Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

audiodg.exe Problem in my compeuter // Random Audio Ads


  • This topic is locked This topic is locked
3 replies to this topic

#1 Rexofc

Rexofc

  • Banned Spammer
  • 17 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:33 PM

Posted 03 June 2016 - 11:22 AM

Hello , My name is Aviraj Chowdhury 
 
I have a problem on my compeuter. The problem is audiodg.exe , which provide random audio ads in compeuter. whenever i am going to end task for it it starts again in few seconds. I'm just try all type of antivirus but its not going. 
 
 
Here a report log from TDDSKiller - Kaspersky
 
 

08:47:03.0556 0x12d0  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
08:47:36.0721 0x12d0  ============================================================
08:47:36.0721 0x12d0  Current date / time: 2016/06/03 08:47:36.0721
08:47:36.0721 0x12d0  SystemInfo:
08:47:36.0721 0x12d0  
08:47:36.0721 0x12d0  OS Version: 10.0.10240 ServicePack: 0.0
08:47:36.0721 0x12d0  Product type: Workstation
08:47:36.0721 0x12d0  ComputerName: DESKTOP-OIRS7OC
08:47:36.0721 0x12d0  UserName: REXOFC
08:47:36.0721 0x12d0  Windows directory: C:\Windows
08:47:36.0721 0x12d0  System windows directory: C:\Windows
08:47:36.0721 0x12d0  Running under WOW64
08:47:36.0721 0x12d0  Processor architecture: Intel x64
08:47:36.0721 0x12d0  Number of processors: 2
08:47:36.0721 0x12d0  Page size: 0x1000
08:47:36.0721 0x12d0  Boot type: Normal boot
08:47:36.0721 0x12d0  ============================================================
08:47:36.0721 0x12d0  BG loaded
08:47:37.0419 0x12d0  System UUID: {474C16BD-CBD2-4096-30DF-0C6F7710540D}
08:47:37.0856 0x12d0  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:47:37.0856 0x12d0  ============================================================
08:47:37.0856 0x12d0  \Device\Harddisk0\DR0:
08:47:37.0856 0x12d0  MBR partitions:
08:47:37.0856 0x12d0  Initialize success
08:47:37.0856 0x12d0  ============================================================
08:47:38.0751 0x0a80  ============================================================
08:47:38.0751 0x0a80  Scan started
08:47:38.0751 0x0a80  Mode: Manual; 
08:47:38.0751 0x0a80  ============================================================
08:47:38.0751 0x0a80  KSN ping started
08:47:41.0350 0x0a80  KSN ping finished: true
08:47:42.0134 0x0a80  ================ Scan system memory ========================
08:47:42.0134 0x0a80  System memory - ok
08:47:42.0135 0x0a80  ================ Scan services =============================
08:47:42.0161 0x0a80  1394ohci - ok
08:47:42.0166 0x0a80  3ware - ok
08:47:42.0171 0x0a80  ACPI - ok
08:47:42.0176 0x0a80  acpiex - ok
08:47:42.0182 0x0a80  acpipagr - ok
08:47:42.0186 0x0a80  AcpiPmi - ok
08:47:42.0190 0x0a80  acpitime - ok
08:47:42.0196 0x0a80  ADP80XX - ok
08:47:42.0200 0x0a80  AFD - ok
08:47:42.0204 0x0a80  agp440 - ok
08:47:42.0208 0x0a80  ahcache - ok
08:47:42.0227 0x0a80  AJRouter - ok
08:47:42.0230 0x0a80  ALG - ok
08:47:42.0234 0x0a80  AmdK8 - ok
08:47:42.0237 0x0a80  AmdPPM - ok
08:47:42.0241 0x0a80  amdsata - ok
08:47:42.0244 0x0a80  amdsbs - ok
08:47:42.0248 0x0a80  amdxata - ok
