Jump to content

thefader

Members
  • Posts

    3
  • Joined

  • Last visited

Everything posted by thefader

  1. Any ideas? Anyone? Please help.... If I try to download a fresh version of malware.. in normal or safe mode.. it finishes downloading but gives me like 6 errors during installation. Microsoft Security essentials finds nothing.
  2. RogueKiller V9.2.8.0 (x64) [Jul 11 2014] by Adlice Software mail : http://www.adlice.com/contact/ Feedback : http://forum.adlice.com Website : http://www.adlice.com/softwares/roguekiller/ Blog : http://www.adlice.com Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : Garett [Admin rights] Mode : Scan -- Date : 08/18/2014 00:37:09 ¤¤¤ Bad processes : 1 ¤¤¤ [suspicious.Path] firefox.com -- C:\Users\Garett\Desktop\Chameleon\Windows\firefox.com[7] -> KILLED [DrvNtTerm] ¤¤¤ Registry Entries : 17 ¤¤¤ [suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\GPUZ -> FOUND [suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GPUZ -> FOUND [suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\GPUZ -> FOUND [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 24.220.0.10 24.220.0.11 -> FOUND [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 24.220.0.10 24.220.0.11 -> FOUND [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 24.220.0.10 24.220.0.11 -> FOUND [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{71D7D760-85AA-457E-BA55-DF9AD41DDF3C} | DhcpNameServer : 24.220.0.10 24.220.0.11 -> FOUND [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{71D7D760-85AA-457E-BA55-DF9AD41DDF3C} | DhcpNameServer : 24.220.0.10 24.220.0.11 -> FOUND [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{71D7D760-85AA-457E-BA55-DF9AD41DDF3C} | DhcpNameServer : 24.220.0.10 24.220.0.11 -> FOUND [PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-2564208972-3653998440-205755340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> FOUND [PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-2564208972-3653998440-205755340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> FOUND [PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-2564208972-3653998440-205755340-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> FOUND [PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-2564208972-3653998440-205755340-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> FOUND [PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> FOUND [PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND [PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> FOUND [PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND ¤¤¤ Scheduled tasks : 0 ¤¤¤ ¤¤¤ Files : 0 ¤¤¤ ¤¤¤ HOSTS File : 0 ¤¤¤ ¤¤¤ Antirootkit : 1 (Driver: LOADED) ¤¤¤ [Filter(Kernel.Filter)] \Driver\atapi @ \Device\Ide\IdeDeviceP1T0L0-1 : \Driver\iaStorF @ Unknown (\SystemRoot\System32\drivers\rdyboost.sys) ¤¤¤ Web browsers : 1 ¤¤¤ [PUM.HomePage][FIREFX:Config] hk4543sz.default : user_pref("browser.startup.homepage", "www.google.com"); -> FOUND ¤¤¤ MBR Check : ¤¤¤ +++++ PhysicalDrive0: ATA SanDisk SD6SB1M1 SCSI Disk Device +++++ --- User --- [MBR] 3c428c6df5ec2a648eeed17e20ec0af1 [bSP] 75e8957c020d521429b6618f2698376c : Windows Vista/7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB 1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 122002 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: ATA ST1000DM003-1CH1 SCSI Disk Device +++++ --- User --- [MBR] eba9e2ce7f46551e80a69ef7a8fb87e4 [bSP] 79f60d43ea481163ca3f3a52a01847fc : Windows Vista/7/8 MBR Code Partition table: 0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB User = LL1 ... OK User = LL2 ... OK
  3. Can't get Malware to update. I have it on my computer, cant open it, chameleon wont work. FRST.txt Addition.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.