[Inactive] absolutely positive my system is infected - Page 5
Page 5 of 5 FirstFirst ... 345
Results 61 to 72 of 72

Thread: [Inactive] absolutely positive my system is infected

  1. #61
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    Are you sure you're not seeing ZumoDrive?

    I can only see Zuma as a part of HP preinstalled WildTangent games:
    "WT087533" = Zuma Deluxe

  2. #62
    Join Date
    Apr 2009
    Posts
    245
    SystemLook 30.07.11 by jpshortstuff
    Log created at 11:01 on 17/02/2013 by orianna
    Administrator - Elevation successful
    WARNING: SystemLook running under WOW64. Use SystemLook_x64 for accurate results.

    ========== filefind ==========

    Searching for "zuma*"
    C:\Program Files (x86)\HP Games\Zuma Deluxe\Zuma-WT.exe --a---- 23382632 bytes [14:02 19/03/2010] [14:02 19/03/2010] 86888B90ADF093DCAB5B83872B424B30
    C:\Program Files (x86)\HP Games\Zuma Deluxe\Zuma.exe --a---- 495616 bytes [13:58 19/03/2010] [13:58 19/03/2010] 1FB986DCFBB944E420496B35D277DD89
    C:\Program Files (x86)\HP Games\Zuma Deluxe\Zuma.ico --a---- 411494 bytes [19:48 04/10/2007] [19:48 04/10/2007] 892776E96C37691AD66C709E2F073A9A
    C:\Program Files (x86)\HP Games\Zuma Deluxe\Zuma.wtgc --a---- 3332 bytes [13:58 19/03/2010] [13:58 19/03/2010] 0480D1FB124D480D1FB468FA33A2F9AF
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_es\Zuma.exe --a---- 2049584 bytes [13:58 19/03/2010] [13:58 19/03/2010] A52414037AA7E3288895C8CCDE26F783
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_fr\Zuma.exe --a---- 2049584 bytes [13:58 19/03/2010] [13:58 19/03/2010] 82B925B75D60A0298027DD3D3240DBB1
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_fr\music\zuma.mo3 --a---- 305126 bytes [04:27 19/11/2003] [04:27 19/11/2003] D725D48EB0B44EABEECDE68701FB69F8
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_it\Zuma.exe --a---- 2049584 bytes [13:58 19/03/2010] [13:58 19/03/2010] 5A84322C06E99DA4115F832267C1376B
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_it\music\zuma.mo3 --a---- 305126 bytes [04:27 19/11/2003] [04:27 19/11/2003] D725D48EB0B44EABEECDE68701FB69F8
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_zh\Zuma.exe --a---- 2874152 bytes [13:58 19/03/2010] [13:58 19/03/2010] 67B1A33A89B9F6AD1AEA189F4ABA0E1D
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_zh\zumaz.ico --a---- 25214 bytes [21:04 10/05/2007] [21:04 10/05/2007] 9A4798DDAFB9672288CB0C0A2A4DC4CA
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_zh\music\zuma.mo3 --a---- 305126 bytes [02:11 20/09/2008] [02:11 20/09/2008] D725D48EB0B44EABEECDE68701FB69F8
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_zh-cn\Zuma.exe --a---- 1733928 bytes [13:58 19/03/2010] [13:58 19/03/2010] 0F761B43308AF599375B66933B5DF03C
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_zh-cn\zumaz.ico --a---- 25214 bytes [21:04 10/05/2007] [21:04 10/05/2007] 9A4798DDAFB9672288CB0C0A2A4DC4CA
    C:\Program Files (x86)\HP Games\Zuma Deluxe\wtmui_zh-cn\music\zuma.mo3 --a---- 305126 bytes [21:04 10/05/2007] [21:04 10/05/2007] D725D48EB0B44EABEECDE68701FB69F8
    C:\ProgramData\Microsoft\Windows\GameExplorer\{fdf91770-af7e-4c8d-bfd2-b40f6a1b7481}\PlayTasks\0\Zuma Deluxe.lnk --a---- 2240 bytes [09:20 08/02/2011] [09:20 08/02/2011] 4604B1DB9A89C4C685225D330B96696C
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Zuma Deluxe.lnk --a---- 2200 bytes [09:20 08/02/2011] [09:20 08/02/2011] 85643D77D438A9343970F99D7725A765
    C:\ProgramData\WildTangent\GameDiscovery\zuma.xml --a---- 7530 bytes [13:58 19/03/2010] [13:58 19/03/2010] 159BB5874E4FDB97CDF20FFEE5736305
    C:\Users\All Users\Microsoft\Windows\GameExplorer\{fdf91770-af7e-4c8d-bfd2-b40f6a1b7481}\PlayTasks\0\Zuma Deluxe.lnk --a---- 2240 bytes [09:20 08/02/2011] [09:20 08/02/2011] 4604B1DB9A89C4C685225D330B96696C
    C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Games\Zuma Deluxe.lnk --a---- 2200 bytes [09:20 08/02/2011] [09:20 08/02/2011] 85643D77D438A9343970F99D7725A765
    C:\Users\All Users\WildTangent\GameDiscovery\zuma.xml --a---- 7530 bytes [13:58 19/03/2010] [13:58 19/03/2010] 159BB5874E4FDB97CDF20FFEE5736305
    C:\Users\orianna\AppData\Local\Microsoft\Windows\GameExplorer\{fdf91770-af7e-4c8d-bfd2-b40f6a1b7481}\PlayTasks\0\Zuma Deluxe.lnk --a---- 2240 bytes [19:08 29/08/2011] [09:20 08/02/2011] 4604B1DB9A89C4C685225D330B96696C

