Jump to content

jahmik

Members
 View Profile  See their activity

  • Posts

    14

  • Joined

  • Last visited

Reputation

0 Neutral
  1. jahmik
    Thanks alot, i dont think i have anymore questions. youre a life saver.
  2. jahmik
    both updates went well, and the somputer is actually running a bit faster than usual
  3. jahmik
    the otl log:
  4. jahmik
    Okay, so i did the adware cleaner without posting th elog from OTL, do you know where i could find that log? in the meantime Adware cleaner log:
  5. jahmik
    Extra.txt: ESETScan.txt: C:\Program Files\ESET\ESET Online Scanner\log.txt
  6. jahmik
    OTL.txt
  7. jahmik
    sorry for the delay. the AdwCleaner logfile: The JRT.txt file:
  8. jahmik
    ComboFix 13-06-15.01 - jahmik 06/16/2013 17:52:38.2.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.7650.5608 [GMT -4:00] Running from: c:\users\jahmik\Downloads\ComboFix.exe Command switches used :: c:\users\jahmik\Desktop\CFScript.txt AV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} FW: AVG Internet Security 2013 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2} SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . FILE :: "c:\windows\System32\Drivers\89892023.sys" . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_89892023 . . ((((((((((((((((((((((((( Files Created from 2013-05-16 to 2013-06-16 ))))))))))))))))))))))))))))))) . . 2013-06-16 22:21 . 2013-06-16 22:21 -------- d-----w- C:\FRST 2013-06-16 19:55 . 2013-06-16 20:56 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2013-06-16 19:55 . 2013-06-16 19:55 -------- d-----w- c:\programdata\Malwarebytes 2013-06-12 07:15 . 2013-06-12 07:15 -------- d-----w- c:\programdata\iolo 2013-06-12 07:15 . 2013-06-12 07:15 74703 ----a-w- c:\windows\SysWow64\mfc45.dat 2013-06-12 07:15 . 2013-06-12 07:15 -------- d-----w- c:\program files (x86)\iolo 2013-05-19 02:55 . 2013-05-19 02:55 -------- d-----w- c:\program files (x86)\Common Files\Skype 2013-05-19 02:55 . 2013-05-19 02:55 -------- d-----r- c:\program files (x86)\Skype . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-06-12 01:23 . 2012-03-10 02:08 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-06-12 01:23 . 2012-03-10 02:08 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-05-18 08:35 . 2012-09-01 14:36 75016696 ----a-w- c:\windows\system32\MRT.exe 2013-05-13 22:24 . 2011-03-29 02:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-04-13 05:49 . 2013-05-15 13:46 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll 2013-04-13 05:49 . 2013-05-15 13:46 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll 2013-04-13 05:49 . 2013-05-15 13:46 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll 2013-04-13 05:49 . 2013-05-15 13:46 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll 2013-04-13 04:45 . 2013-05-15 13:46 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2013-04-13 04:45 . 2013-05-15 13:46 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll 2013-04-12 14:45 . 2013-04-23 19:31 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-04-10 05:24 . 2013-05-15 13:46 983912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-04-10 05:24 . 2013-05-15 13:46 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2013-04-10 03:30 . 2013-05-15 13:45 3153920 ----a-w- c:\windows\system32\win32k.sys 2013-03-29 06:53 . 2013-03-29 06:53 246072 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys 2013-03-25 02:46 . 2013-03-25 02:46 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-03-25 02:46 . 2012-10-12 16:11 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2013-03-25 02:46 . 2012-10-12 16:11 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-03-25 02:26 . 2013-03-25 02:26 29696 ----a-w- c:\windows\system32\drivers\dtscsibus.sys 2013-03-21 07:08 . 2013-03-21 07:08 240952 ----a-w- c:\windows\system32\drivers\avgtdia.sys 2013-03-19 21:14 . 2013-03-19 21:14 226304 ----a-w- c:\windows\system32\elshyph.dll 2013-03-19 21:14 . 2013-03-19 21:14 185344 ----a-w- c:\windows\SysWow64\elshyph.dll 2013-03-19 21:14 . 2013-03-19 21:14 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe 2013-03-19 21:14 . 2013-03-19 21:14 158720 ----a-w- c:\windows\SysWow64\msls31.dll 2013-03-19 21:14 . 2013-03-19 21:14 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll 2013-03-19 21:14 . 