Jump to content

Wellsy

Members
 View Profile  See their activity

  • Posts

    10

  • Joined

  • Last visited

 Content Type 

Everything posted by Wellsy

  1. Wellsy
    Perfect, thanks.
  2. Wellsy
    Okay thanks for your help.
  3. Wellsy
    So in task manager physical memory being used is 32%
  4. Wellsy
    Running faster, but there is still quite a lot of memory being used. Any advice for sorting that out or?
  5. Wellsy
    Here you go: Fixlog.txt
  6. Wellsy
    Sorry I didn't reply, my email failed to give me the notification even though I'm following the post. Strange. I'll do this now and post the results.
  7. Wellsy
    Rootkit found nothing Malwarebytes Anti-Rootkit BETA 1.09.1.1004www.malwarebytes.org Database version: main: v2015.02.28.05 rootkit: v2015.02.25.01 Windows 7 Service Pack 1 x64 NTFSInternet Explorer 11.0.9600.17633Jessica :: JESSICA-PC [administrator] 28/02/2015 20:28:50mbar-log-2015-02-28 (20-28-50).txt Scan type: Quick scanScan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/ShurikenScan options disabled: Objects scanned: 350771Time elapsed: 31 minute(s), 2 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected) Physical Sectors Detected: 0(No malicious items detected) (end) System log text: ---------------------------------------Malwarebytes Anti-Rootkit BETA 1.09.1.1004 © Malwarebytes Corporation 2011-2012 OS version: 6.1.7601 Windows 7 Service Pack 1 x64 Account is Administrative Internet Explorer version: 11.0.9600.17633 File system is: NTFSDisk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXEDCPU speed: 2.195000 GHzMemory total: 8499904512, free: 5504409600 Downloaded database version: v2015.02.28.05Downloaded database version: v2015.02.25.01Downloaded database version: v2014.12.06.01=======================================Initializing...------------ Kernel report ------------ 02/28/2015 20:28:40------------ Loaded modules -----------\SystemRoot\system32\ntoskrnl.exe\SystemRoot\system32\hal.dll\SystemRoot\system32\kdcom.dll\SystemRoot\system32\mcupdate_GenuineIntel.dll\SystemRoot\system32\PSHED.dll\SystemRoot\system32\CLFS.SYS\SystemRoot\system32\CI.dll\SystemRoot\system32\drivers\Wdf01000.sys\SystemRoot\system32\drivers\WDFLDR.SYS\SystemRoot\system32\drivers\ACPI.sys\SystemRoot\system32\drivers\WMILIB.SYS\SystemRoot\system32\drivers\msisadrv.sys\SystemRoot\system32\drivers\pci.sys\SystemRoot\system32\drivers\vdrvroot.sys\SystemRoot\System32\drivers\partmgr.sys\SystemRoot\system32\drivers\compbatt.sys\SystemRoot\system32\drivers\BATTC.SYS\SystemRoot\system32\drivers\volmgr.sys\SystemRoot\System32\drivers\volmgrx.sys\SystemRoot\System32\drivers\mountmgr.sys\SystemRoot\system32\DRIVERS\iaStor.sys\SystemRoot\system32\drivers\atapi.sys\SystemRoot\system32\drivers\ataport.SYS\SystemRoot\system32\drivers\msahci.sys\SystemRoot\system32\drivers\PCIIDEX.SYS\SystemRoot\system32\drivers\amdxata.sys\SystemRoot\System32\Drivers\TS4nt.sys\SystemRoot\system32\drivers\fltmgr.sys\SystemRoot\system32\drivers\fileinfo.sys\SystemRoot\system32\drivers\mfehidk.sys\SystemRoot\System32\Drivers\Ntfs.sys\SystemRoot\System32\Drivers\msrpc.sys\SystemRoot\System32\Drivers\ksecdd.sys\SystemRoot\System32\Drivers\cng.sys\SystemRoot\System32\drivers\pcw.sys\SystemRoot\System32\Drivers\Fs_Rec.sys\SystemRoot\system32\drivers\ndis.sys\SystemRoot\system32\drivers\NETIO.SYS\SystemRoot\System32\Drivers\ksecpkg.sys\SystemRoot\System32\drivers\tcpip.sys\SystemRoot\System32\drivers\fwpkclnt.sys\SystemRoot\system32\