08:47:42.0251 0x0a80  AppID - ok
08:47:42.0260 0x0a80  AppIDSvc - ok
08:47:42.0263 0x0a80  Appinfo - ok
08:47:42.0266 0x0a80  AppMgmt - ok
08:47:42.0269 0x0a80  AppReadiness - ok
08:47:42.0273 0x0a80  AppXSvc - ok
08:47:42.0278 0x0a80  arcsas - ok
08:47:42.0281 0x0a80  AsyncMac - ok
08:47:42.0284 0x0a80  atapi - ok
08:47:42.0288 0x0a80  AudioEndpointBuilder - ok
08:47:42.0291 0x0a80  Audiosrv - ok
08:47:42.0295 0x0a80  AxInstSV - ok
08:47:42.0298 0x0a80  b06bdrv - ok
08:47:42.0302 0x0a80  BasicDisplay - ok
08:47:42.0305 0x0a80  BasicRender - ok
08:47:42.0311 0x0a80  bcmfn2 - ok
08:47:42.0315 0x0a80  BDESVC - ok
08:47:42.0320 0x0a80  Beep - ok
08:47:42.0325 0x0a80  BFE - ok
08:47:42.0329 0x0a80  BITS - ok
08:47:42.0333 0x0a80  bowser - ok
08:47:42.0336 0x0a80  BrokerInfrastructure - ok
08:47:42.0339 0x0a80  Browser - ok
08:47:42.0343 0x0a80  BthAvrcpTg - ok
08:47:42.0347 0x0a80  BthHFEnum - ok
08:47:42.0357 0x0a80  bthhfhid - ok
08:47:42.0366 0x0a80  BthHFSrv - ok
08:47:42.0372 0x0a80  BTHMODEM - ok
08:47:42.0384 0x0a80  bthserv - ok
08:47:42.0390 0x0a80  buttonconverter - ok
08:47:42.0396 0x0a80  CapImg - ok
08:47:42.0399 0x0a80  cdfs - ok
08:47:42.0402 0x0a80  CDPSvc - ok
08:47:42.0406 0x0a80  cdrom - ok
08:47:42.0409 0x0a80  CertPropSvc - ok
08:47:42.0414 0x0a80  circlass - ok
08:47:42.0418 0x0a80  CLFS - ok
08:47:42.0421 0x0a80  ClipSVC - ok
08:47:42.0443 0x0a80  CmBatt - ok
08:47:42.0447 0x0a80  CNG - ok
08:47:42.0450 0x0a80  cnghwassist - ok
08:47:42.0454 0x0a80  CompositeBus - ok
08:47:42.0457 0x0a80  COMSysApp - ok
08:47:42.0461 0x0a80  condrv - ok
08:47:42.0464 0x0a80  CoreMessagingRegistrar - ok
08:47:42.0470 0x0a80  CryptSvc - ok
08:47:42.0473 0x0a80  CSC - ok
08:47:42.0477 0x0a80  CscService - ok
08:47:42.0480 0x0a80  dam - ok
08:47:42.0485 0x0a80  DcomLaunch - ok
08:47:42.0488 0x0a80  DcpSvc - ok
08:47:42.0494 0x0a80  defragsvc - ok
08:47:42.0497 0x0a80  DeviceAssociationService - ok
08:47:42.0500 0x0a80  DeviceInstall - ok
08:47:42.0503 0x0a80  DevQueryBroker - ok
08:47:42.0507 0x0a80  Dfsc - ok
08:47:42.0510 0x0a80  Dhcp - ok
08:47:42.0513 0x0a80  diagnosticshub.standardcollector.service - ok
08:47:42.0518 0x0a80  DiagTrack - ok
08:47:42.0520 0x0a80  disk - ok
08:47:42.0524 0x0a80  DmEnrollmentSvc - ok
08:47:42.0527 0x0a80  dmvsc - ok
08:47:42.0531 0x0a80  dmwappushservice - ok
08:47:42.0534 0x0a80  Dnscache - ok
08:47:42.0539 0x0a80  dot3svc - ok
08:47:42.0542 0x0a80  DPS - ok
08:47:42.0546 0x0a80  drmkaud - ok
08:47:42.0549 0x0a80  DsmSvc - ok
08:47:42.0552 0x0a80  DsSvc - ok
08:47:42.0555 0x0a80  DXGKrnl - ok
08:47:42.0559 0x0a80  Eaphost - ok
08:47:42.0562 0x0a80  ebdrv - ok
08:47:42.0565 0x0a80  EFS - ok
08:47:42.0568 0x0a80  EhStorClass - ok
08:47:42.0572 0x0a80  EhStorTcgDrv - ok
08:47:42.0575 0x0a80  embeddedmode - ok
08:47:42.0579 0x0a80  EntAppSvc - ok
08:47:42.0582 0x0a80  ErrDev - ok
08:47:42.0595 0x0a80  EventSystem - ok
08:47:42.0599 0x0a80  exfat - ok
08:47:42.0602 0x0a80  fastfat - ok
08:47:42.0605 0x0a80  Fax - ok
08:47:42.0608 0x0a80  fcvsc - ok
08:47:42.0612 0x0a80  fdc - ok
08:47:42.0615 0x0a80  fdPHost - ok
08:47:42.0618 0x0a80  FDResPub - ok
08:47:42.0622 0x0a80  fhsvc - ok
