Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

After Root Kit - No Windows Defender or Store in Windows 8


  • This topic is locked This topic is locked
5 replies to this topic

#1 meanngreen04

meanngreen04

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 31 October 2013 - 08:37 AM

Got a rootkit.  It's removed, but I still have no access to Windows Defender or the Store in Windows 8.

 

Also, I'm not able to see other devices on my network.

 

Hours of searching led me here.

 

What I've done so far.

 

-  Root kit removed.

-  No objects found in Malware bytes

-  Clean scan with TDS

 

Maybe one of you evil geniuses can help me I'm stumped.  Above my paygrade.

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537  BrowserJavaVersion: 10.21.2
Run by Troy at 21:08:23 on 2013-10-30
Microsoft Windows 8 Pro  6.2.9200.0.1252.1.1033.18.4044.2083 [GMT -4:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\Program Files\IDT\WDM\STacSV64.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\WINDOWS\system32\svchost.exe -k apphost
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
C:\Program Files (x86)\HW group\HW VSP3s\HW_VSP3s_srv.exe
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\mqsvc.exe
C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files (x86)\ScreenConnect\Bin\Elsinore.ScreenConnect.Service.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Synergy\synergyd.exe
C:\Program Files\Synergy\synergyc.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files (x86)\Froyo_Android_Driver\Bin\MonServiceUDisk.exe
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
C:\Program Files (x86)\Novatel Wireless\LTE Support\VZWMSConfig.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4396.1016_x64__8wekyb3d8bbwe\LiveComm.exe
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\StarMicronics\TSP100\Software\20110922\Ondemand.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\WINDOWS\system32\svchost.exe -k WindowsMobile
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\mmc.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mStart Page = hxxp://www.google.com
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Microsoft Web Test Recorder 10.0 Helper: {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
EB: Web Test Recorder 10.0: {3142c289-f319-47f5-a594-a827028714c9} -
uRun: [RIMDeviceManager] "C:\Program Files (x86)\Common Files\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe" -RunServer
uRun: [PantechUTM.VZW] C:\Program Files (x86)\PantechEUT\VZW\Android\UTM\PantechUTM.exe
uRun: [ISUSPM]  -scheduler
uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [BlackBerryAutoUpdate] C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
mRun: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [VMM Mode Selection] C:\Program Files\HTC\ModeSelection\VMMModeSelection.exe
mRun: [PantechUTM.VZW] C:\Program Files (x86)\PantechEUT\VZW\Android\UTM\PantechUTM.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe"
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://javadl-esd.sun.com/update/1.7.0/jinstall-7u7-windows-i586.cab