drivers\volsnap.sys\SystemRoot\System32\Drivers\spldr.sys\SystemRoot\System32\drivers\rdyboost.sys\SystemRoot\System32\Drivers\RapportKE64.sys\SystemRoot\system32\DRIVERS\nvpciflt.sys\SystemRoot\System32\Drivers\mup.sys\SystemRoot\System32\DRIVERS\LhdX64.sys\SystemRoot\System32\drivers\hwpolicy.sys\SystemRoot\system32\drivers\GDBehave.sys\SystemRoot\System32\DRIVERS\fvevol.sys\SystemRoot\system32\drivers\fbfmon.sys\SystemRoot\system32\drivers\disk.sys\SystemRoot\system32\drivers\CLASSPNP.SYS\SystemRoot\system32\DRIVERS\cdrom.sys\??\C:\windows\system32\drivers\MiniIcpt.sys\??\C:\windows\system32\drivers\HookCentre.sys\??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_44365.sys\??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys\SystemRoot\System32\Drivers\Null.SYS\SystemRoot\System32\Drivers\Beep.SYS\??\C:\windows\system32\drivers\avgtpx64.sys\SystemRoot\System32\drivers\vga.sys\SystemRoot\System32\drivers\VIDEOPRT.SYS\SystemRoot\System32\drivers\watchdog.sys\SystemRoot\System32\DRIVERS\RDPCDD.sys\SystemRoot\system32\drivers\rdpencdd.sys\SystemRoot\system32\drivers\rdprefmp.sys\SystemRoot\System32\Drivers\Msfs.SYS\SystemRoot\System32\Drivers\Npfs.SYS\SystemRoot\system32\DRIVERS\tdx.sys\SystemRoot\system32\DRIVERS\TDI.SYS\SystemRoot\System32\DRIVERS\netbt.sys\SystemRoot\system32\drivers\afd.sys\SystemRoot\system32\DRIVERS\wfplwf.sys\SystemRoot\system32\DRIVERS\pacer.sys\SystemRoot\system32\DRIVERS\vwififlt.sys\SystemRoot\system32\DRIVERS\netbios.sys\SystemRoot\system32\DRIVERS\wanarp.sys\SystemRoot\system32\DRIVERS\termdd.sys\SystemRoot\system32\DRIVERS\rdbss.sys\??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys\SystemRoot\system32\drivers\nsiproxy.sys\SystemRoot\system32\DRIVERS\mssmbios.sys\??\C:\windows\system32\drivers\GRD.sys\SystemRoot\system32\drivers\gdwfpcd64.sys\SystemRoot\System32\drivers\discache.sys\SystemRoot\System32\Drivers\dfsc.sys\SystemRoot\system32\drivers\BPntDrv.sys\SystemRoot\system32\drivers\BOOTVID.dll\SystemRoot\system32\DRIVERS\blbdrive.sys\SystemRoot\system32\DRIVERS\tunnel.sys\SystemRoot\system32\DRIVERS\nvlddmkm.sys\SystemRoot\System32\drivers\dxgkrnl.sys\SystemRoot\System32\drivers\dxgmms1.sys\SystemRoot\system32\DRIVERS\igdkmd64.sys\SystemRoot\system32\DRIVERS\HECIx64.sys\SystemRoot\system32\drivers\usbehci.sys\SystemRoot\system32\drivers\USBPORT.SYS\SystemRoot\system32\DRIVERS\HDAudBus.sys\SystemRoot\system32\DRIVERS\bcmwl664.sys\SystemRoot\system32\DRIVERS\vwifibus.sys\SystemRoot\system32\DRIVERS\Rt64win7.sys\SystemRoot\system32\DRIVERS\CmBatt.sys\SystemRoot\system32\DRIVERS\AcpiVpc.sys\SystemRoot\system32\DRIVERS\i8042prt.sys\??\C:\windows\system32\drivers\GDKBFlt64.sys\SystemRoot\system32\DRIVERS\kbdclass.sys\SystemRoot\system32\DRIVERS\SynTP.sys\SystemRoot\system32\DRIVERS\USBD.SYS\SystemRoot\system32\DRIVERS\mouclass.sys\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys\SystemRoot\system32\DRIVERS\intelppm.sys\SystemRoot\system32\DRIVERS\wmiacpi.sys\SystemRoot\system32\DRIVERS\CompositeBus.sys\SystemRoot\system32\DRIVERS\clwvd.sys\SystemRoot\system32\DRIVERS\ks.sys\SystemRoot\system32\drivers\ksthunk.sys\SystemRoot\system32\DRIVERS\AgileVpn.sys\SystemRoot\system32\DRIVERS\rasl2tp.sys\SystemRoot\system32\DRIVERS\ndistapi.sys\SystemRoot\system32\DRIVERS\ndiswan.sys\SystemRoot\system32\DRIVERS\raspppoe.sys\SystemRoot\system32\DRIVERS\raspptp.sys\SystemRoot\system32\DRIVERS\rassstp.sys\SystemRoot\system32\DRIVERS\serscan.sys\SystemRoot\system32\DRIVERS\swenum.sys\SystemRoot\