Jump to content

Infected "Requested resource is in use"


Recommended Posts

  • Root Admin

Great, that looks pretty good.

Please run the following steps and post back the logs as attachments when ready.

STEP 01
Please download Junkware Removal Tool to your desktop.

  • Shutdown your antivirus to avoid any conflicts.
  • Right click over JRT.exe and select Run as administrator on Windows Vista or Windows 7, double-click on XP.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next reply message
  • When completed make sure to re-enable your antivirus

STEP 02

adwcleaner_new.png Fix with AdwCleaner

Please download AdwCleaner by Xplode and save the file to your Desktop.

  • Right-click on adwcleaner_new.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Accept the Terms of use.
  • Wait until the database is updated.
  • Click Scan.
  • When finished, please click Clean.
  • Your PC should reboot now.
  • After reboot, logfile will be opened. Copy its content into your next reply.

Note: Reports will be saved in your system partition, usually at C:\Adwcleaner

STEP 03
Download Sophos Free Virus Removal Tool and save it to your desktop.
 

  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View Log file (bottom left-hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
  • If no threats were found, please confirm that result.

STEP 04
Please download the Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit

  • Double-click to run it. When the tool opens, click Yes to disclaimer.
  • Press the Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
  • The first time the tool is run, it also makes another log (Addition.txt). If you've, run the tool before you need to place a check mark here.
  • Please attach the Additions.txt log to your reply as well.

 

Thanks

Link to post
Share on other sites

  • 2 weeks later...

I finished running the scans.

JRT.txt, FRST.txt, and Addition.txt are attached

I forgot to copy the AdwCleaner log file, and I'm not sure where it is located. The only two .txt files in the adwcleaner folder I could find are both attached.

The following is the log file after the Sophos Virus Removal Tool cleaned the files:

2017-03-22 03:21:38.331 Sophos Virus Removal Tool version 2.5.6

2017-03-22 03:21:38.347 Copyright (c) 2009-2016 Sophos Limited. All rights reserved.

 

2017-03-22 03:21:38.347 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

 

2017-03-22 03:21:38.347 Windows version 6.2 SP 0.0  build 9200 SM=0x300 PT=0x1 WOW64

2017-03-22 03:21:38.347 Checking for updates...

2017-03-22 03:21:38.363 Update progress: proxy server not available

2017-03-22 03:21:46.414 Downloading updates...

2017-03-22 03:21:46.414 Update progress: [I96736] sdds.svrt_10: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1

2017-03-22 03:21:46.414 Update progress: [I95020] sdds.svrt_10: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-03-22 03:21:46.414 Update progress: [I22529] sdds.svrt_10: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-03-22 03:21:46.414 Update progress: [I49502] sdds.savi0910.xml: found supplement SAVIW32 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]

2017-03-22 03:21:46.414 Update progress: [I95020] sdds.savi0910.xml: looking for packages included from product SAVIW32 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I22529] sdds.savi0910.xml: looking for supplements included from product SAVIW32 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I49502] sdds.data0910.xml: found supplement IDE537 LATEST path= baseVersion= [included from product SAVIW32 LATEST path=]

2017-03-22 03:21:46.414 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE537 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE537 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I49502] sdds.data0910.xml: found supplement IDE538 LATEST path= baseVersion= [included from product IDE537 LATEST path=]

2017-03-22 03:21:46.414 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE538 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE538 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I49502] sdds.data0910.xml: found supplement IDE539 LATEST path= baseVersion= [included from product IDE538 LATEST path=]

2017-03-22 03:21:46.414 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE539 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE539 LATEST path=

2017-03-22 03:21:46.414 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-03-22 03:21:46.726 Update progress: [I19463] Syncing product SAVIW32 LATEST path=

2017-03-22 03:21:46.726 Update progress: [I19463] Product download size 158884372 bytes

2017-03-22 03:21:48.195 Update progress: [I19463] Syncing product IDE537 LATEST path=

2017-03-22 03:21:48.195 Update progress: [I19463] Product download size 2537599 bytes

2017-03-22 03:21:48.851 Update progress: [I19463] Syncing product IDE538 LATEST path=

2017-03-22 03:21:48.851 Update progress: [I19463] Product download size 2280148 bytes

2017-03-22 03:21:49.179 Update progress: [I19463] Syncing product IDE539 LATEST path=