08:47:42.0625 0x0a80  FileCrypt - ok
08:47:42.0628 0x0a80  FileInfo - ok
08:47:42.0632 0x0a80  Filetrace - ok
08:47:42.0635 0x0a80  flpydisk - ok
08:47:42.0638 0x0a80  FltMgr - ok
08:47:42.0641 0x0a80  FontCache - ok
08:47:42.0645 0x0a80  FontCache3.0.0.0 - ok
08:47:42.0648 0x0a80  FsDepends - ok
08:47:42.0652 0x0a80  Fs_Rec - ok
08:47:42.0655 0x0a80  fvevol - ok
08:47:42.0658 0x0a80  gagp30kx - ok
08:47:42.0662 0x0a80  gencounter - ok
08:47:42.0665 0x0a80  genericusbfn - ok
08:47:42.0668 0x0a80  GPIOClx0101 - ok
08:47:42.0671 0x0a80  gpsvc - ok
08:47:42.0675 0x0a80  GpuEnergyDrv - ok
08:47:42.0678 0x0a80  HdAudAddService - ok
08:47:42.0682 0x0a80  HDAudBus - ok
08:47:42.0685 0x0a80  HidBatt - ok
08:47:42.0688 0x0a80  HidBth - ok
08:47:42.0691 0x0a80  hidi2c - ok
08:47:42.0695 0x0a80  hidinterrupt - ok
08:47:42.0698 0x0a80  HidIr - ok
08:47:42.0701 0x0a80  hidserv - ok
08:47:42.0705 0x0a80  HidUsb - ok
08:47:42.0708 0x0a80  HomeGroupListener - ok
08:47:42.0712 0x0a80  HomeGroupProvider - ok
08:47:42.0715 0x0a80  HpSAMD - ok
08:47:42.0718 0x0a80  HTTP - ok
08:47:42.0721 0x0a80  hwpolicy - ok
08:47:42.0725 0x0a80  hyperkbd - ok
08:47:42.0729 0x0a80  HyperVideo - ok
08:47:42.0732 0x0a80  i8042prt - ok
08:47:42.0735 0x0a80  iaLPSSi_GPIO - ok
08:47:42.0738 0x0a80  iaLPSSi_I2C - ok
08:47:42.0742 0x0a80  iaStorAV - ok
08:47:42.0745 0x0a80  iaStorV - ok
08:47:42.0748 0x0a80  ibbus - ok
08:47:42.0752 0x0a80  icssvc - ok
08:47:42.0755 0x0a80  IDMWFP - ok
08:47:42.0758 0x0a80  IEEtwCollectorService - ok
08:47:42.0762 0x0a80  IKEEXT - ok
08:47:42.0780 0x0a80  int0800 - ok
08:47:42.0784 0x0a80  intelide - ok
08:47:42.0787 0x0a80  intelpep - ok
08:47:42.0791 0x0a80  intelppm - ok
08:47:42.0794 0x0a80  IoQos - ok
08:47:42.0797 0x0a80  IpFilterDriver - ok
08:47:42.0801 0x0a80  iphlpsvc - ok
08:47:42.0804 0x0a80  IPMIDRV - ok
08:47:42.0807 0x0a80  IPNAT - ok
08:47:42.0811 0x0a80  IRENUM - ok
08:47:42.0814 0x0a80  isapnp - ok
08:47:42.0817 0x0a80  iScsiPrt - ok
08:47:42.0820 0x0a80  ISCT - ok
08:47:42.0824 0x0a80  kbdclass - ok
08:47:42.0827 0x0a80  kbdhid - ok
08:47:42.0831 0x0a80  kdnic - ok
08:47:42.0835 0x0a80  KeyIso - ok
08:47:42.0838 0x0a80  KSecDD - ok
08:47:42.0841 0x0a80  KSecPkg - ok
08:47:42.0845 0x0a80  ksthunk - ok
08:47:42.0848 0x0a80  KtmRm - ok
08:47:42.0854 0x0a80  L1C - ok
08:47:42.0857 0x0a80  LanmanServer - ok
08:47:42.0861 0x0a80  LanmanWorkstation - ok
08:47:42.0866 0x0a80  lfsvc - ok
08:47:42.0869 0x0a80  LicenseManager - ok
08:47:42.0872 0x0a80  lltdio - ok
08:47:42.0876 0x0a80  lltdsvc - ok
08:47:42.0880 0x0a80  lmhosts - ok
08:47:42.0885 0x0a80  LSI_SAS - ok
08:47:42.0888 0x0a80  LSI_SAS2i - ok
08:47:42.0891 0x0a80  LSI_SAS3i - ok
08:47:42.0896 0x0a80  LSI_SSS - ok
08:47:42.0899 0x0a80  LSM - ok
08:47:42.0902 0x0a80  luafv - ok
08:47:42.0905 0x0a80  MapsBroker - ok
08:47:42.0908 0x0a80  megasas - ok
08:47:42.0912 0x0a80  megasr - ok
08:47:42.0943 0x0a80  MEIx64 - ok
08:47:42.0947 0x0a80  Microsoft SharePoint Workspace Audit Service - ok
08:47:42.0950 0x0a80  mlx4_bus - ok
08:47:42.0953 0x0a80  MMCSS - ok
08:47:42.0957 0x0a80  Modem - ok
08:47:42.0960 0x0a80  monitor - ok
08:47:42.0963 0x0a80  mouclass - ok
