Hi JonDou,
The detections are files we have all ready quarantined or are old System Restore points. These will be removed when the tools are removed.
C:\WINDOWS\SYSTEM32\REGSVR32.EXE
Yes that is a legitamate file and location.
D:\My Documents\marina\portfolio\vectors\picture\SweetImSetup.exe a variant of Win32/SweetIM.B application
D:\My Documents\programi\gamebooster.exe a variant of Win32/Toolbar.Widgi application
D:\My Documents\programi\PhotoPosPro\PhotoPosPro_SetUp.exe Win32/Toolbar.Zugo application
D:\My Documents\programi\Uniblue\spyeraser.exe probably a variant of Win32/UbSpyEraser application
D:\My Documents\programi 2\PhotoPosPro_SetUp.exe Win32/Toolbar.Zugo application
These are warning of potentialy unwanted programs (PUP) or the fact that the setup files contain a PUP.
Next, Double click on OTL.exe - Under the Custom Scans/Fixes box at the bottom, paste in the following
- Do Not copy the word CODE
- please note the fix starts with the :
Code:
:Reg
:Services
CcmExec
MXOFX
btnhnd
aaksrv
3comtftp
:Files
C:\windows\system32\WinVd32.dll
C:\windows\system32\w200mgmt.dll
C:\windows\system32\SECYPUSB.dll
C:\windows\system32\RTL8169.dll
C:\windows\system32\vmount2.dll
:Commands
[emptytemp]
[createrestorepoint]
Then click the Run Fix button at the top
- Let the program run unhindered
- Please save the resulting log to be posted in your next reply.
Please post the fix OTL log.