2017-03-22 03:21:49.179 Update progress: [I19463] Product download size 1517667 bytes

2017-03-22 03:21:49.445 Option all = no

2017-03-22 03:21:49.445 Option recurse = yes

2017-03-22 03:21:49.445 Option archive = no

2017-03-22 03:21:49.445 Option service = yes

2017-03-22 03:21:49.445 Option confirm = yes

2017-03-22 03:21:49.445 Option sxl = yes

2017-03-22 03:21:49.461 Option max-data-age = 35

2017-03-22 03:21:49.461 Option vdl-logging = yes

2017-03-22 03:21:49.461 Customer ID: 094260ca9b3af99f9d4a3909fc47a743

2017-03-22 03:21:49.461 Machine ID: f7cdc2f649b84d5994bfdc5fa7f0f433

2017-03-22 03:21:49.461 Component SVRTcli.exe version 2.5.6

2017-03-22 03:21:49.461 Component control.dll version 2.5.6

2017-03-22 03:21:49.461 Component SVRTservice.exe version 2.5.6

2017-03-22 03:21:49.461 Component engine\osdp.dll version 1.44.1.2280

2017-03-22 03:21:49.461 Component engine\veex.dll version 3.68.0.2280

2017-03-22 03:21:49.461 Component engine\savi.dll version 9.0.7.2280

2017-03-22 03:21:49.461 Component rkdisk.dll version 1.5.31.1

2017-03-22 03:21:49.461 Version info: Product version 2.5.6

2017-03-22 03:21:49.461 Version info: Detection engine 3.68.0

2017-03-22 03:21:49.461 Version info: Detection data 5.36

2017-03-22 03:21:49.461 Version info: Build date 2/7/2017

2017-03-22 03:21:49.461 Version info: Data files added 334

2017-03-22 03:21:49.461 Version info: Last successful update (not yet updated)

2017-03-22 03:21:49.492 Installing updates...

2017-03-22 03:21:50.320 Error level 1

2017-03-22 03:22:09.428 Update successful

2017-03-22 03:22:21.204 Option all = no

2017-03-22 03:22:21.204 Option recurse = yes

2017-03-22 03:22:21.204 Option archive = no

2017-03-22 03:22:21.204 Option service = yes

2017-03-22 03:22:21.204 Option confirm = yes

2017-03-22 03:22:21.204 Option sxl = yes

2017-03-22 03:22:21.204 Option max-data-age = 35

2017-03-22 03:22:21.204 Option vdl-logging = yes

2017-03-22 03:22:21.204 Customer ID: 094260ca9b3af99f9d4a3909fc47a743

2017-03-22 03:22:21.204 Machine ID: f7cdc2f649b84d5994bfdc5fa7f0f433

2017-03-22 03:22:21.204 Component SVRTcli.exe version 2.5.6

2017-03-22 03:22:21.204 Component control.dll version 2.5.6

2017-03-22 03:22:21.204 Component SVRTservice.exe version 2.5.6

2017-03-22 03:22:21.204 Component engine\osdp.dll version 1.44.1.2280

2017-03-22 03:22:21.204 Component engine\veex.dll version 3.68.0.2280

2017-03-22 03:22:21.204 Component engine\savi.dll version 9.0.7.2280

2017-03-22 03:22:21.204 Component rkdisk.dll version 1.5.31.1

2017-03-22 03:22:21.204 Version info: Product version 2.5.6

2017-03-22 03:22:21.204 Version info: Detection engine 3.68.0

2017-03-22 03:22:21.204 Version info: Detection data 5.36

2017-03-22 03:22:21.204 Version info: Build date 2/7/2017

2017-03-22 03:22:21.204 Version info: Data files added 335

2017-03-22 03:22:21.204 Version info: Last successful update 3/21/2017 8:22:09 PM

 

2017-03-22 03:47:16.955 Error level 0

 

2017-03-22 03:47:33.792 Scan cancelled by user.

2017-03-22 03:47:33.792

 

------------------------------------------------------------

 

2017-03-22 03:47:38.277 Sophos Virus Removal Tool version 2.5.6

2017-03-22 03:47:38.277 Copyright (c) 2009-2016 Sophos Limited. All rights reserved.

 

2017-03-22 03:47:38.277 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

 

2017-03-22 03:47:38.277 Windows version 6.2 SP 0.0  build 9200 SM=0x300 PT=0x1 WOW64

2017-03-22 03:47:38.277 Checking for updates...

