Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

SearchProtect Virus, Please Help!


  • This topic is locked This topic is locked
1 reply to this topic

#1 GoBerserkMode

GoBerserkMode

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:28 AM

Posted 06 September 2014 - 11:02 PM

My computer boots into a black screen with a cursor, unless I go into safemode.

 

Very frustrating, please help!

 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK
Internet Explorer: 10.0.9200.17054
Run by Jodey at 20:50:49 on 2014-09-06
Microsoft Windows 8  6.2.9200.0.1252.2.1033.18.7894.6731 [GMT -7:00]
.
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\dwm.exe
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Windows Defender\MsMpEng.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\Explorer.EXE
C:\windows\system32\ctfmon.exe
C:\windows\servicing\TrustedInstaller.exe
C:\windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
C:\Users\Jodey\Desktop\SFCFix.exe
C:\windows\system32\dism.exe
C:\Users\Jodey\AppData\Local\Temp\0ECADDAF-DBDF-462C-8FF5-AA4931CBF97D\dismhost.exe
C:\windows\System32\ThumbnailExtractionHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://google.ca/
uDefault_Page_URL = hxxp://samsung13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: ShoPpuerMAseter: {2331B859-95A0-481F-EE7D-DF8F759F9CEB} - C:\ProgramData\ShoPpuerMAseter\_g7.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: ShopPerrMiauster: {FF3D5BE8-5BEF-E659-7A3B-A1EB52FF0D1A} - C:\ProgramData\ShopPerrMiauster\d1.dll
uRun: [Driver Detective] C:\Program Files (x86)\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe /applicationMode:systemTray /showWelcome:false
uRun: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
StartupFolder: C:\Users\Jodey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 75.153.176.1 75.153.176.9 192.168.1.254
TCP: Interfaces\{5C2BAF4B-4886-4F24-AD1E-F3BED3DA61B0} : DHCPNameServer = 192.168.1.254 75.153.176.9
TCP: Interfaces\{7290C47D-6876-4F72-A5F3-C419C0CA850F} : DHCPNameServer = 75.153.176.1 75.153.176.9 192.168.1.254
TCP: Interfaces\{7290C47D-6876-4F72-A5F3-C419C0CA850F}\455746F6270223E2437484A7 : DHCPNameServer = 75.153.176.1 75.153.176.9 192.168.1.254
TCP: Interfaces\{7290C47D-6876-4F72-A5F3-C419C0CA850F}\455746F6270223E2437484A7D27657563747 : DHCPNameServer = 75.153.176.1 75.153.176.9 192.168.1.254
TCP: Interfaces\{7290C47D-6876-4F72-A5F3-C419C0CA850F}\76F64667562753 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{7290C47D-6876-4F72-A5F3-C419C0CA850F}\D4162797E6162E08993702960586F6E656 : DHCPNameServer = 172.20.10.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
AppInit_DLLs= C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files C:\Program Files c:\program files c:\windows\syswow64\nvinit.dll c:\program files (x86)\optimizer pro\optprocrash.dll,C:\windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: ShoPpuerMAseter: {2331B859-95A0-481F-EE7D-DF8F759F9CEB} - C:\ProgramData\ShoPpuerMAseter\_g7.x64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: ShopPerrMiauster: {FF3D5BE8-5BEF-E659-7A3B-A1EB52FF0D1A} - C:\ProgramData\ShopPerrMiauster\d1.x64.dll
x64-Run: [IgfxTray] "C:\windows\System32\igfxtray.exe"
x64-Run: [HotKeysCmds] "C:\windows\System32\hkcmd.exe"
x64-Run: [Persistence] "C:\windows\System32\igfxpers.exe"
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\windows\System32\rundll32.exe C:\windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-RunOnce: [IWWUCleanup_Wireless] cmd.exe /C rmdir /s /q "C:\Intel\Wireless\"