08:47:42.0967 0x0a80  mouhid - ok
08:47:42.0970 0x0a80  mountmgr - ok
08:47:42.0973 0x0a80  mpsdrv - ok
08:47:42.0976 0x0a80  MpsSvc - ok
08:47:42.0980 0x0a80  MRxDAV - ok
08:47:42.0983 0x0a80  mrxsmb - ok
08:47:42.0986 0x0a80  mrxsmb10 - ok
08:47:42.0989 0x0a80  mrxsmb20 - ok
08:47:42.0993 0x0a80  MsBridge - ok
08:47:42.0996 0x0a80  MSDTC - ok
08:47:43.0002 0x0a80  Msfs - ok
08:47:43.0005 0x0a80  msgpiowin32 - ok
08:47:43.0008 0x0a80  mshidkmdf - ok
08:47:43.0013 0x0a80  mshidumdf - ok
08:47:43.0016 0x0a80  msisadrv - ok
08:47:43.0019 0x0a80  MSiSCSI - ok
08:47:43.0022 0x0a80  msiserver - ok
08:47:43.0026 0x0a80  MSKSSRV - ok
08:47:43.0030 0x0a80  MsLldp - ok
08:47:43.0033 0x0a80  MSPCLOCK - ok
08:47:43.0036 0x0a80  MSPQM - ok
08:47:43.0039 0x0a80  MsRPC - ok
08:47:43.0044 0x0a80  mssmbios - ok
08:47:43.0049 0x0a80  MSTEE - ok
08:47:43.0052 0x0a80  MTConfig - ok
08:47:43.0055 0x0a80  Mup - ok
08:47:43.0058 0x0a80  mvumis - ok
08:47:43.0063 0x0a80  NativeWifiP - ok
08:47:43.0067 0x0a80  NcaSvc - ok
08:47:43.0070 0x0a80  NcbService - ok
08:47:43.0073 0x0a80  NcdAutoSetup - ok
08:47:43.0077 0x0a80  ndfltr - ok
08:47:43.0080 0x0a80  NDIS - ok
08:47:43.0084 0x0a80  NdisCap - ok
08:47:43.0087 0x0a80  NdisImPlatform - ok
08:47:43.0090 0x0a80  NdisTapi - ok
08:47:43.0093 0x0a80  Ndisuio - ok
08:47:43.0097 0x0a80  NdisVirtualBus - ok
08:47:43.0100 0x0a80  NdisWan - ok
08:47:43.0103 0x0a80  ndiswanlegacy - ok
08:47:43.0107 0x0a80  ndproxy - ok
08:47:43.0110 0x0a80  Ndu - ok
08:47:43.0114 0x0a80  NetBIOS - ok
08:47:43.0118 0x0a80  NetBT - ok
08:47:43.0122 0x0a80  Netlogon - ok
08:47:43.0125 0x0a80  Netman - ok
08:47:43.0128 0x0a80  netprofm - ok
08:47:43.0131 0x0a80  NetSetupSvc - ok
08:47:43.0135 0x0a80  NetTcpPortSharing - ok
08:47:43.0138 0x0a80  netvsc - ok
08:47:43.0143 0x0a80  NgcCtnrSvc - ok
08:47:43.0146 0x0a80  NgcSvc - ok
08:47:43.0150 0x0a80  NlaSvc - ok
08:47:43.0153 0x0a80  Npfs - ok
08:47:43.0156 0x0a80  npsvctrig - ok
08:47:43.0160 0x0a80  nsi - ok
08:47:43.0164 0x0a80  nsiproxy - ok
08:47:43.0169 0x0a80  NTFS - ok
08:47:43.0172 0x0a80  Null - ok
08:47:43.0175 0x0a80  NVHDA - ok
08:47:43.0179 0x0a80  nvlddmkm - ok
08:47:43.0182 0x0a80  nvraid - ok
08:47:43.0185 0x0a80  nvstor - ok
08:47:43.0189 0x0a80  nvsvc - ok
08:47:43.0192 0x0a80  nv_agp - ok
08:47:43.0195 0x0a80  OneSyncSvc - ok
08:47:43.0217 0x0a80  ose - ok
08:47:43.0221 0x0a80  osppsvc - ok
08:47:43.0226 0x0a80  p2pimsvc - ok
08:47:43.0230 0x0a80  p2psvc - ok
08:47:43.0233 0x0a80  Parport - ok
08:47:43.0236 0x0a80  partmgr - ok
08:47:43.0239 0x0a80  PcaSvc - ok
08:47:43.0242 0x0a80  pci - ok
08:47:43.0246 0x0a80  pciide - ok
08:47:43.0249 0x0a80  pcmcia - ok
08:47:43.0252 0x0a80  pcw - ok
08:47:43.0256 0x0a80  pdc - ok
08:47:43.0259 0x0a80  PEAUTH - ok
08:47:43.0262 0x0a80  PeerDistSvc - ok
08:47:43.0267 0x0a80  percsas2i - ok
08:47:43.0269 0x0a80  percsas3i - ok
08:47:43.0274 0x0a80  PerfHost - ok
08:47:43.0283 0x0a80  PimIndexMaintenanceSvc - ok
08:47:43.0289 0x0a80  pla - ok
08:47:43.0292 0x0a80  PlugPlay - ok
08:47:43.0296 0x0a80  PNRPAutoReg - ok
08:47:43.0299 0x0a80  PNRPsvc - ok
08:47:43.0308 0x0a80  PolicyAgent - ok