2017-03-22 03:47:38.293 Update progress: proxy server not available

2017-03-22 03:47:39.793 Downloading updates...

2017-03-22 03:47:39.808 Update progress: [I96736] sdds.svrt_10: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1

2017-03-22 03:47:39.808 Update progress: [I95020] sdds.svrt_10: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-03-22 03:47:39.808 Update progress: [I22529] sdds.svrt_10: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-03-22 03:47:39.808 Update progress: [I49502] sdds.savi0910.xml: found supplement SAVIW32 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]

2017-03-22 03:47:39.808 Update progress: [I95020] sdds.savi0910.xml: looking for packages included from product SAVIW32 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I22529] sdds.savi0910.xml: looking for supplements included from product SAVIW32 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I49502] sdds.data0910.xml: found supplement IDE537 LATEST path= baseVersion= [included from product SAVIW32 LATEST path=]

2017-03-22 03:47:39.808 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE537 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE537 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I49502] sdds.data0910.xml: found supplement IDE538 LATEST path= baseVersion= [included from product IDE537 LATEST path=]

2017-03-22 03:47:39.808 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE538 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE538 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I49502] sdds.data0910.xml: found supplement IDE539 LATEST path= baseVersion= [included from product IDE538 LATEST path=]

2017-03-22 03:47:39.808 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE539 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE539 LATEST path=

2017-03-22 03:47:39.808 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-03-22 03:47:39.824 Update progress: [I19463] Syncing product SAVIW32 LATEST path=

2017-03-22 03:47:39.839 Update progress: [I19463] Syncing product IDE537 LATEST path=

2017-03-22 03:47:39.855 Update progress: [I19463] Syncing product IDE538 LATEST path=

2017-03-22 03:47:39.871 Update progress: [I19463] Syncing product IDE539 LATEST path=

2017-03-22 03:47:39.886 Installing updates...

2017-03-22 03:47:47.965 Option all = no

2017-03-22 03:47:48.590 Option recurse = yes

2017-03-22 03:47:48.590 Option archive = no

2017-03-22 03:47:48.590 Option service = yes

2017-03-22 03:47:48.590 Option confirm = yes

2017-03-22 03:47:48.590 Option sxl = yes

2017-03-22 03:47:48.590 Option max-data-age = 35

2017-03-22 03:47:48.590 Option vdl-logging = yes

2017-03-22 03:47:48.590 Customer ID: 094260ca9b3af99f9d4a3909fc47a743

2017-03-22 03:47:48.590 Machine ID: f7cdc2f649b84d5994bfdc5fa7f0f433

2017-03-22 03:47:48.590 Component SVRTcli.exe version 2.5.6

2017-03-22 03:47:48.590 Component control.dll version 2.5.6

2017-03-22 03:47:48.590 Component SVRTservice.exe version 2.5.6

2017-03-22 03:47:48.590 Component engine\osdp.dll version 1.44.1.2280

2017-03-22 03:47:48.590 Component engine\veex.dll version 3.68.0.2280

2017-03-22 03:47:48.590 Component engine\savi.dll version 9.0.7.2280

2017-03-22 03:47:48.590 Component rkdisk.dll version 1.5.31.1

2017-03-22 03:47:48.590 Version info: Product version 2.5.6

2017-03-22 03:47:48.590 Version info: Detection engine 3.68.0

2017-03-22 03:47:48.590 Version info: Detection data 5.36

2017-03-22 03:47:48.590 Version info: Build date 2/7/2017

2017-03-22 03:47:48.590 Version info: Data files added 335

2017-03-22 03:47:48.590 Version info: Last successful update 3/21/2017 8:22:09 PM

