Jump to content

duongle0289

Members
 View Profile  See their activity

  • Posts

    4

  • Joined

  • Last visited

Reputation

0 Neutral
  1. duongle0289
    Fixlog.txt
  2. duongle0289
    FRST.txt
  3. duongle0289
    Thank you for your time! I read the instruction manual for FRST, ran FRST64 again in WinRE and came up with this fixlist.txt file: () C:\Users\dad_user\AppData\Local\wdbmxno\wdbmxno.exe () C:\Users\dad_user\AppData\Local\wdbmxno\aunvmxz.exe HKLM-x32\...\Run: [] => [X] GroupPolicy: Restriction ? <==== ATTENTION HKLM\SYSTEM\CurrentControlSet\Services\mtrxnz <==== ATTENTION (Rootkit!) R3 ilosvy; system32\drivers\osvybf.sys [X] S1 luioc; \??\C:\Users\dad_user\AppData\Local\Temp\psdzcehv.sys [X] <==== ATTENTION S4 pcmoztr; System32\drivers\sbbnvgwu.sys [X] S3 ssswww; system32\drivers\jmmppp.sys [X] 2018-12-07 23:09 - 2018-12-07 23:09 - 000000022 _____ C:\WINDOWS\S.dirmngr 2018-12-07 23:08 - 2018-12-07 23:08 - 000145744 ____N C:\WINDOWS\system32\Drivers\weavybei.sys 2018-11-27 22:24 - 2018-12-03 11:21 - 000000000 ____D C:\Users\dad_user\AppData\Local\cwknrtp 2018-11-27 22:20 - 2018-12-08 10:34 - 000000000 ____D C:\Users\dad_user\AppData\Local\wdbmxno 2018-11-27 22:20 - 2018-11-27 22:20 - 000000000 ____D C:\Users\dad_user\AppData\Local\nvnkezr 2018-11-27 22:19 - 2018-11-27 22:22 - 000000000 ____D C:\WINDOWS\system32\pwacdis 2018-11-27 22:19 - 2018-11-27 22:19 - 000000000 ____D C:\WINDOWS\SysWOW64\pwacdis 2018-11-27 22:18 - 2018-11-27 22:18 - 000000000 ____D C:\ProgramData\LOIO 2018-11-27 22:18 - 2018-11-27 22:18 - 000000000 ____D C:\ProgramData\5QY37M5DZNTMW6GN449U 2018-11-27 22:13 - 2018-11-27 22:13 - 000000000 ____D C:\ProgramData\VVD 2018-11-27 22:13 - 2018-11-27 22:13 - 000000000 ____D C:\ProgramData\Bloger C:\WINDOWS\system32\drivers\weavybei.sys -> Access Denied <======= ATTENTION C:\Windows\System32\drivers\weaehlor.sys After running a full scan on Malwarebytes, it found 4 threats (already quarantined by FRST). No threats were detected in adwcleaner. The virus doesn't appear in the task manager. Thank you for your help!
  4. duongle0289
    Hello, I have tried to follow another Malwarebytes post to remove the windows process manager virus on a computer, but it is still displayed in Task Manager. Any help would be greatly appreciated! FRST.txt Addition.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.