system32\DRIVERS\umbus.sys\SystemRoot\system32\drivers\nvvad64v.sys\SystemRoot\system32\drivers\portcls.sys\SystemRoot\system32\drivers\drmk.sys\SystemRoot\system32\DRIVERS\usbhub.sys\SystemRoot\System32\Drivers\NDProxy.SYS\SystemRoot\system32\drivers\RTKVHD64.sys\SystemRoot\system32\DRIVERS\IntcDAud.sys\SystemRoot\System32\win32k.sys\SystemRoot\System32\drivers\Dxapi.sys\SystemRoot\System32\Drivers\crashdmp.sys\SystemRoot\System32\Drivers\dump_iaStor.sys\SystemRoot\System32\Drivers\dump_dumpfve.sys\SystemRoot\system32\DRIVERS\monitor.sys\SystemRoot\system32\DRIVERS\HIDCLASS.SYS\SystemRoot\system32\DRIVERS\HIDPARSE.SYS\SystemRoot\system32\DRIVERS\usbccgp.sys\SystemRoot\system32\DRIVERS\btwampfl.sys\SystemRoot\System32\Drivers\BTHUSB.sys\SystemRoot\System32\Drivers\bthport.sys\SystemRoot\System32\Drivers\usbvideo.sys\SystemRoot\system32\DRIVERS\rfcomm.sys\SystemRoot\system32\drivers\BthEnum.sys\SystemRoot\system32\DRIVERS\bthpan.sys\SystemRoot\System32\Drivers\RtsUVStor.sys\SystemRoot\system32\drivers\btwavdt.sys\SystemRoot\system32\drivers\btwaudio.sys\SystemRoot\system32\DRIVERS\btwl2cap.sys\SystemRoot\system32\DRIVERS\btwrchid.sys\SystemRoot\System32\TSDDD.dll\SystemRoot\System32\cdd.dll\SystemRoot\system32\drivers\luafv.sys\SystemRoot\system32\DRIVERS\lltdio.sys\SystemRoot\system32\DRIVERS\nwifi.sys\SystemRoot\system32\DRIVERS\ndisuio.sys\SystemRoot\system32\DRIVERS\rspndr.sys\SystemRoot\system32\drivers\HTTP.sys\SystemRoot\system32\DRIVERS\bowser.sys\SystemRoot\System32\drivers\mpsdrv.sys\SystemRoot\system32\drivers\mrxdav.sys\SystemRoot\system32\DRIVERS\mrxsmb.sys\SystemRoot\system32\DRIVERS\mrxsmb10.sys\SystemRoot\system32\DRIVERS\mrxsmb20.sys\SystemRoot\system32\DRIVERS\vwifimp.sys\SystemRoot\system32\drivers\peauth.sys\SystemRoot\System32\Drivers\secdrv.SYS\SystemRoot\System32\DRIVERS\srvnet.sys\SystemRoot\System32\drivers\tcpipreg.sys\SystemRoot\System32\DRIVERS\srv2.sys\SystemRoot\System32\DRIVERS\srv.sys\??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys\??\C:\windows\system32\drivers\PktIcpt.sys\??\C:\windows\system32\Drivers\rikvm_3A60B698.sys\SystemRoot\System32\Drivers\usbaapl64.sys\??\C:\windows\system32\drivers\mbamchameleon.sys\??\C:\windows\system32\drivers\MBAMSwissArmy.sys\Windows\System32\ntdll.dll\Windows\System32\smss.exe\Windows\System32\apisetschema.dll\Windows\System32\autochk.exe\Windows\System32\Wldap32.dll\Windows\System32\psapi.dll\Windows\System32\rpcrt4.dll\Windows\System32\urlmon.dll\Windows\System32\user32.dll\Windows\System32\iertutil.dll\Windows\System32\setupapi.dll\Windows\System32\lpk.dll\Windows\System32\imm32.dll\Windows\System32\difxapi.dll\Windows\System32\normaliz.dll\Windows\System32\ole32.dll\Windows\System32\msctf.dll\Windows\System32\ws2_32.dll\Windows\System32\clbcatq.dll\Windows\System32\advapi32.dll\Windows\System32\shell32.dll\Windows\System32\wininet.dll\Windows\System32\usp10.dll\Windows\System32\comdlg32.dll\Windows\System32\msvcrt.dll\Windows\System32\imagehlp.dll\Windows\System32\shlwapi.dll\Windows\System32\gdi32.dll\Windows\System32\kernel32.dll\Windows\System32\nsi.dll\Windows\System32\oleaut32.dll\Windows\System32\sechost.dll\Windows\System32\comctl32.dll\Windows\System32\cfgmgr32.dll\Windows\System32\crypt32.dll\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll\Windows\System32\wintrust.dll\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll\Windows\System32\devobj.dll\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll\Windows\System32\KernelBase.dll\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll\Windows\System32\userenv.dll\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll\Windows\System32\msasn1.dll\Windows\System32\profapi.dll\Windows\SysWOW64\normaliz.dll----------- End -----------Done! Scan startedDatabase versions: main: v2015.02.28.05 rootkit: v2015.02.25.01 <<<2>>>Physical Sector Size: 512Drive: 0, DevicePointer: 0xfffffa800964c790, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\--------- Disk Stack ------DevicePointer: 0xfffffa8009722b90, DeviceName: Unknown, DriverName: \Driver\partmgr\DevicePointer: 0xfffffa8009722040, DeviceName: Unknown, DriverName: \Driver\LHDmgr\DevicePointer: 0xfffffa800964c790, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\DevicePointer: 0xfffffa8007af7050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\------------ End ----------Alternate DeviceName: Unknown, DriverName: \Driver\LHDmgr\Upper DeviceData: 0x0, 0x0, 0x0Lower DeviceData: 0x0, 0x0, 0x0<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>><<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesScanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...Done!Drive 0This is a System driveScanning MBR on drive 0...Inspecting partition table:MBR Signature: 55AADisk Signature: B74024DC Partition information: Partition 0 type is Primary (0x7) Partition is ACTIVE. Partition starts at LBA: 2048 Numsec = 409600 Partition file system is NTFS Partition is bootable Partition 1 type is Primary (0x7) Partition is NOT ACTIVE. Partition starts at LBA: 411648 Numsec = 1372983296 Partition 2 type is Extended with LBA (0xf) Partition is NOT ACTIVE. Partition starts at LBA: 1373394944 Numsec = 60811264 Partition 3 type is Other (0x12) Partition is NOT ACTIVE. Partition starts at LBA: 1434206208 Numsec = 30942960 Disk Size: 750156374016 bytesSector size: 512 bytes Done!Scan finished======================================= Removal queue found; removal startedRemoving C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...Removal finished Logs from Farbar are attached underneath. Addition.txtFRST.txt Thanks.
  8. Wellsy
    Hi, I posted in one of the others sub forums and got advised to post for help here. Basically my computer is running really slow, got 90 odd processes running, 34% of physical memory and CPU fluctuates between 3ish% to as high as 80% sometimes. Most of the time I only have chrome open. Original post here: https://forums.malwarebytes.org/index.php?/topic/165479-computer-running-slow-cpu-relatively-low-but-memory-usage-at-30/#entry944020 Firefox looked at my diagnostic logs and told me there were a few things to be cleared up so any help would be appreciated. Thanks. Addition.txtFRST.txtCheckResults.txt
  9. Wellsy
    Hi, here you go: FRST.txtCheckResults.txtAddition.txt
  10. Wellsy
    Hi all, I have a LEnovo ideapad Z570, Windows 7, Intel core i7 @ 2.2GHZ and 8gb ram. My computer was running really slow and I feared I might have a virus. A word document I had sent to my friend cropped up as a security threat on both my and their computer and has since been wiped. I ran a number of virus scanners, including malware bytes and found nothing. My usual scanner is GData. Since then, I've noticed that I have a high number of processes (93 currently) and my CPU tends to fluctuate from 5-25% with my memory standing at 2.68. Is there anyway of reducing this so that I can speed up my computer? Thanks.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.