2017-03-22 03:47:48.590 Error level 1

2017-03-22 03:47:48.731 Update successful

2017-03-22 03:47:57.542 Option all = no

2017-03-22 03:47:58.167 Option recurse = yes

2017-03-22 03:47:58.167 Option archive = no

2017-03-22 03:47:58.167 Option service = yes

2017-03-22 03:47:58.167 Option confirm = yes

2017-03-22 03:47:58.167 Option sxl = yes

2017-03-22 03:47:58.167 Option max-data-age = 35

2017-03-22 03:47:58.167 Option vdl-logging = yes

2017-03-22 03:47:58.167 Customer ID: 094260ca9b3af99f9d4a3909fc47a743

2017-03-22 03:47:58.167 Machine ID: f7cdc2f649b84d5994bfdc5fa7f0f433

2017-03-22 03:47:58.167 Component SVRTcli.exe version 2.5.6

2017-03-22 03:47:58.167 Component control.dll version 2.5.6

2017-03-22 03:47:58.167 Component SVRTservice.exe version 2.5.6

2017-03-22 03:47:58.167 Component engine\osdp.dll version 1.44.1.2280

2017-03-22 03:47:58.167 Component engine\veex.dll version 3.68.0.2280

2017-03-22 03:47:58.167 Component engine\savi.dll version 9.0.7.2280

2017-03-22 03:47:58.167 Component rkdisk.dll version 1.5.31.1

2017-03-22 03:47:58.167 Version info: Product version 2.5.6

2017-03-22 03:47:58.167 Version info: Detection engine 3.68.0

2017-03-22 03:47:58.167 Version info: Detection data 5.36

2017-03-22 03:47:58.167 Version info: Build date 2/7/2017

2017-03-22 03:47:58.167 Version info: Data files added 335

2017-03-22 03:47:58.167 Version info: Last successful update 3/21/2017 8:47:48 PM

2017-03-22 03:47:58.167 Error level 1

 

2017-03-22 03:48:28.176 Scan cancelled by user.

2017-03-22 03:48:28.176

 

------------------------------------------------------------

 

2017-04-03 04:29:39.754 Sophos Virus Removal Tool version 2.5.6

2017-04-03 04:29:39.754 Copyright (c) 2009-2016 Sophos Limited. All rights reserved.

 

2017-04-03 04:29:39.754 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

 

2017-04-03 04:29:39.754 Windows version 6.2 SP 0.0  build 9200 SM=0x300 PT=0x1 WOW64

2017-04-03 04:29:39.754 Checking for updates...

2017-04-03 04:29:39.769 Update progress: proxy server not available

2017-04-03 04:29:47.957 Downloading updates...

2017-04-03 04:29:47.973 Update progress: [I96736] sdds.svrt_10: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1

2017-04-03 04:29:47.973 Update progress: [I95020] sdds.svrt_10: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-04-03 04:29:47.973 Update progress: [I22529] sdds.svrt_10: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-04-03 04:29:47.973 Update progress: [I49502] sdds.savi0910.xml: found supplement SAVIW32 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]

2017-04-03 04:29:47.973 Update progress: [I95020] sdds.savi0910.xml: looking for packages included from product SAVIW32 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I22529] sdds.savi0910.xml: looking for supplements included from product SAVIW32 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I49502] sdds.data0910.xml: found supplement IDE537 LATEST path= baseVersion= [included from product SAVIW32 LATEST path=]

2017-04-03 04:29:47.973 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE537 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE537 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I49502] sdds.data0910.xml: found supplement IDE538 LATEST path= baseVersion= [included from product IDE537 LATEST path=]

2017-04-03 04:29:47.973 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE538 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE538 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I49502] sdds.data0910.xml: found supplement IDE539 LATEST path= baseVersion= [included from product IDE538 LATEST path=]

2017-04-03 04:29:47.973 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE539 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE539 LATEST path=

2017-04-03 04:29:47.973 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=

2017-04-03 04:29:48.082 Update progress: [I19463] Syncing product SAVIW32 LATEST path=

2017-04-03 04:29:48.160 Update progress: [I19463] Syncing product IDE537 LATEST path=

2017-04-03 04:29:48.348 Update progress: [I19463] Syncing product IDE538 LATEST path=

2017-04-03 04:29:48.364 Update progress: [I19463] Syncing product IDE539 LATEST path=

2017-04-03 04:29:48.364 Update progress: [I19463] Product download size 839518 bytes

2017-04-03 04:29:53.223 Installing updates...