2013-03-19 21:14 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2013-03-19 21:14 . 2013-03-19 21:14 138752 ----a-w- c:\windows\SysWow64\wextract.exe 2013-03-19 21:14 . 2013-03-19 21:14 523264 ----a-w- c:\windows\SysWow64\vbscript.dll 2013-03-19 21:14 . 2013-03-19 21:14 38400 ----a-w- c:\windows\SysWow64\imgutil.dll 2013-03-19 21:14 . 2013-03-19 21:14 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2013-03-19 21:14 . 2013-03-19 21:14 12800 ----a-w- c:\windows\SysWow64\mshta.exe 2013-03-19 21:14 . 2013-03-19 21:14 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2013-03-19 21:14 . 2013-03-19 21:14 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2013-03-19 21:14 . 2013-03-19 21:14 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2013-03-19 21:14 . 2013-03-19 21:14 61952 ----a-w- c:\windows\SysWow64\tdc.ocx 2013-03-19 21:14 . 2013-03-19 21:14 361984 ----a-w- c:\windows\SysWow64\html.iec 2013-03-19 21:14 . 2013-03-19 21:14 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2013-03-19 21:14 . 2013-03-19 21:14 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll 2013-03-19 21:14 . 2013-03-19 21:14 197120 ----a-w- c:\windows\system32\msrating.dll 2013-03-19 21:14 . 2013-03-19 21:14 81408 ----a-w- c:\windows\system32\icardie.dll 2013-03-19 21:14 . 2013-03-19 21:14 762368 ----a-w- c:\windows\system32\ieapfltr.dll 2013-03-19 21:14 . 2013-03-19 21:14 452096 ----a-w- c:\windows\system32\dxtmsft.dll 2013-03-19 21:14 . 2013-03-19 21:14 441856 ----a-w- c:\windows\system32\html.iec 2013-03-19 21:14 . 2013-03-19 21:14 281600 ----a-w- c:\windows\system32\dxtrans.dll 2013-03-19 21:14 . 2013-03-19 21:14 216064 ----a-w- c:\windows\system32\msls31.dll 2013-03-19 21:14 . 2013-03-19 21:14 1400416 ----a-w- c:\windows\system32\ieapfltr.dat 2013-03-19 21:14 . 2013-03-19 21:14 97280 ----a-w- c:\windows\system32\mshtmled.dll 2013-03-19 21:14 . 2013-03-19 21:14 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll 2013-03-19 21:14 . 2013-03-19 21:14 27648 ----a-w- c:\windows\system32\licmgr10.dll 2013-03-19 21:14 . 2013-03-19 21:14 270848 ----a-w- c:\windows\system32\iedkcs32.dll 2013-03-19 21:14 . 2013-03-19 21:14 247296 ----a-w- c:\windows\system32\webcheck.dll 2013-03-19 21:14 . 2013-03-19 21:14 235008 ----a-w- c:\windows\system32\url.dll 2013-03-19 21:14 . 2013-03-19 21:14 1509376 ----a-w- c:\windows\system32\inetcpl.cpl 2013-03-19 21:14 . 2013-03-19 21:14 102912 ----a-w- c:\windows\system32\inseng.dll 2013-03-19 21:14 . 2013-03-19 21:14 599552 ----a-w- c:\windows\system32\vbscript.dll 2013-03-19 21:14 . 2013-03-19 21:14 173568 ----a-w- c:\windows\system32\ieUnatt.exe 2013-03-19 21:14 . 2013-03-19 21:14 167424 ----a-w- c:\windows\system32\iexpress.exe 2013-03-19 21:14 . 2013-03-19 21:14 144896 ----a-w- c:\windows\system32\wextract.exe 2013-03-19 21:14 . 2013-03-19 21:14 62976 ----a-w- c:\windows\system32\pngfilt.dll 2013-03-19 21:14 . 2013-03-19 21:14 52224 ----a-w- c:\windows\system32\msfeedsbs.dll 2013-03-19 21:14 . 2013-03-19 21:14 51200 ----a-w- c:\windows\system32\imgutil.dll 2013-03-19 21:14 . 2013-03-19 21:14 149504 ----a-w- c:\windows\system32\occache.dll 2013-03-19 21:14 . 2013-03-19 21:14 13824 ----a-w- c:\windows\system32\mshta.exe 2013-03-19 21:14 . 2013-03-19 21:14 136192 ----a-w- c:\windows\system32\iepeers.dll 2013-03-19 21:14 . 2013-03-19 21:14 135680 ----a-w- c:\windows\system32\IEAdvpack.dll 2013-03-19 21:14 . 2013-03-19 21:14 12800 ----a-w- c:\windows\system32\msfeedssync.exe 2013-03-19 21:14 . 2013-03-19 21:14 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2013-03-19 21:14 . 2013-03-19 21:14 48640 ----a-w- c:\windows\system32\mshtmler.dll 2013-03-19 21:14 . 2013-03-19 21:14 77312 ----a-w- c:\windows\system32\tdc.ocx 2013-03-19 06:04 . 2013-04-10 00:36 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-03-19 05:53 . 2013-05-15 13:45 48640 ----a-w- c:\windows\system32\wwanprotdim.dll 2013-03-19 05:53 . 2013-05-15 13:45 230400 ----a-w- c:\windows\system32\wwansvc.dll 2013-03-19 05:46 . 2013-04-10 00:36 43520 ----a-w- c:\windows\system32\csrsrv.dll 2013-03-19 05:04 . 2013-04-10 00:36 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2013-03-19 05:04 . 2013-04-10 00:36 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2013-03-19 04:47 . 2013-04-10 00:36 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll 2013-03-19 03:06 . 