x64-RunOnce: [IWWUCleanup_Intel] cmd.exe /C rmdir /q "C:\Intel\"
x64-mPolicies-System: PromptOnSecureDesktop = dword:0
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 nvpciflt;nvpciflt;C:\windows\System32\Drivers\nvpciflt.sys [2014-2-25 32544]
R3 NETwNe64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\windows\System32\Drivers\NETwew00.sys [2013-10-8 3345376]
R3 RadioHIDMini;Radio HID Mini-driver;C:\windows\System32\Drivers\RadioHIDMini.sys [2012-7-30 23408]
R3 RTL8168;Realtek 8168 NT Driver;C:\windows\System32\Drivers\Rt630x64.sys [2012-8-25 683664]
S2 70e6ca8c;Optimizer Pro Crash Monitor;C:\windows\System32\rundll32.exe [2012-7-25 51712]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-7-16 731688]
S2 BackupStack;Computer Backup (MyPC Backup);C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2014-2-18 36392]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-5-1 135952]
S2 CltMngSvc;Search Protect Service;C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2014-8-14 2991552]
S2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-2-25 1593632]
S2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-2-25 16941856]
S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-7-17 2699568]
S3 acpials;ALS Sensor Filter;C:\windows\System32\Drivers\acpials.sys [2012-7-25 9728]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\windows\System32\Drivers\AmpPal.sys [2012-7-16 162344]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\windows\System32\Drivers\AmpPal.sys [2012-7-16 162344]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-7-17 272176]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\windows\System32\Drivers\nvvad64v.sys [2014-2-25 39200]
S3 SensorsAlsDriver;UMDF Reflector service for SensorsAlsDriver;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
.
=============== Created Last 30 ================
.
2014-09-07 02:59:50    --------    d-----w-    C:\Users\Jodey\AppData\Local\niemiro
2014-09-07 01:55:48    11319192    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7483B0BA-F5CF-4EA0-820F-EB9DED31ED39}\mpengine.dll
2014-09-06 23:31:42    --------    d-----w-    C:\Users\Jodey\AppData\Local\ElevatedDiagnostics
2014-09-06 05:13:21    --------    d-----w-    C:\Program Files (x86)\SohhoPpEEruMaster
2014-09-06 05:12:51    --------    d-----w-    C:\Program Files (x86)\AppPtouU
2014-09-06 03:59:02    11319192    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2014-09-06 00:00:12    --------    d-----w-    C:\ProgramData\Geek Squad
2014-08-21 12:50:18    262312    ----a-w-    C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10245.bin
2014-08-16 09:32:17    704480    ----a-w-    C:\windows\SysWow64\FlashPlayerApp.exe
2014-08-16 09:32:17    105440    ----a-w-    C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-08-16 09:26:58    35328    ----a-w-    C:\windows\SysWow64\wuapp.exe
2014-08-16 09:26:58    128000    ----a-w-    C:\windows\SysWow64\wuwebv.dll
2014-08-16 09:26:57    40448    ----a-w-    C:\windows\System32\wuapp.exe
2014-08-16 09:26:57    144384    ----a-w-    C:\windows\System32\wuwebv.dll
2014-08-15 22:27:13    71168    ----a-w-    C:\windows\System32\drivers\hdaudbus.sys
2014-08-15 22:25:22    35480    ----a-w-    C:\windows\SysWow64\TsWpfWrp.exe
2014-08-15 22:25:22    35480    ----a-w-    C:\windows\System32\TsWpfWrp.exe
2014-08-15 12:21:07    199680    ----a-w-    C:\windows\System32\cdd.dll
2014-08-15 12:21:07    1453400    ----a-w-    C:\windows\System32\drivers\dxgkrnl.sys