2017-04-03 04:29:55.067 Option all = no

2017-04-03 04:29:55.880 Option recurse = yes

2017-04-03 04:29:55.880 Option archive = no

2017-04-03 04:29:55.880 Option service = yes

2017-04-03 04:29:55.880 Option confirm = yes

2017-04-03 04:29:55.880 Option sxl = yes

2017-04-03 04:29:55.880 Option max-data-age = 35

2017-04-03 04:29:55.880 Option vdl-logging = yes

2017-04-03 04:29:55.880 Customer ID: 094260ca9b3af99f9d4a3909fc47a743

2017-04-03 04:29:55.880 Machine ID: f7cdc2f649b84d5994bfdc5fa7f0f433

2017-04-03 04:29:55.880 Component SVRTcli.exe version 2.5.6

2017-04-03 04:29:55.880 Component control.dll version 2.5.6

2017-04-03 04:29:55.880 Component SVRTservice.exe version 2.5.6

2017-04-03 04:29:55.880 Component engine\osdp.dll version 1.44.1.2280

2017-04-03 04:29:55.880 Component engine\veex.dll version 3.68.0.2280

2017-04-03 04:29:55.880 Component engine\savi.dll version 9.0.7.2280

2017-04-03 04:29:55.880 Component rkdisk.dll version 1.5.31.1

2017-04-03 04:29:55.880 Version info: Product version 2.5.6

2017-04-03 04:29:55.880 Version info: Detection engine 3.68.0

2017-04-03 04:29:55.880 Version info: Detection data 5.36

2017-04-03 04:29:55.880 Version info: Build date 2/7/2017

2017-04-03 04:29:55.880 Version info: Data files added 335

2017-04-03 04:29:55.880 Version info: Last successful update 3/21/2017 8:47:48 PM

2017-04-03 04:29:55.880 Error level 1

2017-04-03 04:29:56.333 Update successful

2017-04-03 04:30:06.333 Option all = no

2017-04-03 04:30:06.333 Option recurse = yes

2017-04-03 04:30:06.333 Option archive = no

2017-04-03 04:30:06.333 Option service = yes

2017-04-03 04:30:06.333 Option confirm = yes

2017-04-03 04:30:06.333 Option sxl = yes

2017-04-03 04:30:06.333 Option max-data-age = 35

2017-04-03 04:30:06.333 Option vdl-logging = yes

2017-04-03 04:30:06.349 Customer ID: 094260ca9b3af99f9d4a3909fc47a743

2017-04-03 04:30:06.349 Machine ID: f7cdc2f649b84d5994bfdc5fa7f0f433

2017-04-03 04:30:06.349 Component SVRTcli.exe version 2.5.6

2017-04-03 04:30:06.349 Component control.dll version 2.5.6

2017-04-03 04:30:06.349 Component SVRTservice.exe version 2.5.6

2017-04-03 04:30:06.349 Component engine\osdp.dll version 1.44.1.2280

2017-04-03 04:30:06.349 Component engine\veex.dll version 3.68.0.2280

2017-04-03 04:30:06.349 Component engine\savi.dll version 9.0.7.2280

2017-04-03 04:30:06.349 Component rkdisk.dll version 1.5.31.1

2017-04-03 04:30:06.349 Version info: Product version 2.5.6

2017-04-03 04:30:06.349 Version info: Detection engine 3.68.0

2017-04-03 04:30:06.349 Version info: Detection data 5.36

2017-04-03 04:30:06.349 Version info: Build date 2/7/2017

2017-04-03 04:30:06.349 Version info: Data files added 400

2017-04-03 04:30:06.349 Version info: Last successful update 4/2/2017 9:29:56 PM

 

2017-04-03 05:12:52.997 Could not open C:\hiberfil.sys

2017-04-03 05:12:59.576 Could not open C:\pagefile.sys

2017-04-03 05:27:05.217 Could not open C:\swapfile.sys

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{05f0361d-0c46-11e7-bf2f-50465de9b8d7}{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{3476127f-0c56-11e7-bf30-50465de9b8d7}{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{89735602-0c71-11e7-bf32-50465de9b8d7}{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{96d40e85-0c60-11e7-bf31-50465de9b8d7}{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{dd24d050-01e7-11e7-bf23-50465de9b8d7}{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{dd24d05d-01e7-11e7-bf23-50465de9b8d7}{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:27:05.842 Could not open C:\System Volume Information\{f53efed7-0ea7-11e7-bf33-50465de9b8d7}{3808876b-c176-4e48-b7ae-04046e6cc752}

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file C:\Users\liuc\AppData\Local\Temp\1489794422\s5-20150702.zip

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:44:20.549 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:44:59.725 >>> Virus 'Mal/Generic-S' found in file C:\Users\liuc\AppData\Local\Temp\is-8OJUO.tmp\installer.exe