2013-04-10 00:36 112640 ----a-w- c:\windows\system32\smss.exe . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2012-09-10 59280] "MusicManager"="c:\users\jahmik\AppData\Local\Programs\Google\MusicManager\MusicManager.exe" [2013-04-23 7331840] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-01-27 630912] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352] "HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-08-19 379960] "HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2012-11-05 1343904] "HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2012-03-05 578944] "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2013-04-25 1075296] "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2011-09-05 2904984] "PrivitizeVPN"="c:\program files (x86)\PrivitizeVPN\PrivitizeVPN.exe" [2012-09-10 196784] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280] "AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-04-29 4408368] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] . c:\users\jahmik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ MagicDisc.lnk - c:\program files (x86)\MagicDisc\MagicDisc.exe [2013-3-28 576000] Monitor Ink Alerts - HP Deskjet 1050 J410 series.lnk - c:\windows\system32\RunDll32.exe "c:\program files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN0912H2N505HW;CONNECTION=USB;MONITOR=1; [2009-7-13 45568] Rainmeter.lnk - c:\program files\Rainmeter\Rainmeter.exe [2012-11-4 41160] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) "AppInit_DLLs"=c:\progra~3\BROWSE~1\261123~1.78\{16CDF~1\browsemngr.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-] "Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" . R2 Browser Manager;Browser Manager;c:\programdata\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe;c:\programdata\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe [x] R3 Disc Soft Bus Service;Disc Soft Bus Service;c:\program files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe;c:\program files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [x] R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x] R3 SmbDrv;SmbDrv;c:\windows\system32\drivers\Smb_driver.sys;c:\windows\SYSNATIVE\drivers\Smb_driver.sys [x] R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x] R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x] R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x] R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x] R3 TrueService;TrueAPI Service component;c:\program files\Common Files\AuthenTec\TrueService.exe;c:\program files\Common Files\AuthenTec\TrueService.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x] S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x] S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x] S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x] S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x] S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x] S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x] S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x] S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x] S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x] S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x] S2 APXACC;AppEx Networks Accelerator LWF;c:\windows\system32\DRIVERS\appexDrv.sys;c:\windows\SYSNATIVE\DRIVERS\appexDrv.sys [x] S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe;c:\program files (x86)\AVG\AVG2013\avgfws.exe [x] S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x] S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x] S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe [x] S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x] S2 FPLService;TrueSuiteService;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe [x] S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x] S2 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [x] S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [x] S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x] S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x] S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x] S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x] S2 valWBFPolicyService;Validity WBF Policy Service;c:\windows\system32\valWBFPolicyService.exe;c:\windows\SYSNATIVE\valWBFPolicyService.exe [x] S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\drivers\amdhub30.sys;c:\windows\SYSNATIVE\drivers\amdhub30.sys [x] S3 amdiox64;AMD IO Driver;c:\windows\system32\drivers\amdiox64.sys;c:\windows\SYSNATIVE\drivers\amdiox64.sys [x] S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\drivers\amdxhc.sys;c:\windows\SYSNATIVE\drivers\amdxhc.sys [x] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x] S3 dtscsibus;DAEMON Tools Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtscsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtscsibus.sys [x] S3 RSP2STOR;Realtek PCIE CardReader Driver - P2;c:\windows\system32\DRIVERS\RtsP2Stor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsP2Stor.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x] S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x] S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x] S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x] S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x] S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x] . . --- Other Services/Drivers In Memory --- . *NewlyCreated* - WS2IFSL . Contents of the 'Scheduled Tasks' folder . 2013-06-11 c:\windows\Tasks\HPCeeScheduleForDREAM$.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 12:43] . 2013-05-24 c:\windows\Tasks\HPCeeScheduleForjahmik.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 12:43] . 2013-06-16 c:\windows\Tasks\SDMsgUpdate (TE).job - c:\progra~2\SMARTD~1\Messages\SDNotify.exe [2013-02-21 15:18] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [bU] "SetDefault"="c:\program files\Hewlett-Packard\HP LaunchBox\SetDefault.exe" [2011-12-20 44880] "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904] "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2012-09-15 1425408] . ------- Supplementary Scan ------- . uStart Page = hxxp://search.babylon.com/?affID=44444&tt=120912_cpc_3712_5&babsrc=HP_ss&mntrId=face6d1400000000000074e5437ab07b uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local TCP: DhcpNameServer = 192.168.1.1 . - - - - ORPHANS REMOVED - - - - . AddRemove-{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} - c:\programdata\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\uninstall.exe AddRemove-{20E7BC40-33F6-4A81-9D52-B58349326206} - c:\programdata\Download and Sa\uninstall.exe AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Other Running Processes ------------------------ . c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files (x86)\HP SimplePass\IEWebSiteLogon.exe c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe . ************************************************************************** . Completion time: 2013-06-16 18:16:02 - machine was rebooted ComboFix-quarantined-files.txt 2013-06-16 22:16 ComboFix2.txt 2013-06-16 21:16 . Pre-Run: 550,836,842,496 bytes free Post-Run: 550,348,238,848 bytes free . - - End Of File - - 3E68986BF2E63A4C84383F7F67E43326 A36C5E4F47E84449FF07ED3517B43A31 Also, the computer seems to be running fine
  9. jahmik
    MBARlog.txt: system-log.txt: Combofix's report: Security check checkup.txt:
  10. jahmik
    TDS Killers Logfile:
  11. jahmik
    yes the infected computer does boot
  12. jahmik
    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-06-2013 Ran by SYSTEM at 2013-06-16 15:43:15 Run:1 Running from H:\ Boot Mode: Recovery ============================================== HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully. C:\Windows\Tasks\SA.DAT => Moved successfully. C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4149293047-3287920786-3413226687-1002UA.job => Moved successfully. C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully. C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4149293047-3287920786-3413226687-1002Core.job => Moved successfully. C:\Users\jahmik\AppData\Roaming\skype.dat => Moved successfully. ==== End of Fixlog ==== Tat is the log i am trying to log in normally right now
  13. jahmik