08:47:43.0313 0x0a80  Power - ok
08:47:43.0316 0x0a80  PptpMiniport - ok
08:47:43.0319 0x0a80  PrintNotify - ok
08:47:43.0323 0x0a80  Processor - ok
08:47:43.0326 0x0a80  ProfSvc - ok
08:47:43.0330 0x0a80  Psched - ok
08:47:43.0333 0x0a80  QWAVE - ok
08:47:43.0336 0x0a80  QWAVEdrv - ok
08:47:43.0341 0x0a80  RasAcd - ok
08:47:43.0344 0x0a80  RasAgileVpn - ok
08:47:43.0348 0x0a80  RasAuto - ok
08:47:43.0351 0x0a80  Rasl2tp - ok
08:47:43.0354 0x0a80  RasMan - ok
08:47:43.0358 0x0a80  RasPppoe - ok
08:47:43.0361 0x0a80  RasSstp - ok
08:47:43.0365 0x0a80  rdbss - ok
08:47:43.0369 0x0a80  rdpbus - ok
08:47:43.0372 0x0a80  RDPDR - ok
08:47:43.0382 0x0a80  RdpVideoMiniport - ok
08:47:43.0387 0x0a80  rdyboost - ok
08:47:43.0397 0x0a80  ReFSv1 - ok
08:47:43.0402 0x0a80  RemoteAccess - ok
08:47:43.0405 0x0a80  RemoteRegistry - ok
08:47:43.0408 0x0a80  RetailDemo - ok
08:47:43.0412 0x0a80  RpcEptMapper - ok
08:47:43.0416 0x0a80  RpcLocator - ok
08:47:43.0419 0x0a80  RpcSs - ok
08:47:43.0422 0x0a80  rspndr - ok
08:47:43.0426 0x0a80  s3cap - ok
08:47:43.0428 0x0a80  SamSs - ok
08:47:43.0432 0x0a80  sbp2port - ok
08:47:43.0435 0x0a80  SCardSvr - ok
08:47:43.0438 0x0a80  ScDeviceEnum - ok
08:47:43.0442 0x0a80  scfilter - ok
08:47:43.0445 0x0a80  Schedule - ok
08:47:43.0448 0x0a80  SCPolicySvc - ok
08:47:43.0452 0x0a80  sdbus - ok
08:47:43.0455 0x0a80  SDRSVC - ok
08:47:43.0458 0x0a80  sdstor - ok
08:47:43.0461 0x0a80  seclogon - ok
08:47:43.0465 0x0a80  SENS - ok
08:47:43.0468 0x0a80  SensorDataService - ok
08:47:43.0471 0x0a80  SensorService - ok
08:47:43.0476 0x0a80  SensrSvc - ok
08:47:43.0479 0x0a80  SerCx - ok
08:47:43.0483 0x0a80  SerCx2 - ok
08:47:43.0487 0x0a80  Serenum - ok
08:47:43.0492 0x0a80  Serial - ok
08:47:43.0496 0x0a80  sermouse - ok
08:47:43.0505 0x0a80  SessionEnv - ok
08:47:43.0508 0x0a80  sfloppy - ok
08:47:43.0511 0x0a80  SharedAccess - ok
08:47:43.0515 0x0a80  ShellHWDetection - ok
08:47:43.0518 0x0a80  SiSRaid2 - ok
08:47:43.0521 0x0a80  SiSRaid4 - ok
08:47:43.0525 0x0a80  SkypeUpdateEx - ok
08:47:43.0529 0x0a80  smphost - ok
08:47:43.0532 0x0a80  SmsRouter - ok
08:47:43.0539 0x0a80  SNMPTRAP - ok
08:47:43.0542 0x0a80  spaceport - ok
08:47:43.0545 0x0a80  SpbCx - ok
08:47:43.0549 0x0a80  Spooler - ok
08:47:43.0552 0x0a80  sppsvc - ok
08:47:43.0555 0x0a80  srv - ok
08:47:43.0559 0x0a80  srv2 - ok
08:47:43.0562 0x0a80  srvnet - ok
08:47:43.0566 0x0a80  SSDPSRV - ok
08:47:43.0569 0x0a80  SstpSvc - ok
08:47:43.0573 0x0a80  StateRepository - ok
08:47:43.0576 0x0a80  Stereo Service - ok
08:47:43.0580 0x0a80  stexstor - ok
08:47:43.0583 0x0a80  stisvc - ok
08:47:43.0586 0x0a80  storahci - ok
08:47:43.0590 0x0a80  storflt - ok
08:47:43.0593 0x0a80  stornvme - ok
08:47:43.0597 0x0a80  storqosflt - ok
08:47:43.0602 0x0a80  StorSvc - ok
08:47:43.0605 0x0a80  storufs - ok
08:47:43.0608 0x0a80  storvsc - ok
08:47:43.0611 0x0a80  svsvc - ok
08:47:43.0616 0x0a80  swenum - ok
08:47:43.0619 0x0a80  swprv - ok
08:47:43.0622 0x0a80  Synth3dVsc - ok
08:47:43.0625 0x0a80  SysMain - ok
08:47:43.0629 0x0a80  SystemEventsBroker - ok
08:47:43.0632 0x0a80  TabletInputService - ok
08:47:43.0636 0x0a80  TapiSrv - ok
