Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unknown Spyware/adware interferes with Steam and randomly changes Proxy settings


  • This topic is locked This topic is locked
2 replies to this topic

#1 GameGenie

GameGenie

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:59 AM

Posted 29 May 2014 - 03:38 PM

I'm getting "update Flash player" and other pop ups while using Steam. In addition my proxy settings keep getting changed. Every once in a while my browsers will not connect to the internet even though I have a connection. I have to go to internet settings and uncheck the box that says to use a proxy in order for them to work. DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.17041 BrowserJavaVersion: 10.55.2 Run by Skynet at 16:32:15 on 2014-05-29 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4084.1243 [GMT -4:00] . AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted c:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Program Files\Dell\DellDock\DockLogin.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\atieclxx.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe C:\Windows\system32\taskhost.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\SysWOW64\PnkBstrB.exe C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\Microsoft\System Update kb77600\WindowsUpdater.exe C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe C:\Program Files (x86)\AVG\AVG2014\avgemca.exe C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.6\ToolbarUpdater.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.6\loggingserver.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\IDT\WDM\sttray64.exe C:\Windows\System32\rundll32.exe C:\Program Files\Logitech Gaming Software\LCore.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Skynet\AppData\Local\Akamai\netsession_win.exe C:\Users\Skynet\AppData\Local\Apps\2.0\HG31AV09.5DZ\W57EQLXH.T31\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe C:\Users\Skynet\AppData\Local\Akamai\netsession_win.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\taskeng.exe C:\Windows\System32\jusched.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\EMET 4.0\EMET_Agent.exe C:\Windows\SysWOW64\ctfmon.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\wuauclt.exe C:\Program Files (x86)\Origin\Origin.exe C:\Program Files (x86)\Origin\OriginClientService.exe C:\Windows\system32\taskhost.exe C:\Program Files\Java\jre6\bin\javaw.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\MSR\Privoxy\privoxy.exe C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe C:\Program Files (x86)\Steam\Steam.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uSearch Bar = Preserve uProxyServer = hxxp=127.0.0.1:8118;https=127.0.0.1:8118 BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll BHO: DivX Plus Web Player HTML5 : {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: FAIESSOHelper Class: {A2F122DA-055F-4df7-8F24-7354DBDBA85B} - c:\Program Files (x86)\Sensible Vision\Fast Access\FAIESSO.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL BHO: QTTabBar AutoLoader: {d2bf470e-ed1c-487f-a777-2bd8835eb6ce} - BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll TB: QTTabBar: {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - TB: QTTab Standard Buttons: {d2bf470e-ed1c-487f-a666-2bd8835eb6ce} - TB: AVG SafeGuard toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.6.542\AVG SafeGuard toolbar_toolbar.dll uRun: [Google Update] "C:\Users\Skynet\AppData\Local\Google\Update\GoogleUpdate.exe" /c uRun: [GoogleChromeAutoLaunch_03FD74F24729D87304298A1685850580] "C:\Users\Skynet\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window uRun: [Akamai NetSession Interface] "C:\Users\Skynet\AppData\Local\Akamai\netsession_win.exe" uRun: [DellSystemDetect] C:\Users\Skynet\AppData\Local\Apps\2.0\HG31AV09.5DZ\W57EQLXH.T31\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe uRun: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart mRun: [FAStartup] mRunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} - hxxp://support.dell.com/systemprofiler/DellSystemLite.CAB DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.4.16.0.cab TCP: NameServer = 10.64.1.1 TCP: Interfaces\{2D0972EF-FF46-419E-BA52-C6D480EA6F6D} : DHCPNameServer = 10.64.1.1 TCP: Interfaces\{9A477DAB-24EC-4CAC-AE67-63E13B92D0CF} : DHCPNameServer = 192.168.42.129 TCP: Interfaces\{B7E4EF4F-E0F0-46A4-85CE-5546AAE2B01A} : DHCPNameServer = 10.64.1.1 TCP: Interfaces\{B7E4EF4F-E0F0-46A4-85CE-5546AAE2B01A}\4424854533 : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{B7E4EF4F-E0F0-46A4-85CE-5546AAE2B01A}\73831473 : DHCPNameServer = 192.168.0.1 TCP: Interfaces\{B7E4EF4F-E0F0-46A4-85CE-5546AAE2B01A}\84F6D656445607F64702055726C69636027596D26496 : DHCPNameServer = 4.2.2.1 4.2.2.2 TCP: Interfaces\{B7E4EF4F-E0F0-46A4-85CE-5546AAE2B01A}\C696E6B6379737 : DHCPNameServer = 209.18.47.61 209.18.47.62 TCP: Interfaces\{B7E4EF4F-E0F0-46A4-85CE-5546AAE2B01A}\E4F6E656 : DHCPNameServer = 209.18.47.61 209.18.47.62 Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\HmelyoffLabs\VHToolkit\Skype4COM.dll Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.6\ViProtocol.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll Notify: FastAccess - c:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll SSODL: WebCheck - LSA: Notification Packages = scecli FAPassSync x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL x64-BHO: QTTabBar AutoLoader: {d2bf470e-ed1c-487f-a777-2bd8835eb6ce} - x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll x64-TB: QTTabBar: {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - x64-TB: QTTab Standard Buttons: {d2bf470e-ed1c-487f-a666-2bd8835eb6ce} - x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey x64-Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe x64-Run: [RunDLLEntry] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\AmbRunE.dll,RunDLLEntry x64-Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe" x64-Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE x64-Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized x64-Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" x64-Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab x64-DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll x64-SSODL: WebCheck - Hosts: 127.0.0.1 www.spywareinfo.com . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Skynet\AppData\Roaming\Mozilla\Firefox\Profiles\p98zc3wt.default\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxp://mysearch.avg.com?pid=safeguard&sg=&cid=%7B16cc6d09-6243-4c8a-9dcb-d852e874dfd2%7D&mid=e2a82c8bed5647d2ba79d16fffc12db7- 6bb8875a0b43327fafee2dd4238b0bf10ca82bd8&ds=AVG&coid=avgtbavg&cmpid=&v=18.1.5.512〈=en&pr=fr&d=2014-04-19%2008%3A26%3A40&sap=hp FF - prefs.js: keyword.URL - FF - prefs.js: network.proxy.http - 127.0.0.1 FF - prefs.js: network.proxy.http_port - 8118 FF - prefs.js: network.proxy.ssl - 127.0.0.1 FF - prefs.js: network.proxy.ssl_port - 8118 FF - prefs.js: network.proxy.type - 1 FF - plugin: C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL FF - plugin: C:\Program Files (x86)\Common Files\doubleTwist\NPPodcast.dll FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll FF - plugin: C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\npDgnRia.dll FF - plugin: C:\Program Files (x86)\SumatraPDF\npPdfViewer.dll FF - plugin: C:\Program Files (x86)\Vizzed\Vizzed Retro Game Room\NpVizzedRgr.dll FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll FF - plugin: C:\Users\Skynet\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll . ---- FIREFOX POLICIES ---- FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(extensions.autoDisableScopes, 0 FF - user.js: extensions.shownSelectionUI - true . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2014-5-13 191768] R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2014-5-13 323352] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2014-5-13 130328] R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2014-5-13 31512] R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2014-1-25 268512] R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2010-3-1 55856] R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2014-5-13 152344] R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2014-5-13 236312] R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2014-5-13 235800] R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2014-5-13 273176] R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2014-4-19 50464] R1 MpKsl186c86e3;MpKsl186c86e3;C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E6FCE5F8-B0C5-4F9C-945D-F83EB9518C75}\MpKsl186c86e3.sys [2014-5-29 45352] R1 PStrip64;PStrip64;C:\Windows\System32\drivers\pstrip64.sys [2010-11-29 13008] R2 {73526619-C24F-470B-9BED-53D455FBB5C6};Power Control [2013/03/17 13:02:01];C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [2013-1-22 130320] R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe [2010-8-24 89600] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-4-29 238080] R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-5-13 3644432] R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-5-13 292424] R2 cpuz134;cpuz134;C:\Windows\System32\drivers\cpuz134_x64.sys [2010-12-3 21480] R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648] R2 DragonSvc;Dragon Service;C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe [2012-7-18 310232] R2 FAService;FAService;C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe [2009-6-24 2368776] R2 ntk_PowerDVD12;ntk_PowerDVD12;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [2013-3-17 83704] R2 rimspci;rimspci;C:\Windows\System32\drivers\rimspe64.sys [2010-2-1 60416] R2 risdpcie;risdpcie;C:\Windows\System32\drivers\risdpe64.sys [2010-2-1 80896] R2 rixdpcie;rixdpcie;C:\Windows\System32\drivers\rixdpe64.sys [2010-2-1 55808] R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2010-3-1 658656] R2 System Update kb77600;System Update kb77600;C:\Windows\Microsoft\System Update kb77600\WindowsUpdater.exe [2014-3-27 17920] R2 vToolbarUpdater18.1.6;vToolbarUpdater18.1.6;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.6\ToolbarUpdater.exe [2014-5-26 1801240] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-4-10 231440] R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2010-3-1 172704] R3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2010-2-1 321064] R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408] R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008] R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\System32\drivers\MijXfilt.sys [2013-3-10 121416] S1 atitray;atitray;C:\Program Files (x86)\Ray Adams\ATI Tray Tools\atitray64.sys [2007-5-22 23464] S1 fanio;FanIO driver;C:\Windows\System32\drivers\fanio.sys [2011-10-20 22528] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 SessionLauncher;SessionLauncher;c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe --> c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe [?] S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2010-3-1 35104] S3 cpudrv64;cpudrv64;C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-6-2 17864] S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-3-1 79360] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-3-1 79360] S3 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-3-17 294664] S3 Desura Install Service;Desura Install Service;C:\Program Files (x86)\Common Files\Desura\desura_service.exe [2014-1-19 131912] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-1-9 98616] S3 DrvAgent64;DrvAgent64;C:\Windows\SysWOW64\drivers\DrvAgent64.SYS [2012-10-29 21712] S3 ENTECH64;ENTECH64;C:\Windows\System32\drivers\Entech64.sys [2010-12-4 12744] S3 FACAP;facap, FastAccess Video Capture;C:\Windows\System32\drivers\facap.sys [2008-9-24 238848] S3 HTCAND64;HTC Device Driver;C:\Windows\System32\drivers\ANDROIDUSB.sys [2012-6-1 31744] S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-5-23 111616] S3 ivusb;Initio Driver for USB Default Controller;C:\Windows\System32\drivers\ivusb.sys [2010-7-29 29720] S3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\System32\drivers\NETw5s64.sys [2010-2-1 6952960] S3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2010-10-24 133928] S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-3-11 347872] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-25 19456] S3 RT-USB;Ross-Tech USB driver;C:\Windows\System32\drivers\RT-USB64.SYS [2010-6-16 70984] S3 Sound Blaster X-Fi MB Licensing