    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-06-2013 Ran by SYSTEM on 16-06-2013 14:22:12 Running from H:\ Windows 7 Home Premium (X64) OS Language: English(US) Internet Explorer Version 9 Boot Mode: Recovery The current controlset is ControlSet001 ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log. ==================== Registry (Whitelisted) ================== HKLM\...\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-13] (Synaptics Incorporated) HKLM\...\Run: [setDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-19] (Hewlett-Packard Development Company, L.P.) HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [444904 2012-09-20] (Adobe Systems Incorporated) HKLM\...\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-09-14] (IDT, Inc.) HKLM\...\RunOnce: [*Restore] C:\Windows\system32\rstrui.exe /RUNONCE [296960 2010-11-20] (Microsoft Corporation) HKLM-x32\...\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [630912 2012-01-26] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-02] (Adobe Systems Incorporated) HKLM-x32\...\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [1075296 2013-04-24] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2904984 2011-09-05] (Adobe Systems Inc.) HKLM-x32\...\Run: [PrivitizeVPN] C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun [196784 2012-09-10] (OOO Industry) HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-11-28] (Apple Inc.) HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [4408368 2013-04-28] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM-x32\...\Run: [] [x] HKU\jahmik\...\Run: [Google Update] "C:\Users\jahmik\AppData\Local\Google\Update\GoogleUpdate.exe" /c [116648 2012-08-23] (Google Inc.) HKU\jahmik\...\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59280 2012-09-10] (Apple Inc.) HKU\jahmik\...\Run: [MusicManager] "C:\Users\jahmik\AppData\Local\Programs\Google\MusicManager\MusicManager.exe" [7331840 2013-04-23] (Google Inc.) Startup: C:\Users\jahmik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.) Startup: C:\Users\jahmik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 1050 J410 series.lnk ShortcutTarget: Monitor Ink Alerts - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll (Hewlett-Packard Co.) Startup: C:\Users\jahmik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () ==================== Services (Whitelisted) ================= S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-01-26] (Advanced Micro Devices, Inc.) S2 avgfws; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [1428472 2013-04-10] (AVG Technologies CZ, s.r.o.) S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4937264 2013-05-13] (AVG Technologies CZ, s.r.o.) S2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-04-18] (AVG Technologies CZ, s.r.o.) S3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [580672 2013-03-06] (Disc Soft Ltd) S2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641768 2013-02-07] (HP) S2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-16] (Hewlett-Packard) S3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401856 2013-01-07] (AuthenTec, Inc.) S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2148216 2012-08-23] (AVG) S2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2012-09-05] () S2 Browser Manager; C:\ProgramData\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [x] ==================== Drivers (Whitelisted) ==================== S0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [31360 2012-01-18] (Advanced Micro Devices, Inc.) S2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices) S2 APXACC; C:\Windows\System32\DRIVERS\appexDrv.sys [189760 2012-02-05] (AppEx Networks Corporation) S1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [50296 2012-09-04] (AVG Technologies CZ, s.r.o.) S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-03-28] (AVG Technologies CZ, s.r.o.) S0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-02-08] (AVG Technologies CZ, s.r.o.) S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206136 2013-02-08] (AVG Technologies CZ, s.r.o.) S0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311096 2013-02-08] (AVG Technologies CZ, s.r.o.) S0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-02-08] (AVG Technologies CZ, s.r.o.) S0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-02-08] (AVG Technologies CZ, s.r.o.) S1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-20] (AVG Technologies CZ, s.r.o.) S3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2013-03-24] (Disc Soft Ltd) S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [266896 2012-10-26] (Realtek Semiconductor Corp.) S3 SmbDrv; C:\Windows\system32\drivers\Smb_driver.sys [20016 2011-10-13] (Synaptics Incorporated) S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [11880 2012-07-04] (TuneUp Software) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-06-16 14:21 - 2013-06-16 14:21 - 00000000 ____D C:\FRST 2013-06-16 06:20 - 2013-06-16 06:20 - 00072501 ____A C:\Users\jahmik\Downloads\video_hd (2).zip 2013-06-16 06:20 - 2013-06-16 06:20 - 00072501 ____A C:\Users\jahmik\Downloads\video_hd (1).zip 2013-06-16 06:19 - 2013-06-16 12:08 - 00000000 ____D C:\Users\jahmik\Downloads\video_hd 2013-06-16 06:18 - 2013-06-16 06:18 - 00072501 ____A C:\Users\jahmik\Downloads\video_hd.zip 2013-06-15 19:59 - 2013-06-15 19:59 - 01185739 ____A C:\Users\jahmik\Downloads\0601309.mov 2013-06-15 10:25 - 2013-06-15 10:25 - 00042289 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.6.complete.hdtv.xvid.mp3 (1).torrent 2013-06-14 16:42 - 2013-06-14 16:42 - 00014672 ____A C:\Users\jahmik\Downloads\[kickass.to]kopps.2003.dvdrip.swe.multi.sub.vex.torrent 2013-06-14 11:43 - 2013-06-14 11:43 - 00042289 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.6.complete.hdtv.xvid.mp3.torrent 2013-06-14 11:42 - 2013-06-14 11:42 - 00022253 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.7.complete.s07e01.s07e23.torrent 2013-06-14 11:40 - 2013-06-14 11:40 - 00243152 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.5.complete.x264.mkv.by.riddlera.torrent 2013-06-13 19:47 - 2013-06-13 19:47 - 00011183 ____A C:\Users\jahmik\Downloads\[kickass.to]an.evening.with.kevin.smith.2002.dvdrip.xvid.retro.torrent 2013-06-13 16:20 - 2013-06-13 16:20 - 00017028 ____A C:\Users\jahmik\Downloads\[kickass.to]the.a.team.extended.2010.720p.brrip.x264.800mb.yify.torrent 2013-06-13 14:06 - 2013-06-13 14:06 - 00038664 ____A C:\Users\jahmik\Downloads\[kickass.to]da.vincis.demons.s01e08.web.dl.xvid.fum.ettv.torrent 2013-06-11 23:15 - 2013-06-11 23:15 - 06653248 ____A C:\Users\jahmik\Downloads\SCUDownloader.exe 2013-06-11 23:15 - 2013-06-11 23:15 - 00074703 ____A C:\Windows\SysWOW64\mfc45.dat 2013-06-11 23:15 - 2013-06-11 23:15 - 00001179 ____A C:\Users\jahmik\Desktop\System Checkup.lnk 2013-06-11 23:15 - 2013-06-11 23:15 - 00000000 ____D C:\ProgramData\iolo 2013-06-11 23:15 - 2013-06-11 23:15 - 00000000 ____D C:\ProgramData\Application Data\iolo 2013-06-11 23:15 - 2013-06-11 23:15 - 00000000 ____D C:\Program Files (x86)\iolo 2013-06-06 12:21 - 2013-06-06 12:21 - 00000000 ____D C:\Users\jahmik\AppData\Roaming\Mozilla 2013-06-03 15:47 - 2013-06-03 15:47 - 00748816 ____A (Reimage®) C:\Users\jahmik\Downloads\eFixPro.exe 2013-05-22 16:16 - 2013-05-22 16:16 - 00207160 ____A C:\Users\jahmik\Downloads\Gym_Class_Heroes_Stereo_Hearts_feat_Adam_Levine_[2011_Single][MJN].exe 2013-05-18 18:55 - 2013-05-18 18:55 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-05-18 00:27 - 2013-04-04 22:52 - 02242048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-05-18 00:27 - 2013-04-04 22:52 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-05-18 00:27 - 2013-04-04 22:52 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2013-05-18 00:27 - 2013-04-04 22:50 - 19231232 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 15404032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 02647552 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-05-18 00:27 - 2013-04-04 22:50 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2013-05-18 00:27 - 2013-04-04 21:28 - 01767424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-05-18 00:27 - 2013-04-04 21:28 - 01130496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 14323712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-05-18 00:27 - 2013-04-04 21:26 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-05-18 00:27 - 2013-04-04 20:43 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-05-18 00:27 - 2013-04-04 20:29 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-05-18 00:27 - 2013-04-04 19:51 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2013-05-18 00:27 - 2013-04-04 19:38 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe ==================== One Month Modified Files and Folders ======= 2013-06-16 14:21 - 2013-06-16 14:21 - 00000000 ____D C:\FRST 2013-06-16 12:34 - 2012-12-27 10:00 - 00000000 ____D C:\ProgramData\MFAData 2013-06-16 12:34 - 2012-12-27 10:00 - 00000000 ____D C:\ProgramData\Application