Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

A FAST QUESTION: mORE OR LESS


  • This topic is locked This topic is locked
3 replies to this topic

#1 Notnew

Notnew

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:12:53 PM

Posted 21 January 2012 - 03:01 PM

What does this mean,

CMD: bcdedit /enum all /v





Here's the hole thing,if you need more info but just interested in line above.

Start
SubSystems: [Windows] ==> ZeroAccess
C:\Users\Audrey\AppData\Local\co1lh55qkp32280fl5r67q0u658b3y520866f4h1v1sce
C:\ProgramData\co1lh55qkp32280fl5r67q0u658b3y520866f4h1v1sce
C:\Users\Audrey\AppData\Local\173516x1g286j182n624q0xwd5b2
C:\ProgramData\173516x1g286j182n624q0xwd5b2
C:\Windows\system64
CMD: bcdedit /enum all /v
End

Edited by hamluis, 21 January 2012 - 04:23 PM.
Moved from General Chat to Am I Infected.


BC AdBot (Login to Remove)

 


#2 the_patriot11

the_patriot11

    High Tech Redneck


  • BC Advisor
  • 6,755 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Wyoming USA
  • Local time:10:53 AM

Posted 21 January 2012 - 03:09 PM

http://technet.microsoft.com/en-us/library/cc709667(WS.10).aspx

Hope that helps :D

picard5.jpg

 

Primary system: Motherboard: ASUS M4A89GTD PRO/USB3, Processor: AMD Phenom II x4 945, Memory: 16 gigs of Patriot G2 DDR3 1600, Video: AMD Sapphire Nitro R9 380, Storage: 1 WD 500 gig HD, 1 Hitachi 500 gig HD, and Power supply: Coolermaster 750 watt, OS: Windows 10 64 bit. 

Media Center: Motherboard: Gigabyte mp61p-S3, Processor: AMD Athlon 64 x2 6000+, Memory: 6 gigs Patriot DDR2 800, Video: Gigabyte GeForce GT730, Storage: 500 gig Hitachi, PSU: Seasonic M1211 620W full modular, OS: Windows 10.

If I don't reply within 24 hours of your reply, feel free to send me a pm.


#3 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:05:53 PM

Posted 21 January 2012 - 03:16 PM

To add to the above it seems like you are infected.

#4 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,920 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:53 PM

Posted 21 January 2012 - 04:41 PM

This looks like a part of a specialized malware removal tool (FRST) script or log (I suspect the former). I strongly recommend not to try any fix that was created specifically for another user.

The specific command you asked about enumerates the BCD (boot configuration data) stored on your computer. This data is used to specify how Windows boots.

As you have also a topic opened here, I am closing this topic to avoid any confusion. If you need any further help removing malware, please refer to that topic!

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users