Service;Sound Blaster X-Fi MB Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [2010-3-1 79360] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-9-19 203104] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-21 56832] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-3-26 1255736] S4 CLHNServiceForPowerDVD12;CLHNServiceForPowerDVD12;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [2013-3-17 89864] S4 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-3-17 77576] S4 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2014-3-31 137336] S4 RoxMediaDB10;RoxMediaDB10;C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCom\RoxMediaDB10.exe [2009-6-26 1124848] . =============== File Associations =============== . FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice] . =============== Created Last 30 ================ . 2014-05-29 18:38:14 75888 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E6FCE5F8-B0C5-4F9C-945D-F83EB9518C75}\offreg.dll 2014-05-29 18:38:06 45352 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E6FCE5F8-B0C5-4F9C-945D-F83EB9518C75}\MpKsl186c86e3.sys 2014-05-29 18:37:11 10702536 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E6FCE5F8-B0C5-4F9C-945D-F83EB9518C75}\mpengine.dll 2014-05-29 06:06:38 -------- d-----w- C:\Users\Skynet\AppData\Local\Microsoft Games 2014-05-29 02:41:25 -------- d-----w- C:\Users\Skynet\AppData\Roaming\Origin 2014-05-29 02:41:23 -------- d-----w- C:\Users\Skynet\AppData\Local\Origin 2014-05-29 02:29:49 -------- d-----w- C:\ProgramData\EA Core 2014-05-29 02:28:59 -------- d-----w- C:\Program Files (x86)\Origin 2014-05-29 00:11:32 10702536 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2014-05-27 01:54:00 -------- d-----w- C:\ProgramData\AVG Secure Search 2014-05-27 01:01:04 -------- d-----w- C:\ProgramData\Avg_Update_0414c 2014-05-19 21:52:09 477184 ----a-w- C:\Windows\System32\aepdu.dll 2014-05-19 21:52:09 424448 ----a-w- C:\Windows\System32\aeinv.dll 2014-05-19 02:58:01 -------- d-sh--w- C:\$RECYCLE.BIN 2014-05-19 02:53:00 -------- d-----w- C:\ComboFix 2014-05-15 04:11:13 17938608 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe 2014-05-13 18:20:26 235800 ----a-w- C:\Windows\System32\drivers\avgldx64.sys 2014-05-13 18:20:06 273176 ----a-w- C:\Windows\System32\drivers\avgtdia.sys 2014-05-13 18:06:06 323352 ----a-w- C:\Windows\System32\drivers\avgloga.sys 2014-05-13 18:05:40 191768 ----a-w- C:\Windows\System32\drivers\avgidsha.sys 2014-05-13 18:05:08 152344 ----a-w- C:\Windows\System32\drivers\avgdiska.sys 2014-05-13 18:05:06 130328 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys 2014-05-13 18:04:56 236312 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys 2014-05-13 18:04:30 31512 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys 2014-05-11 22:13:27 -------- d-----w- C:\Users\Skynet\AppData\Roaming\FLEXnet 2014-05-11 22:13:26 -------- d-----w- C:\Users\Skynet\AppData\Roaming\Nuance 2014-05-11 21:34:45 -------- d-----w- C:\Program Files (x86)\Common Files\IVA 2014-05-11 21:34:02 -------- d-----w- C:\Program Files (x86)\Common Files\Nuance 2014-05-11 21:29:25 -------- d-----w- C:\ProgramData\Nuance 2014-05-11 21:29:25 -------- d-----w- C:\Program Files (x86)\Nuance 2014-05-04 21:23:04 -------- d-----w- C:\Program Files (x86)\Cheat Engine 6.3 2014-05-03 16:25:08 -------- d-----w- C:\Program Files (x86)\Fox 2014-05-03 16:24:42 221184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll 2014-05-03 16:24:40 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll 2014-05-03 16:24:40 221184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll 2014-05-03 16:24:39 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll 2014-05-03 05:18:25 21840 ----atw- C:\Windows\SysWow64\SIntfNT.dll 2014-05-03 05:18:25 17212 ----atw- C:\Windows\SysWow64\SIntf32.dll 2014-05-03 05:18:25 12067 ----atw- C:\Windows\SysWow64\SIntf16.dll 2014-05-03 05:13:36 -------- d-----w- C:\Users\Skynet\AppData\Roaming\VBA-M 2014-05-03 05:10:02 -------- d-----w- C:\Program Files (x86)\R.G.Games 2014-05-01 16:49:04 -------- d-----w- C:\Program Files (x86)\MagicISO . ==================== Find3M ==================== . 