TCP: NameServer = 192.168.2.1
TCP: Interfaces\{04645E16-1FD0-4135-B07B-0A01C6FE8A5A} : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{04645E16-1FD0-4135-B07B-0A01C6FE8A5A}\14E64627F69646455647865627 : DHCPNameServer = 192.168.2.254
TCP: Interfaces\{04645E16-1FD0-4135-B07B-0A01C6FE8A5A}\238373C4D4 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{04645E16-1FD0-4135-B07B-0A01C6FE8A5A}\2656C6B696E6E2269363 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{04645E16-1FD0-4135-B07B-0A01C6FE8A5A}\2656C6B696E6E2830356 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{04645E16-1FD0-4135-B07B-0A01C6FE8A5A}\A516368602C4567796372E08993702960586F6E656 : DHCPNameServer = 10.177.0.34 10.166.208.148
TCP: Interfaces\{13B0A6EE-08F2-440A-BCCE-D591DAC95162} : DHCPNameServer = 216.12.78.10 216.12.78.20
TCP: Interfaces\{4D2B9986-7066-4C62-9C16-1D87E5E0407D} : DHCPNameServer = 198.224.184.135 198.224.185.135
TCP: Interfaces\{8393EF3C-AC6A-4F24-8A18-29F1FBDB9129} : DHCPNameServer = 216.12.78.10 216.12.78.20
TCP: Interfaces\{B86DE1F1-A617-47C5-9C03-D2BC81D9FE98} : DHCPNameServer = 216.12.78.10 216.12.78.20
TCP: Interfaces\{DCB9F80A-B9C4-4EE7-A83C-4D6C6BC241E2} : DHCPNameServer = 216.12.78.10 216.12.78.20
TCP: Interfaces\{DD51818A-1D3C-46A0-89A2-02F55EC55CD8} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{E4998FA5-15BC-4DDB-8426-6D69C7977268} : DHCPNameServer = 216.12.78.10 216.12.78.20
Filter: text/x-mrml - {C51721BE-858B-4A66-A8BF-D2882FF49820} - C:\Program Files (x86)\Common Files\A&W\MidRadio.ocx
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [TSP100ecoOndemand] C:\Program Files (x86)\StarMicronics\TSP100\Software\20110922\Ondemand.exe
x64-Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
x64-Run: [Persistence] C:\WINDOWS\System32\igfxpers.exe
x64-Run: [Windows Mobile Device Center] C:\WINDOWS\WindowsMobile\wmdc.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [Fences] "C:\Program Files (x86)\Stardock\Fences\Fences.exe" /startup
x64-mPolicies-Explorer: NoDrives = dword:0
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe"
x64-Filter: text/x-mrml - {C51721BE-858B-4A66-A8BF-D2882FF49820} - <orphaned>
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
.
============= SERVICES / DRIVERS ===============
.
R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
R2 HW_VSP3s_Service;HW Virtual Serial Port (single);C:\Program Files (x86)\HW group\HW VSP3s\HW_VSP3s_srv.exe [2012-10-17 498968]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-12-12 13592]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-12 2425960]
R2 jhi_service;Intel® Identity Protection Technology Host Interface Service;C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-2-24 212944]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-23 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-23 701512]
R2 NWVZHelper;Novatel Wireless Verizon Device Helper;C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe [2010-6-14 270848]
R2 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-9-15 88576]