Data\MFAData 2013-06-16 12:34 - 2012-08-24 09:01 - 00000000 ____D C:\Users\jahmik\AppData\Roaming\vlc 2013-06-16 12:34 - 2012-08-23 11:42 - 00000000 ____D C:\Users\jahmik\AppData\Roaming\uTorrent 2013-06-16 12:34 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache 2013-06-16 12:34 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\AppCompat 2013-06-16 12:34 - 2009-07-13 19:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2013-06-16 12:33 - 2012-03-09 18:08 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-06-16 12:33 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\registration 2013-06-16 12:32 - 2012-08-23 13:45 - 00000000 ____D C:\Users\jahmik\AppData\Local\Adobe 2013-06-16 12:08 - 2013-06-16 06:19 - 00000000 ____D C:\Users\jahmik\Downloads\video_hd 2013-06-16 10:17 - 2012-08-23 11:12 - 00000000 ____D C:\users\jahmik 2013-06-16 10:17 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-06-16 10:17 - 2009-07-13 20:51 - 00085462 ____A C:\Windows\setupact.log 2013-06-16 06:20 - 2013-06-16 06:20 - 00072501 ____A C:\Users\jahmik\Downloads\video_hd (2).zip 2013-06-16 06:20 - 2013-06-16 06:20 - 00072501 ____A C:\Users\jahmik\Downloads\video_hd (1).zip 2013-06-16 06:18 - 2013-06-16 06:18 - 00072501 ____A C:\Users\jahmik\Downloads\video_hd.zip 2013-06-15 19:59 - 2013-06-15 19:59 - 01185739 ____A C:\Users\jahmik\Downloads\0601309.mov 2013-06-15 10:25 - 2013-06-15 10:25 - 00042289 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.6.complete.hdtv.xvid.mp3 (1).torrent 2013-06-14 16:42 - 2013-06-14 16:42 - 00014672 ____A C:\Users\jahmik\Downloads\[kickass.to]kopps.2003.dvdrip.swe.multi.sub.vex.torrent 2013-06-14 11:43 - 2013-06-14 11:43 - 00042289 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.6.complete.hdtv.xvid.mp3.torrent 2013-06-14 11:42 - 2013-06-14 11:42 - 00022253 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.7.complete.s07e01.s07e23.torrent 2013-06-14 11:40 - 2013-06-14 11:40 - 00243152 ____A C:\Users\jahmik\Downloads\[kickass.to]supernatural.season.5.complete.x264.mkv.by.riddlera.torrent 2013-06-13 19:47 - 2013-06-13 19:47 - 00011183 ____A C:\Users\jahmik\Downloads\[kickass.to]an.evening.with.kevin.smith.2002.dvdrip.xvid.retro.torrent 2013-06-13 16:20 - 2013-06-13 16:20 - 00017028 ____A C:\Users\jahmik\Downloads\[kickass.to]the.a.team.extended.2010.720p.brrip.x264.800mb.yify.torrent 2013-06-13 14:06 - 2013-06-13 14:06 - 00038664 ____A C:\Users\jahmik\Downloads\[kickass.to]da.vincis.demons.s01e08.web.dl.xvid.fum.ettv.torrent 2013-06-13 11:59 - 2012-08-23 15:04 - 00000000 ____D C:\Users\jahmik\AppData\Local\CrashDumps 2013-06-12 23:00 - 2012-08-23 11:12 - 01814829 ____A C:\Windows\WindowsUpdate.log 2013-06-12 22:20 - 2012-08-23 11:29 - 00000912 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4149293047-3287920786-3413226687-1002UA.job 2013-06-12 22:12 - 2012-03-09 18:08 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-06-12 17:20 - 2012-08-23 11:29 - 00000860 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4149293047-3287920786-3413226687-1002Core.job 2013-06-11 23:15 - 2013-06-11 23:15 - 06653248 ____A C:\Users\jahmik\Downloads\SCUDownloader.exe 2013-06-11 23:15 - 2013-06-11 23:15 - 00074703 ____A C:\Windows\SysWOW64\mfc45.dat 2013-06-11 23:15 - 2013-06-11 23:15 - 00001179 ____A C:\Users\jahmik\Desktop\System Checkup.lnk 2013-06-11 23:15 - 2013-06-11 23:15 - 00000000 ____D C:\ProgramData\iolo 2013-06-11 23:15 - 2013-06-11 23:15 - 00000000 ____D C:\ProgramData\Application Data\iolo 2013-06-11 23:15 - 2013-06-11 23:15 - 00000000 ____D C:\Program Files (x86)\iolo 2013-06-11 17:23 - 2012-03-09 18:08 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-11 17:23 - 2012-03-09 18:08 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-06-11 16:04 - 2009-07-13 20:45 - 00031472 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-06-11 16:04 - 2009-07-13 20:45 - 00031472 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-06-11 14:54 - 2012-11-14 10:29 - 00000336 ____A C:\Windows\Tasks\HPCeeScheduleForDREAM$.job 2013-06-10 12:25 - 2013-02-20 18:45 - 00000474 ____A C:\Windows\Tasks\SDMsgUpdate (TE).job 2013-06-10 12:23 - 2012-09-25 17:54 - 00000000 ____D C:\Users\jahmik\AppData\Roaming\SoftGrid Client 2013-06-07 11:59 - 2013-03-13 13:35 - 00000000 ____A C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt 2013-06-07 