08:47:43.0639 0x0a80  Tcpip - ok
08:47:43.0643 0x0a80  Tcpip6 - ok
08:47:43.0648 0x0a80  tcpipreg - ok
08:47:43.0652 0x0a80  tdx - ok
08:47:43.0656 0x0a80  terminpt - ok
08:47:43.0659 0x0a80  TermService - ok
08:47:43.0662 0x0a80  Themes - ok
08:47:43.0666 0x0a80  tiledatamodelsvc - ok
08:47:43.0669 0x0a80  TimeBroker - ok
08:47:43.0672 0x0a80  TPM - ok
08:47:43.0676 0x0a80  TrkWks - ok
08:47:43.0679 0x0a80  TrustedInstaller - ok
08:47:43.0684 0x0a80  TsUsbFlt - ok
08:47:43.0687 0x0a80  TsUsbGD - ok
08:47:43.0690 0x0a80  tunnel - ok
08:47:43.0694 0x0a80  uagp35 - ok
08:47:43.0697 0x0a80  UASPStor - ok
08:47:43.0701 0x0a80  UCBrowserSvc - ok
08:47:43.0704 0x0a80  UcmCx0101 - ok
08:47:43.0709 0x0a80  UcmUcsi - ok
08:47:43.0712 0x0a80  Ucx01000 - ok
08:47:43.0716 0x0a80  UdeCx - ok
08:47:43.0719 0x0a80  udfs - ok
08:47:43.0723 0x0a80  UEFI - ok
08:47:43.0726 0x0a80  Ufx01000 - ok
08:47:43.0730 0x0a80  UfxChipidea - ok
08:47:43.0734 0x0a80  ufxsynopsys - ok
08:47:43.0740 0x0a80  UI0Detect - ok
08:47:43.0744 0x0a80  uliagpkx - ok
08:47:43.0747 0x0a80  umbus - ok
08:47:43.0751 0x0a80  UmPass - ok
08:47:43.0754 0x0a80  UmRdpService - ok
08:47:43.0757 0x0a80  UnistoreSvc - ok
08:47:43.0764 0x0a80  upnphost - ok
08:47:43.0771 0x0a80  UrsChipidea - ok
08:47:43.0776 0x0a80  UrsCx01000 - ok
08:47:43.0783 0x0a80  UrsSynopsys - ok
08:47:43.0786 0x0a80  usbccgp - ok
08:47:43.0789 0x0a80  usbcir - ok
08:47:43.0793 0x0a80  usbehci - ok
08:47:43.0796 0x0a80  usbhub - ok
08:47:43.0799 0x0a80  USBHUB3 - ok
08:47:43.0803 0x0a80  usbohci - ok
08:47:43.0806 0x0a80  usbprint - ok
08:47:43.0809 0x0a80  usbser - ok
08:47:43.0812 0x0a80  USBSTOR - ok
08:47:43.0816 0x0a80  usbuhci - ok
08:47:43.0819 0x0a80  USBXHCI - ok
08:47:43.0823 0x0a80  UserDataSvc - ok
08:47:43.0829 0x0a80  UserManager - ok
08:47:43.0834 0x0a80  UsoSvc - ok
08:47:43.0837 0x0a80  VaultSvc - ok
08:47:43.0841 0x0a80  vdrvroot - ok
08:47:43.0844 0x0a80  vds - ok
08:47:43.0847 0x0a80  VerifierExt - ok
08:47:43.0851 0x0a80  vhdmp - ok
08:47:43.0854 0x0a80  vhf - ok
08:47:43.0858 0x0a80  VIAHdAudAddService - ok
08:47:43.0861 0x0a80  VIAKaraokeService - ok
08:47:43.0865 0x0a80  vmbus - ok
08:47:43.0868 0x0a80  VMBusHID - ok
08:47:43.0871 0x0a80  VMfilt - ok
08:47:43.0875 0x0a80  vmicguestinterface - ok
08:47:43.0878 0x0a80  vmicheartbeat - ok
08:47:43.0881 0x0a80  vmickvpexchange - ok
08:47:43.0885 0x0a80  vmicrdv - ok
08:47:43.0888 0x0a80  vmicshutdown - ok
08:47:43.0891 0x0a80  vmictimesync - ok
08:47:43.0894 0x0a80  vmicvmsession - ok
08:47:43.0897 0x0a80  vmicvss - ok
08:47:43.0901 0x0a80  volmgr - ok
08:47:43.0904 0x0a80  volmgrx - ok
08:47:43.0908 0x0a80  volsnap - ok
08:47:43.0911 0x0a80  vpci - ok
08:47:43.0915 0x0a80  vsmraid - ok
08:47:43.0954 0x0a80  VSS - ok
08:47:43.0957 0x0a80  VSTXRAID - ok
08:47:43.0961 0x0a80  vwifibus - ok
08:47:43.0964 0x0a80  vwififlt - ok
08:47:43.0968 0x0a80  W32Time - ok
08:47:43.0971 0x0a80  WacomPen - ok
08:47:43.0974 0x0a80  WalletService - ok
08:47:43.0978 0x0a80  wanarp - ok
08:47:43.0981 0x0a80  wanarpv6 - ok
08:47:43.0985 0x0a80  wbengine - ok
08:47:43.0988 0x0a80  WbioSrvc - ok
08:47:43.0991 0x0a80  Wcmsvc - ok
08:47:43.0995 0x0a80  wcncsvc - ok
08:47:43.0998 0x0a80  WcsPlugInService - ok
08:47:44.0002 0x0a80  WdBoot - ok
08:47:44.0005 0x0a80  Wdf01000 - ok
08:47:44.0008 0x0a80  WdFilter - ok
08:47:44.0012 0x0a80  WdiServiceHost - ok
08:47:44.0015 0x0a80  WdiSystemHost - ok
08:47:44.0019 0x0a80  wdiwifi - ok
08:47:44.0022 0x0a80  WdNisDrv - ok
08:47:44.0025 0x0a80  WdNisSvc - ok
08:47:44.0029 0x0a80  WebClient - ok
08:47:44.0032 0x0a80  Wecsvc - ok
08:47:44.0036 0x0a80  WEPHOSTSVC - ok
08:47:44.0039 0x0a80  wercplsupport - ok
08:47:44.0043 0x0a80  WerSvc - ok
08:47:44.0046 0x0a80  wfpcapture - ok
08:47:44.0050 0x0a80  WFPLWFS - ok
08:47:44.0053 0x0a80  WiaRpc - ok
08:47:44.0056 0x0a80  WIMMount - ok
08:47:44.0060 0x0a80  WinDefend - ok
08:47:44.0068 0x0a80  WindowsTrustedRT - ok
08:47:44.0071 0x0a80  WindowsTrustedRTProxy - ok
08:47:44.0074 0x0a80  WinHttpAutoProxySvc - ok
08:47:44.0078 0x0a80  WinMad - ok
08:47:44.0081 0x0a80  Winmgmt - ok
08:47:44.0085 0x0a80  WinRM - ok
08:47:44.0091 0x0a80  WINUSB - ok
08:47:44.0094 0x0a80  WinVerbs - ok
08:47:44.0098 0x0a80  WlanSvc - ok
08:47:44.0102 0x0a80  wlidsvc - ok
08:47:44.0105 0x0a80  WmiAcpi - ok
08:47:44.0110 0x0a80  wmiApSrv - ok
08:47:44.0113 0x0a80  WMPNetworkSvc - ok
08:47:44.0117 0x0a80  Wof - ok
08:47:44.0122 0x0a80  workfolderssvc - ok
08:47:44.0125 0x0a80  wpcfltr - ok
08:47:44.0128 0x0a80  WPDBusEnum - ok
08:47:44.0132 0x0a80  WpdUpFltr - ok
08:47:44.0135 0x0a80  WpnService - ok
08:47:44.0139 0x0a80  ws2ifsl - ok
08:47:44.0142 0x0a80  wscsvc - ok
08:47:44.0145 0x0a80  WSearch - ok
08:47:44.0150 0x0a80  WSService - ok
08:47:44.0154 0x0a80  wuauserv - ok
08:47:44.0157 0x0a80  WudfPf - ok
08:47:44.0160 0x0a80  WUDFRd - ok
08:47:44.0164 0x0a80  wudfsvc - ok
08:47:44.0167 0x0a80  WUDFWpdFs - ok
08:47:44.0171 0x0a80  WUDFWpdMtp - ok
08:47:44.0175 0x0a80  WwanSvc - ok
08:47:44.0179 0x0a80  XblAuthManager - ok
08:47:44.0182 0x0a80  XblGameSave - ok
08:47:44.0186 0x0a80  xboxgip - ok
08:47:44.0189 0x0a80  XboxNetApiSvc - ok
08:47:44.0192 0x0a80  xinputhid - ok
08:47:44.0196 0x0a80  ================ Scan global ===============================
08:47:44.0197 0x0a80  [ Global ] - ok
08:47:44.0197 0x0a80  ================ Scan MBR ==================================
08:47:44.0219 0x0a80  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:47:44.0398 0x0a80  \Device\Harddisk0\DR0 - ok
08:47:44.0398 0x0a80  ================ Scan VBR ==================================
08:47:44.0398 0x0a80  ================ Scan generic autorun ======================
08:47:44.0398 0x0a80  NvBackend - ok
08:47:44.0400 0x0a80  OneDriveSetup - ok
08:47:44.0402 0x0a80  OneDriveSetup - ok
08:47:44.0403 0x0a80  OneDrive - ok
08:47:44.0405 0x0a80  IDMan - ok
08:47:44.0423 0x0a80  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x61100 ( enabled : updated )
08:47:44.0425 0x0a80  Win FW state via NFP2: enabled ( trusted )
08:47:46.0966 0x0a80  ============================================================
08:47:46.0966 0x0a80  Scan finished
08:47:46.0966 0x0a80  ============================================================
08:47:46.0980 0x1244  Detected object count: 0
08:47:46.0980 0x1244  Actual detected object count: 0

 
Now i wana a permanent solution of this problem.
Just help me to get rid out of this.
 
 THANK YOU IN ADVANCE



BC AdBot (Login to Remove)

 


#2 polskamachina

polskamachina

  • Malware Response Team
  • 3,993 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:03 AM

Posted 03 June 2016 - 08:52 PM

Hi Rexofc :)
 
My name is polskamachina and I would like to welcome you to the Malware Removal Forum. I will be helping you with your malware issues.

What follows below are some ground rules for this forum.

I will reply as soon as possible (typically within 24-48 hours). In turn, I ask that you please respond within 72 hours. If you know you will be away longer than that, please let me know. I am in California at GMT-7 hours (Pacific Standard Time). If I do not respond to you within 48 hours, feel free to send me a private message.

Some points for you to keep in mind:

  • Do NOT run any tools unless instructed to do so.
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine. Running any additional tools may detect false positives, interfere with our tools, cause unforeseen damage, or system instability.
  • Do not attach logs or use code boxes, just copy and paste the text.
  • I cannot see your computer. Periodically update me on the condition of your computer, and provide as much detail as you can in every post.
  • Once things seem to be working again, please do not abandon the thread. I will give an "all-clean" message at the very end.
  • NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planned. You can put them on a CD/DVD, external drive or a flash drive, anywhere except on the computer.
  • NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. Please remember to copy the entire post so you do not miss any instructions.

Let's get started:

  • Please visit this preparation guide and follow the directions in step :step6:
  • If you are able to run FRST, please copy and paste the logs, FRST.txt and Addition.txt, into your next reply to me.
  • If your computer is unable to run the FRST program as instructed, please let me know. 

polskamachina



#3 polskamachina

polskamachina

  • Malware Response Team
  • 3,993 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:03 AM

Posted 07 June 2016 - 11:11 PM

Hi Rexofc :)

 

It's been a while since you've checked in. Did you need any more help with this? If not, this topic will be closed in 48 hours.
 
Please let me know if you have any questions.
 
polskamachina



#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,005 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:06:03 AM

Posted 12 June 2016 - 02:18 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users