4 replies to this topic

[Genetikhunk]

What is BHO.Baidu ? My Scan is displayed below:

Malwarebytes' Anti-Malware 1.25
Database version: 1062
Windows 5.1.2600 Service Pack 3

10:17:26 PM 8/20/2008
mbam-log-08-20-2008 (22-17-26).txt

Scan type: Full Scan (C:\|)
Objects scanned: 142534
Time elapsed: 55 minute(s), 8 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 11

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\imvu previewer (BHO.Baidu) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Documents and Settings\John\Application Data\IMVUClient\IMVUupdater.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\Documents and Settings\John\Desktop\InstallIMVU_401.10_st.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\Documents and Settings\John\Desktop\InstallIMVU_401.2_st.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\imvu\InstallPreviewer_372.9-20070514.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\Program Files\ImvuTools2\Uninstall.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\Program Files\ImvuTools2\Previewer\IMVUPreviewerUpdater.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{A559BBD8-A3DC-4ED2-9144-E689B3B73749}\RP140\A0040674.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{A559BBD8-A3DC-4ED2-9144-E689B3B73749}\RP141\A0040729.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{A559BBD8-A3DC-4ED2-9144-E689B3B73749}\RP141\A0040731.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{A559BBD8-A3DC-4ED2-9144-E689B3B73749}\RP141\A0040732.exe (BHO.Baidu) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{A559BBD8-A3DC-4ED2-9144-E689B3B73749}\RP141\A0040733.exe (BHO.Baidu) -> Quarantined and deleted successfully.

[nosirrah]

That was a FP fixed many definition versions ago, please update your definitions and scan again .

[Genetikhunk]

nosirrah, on Aug 21 2008, 12:36 AM, said:

That was a FP fixed many definition versions ago, please update your definitions and scan again .

I had the latest definitions and that is what it found. I have a paid subscription and had tonites newest database.

[Genetikhunk]

I have a paid subscription and Have the latest Updates from tonite.

[nosirrah]

Genetikhunk, on Aug 21 2008, 12:40 AM, said:

I had the latest definitions and that is what it found. I have a paid subscription and had tonites newest database.

Quote

Database version: 1062

At the time of your post 1070 was current , that is 8 updates out of date .


Please update and post a fresh log .