2014-05-15 04:11:20 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2014-05-15 04:11:20 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2014-05-09 02:54:16 50464 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys 2014-04-26 05:38:22 189248 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe 2014-04-26 05:38:15 189248 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0 2014-04-26 05:38:14 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe 2014-04-26 04:53:22 99384 ----a-w- C:\Users\Skynet\AppData\Roaming\inst.exe 2014-04-26 04:53:22 82816 ----a-w- C:\Users\Skynet\AppData\Roaming\pcouffin.sys 2014-04-25 06:16:22 1070232 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX 2014-04-15 00:13:43 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2014-04-12 02:22:05 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2014-04-12 02:22:05 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2014-04-12 02:19:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll 2014-04-12 02:19:38 136192 ----a-w- C:\Windows\System32\sspicli.dll 2014-04-12 02:19:37 28160 ----a-w- C:\Windows\System32\secur32.dll 2014-04-12 02:19:32 1460736 ----a-w- C:\Windows\System32\lsasrv.dll 2014-04-12 02:19:05 31232 ----a-w- C:\Windows\System32\lsass.exe 2014-04-12 02:12:06 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2014-04-12 02:10:56 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2014-03-11 13:52:30 133928 ----a-w- C:\Windows\System32\drivers\NisDrvWFP.sys 2014-03-04 09:47:01 5550016 ----a-w- C:\Windows\System32\ntoskrnl.exe 2014-03-04 09:44:21 362496 ----a-w- C:\Windows\System32\wow64win.dll 2014-03-04 09:44:21 243712 ----a-w- C:\Windows\System32\wow64.dll 2014-03-04 09:44:21 13312 ----a-w- C:\Windows\System32\wow64cpu.dll 2014-03-04 09:44:20 39936 ----a-w- C:\Windows\System32\wincredprovider.dll 2014-03-04 09:44:10 210944 ----a-w- C:\Windows\System32\wdigest.dll 2014-03-04 09:44:08 86528 ----a-w- C:\Windows\System32\TSpkg.dll 2014-03-04 09:44:06 340992 ----a-w- C:\Windows\System32\schannel.dll 2014-03-04 09:44:03 722944 ----a-w- C:\Windows\System32\objsel.dll 2014-03-04 09:44:03 314880 ----a-w- C:\Windows\System32\msv1_0.dll 2014-03-04 09:44:03 16384 ----a-w- C:\Windows\System32\ntvdm64.dll 2014-03-04 09:44:00 728064 ----a-w- C:\Windows\System32\kerberos.dll 2014-03-04 09:44:00 424960 ----a-w- C:\Windows\System32\KernelBase.dll 2014-03-04 09:43:56 57344 ----a-w- C:\Windows\System32\cngprovider.dll 2014-03-04 09:43:56 52736 ----a-w- C:\Windows\System32\dpapiprovider.dll 2014-03-04 09:43:56 44544 ----a-w- C:\Windows\System32\dimsroam.dll 2014-03-04 09:43:56 22016 ----a-w- C:\Windows\System32\credssp.dll 2014-03-04 09:43:55 56832 ----a-w- C:\Windows\System32\adprovider.dll 2014-03-04 09:43:55 53760 ----a-w- C:\Windows\System32\capiprovider.dll 2014-03-04 09:43:50 455168 ----a-w- C:\Windows\System32\winlogon.exe 2014-03-04 09:20:11 3969984 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2014-03-04 09:20:11 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2014-03-04 09:16:54 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2014-03-04 09:16:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2014-03-04 09:16:18 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll 2014-03-04 08:09:30 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2014-03-04 08:09:29 2048 ----a-w- C:\Windows\SysWow64\user.exe . ============= FINISH: 16:34:37.31 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 40,754 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:08:59 AM

Posted 03 June 2014 - 09:09 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

I'm unable to read your log in the format you have used.

Please change the Word Wrap in NotePad so that each line in your log will be terminated by a Carriage return.
Do this before running these tools.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
===

Download the correct version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.

Let me know what problem persists.

#3 nasdaq

nasdaq

  • Malware Response Team
  • 40,754 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:08:59 AM

Posted 08 June 2014 - 09:15 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users