R2 ScreenConnect Relay;ScreenConnect Relay;C:\Program Files (x86)\ScreenConnect\Bin\Elsinore.ScreenConnect.Service.exe [2013-9-5 13368]
R2 ScreenConnect Session Manager;ScreenConnect Session Manager;C:\Program Files (x86)\ScreenConnect\Bin\Elsinore.ScreenConnect.Service.exe [2013-9-5 13368]
R2 ScreenConnect Web Server;ScreenConnect Web Server;C:\Program Files (x86)\ScreenConnect\Bin\Elsinore.ScreenConnect.Service.exe [2013-9-5 13368]
R2 Synergy;Synergy;C:\Program Files\Synergy\synergyd.exe [2013-5-3 423424]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-8-27 5087584]
R2 UDisk Monitor;UDisk Monitor;C:\Program Files (x86)\Froyo_Android_Driver\Bin\MonServiceUDisk.exe [2013-2-7 512000]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-12-12 2656280]
R2 VZWConfigService;VZW Config Service;C:\Program Files (x86)\Novatel Wireless\LTE Support\VZWMSConfig.exe [2012-4-16 218160]
R3 IntcDAud;Intel® Display Audio;C:\WINDOWS\System32\Drivers\IntcDAud.sys [2011-8-26 317440]
R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\Drivers\mbam.sys [2012-12-23 25928]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\WINDOWS\System32\Drivers\netr28x.sys [2013-4-15 2482960]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\WINDOWS\System32\Drivers\RtsPStor.sys [2011-12-12 339048]
R3 RTL8168;Realtek 8168 NT Driver;C:\WINDOWS\System32\Drivers\Rt630x64.sys [2012-6-2 589824]
R3 VSBC;Virtual Serial Bus Enumerator (Eltima Software);C:\WINDOWS\System32\Drivers\evsbc.sys [2012-10-17 32768]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
S2 Pantech UTM Service;Pantech Service;C:\Program Files (x86)\PCD\Pantech\EUDL\UTM\PantechService.exe [2010-11-23 65536]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S3 AndDiag;LGE Android Platform USB Serial Port;C:\WINDOWS\System32\Drivers\lganddiag64.sys [2013-8-16 27648]
S3 andnetadb;ADB Interface DriverNet;C:\WINDOWS\System32\Drivers\lgandnetadb.sys [2013-8-16 31744]
S3 AndNetDiag;LGE AndroidNet USB Serial Port;C:\WINDOWS\System32\Drivers\lgandnetdiag64.sys [2013-8-16 29184]
S3 AndNetDiag2;LGE AndroidNet For Diagnostics Port;C:\WINDOWS\System32\Drivers\lgandnetdiag264.sys [2013-8-16 29696]
S3 AndNetGps;LGE AndroidNet USB GPS NMEA Port;C:\WINDOWS\System32\Drivers\lgandnetgps64.sys [2013-8-16 28672]
S3 ANDNetModem;LGE AndroidNet USB Modem;C:\WINDOWS\System32\Drivers\lgandnetmodem64.sys [2013-8-16 36352]
S3 andnetndis;LGE AndroidNet NDIS Ethernet Adapter;C:\WINDOWS\System32\Drivers\lgandnetndis64.sys [2013-8-16 93696]
S3 androidusb;ADB Interface Driver;C:\WINDOWS\System32\Drivers\androidusb.sys [2013-2-15 38424]
S3 BTCFilterService;USB Networking Driver Filter Service;C:\WINDOWS\System32\Drivers\motfilt.sys [2009-1-29 6144]
S3 C771BUS;CASIO C771 USB Composite Device Driver;C:\WINDOWS\System32\Drivers\C771BUS.sys [2012-11-17 71752]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\Drivers\ssudbus.sys [2013-6-1 102368]
S3 evserial;Virtual Serial Ports Driver (Eltima Softwate);C:\WINDOWS\System32\Drivers\evserial.sys [2012-10-17 67072]
S3 Generalusbserialser20675;USB Legacy Serial Communication 20675;C:\WINDOWS\System32\Drivers\CT_U_USBSER.sys [2013-2-7 122368]