    -= EOF =-

  3. #63
    Join Date
    Apr 2009
    Posts
    245
    it could have been. I didn't say it was zuma someone else did. I just posted the exe file name that pops up.

  4. #64
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    I didn't say it was zuma someone else did
    Well, you'll have to ask because I need to know if it's Zuma or Zumo.

  5. #65
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    Still with me?

  6. #66
    Join Date
    Apr 2009
    Posts
    245
    yes, it's was on here that he said it looked like zuma, and that was why he had a separate sign in for his significant other. I posted the exe as it showed up for java.

  7. #67
    Join Date
    Apr 2009
    Posts
    245
    ok, you said you saw zuma deluxe installed on my pc, and train made the comment about the significant other. But like i said, i've never installed zuma on my pc.

  8. #68
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    One more time...
    Zuma Deluxe came preinstalled on your computer as a part of HP Games - it's normal, nothing dangerous.

    However I still need you to answer my question...
    You can't install Java because of WHAT is interferring?
    ZumA or ZumO?

  9. #69
    Join Date
    Apr 2009
    Posts
    245
    it says zumodrive.exe

  10. #70
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    It looks like it came preinstalled by HP.
    You can see it in Autoruns log:
    + "ZumoDrive" "" "" "c:\program files (x86)\hewlett-packard\hp clouddrive\zumolauncher.lnk"
    I'm not familiar with it but it's definitely legit and safe.
    According to Google:
    ZumoDrive was a cloud-based file synchronization and storage service operated by Zecter, Inc. On December 22, 2010, Zecter announced its acquisition by Motorola Mobility.[1] The service enabled users to store and sync files online, and also between computers using their HybridCloud storage solution;[2] the latter functionality stopped working in approximately September 2011, while the former is undergoing formal takedown on May 1, 2012.
    Since it's not functional anymore you should disable it.

    Re-run Autoruns, click on "Logon" tab and UN-check:
    + "ZumoDrive"
    Restart computer and let me know how things are.

  11. #71
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    Still with me?

  12. #72
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    By tomorrow I'll mark this topic as abandoned if I won't get any word from you.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •