Jump to content

sonus

Members
  • Content Count

    16
  • Joined

  • Last visited

Community Reputation

0 Neutral

About sonus

  • Rank
    New Member
  1. Absolutely a great help! You saved my computer from a reformat, and saved me hours of backups and frustration. I can't thank you enough.

  2. Ohh and the browser redirection is now gone, THANKS! Is there anything else I should do to test things further?
  3. I accidentally did a Full Scan on MBAM, it only found BMC Miner in what I'm assuming was the quarantine for one of the other anti-virus programs, so I'm assuming that isn't a bad sign. Here's a log: Also Microsoft Security Essentials is asking me to come back on finally! I'm assuming that this is legitimate? Is there any way for me to check before I click the "start now" button? Malwarebytes Anti-Malware (Trial) 1.62.0.1300 www.malwarebytes.org Database version: v2012.07.14.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Chris :: CHRIS-VAIO-Z [administrator] Protection
  4. Ohh, I see what happened, Farbar didn't see the other's because it had already deleted their root folder.
  5. Interestingly, it didn't find a couple of them. Is that a problem? Fix result of Farbar Recovery Tool (FRST written by Farbar) Version: 14-07-2012 01 Ran by SYSTEM at 2012-07-14 17:03:32 Run:1 Running from G:\ ============================================== C:\Windows\Installer\{c8347dac-c04f-371f-2862-2c27f80a4694} moved successfully. C:\Windows\Installer\{c8347dac-c04f-371f-2862-2c27f80a4694}\L not found. C:\Windows\Installer\{c8347dac-c04f-371f-2862-2c27f80a4694}\U not found. C:\Users\Chris\AppData\Local\{c8347dac-c04f-371f-2862-2c27f80a4694} moved successfully. C:\Users\Chris\AppData\Local
  6. thanks again for walking me through this. I ran FRST64 and only used SCAN, not fix as you said. Here are the results: Scan result of Farbar Recovery Scan Tool Version: 14-07-2012 01 Ran by SYSTEM at 14-07-2012 16:23:46 Running from G:\ Windows 7 Professional (X64) OS Language: English(US) The current controlset is ControlSet001 ========================== Registry (Whitelisted) ============= HKLM\...\Run: [igfxTray] C:\Windows\system32\igfxtray.exe [166424 2010-06-21] (Intel Corporation) HKLM\...\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe [390680 2010-06-21] (Intel Corporation) HKLM\...
  7. RogueKiller found some stuff though RogueKiller V7.6.3 [07/08/2012] by Tigzy mail: tigzyRK<at>gmail<dot>com Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User: Chris [Admin rights] Mode: Scan -- Date: 07/14/2012 16:06:33 ¤¤¤ Bad processes: 1 ¤¤¤ [sUSP PATH] SkyDrive.exe -- C:\Users\Chris\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe -> KILLED [TermProc] ¤¤¤ Registry Entries: 5 ¤¤¤ [sUSP PATH] HKCU\[...]\Run : SkyDrive ("C:\Users\
  8. Quick Scan in Malware-Bytes Anti Malware found nothing: Malwarebytes Anti-Malware (Trial) 1.62.0.1300 www.malwarebytes.org Database version: v2012.07.14.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Chris :: CHRIS-VAIO-Z [administrator] Protection: Enabled 7/14/2012 4:03:17 PM mbam-log-2012-07-14 (16-03-17).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P Scan options disabled: Objects scanned: 273288 Time elapsed: 1 minute(s), 3 second(s) Memory Processes Detected: 0 (No
  9. All processes killed ========== SERVICES/DRIVERS ========== Service exxqttpf stopped successfully! Service exxqttpf deleted successfully! ========== FILES ========== File\Folder c:\windows\system32\drivers\exxqttpf.sys not found. ========== COMMANDS ========== [EMPTYJAVA] User: All Users User: boinc_master User: Chris ->Java cache emptied: 0 bytes User: Default User: Default User User: HomeGroupUser$ User: Mcx1-CHRIS-VAIO-Z User: Public Total Java Files Cleaned = 0.00 mb [EMPTYTEMP] User: All Users User: boinc_master ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emp
  10. Crossing my fingers, I used the script that you posted. ComboFix 12-07-14.01 - Chris 07/14/2012 14:42:29.3.4 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3766.2092 [GMT -4:00] Running from: c:\users\Chris\Desktop\ComboFix.exe Command switches used :: c:\users\Chris\Desktop\CFScript.txt AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((
  11. Hi MrC here are the results of the second combofix results using your script ComboFix 12-07-14.01 - Chris 07/14/2012 13:37:42.2.4 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3766.2127 [GMT -4:00] Running from: c:\users\Chris\Desktop\ComboFix.exe Command switches used :: c:\users\Chris\Desktop\CFScript.txt AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((
  12. Here are the combofix log results: ComboFix 12-07-14.01 - Chris 07/14/2012 13:11:35.1.4 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3766.2616 [GMT -4:00] Running from: c:\users\Chris\Desktop\ComboFix.exe AV: Lavasoft Ad-Aware *Disabled/Updated* {445B48C3-0FA4-6B16-8F07-6506F305D800} AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} FW: Lavasoft Ad-Aware *Disabled* {7C60C9E6-45CB-6A4E-A458-CC330DD69F7B} SP: Lavasoft Ad-Aware *Disabled/Updated* {FF3AA927-299E-6498-B5B7-5E74888292BD} SP: Microsoft Security Essentials *Disabled/Updated
  13. It is the trial version (still within the trial period) *with realtime protection*. And yes, I'll definitely take your help as I don't have my installation discs to reformat the computer and won't have access to them for a month or two.
  14. Also, should I automatically disable Maleware Anti-Bytes when following any of directions? I forgot to disable it as I ran rogueKiller.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.