Antimalware Defender reports lots of malware on a clean system:
You can use FreeFixer to remove AntiMalware Defender. I've pasted a FreeFixer log below which will help you identify the malware items:
FreeFixer v0.53 log
http://www.freefixer.com/
Operating system: Windows XP Service Pack 2
Log dated 2010-01-31 15:04
Browser Helper Objects
{fa217b17-bd53-4441-bc32-3de578a2826a}, {fa217b17-bd53-4441-bc32-3de578a2826a}, C:\WINDOWS\system32\fa217b17-bd53-4445-bc32-3de578a2826a_6.avi
Registry Startups (4 whitelisted)
HKLM\..\Run, fa217b17-bd53-4445-bc32-3de578a2826a_6 = "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\fa217b17-bd53-4445-bc32-3de578a2826a_6.avi", start minimized
HKCU\..\Run, fa217b17-bd53-4445-bc32-3de578a2826a_6 = "C:\WINDOWS\system32\rundll32.exe" "C:\Documents and Settings\roger\Application Data\fa217b17-bd53-4445-bc32-3de578a2826a_6.avi", start minimized
Processes (23 whitelisted)
C:\Program Files\FreeFixer\freefixer.exe
Explorer.exe Modules (109 whitelisted)
C:\WINDOWS\system32\MSVCR71.dll
Rundll Modules (71 whitelisted)
C:\DOCUME~1\roger\LOCALS~1\Temp\wrk90.tmp
Recently created/modified files
2 minutes, c:\Documents and Settings\roger\Local Settings\Temp\wrk90.tmp
2 minutes, c:\Program Files\Antimalware Defender\Antimalware Defender.dll
2 minutes, c:\Documents and Settings\roger\Local Settings\Application Data\fa217b17-bd53-4445-bc32-3de578a2826a_6.avi
2 minutes, c:\Documents and Settings\roger\Application Data\fa217b17-bd53-4445-bc32-3de578a2826a_6.avi
2 minutes, c:\Documents and Settings\All Users\Application Data\fa217b17-bd53-4445-bc32-3de578a2826a_6.avi
2 minutes, c:\WINDOWS\system32\fa217b17-bd53-4445-bc32-3de578a2826a_6.avi
2 minutes, c:\Documents and Settings\roger\Local Settings\Temporary Internet Files\Content.IE5\6CSRVCZ7\s[2].bin
Did this help you remove AntiMalware Defender?
No comments:
Post a Comment