S3 HPAuto;HP Auto;C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-2-17 682040]
S3 HTCAND64;HTC Device Driver;C:\WINDOWS\System32\Drivers\androidusb.sys [2013-2-15 38424]
S3 htcnprot;HTC NDIS Protocol Driver;C:\WINDOWS\System32\Drivers\htcnprot.sys [2010-6-25 36928]
S3 HtcUsbMdmV64;HTC Proprietary USB Driver;C:\WINDOWS\System32\Drivers\HtcUsbMdmV64.sys [2012-10-20 121800]
S3 htcusbnet;HTC USB-NDIS miniport;C:\WINDOWS\System32\Drivers\htcusbnet.sys [2011-8-4 154624]
S3 HtcVCom32;HTC Diagnostic Port;C:\WINDOWS\System32\Drivers\HtcVComV64.sys [2007-2-9 111616]
S3 kc02us_bus;KYOCERA USB Composite Device KC02US Driver;C:\WINDOWS\System32\Drivers\kc02us_bus64.sys [2012-6-20 51608]
S3 kc02us_mdm;KYOCERA USB KC02US Modem Driver;C:\WINDOWS\System32\Drivers\kc02us_mdm64.sys [2012-6-20 73624]
S3 kc02us_serd;KYOCERA USB KC02US Serial Port Driver;C:\WINDOWS\System32\Drivers\kc02us_serd64.sys [2012-6-20 66968]
S3 kwkxusb;Kyocera CDMA Wireless Modem Driver;C:\WINDOWS\System32\Drivers\kwusb2k.sys [2007-8-28 213120]
S3 massfilter_hs;HS HandSet Mass Storage Filter Driver;C:\WINDOWS\System32\Drivers\massfilter_hs.sys [2013-1-22 18456]
S3 motandroidusb;Mot ADB Interface Driver;C:\WINDOWS\System32\Drivers\motoandroid.sys [2009-7-10 31744]
S3 motccgp;Motorola USB Composite Device Driver;C:\WINDOWS\System32\Drivers\motccgp.sys [2012-6-11 22016]
S3 motccgpfl;MotCcgpFlService;C:\WINDOWS\System32\Drivers\motccgpfl.sys [2012-1-25 9728]
S3 MotDev;Motorola Inc. USB Device;C:\WINDOWS\System32\Drivers\motodrv.sys [2009-5-8 53632]
S3 Motousbnet;Motorola USB Networking Driver Service;C:\WINDOWS\System32\Drivers\Motousbnet.sys [2012-6-8 27136]
S3 motport;Motorola USB Diagnostic Port;C:\WINDOWS\System32\Drivers\motport.sys [2012-6-8 31232]
S3 motusbdevice;Motorola USB Dev Driver;C:\WINDOWS\System32\Drivers\motusbdevice.sys [2011-11-8 11776]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\WINDOWS\System32\Drivers\netaapl64.sys [2012-3-26 22528]
S3 NWUSBModem_000;Novatel Wireless USB Modem Driver (vGEN);C:\WINDOWS\System32\Drivers\nwusbmdm_000.sys [2012-8-7 217856]
S3 NWUSBPort_000;Novatel Wireless USB Status Port Driver (vGEN);C:\WINDOWS\System32\Drivers\nwusbser_000.sys [2012-8-7 217856]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2012-10-1 178824]
S3 PortEmulator;Port Emulator (Star);C:\Program Files\StarMicronics\TSP100\Software\20110922\portemu_umdf_tsp100.exe [2011-10-20 203776]
S3 PTAPCBUS;Pantech Android USB Composite Device (PTAPC);C:\WINDOWS\System32\Drivers\PTAPCBUS.sys [2012-11-15 103040]
S3 PTHSBUS;PANTECH Handset USB Composite Device Driver (UDP);C:\WINDOWS\System32\Drivers\PTHSBUS.sys [2013-3-6 70928]
S3 qcusbser;ALCATEL USB Device for Legacy Serial Communication;C:\WINDOWS\System32\Drivers\qcusbser.sys [2012-10-25 229888]
S3 smhwdev;SmartPhone dummy USB PNP Device (Normal);C:\WINDOWS\System32\Drivers\smhwdev.sys [2012-10-18 114432]