11:59 - 2012-08-24 11:57 - 00000052 ____A C:\Windows\SysWOW64\DOErrors.log 2013-06-06 12:21 - 2013-06-06 12:21 - 00000000 ____D C:\Users\jahmik\AppData\Roaming\Mozilla 2013-06-03 15:47 - 2013-06-03 15:47 - 00748816 ____A (Reimage®) C:\Users\jahmik\Downloads\eFixPro.exe 2013-06-03 15:13 - 2012-08-25 16:57 - 00000000 ____D C:\Users\jahmik\AppData\Local\MediaGet2 2013-06-03 15:06 - 2013-04-08 19:46 - 34631246 ____A C:\Users\jahmik\Documents\3.2.5traditional.skp 2013-06-03 08:45 - 2009-07-13 21:13 - 00727182 ____A C:\Windows\System32\PerfStringBackup.INI 2013-05-28 08:02 - 2010-11-20 19:47 - 00670130 ____A C:\Windows\PFRO.log 2013-05-24 02:08 - 2012-09-01 10:08 - 00000336 ____A C:\Windows\Tasks\HPCeeScheduleForjahmik.job 2013-05-22 16:16 - 2013-05-22 16:16 - 00207160 ____A C:\Users\jahmik\Downloads\Gym_Class_Heroes_Stereo_Hearts_feat_Adam_Levine_[2011_Single][MJN].exe 2013-05-19 09:56 - 2012-08-23 11:29 - 00000000 ____D C:\Users\jahmik\AppData\Local\Google 2013-05-19 09:55 - 2012-09-30 10:06 - 00000000 ____D C:\Users\jahmik\AppData\Roaming\Skype 2013-05-18 18:55 - 2013-05-18 18:55 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-05-18 18:55 - 2012-03-09 18:22 - 00000000 ____D C:\ProgramData\Skype 2013-05-18 18:55 - 2012-03-09 18:22 - 00000000 ____D C:\ProgramData\Application Data\Skype 2013-05-18 13:42 - 2013-03-20 20:42 - 00000000 ____D C:\Users\jahmik\Desktop\Design foundations HW 2013-05-18 08:30 - 2009-07-13 20:45 - 04892712 ____A C:\Windows\System32\FNTCACHE.DAT 2013-05-18 00:35 - 2012-09-01 06:36 - 75016696 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe Files to move or delete: ==================== C:\Users\jahmik\AppData\Roaming\skype.dat ==================== Known DLLs (Whitelisted) ================ ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= Restore point made on: 2013-06-07 07:26:43 Restore point made on: 2013-06-12 23:00:37 Restore point made on: 2013-06-15 01:48:00 ==================== Memory info =========================== Percentage of memory in use: 11% Total physical RAM: 7650.36 MB Available physical RAM: 6760.48 MB Total Pagefile: 7648.51 MB Available Pagefile: 6744.48 MB Total Virtual: 8192 MB Available Virtual: 8191.85 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:679.05 GB) (Free:510.77 GB) NTFS (Disk=0 Partition=2) ==>[system with boot components (obtained from reading drive)] Drive e: (Recovery) (Fixed) (Total:19.29 GB) (Free:2.09 GB) NTFS (Disk=0 Partition=3) ==>[system with boot components (obtained from reading drive)] Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.08 GB) FAT32 (Disk=0 Partition=4) Drive h: () (Removable) (Total:0.12 GB) (Free:0.12 GB) FAT (Disk=1 Partition=1) Drive x: (Boot) (Fixed) (Total:0.25 GB) (Free:0.25 GB) NTFS Drive y: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS (Disk=0 Partition=1) ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 2A3DD743) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=679 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=19 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=102 MB) - (Type=0C) ======================================================== Disk: 1 (Size: 126 MB) (Disk ID: 0003B3E0) Partition 1: (Active) - (Size=126 MB) - (Type=06) LastRegBack: 2013-06-12 23:53 ==================== End Of Log ============================
  14. jahmik
    Well.. apparently im just the latest in a string of fbi related viruses.. earlier today my nephew was browsing the internet (probably looking at the same thing all 14 year old boys look at while on the web) and downloaded a virus to my pc.. he claimed it happened when he opened a file he downloaded called HDVideo. I went through all the normal things (trying to run in safe mode and trying to restore it using system repair) the virus stops both, so after a bit of googling i stumbled upon this gym of a website. Many users have been successful in removing this virus between the use of Fabar Recovery Scan Tool. However, each user is directed by some shinning knight to input a unique command prompt thing.. since id like to -not- fry my computer.. i would deeply appreciate if anyone would be kind enough to help me. Also, i have already ran the scan and saved the log if that helps at all and can post it at request. Thanks in advance, Jahmik
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.