPoint ZoneAlarm ThreatEmulation.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 

 

 

=====================================================

By the way, after I saw this log I directly updated Flash. So that has been done allready


Edited by FlorianK, 13 January 2015 - 09:48 AM.


#6 nasdaq

nasdaq

  • Malware Response Team
  • 38,249 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:33 PM

Posted 13 January 2015 - 10:40 AM

Other the the Popcorn issue the rest of the items removed were empty entries in the Registry.

===

Remove this old version of Java 7 Update 45 using the Add/Remove programs applet.

===

(changing the position of a window right after a program started often caused a short freeze).

Keep an eye on this it may be a monitor driver issue.

If all is well.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

#7 FlorianK

FlorianK
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:33 PM

Posted 13 January 2015 - 10:52 AM

Thanks, I've seen even a third and older Java-version (7, update 11 (64-bit)).

I've deleted them all and installed the newest versions (8.25).

 

Again, thank you for your time and effort.



#8 nasdaq

nasdaq

  • Malware Response Team
  • 38,249 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:33 PM

Posted 19 January 2015 - 08:31 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users