S3 smhwser;USB Device for Legacy Serial Communication (Normal);C:\WINDOWS\System32\Drivers\smhwser.sys [2012-10-18 122624]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\WINDOWS\System32\Drivers\ssadbus.sys [2013-6-1 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\WINDOWS\System32\Drivers\ssadmdfl.sys [2013-6-1 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\WINDOWS\System32\Drivers\ssadmdm.sys [2013-6-1 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\WINDOWS\System32\Drivers\ssadserd.sys [2013-6-1 146920]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\Drivers\ssudmdm.sys [2013-6-1 203104]
S3 ssudrmnet;SAMSUNG Mobile USB RMNET Drivers;C:\WINDOWS\System32\Drivers\ssudrmnet.sys [2013-6-1 67424]
S3 ssudrmnetmp;SAMSUNG Mobile USB RMNET Network Adapter Drivers;C:\WINDOWS\System32\Drivers\ssudrmnetmp.sys [2013-6-1 93024]
S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);C:\WINDOWS\System32\Drivers\ssudserd.sys [2013-6-1 203104]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TcpEmulatorTSP100LAN;TCP Port Emulator (TSP100);C:\Program Files\StarMicronics\TSP100\Software\20110922\tcpemu_tsp100lan.exe [2011-10-20 351744]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-7-25 126976]
S3 teamviewervpn;TeamViewer VPN Adapter;C:\WINDOWS\System32\Drivers\teamviewervpn.sys [2012-11-18 35112]
S3 USBAAPL64;Apple Mobile USB Driver;C:\WINDOWS\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 UsbGps;LGE Mobile USB GPS NMEA Port;C:\WINDOWS\System32\Drivers\lgx64gps.sys [2013-8-16 27136]
S3 usbsnoop;USB Snoopy Filter Driver Service;C:\WINDOWS\System32\Drivers\usbsnoop.sys [2013-2-25 50496]
S3 vmbusr;Virtual Machine Bus Provider;C:\WINDOWS\System32\Drivers\vmbusr.sys [2012-7-25 117248]
S3 vzandnetadb;ADB Interface DriverNet for VZW;C:\WINDOWS\System32\Drivers\lgvzandnetadb.sys [2012-5-9 31744]
S3 vzandnetdiag;LGE AndroidNet for VZW USB Serial Port;C:\WINDOWS\System32\Drivers\lgvzandnetdiag64.sys [2012-5-9 29696]
S3 vzandnetdiag2;LGE AndroidNet for VZW Diagnostics Port;C:\WINDOWS\System32\Drivers\lgvzandnetdiag264.sys [2012-5-9 29696]
S3 vzandnetgps;LGE AndroidNet for VZW USB GPS NMEA Port;C:\WINDOWS\System32\Drivers\lgvzandnetgps64.sys [2012-5-9 28672]
S3 vzandnetmodem;LGE AndroidNet for VZW USB Modem;C:\WINDOWS\System32\Drivers\lgvzandnetmdm64.sys [2012-5-9 36864]
S3 vzandnetndis;LGE AndroidNet for VZW NDIS Ethernet Adapter;C:\WINDOWS\System32\Drivers\lgvzandnetndis64.sys [2012-5-9 94208]
S3 WSDScan;WSD Scan Support;C:\WINDOWS\System32\Drivers\WSDScan.sys [2012-11-18 23552]
S3 zghsdiag;ZTE General Handset Diagnostic Port;C:\WINDOWS\System32\Drivers\zghsdiag.sys [2013-1-22 129432]
S3 zghsmdm;ZTE General Handset USB Modem Proprietary;C:\WINDOWS\System32\Drivers\zghsmdm.sys [2013-1-22 129432]
S3 zghsnmea;ZTE General Handset NMEA Port;C:\WINDOWS\System32\Drivers\zghsnmea.sys [2013-1-22 129432]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]
FileExt: .js: Applications\notepad.exe=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2013-10-31 01:03:04 -------- d-----w- C:\WINDOWS\System32\catroot2
2013-10-31 00:42:27 -------- d-----w- C:\WINDOWS\System32\wbem\repository
2013-10-30 23:05:02 -------- d-----w- C:\Program Files (x86)\Tweaking.com