.
==================== Find3M  ====================
.
2014-08-15 06:04:16    7446464    ----a-w-    C:\windows\apppatch\spbin\SPVC32.dll
2014-08-15 06:04:16    5476288    ----a-w-    C:\windows\apppatch\spbin\cltmng.exe
2014-08-15 06:04:16    4827072    ----a-w-    C:\windows\apppatch\spbin\SPVC64.dll
2014-08-15 06:04:16    232896    ----a-w-    C:\windows\apppatch\spbin\SPVC64Loader.dll
2014-08-15 06:04:16    187328    ----a-w-    C:\windows\apppatch\spbin\SPVC32Loader.dll
2014-08-15 06:04:16    1734592    ----a-w-    C:\windows\apppatch\spbin\SPTool64.exe
2014-08-07 06:33:36    712192    ----a-w-    C:\windows\System32\aepdu.dll
2014-08-07 03:09:52    556544    ----a-w-    C:\windows\System32\aeinv.dll
2014-08-07 02:30:02    100352    ----a-w-    C:\windows\System32\wudriver.dll
2014-08-07 02:30:01    253440    ----a-w-    C:\windows\System32\WUSettingsProvider.dll
2014-08-07 02:30:01    1623040    ----a-w-    C:\windows\System32\wucltux.dll
2014-08-07 02:29:58    86528    ----a-w-    C:\windows\SysWow64\wudriver.dll
2014-08-07 02:29:58    176640    ----a-w-    C:\windows\System32\storewuauth.dll
2014-07-24 12:10:54    2240000    ----a-w-    C:\windows\System32\wininet.dll
2014-07-24 12:10:46    915968    ----a-w-    C:\windows\System32\uxtheme.dll
2014-07-24 12:10:46    53760    ----a-w-    C:\windows\System32\UXInit.dll
2014-07-24 12:09:37    3959296    ----a-w-    C:\windows\System32\jscript9.dll
2014-07-24 12:09:33    67072    ----a-w-    C:\windows\System32\iesetup.dll
2014-07-24 12:09:33    136704    ----a-w-    C:\windows\System32\iesysprep.dll
2014-07-24 12:09:00    1508864    ----a-w-    C:\windows\System32\inetcpl.cpl
2014-07-24 10:52:27    1766400    ----a-w-    C:\windows\SysWow64\wininet.dll
2014-07-24 10:52:20    44032    ----a-w-    C:\windows\SysWow64\UXInit.dll
2014-07-24 10:51:27    2861568    ----a-w-    C:\windows\SysWow64\jscript9.dll
2014-07-24 10:51:22    61440    ----a-w-    C:\windows\SysWow64\iesetup.dll
2014-07-24 10:51:22    109056    ----a-w-    C:\windows\SysWow64\iesysprep.dll
2014-07-24 10:51:02    1440768    ----a-w-    C:\windows\SysWow64\inetcpl.cpl
2014-07-24 10:33:52    2706432    ----a-w-    C:\windows\System32\mshtml.tlb
2014-07-24 10:29:20    2706432    ----a-w-    C:\windows\SysWow64\mshtml.tlb
2014-07-24 08:03:01    534528    ----a-w-    C:\windows\SysWow64\uxtheme.dll
2014-07-22 13:27:44    232896    ----a-w-    C:\windows\apppatch\apppatch64\SPVCLdr64.dll
2014-07-15 23:03:48    1300992    ----a-w-    C:\windows\System32\gdi32.dll
2014-07-15 22:55:08    4035072    ----a-w-    C:\windows\System32\win32k.sys
2014-07-12 02:36:04    1023488    ----a-w-    C:\windows\SysWow64\gdi32.dll
2014-06-30 22:42:56    394240    ----a-w-    C:\windows\System32\devinv.dll
2014-06-30 22:42:48    87552    ----a-w-    C:\windows\System32\aepic.dll
2014-06-19 23:35:37    1312768    ----a-w-    C:\windows\System32\rpcrt4.dll
2014-06-19 22:24:17    694272    ----a-w-    C:\windows\SysWow64\rpcrt4.dll
2014-06-17 23:27:37    1440256    ----a-w-    C:\windows\SysWow64\osk.exe
2014-06-17 23:24:48    1557504    ----a-w-    C:\windows\System32\osk.exe
.
============= FINISH: 20:52:36.88 ===============
 

Attached Files



BC AdBot (Login to Remove)

 


#2 GoBerserkMode

GoBerserkMode
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:28 AM

Posted 07 September 2014 - 01:38 PM

Problem resolved, please delete/close thread






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users