Malwarebytes removed infection - anything else needed?

April 26, 2011

System:
Windows XP SP3, Avast! v.6.0.1091, MalwareBytes Antimalware Pro

While running a scan with Secunia Personal Software Inspector, I got a popup from Malwarebytes
Antimalware Pro that it had blocked execution of a malicious process in the following file:

Files Infected:
c:\WINDOWS\system32\reinstallbackups\0020\driverfiles\nvcpl.dll (Malware.Gen) -> Quarantined and deleted successfully.

I ran the following scans:

• Trend Micro Housecall - online: nothing found
• F-Secure - online: (1) tracking cookie found and removed
• Spybot Search and Destroy with MG recommended settings: No Threats Found
• SuperAntispyware ver. 4.50.1002 with MG recommended settings and updated definitions: nothing found

Malwarebytes scan of Windows directory found the infected file which was removed.

All of the files in that folder, and others like it, seem to be related to Nvidia graphics driver
from re-installation or driver update installation.
The files are all dated for October 2006.

I ran another scan with Secunia PSI and did Not get a MalwareBytes popup.

Question:
Is any other action needed and should I delete the entire folder(s) of these obsolete driver files?

Thanks guys!!!
I have learned a lot from the MG team and you have been very helpful.

 

Hello Doctor M

Good to hear from you. :wave

That's good news.
I did know that I was one step behind on the SAS version, but since I have not had
any problems and I always update the definitions before doing a scan, I figured it could wait a while.

There are no explicit instructions for performing an upgrade for SAS even in the site's FAQ section - at least I didn't find any.
The install program detects the installed version and alerts that it must be removed, and then offers to UnInstall.
However, I canceled that and instead used their uninstall routine available at the download site.

All seems OK.
Thanks.