2013-10-30 22:35:55 -------- d-sh--w- C:\$RECYCLE.BIN
2013-10-30 22:08:52 98816 ----a-w- C:\WINDOWS\sed.exe
2013-10-30 22:08:52 256000 ----a-w- C:\WINDOWS\PEV.exe
2013-10-30 22:08:52 208896 ----a-w- C:\WINDOWS\MBR.exe
2013-10-30 22:08:46 -------- d-----w- C:\ComboFix
2013-10-30 21:23:38 -------- d-----w- C:\AdwCleaner
2013-10-30 17:50:11 -------- d-----w- C:\Brother
2013-10-30 17:49:57 45056 ----a-w- C:\WINDOWS\SysWow64\BRTCPCON.DLL
2013-10-30 17:49:53 103736 ----a-w- C:\WINDOWS\SysWow64\BRRBTOOL.EXE
2013-10-30 17:49:51 77824 ----a-w- C:\WINDOWS\SysWow64\BRLMW03A.DLL
2013-10-30 17:49:51 25299 ----a-w- C:\WINDOWS\SysWow64\BRLM03A.DLL
2013-10-30 17:49:51 180224 ----a-w- C:\WINDOWS\SysWow64\BROSNMP.DLL
2013-10-30 17:49:46 73728 ------w- C:\WINDOWS\SysWow64\BrDctF2.dll
2013-10-30 17:49:46 5120 ------w- C:\WINDOWS\SysWow64\BrDctF2S.dll
2013-10-30 17:49:46 5120 ------w- C:\WINDOWS\SysWow64\BrDctF2L.dll
2013-10-30 17:49:46 245760 ------w- C:\WINDOWS\SysWow64\NSSearch.dll
2013-10-30 17:42:22 -------- d-----w- C:\Program Files (x86)\ControlCenter4
2013-10-30 17:42:18 290304 ------w- C:\WINDOWS\System32\BrfxDA5c.dll
2013-10-30 17:41:48 -------- d-----w- C:\ProgramData\Brother
2013-10-30 17:27:53 -------- d-----w- C:\Program Files (x86)\Brother
2013-10-26 17:46:41 -------- d-----w- C:\Program Files (x86)\Sonim
2013-10-26 17:36:34 -------- d-----w- C:\Program Files (x86)\PHILIPS
2013-10-26 17:36:30 -------- d-----w- C:\Program Files (x86)\Common Files\ANWSOFT
2013-10-26 17:36:25 -------- d-----w- C:\Program Files (x86)\Sonim PC-Tools
2013-10-26 17:36:25 -------- d-----w- C:\Program Files (x86)\Common Files\A&W
2013-10-26 17:36:03 729088 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2013-10-26 17:36:03 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2013-10-26 17:36:03 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2013-10-26 17:36:03 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2013-10-26 17:36:03 192512 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2013-10-26 17:35:59 311428 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2013-10-26 17:35:59 188548 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2013-10-22 16:36:33 315568 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10222.bin
2013-10-09 15:26:03 652288 ----a-w- C:\WINDOWS\System32\comctl32.dll
2013-10-09 15:25:59 817664 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-10-05 20:34:05 -------- d-----w- C:\Program Files (x86)\Telecom Logic
2013-10-04 19:18:09 -------- d-----w- C:\Program Files (x86)\ExamDiff
.
==================== Find3M  ====================
.
2013-10-02 01:38:13 78296 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2013-10-02 01:38:13 694232 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2013-09-22 23:28:06 1767936 ----a-w- C:\WINDOWS\SysWow64\wininet.dll
2013-09-22 23:27:49 2876928 ----a-w- C:\WINDOWS\SysWow64\jscript9.dll
2013-09-22 22:55:10 2241024 ----a-w- C:\WINDOWS\System32\wininet.dll
2013-09-22 22:54:51 3959296 ----a-w- C:\WINDOWS\System32\jscript9.dll
2013-09-13 22:36:37 35328 ----a-w- C:\WINDOWS\SysWow64\wuapp.exe
2013-09-13 22:36:23 84992 ----a-w- C:\WINDOWS\SysWow64\wudriver.dll
2013-09-13 22:36:23 126976 ----a-w- C:\WINDOWS\SysWow64\wuwebv.dll
2013-09-13 22:36:14 247296 ----a-w- C:\WINDOWS\SysWow64\ubpm.dll
2013-09-13 22:34:14 40448 ----a-w- C:\WINDOWS\System32\wuapp.exe
2013-09-13 22:33:55 252928 ----a-w- C:\WINDOWS\System32\WUSettingsProvider.dll
2013-09-13 22:33:55 142848 ----a-w- C:\WINDOWS\System32\wuwebv.dll
2013-09-13 22:33:54 99328 ----a-w- C:\WINDOWS\System32\wudriver.dll
2013-09-13 22:33:54 1622016 ----a-w- C:\WINDOWS\System32\wucltux.dll
2013-09-13 22:33:42 328192 ----a-w- C:\WINDOWS\System32\ubpm.dll
2013-09-13 22:33:39 175104 ----a-w- C:\WINDOWS\System32\storewuauth.dll
2013-08-30 05:43:40 61784 ----a-w- C:\WINDOWS\System32\drivers\crashdmp.sys
2013-08-30 05:20:13 1173504 ----a-w- C:\WINDOWS\System32\UIAutomationCore.dll
2013-08-29 23:48:12 914432 ----a-w- C:\WINDOWS\SysWow64\UIAutomationCore.dll
2013-08-29 03:11:39 33280 ----a-w- C:\WINDOWS\System32\drivers\usbser.sys
2013-08-23 05:11:57 4040192 ----a-w- C:\WINDOWS\System32\win32k.sys
2013-08-21 06:39:29 465240 ----a-w- C:\WINDOWS\System32\drivers\fvevol.sys
2013-08-16 05:41:13 58200 ----a-w- C:\WINDOWS\System32\drivers\dam.sys
2013-08-16 05:39:26 2371728 ----a-w- C:\WINDOWS\System32\WSService.dll
2013-08-16 05:32:48 209200 ----a-w- C:\WINDOWS\System32\NotificationUI.exe
2013-08-16 05:22:11 4917760 ----a-w- C:\WINDOWS\System32\sppsvc.exe
2013-08-16 05:21:43 688640 ----a-w- C:\WINDOWS\System32\WSShared.dll
2013-08-16 05:21:43 183808 ----a-w- C:\WINDOWS\System32\WSSync.dll
2013-08-16 05:21:42 204800 ----a-w- C:\WINDOWS\System32\WSClient.dll
2013-08-16 05:21:42 198656 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll
2013-08-16 05:21:42 163840 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-16 05:21:18 368640 ----a-w- C:\WINDOWS\System32\sppwinob.dll
2013-08-16 05:21:18 1164288 ----a-w- C:\WINDOWS\System32\sppobjs.dll
2013-08-16 05:21:12 81408 ----a-w- C:\WINDOWS\System32\setupcln.dll
2013-08-16 05:21:00 120320 ----a-w- C:\WINDOWS\System32\sppc.dll
2013-08-16 05:20:30 105984 ----a-w- C:\WINDOWS\System32\WinSetupUI.dll
2013-08-15 22:43:03 562688 ----a-w- C:\WINDOWS\SysWow64\WSShared.dll
2013-08-15 22:43:03 159232 ----a-w- C:\WINDOWS\SysWow64\WSSync.dll
2013-08-15 22:43:02 83968 ----a-w- C:\WINDOWS\SysWow64\OEMLicense.dll
2013-08-15 22:43:02 167424 ----a-w- C:\WINDOWS\SysWow64\WSClient.dll
2013-08-15 22:43:02 143872 ----a-w- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
2013-08-15 22:43:02 124928 ----a-w- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-15 22:42:52 76800 ----a-w- C:\WINDOWS\SysWow64\setupcln.dll
2013-08-15 22:42:47 91648 ----a-w- C:\WINDOWS\SysWow64\sppc.dll
2013-08-10 06:30:22 151896 ----a-w- C:\WINDOWS\System32\drivers\tpm.sys
2013-08-10 05:21:51 448512 ----a-w- C:\WINDOWS\System32\SettingSync.dll
2013-08-10 05:21:51 128512 ----a-w- C:\WINDOWS\System32\SettingSyncInfo.dll
2013-08-10 05:21:01 817152 ----a-w- C:\WINDOWS\System32\kerberos.dll
2013-08-10 03:58:51 356352 ----a-w- C:\WINDOWS\SysWow64\SettingSync.dll
2013-08-10 03:58:09 656896 ----a-w- C:\WINDOWS\SysWow64\kerberos.dll
2013-08-07 05:15:02 144896 ----a-w- C:\WINDOWS\System32\tssdisai.dll
2013-08-03 06:40:49 462336 ----a-w- C:\WINDOWS\System32\sysmon.ocx
2013-08-03 06:40:17 566784 ----a-w- C:\WINDOWS\System32\wvc.dll
2013-08-03 06:40:01 1374208 ----a-w- C:\WINDOWS\System32\wdc.dll
2013-08-03 05:14:15 399360 ----a-w- C:\WINDOWS\SysWow64\sysmon.ocx
2013-08-03 05:13:57 437248 ----a-w- C:\WINDOWS\SysWow64\wvc.dll
2013-08-03 05:13:43 1245696 ----a-w- C:\WINDOWS\SysWow64\wdc.dll
2013-08-02 06:28:29 10116608 ----a-w- C:\WINDOWS\System32\twinui.dll
2013-08-02 06:26:53 2304512 ----a-w- C:\WINDOWS\System32\authui.dll
2013-08-02 05:08:18 8858112 ----a-w- C:\WINDOWS\SysWow64\twinui.dll
2013-08-02 05:06:50 2035712 ----a-w- C:\WINDOWS\SysWow64\authui.dll
2003-03-19 02:20:00 1060864 ----a-w- C:\Program Files (x86)\mfc71.dll
2003-03-19 02:12:12 1047552 ----a-w- C:\Program Files (x86)\mfc71u.dll
2003-03-19 01:44:38 57344 ----a-w- C:\Program Files (x86)\MFC71ENU.DLL
2003-03-19 01:44:38 49152 ----a-w- C:\Program Files (x86)\MFC71KOR.DLL
2003-03-19 01:44:36 61440 ----a-w- C:\Program Files (x86)\MFC71ITA.DLL
2003-03-19 01:44:36 61440 ----a-w- C:\Program Files (x86)\MFC71ESP.DLL
2003-03-19 01:44:36 45056 ----a-w- C:\Program Files (x86)\MFC71CHT.DLL
2003-03-19 01:44:36 40960 ----a-w- C:\Program Files (x86)\MFC71CHS.DLL
2003-03-19 01:44:34 65536 ----a-w- C:\Program Files (x86)\MFC71DEU.DLL
2003-03-19 01:44:34 61440 ----a-w- C:\Program Files (x86)\MFC71FRA.DLL
2003-03-19 01:44:34 49152 ----a-w- C:\Program Files (x86)\MFC71JPN.DLL
.
============= FINISH: 21:09:31.00 ===============
 

Attached Files



BC AdBot (Login to Remove)

 


#2 meanngreen04

meanngreen04
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 31 October 2013 - 10:02 AM

Am I in the right section?



#3 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:07:30 AM

Posted 01 November 2013 - 09:17 AM

Hello! Welcome to BleepingComputer Forums! :welcome:
My name is Georgi and and I will be helping you with your computer problems.

Before we begin, please note the following:

  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.

 

 

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
  • I'll catch you tomorror sinice I need my sleep. :)

 

 

Regards,
Georgi


cXfZ4wS.png


#4 meanngreen04

meanngreen04
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:30 AM

Posted 01 November 2013 - 11:24 AM

Hey Georgi,

 

Thanks for coming up.  So, last night my computer magically decided to update to 8.1.  Now all the problems are fixed.  So, you may close this thread.  Thanks for the assistance.



#5 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:07:30 AM

Posted 01 November 2013 - 11:37 AM

Hey,

 

Thank you for the feedback. Let me know via PM if you want this topic reopened.

 

Have a nice day! :)

 

 

Regards,

Georgi


cXfZ4wS.png


#6 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:07:30 AM

Posted 01 November 2013 - 11:38 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

cXfZ4wS.png





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users