2017-04-03 05:44:59.725 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:44:59.725 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:44:59.725 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:44:59.725 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:44:59.725 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:44:59.741 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file C:\Users\liuc\AppData\Local\Temp\is-NERHM.tmp\installer.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:45:05.241 >>> Virus 'Mal/Generic-S' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file C:\Users\liuc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\47829f05-38c0cdd7

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:46:14.010 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:46:14.025 >>> Virus 'Mal/ExpJS-BS' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:46:14.025 >>> Virus 'Mal/ExpJS-BS' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:46:14.025 >>> Virus 'Mal/ExpJS-BS' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file C:\Users\liuc\Desktop\Geometry Dash 1.0u1 (64 Bits) by ElGam4r17\Geometry Dash 1.0u1 (64 Bits) by ElGam4r17\steam_api.dll

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:49:09.264 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:49:09.280 >>> Virus 'Mal/VMProtBad-A' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:49:16.405 >>> Virus 'Mal/VMProtBad-A' found in file C:\Users\liuc\Desktop\Geometry Dash By Cris79 (Reupload)\Geometry Dash By Cris79 (Reupload)\steam_api.dll

2017-04-03 05:49:16.405 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:49:16.405 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:49:16.405 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:49:16.405 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:49:16.405 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:49:16.405 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe

2017-04-03 05:49:16.420 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe

2017-04-03 05:49:16.436 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe

2017-04-03 05:49:16.436 >>> Virus 'Mal/VMProtBad-A' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe

2017-04-03 05:49:16.436 >>> Virus 'Mal/VMProtBad-A' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:49:16.436 >>> Virus 'Mal/VMProtBad-A' found in file HKU\S-1-5-21-3118101077-4184216583-950024269-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\LowRiskFileTypes

2017-04-03 05:54:14.692 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb

2017-04-03 05:54:14.692 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb

2017-04-03 05:54:18.458 Could not open C:\Windows\System32\config\BBI

2017-04-03 05:54:18.661 Could not open C:\Windows\System32\config\RegBack\DEFAULT

2017-04-03 05:54:18.661 Could not open C:\Windows\System32\config\RegBack\SAM

2017-04-03 05:54:18.661 Could not open C:\Windows\System32\config\RegBack\SECURITY

2017-04-03 05:54:18.661 Could not open C:\Windows\System32\config\RegBack\SOFTWARE

2017-04-03 05:54:18.661 Could not open C:\Windows\System32\config\RegBack\SYSTEM

2017-04-03 06:29:04.541 Could not open LOGICAL:0004:00000000

2017-04-03 06:29:04.541 Could not open E:\

2017-04-03 06:29:04.666 The following items will be cleaned up:

2017-04-03 06:29:04.666 Mal/Generic-S

2017-04-03 06:29:04.666 Mal/ExpJS-BS

2017-04-03 06:29:04.666 Mal/VMProtBad-A

2017-04-03 15:25:46.239 Threat 'Mal/Generic-S' was not cleaned up. (error 0xa0040208)

2017-04-03 15:25:46.239 Removal failed

2017-04-03 15:25:52.770 Threat 'Mal/ExpJS-BS' has been cleaned up.

2017-04-03 15:25:52.770 File "C:\Users\liuc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\47829f05-38c0cdd7" belongs to malware 'Mal/ExpJS-BS'.

2017-04-03 15:25:52.770 File "C:\Users\liuc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\47829f05-38c0cdd7" has been cleaned up.

2017-04-03 15:25:52.770 Removal successful

2017-04-03 15:26:35.190 Threat 'Mal/VMProtBad-A' has been cleaned up.

2017-04-03 15:26:35.191 File "C:\Users\liuc\Desktop\Geometry Dash 1.0u1 (64 Bits) by ElGam4r17\Geometry Dash 1.0u1 (64 Bits) by ElGam4r17\steam_api.dll" belongs to malware 'Mal/VMProtBad-A'.

2017-04-03 15:26:35.191 File "C:\Users\liuc\Desktop\Geometry Dash 1.0u1 (64 Bits) by ElGam4r17\Geometry Dash 1.0u1 (64 Bits) by ElGam4r17\steam_api.dll" has been cleaned up.

2017-04-03 15:26:35.191 File "C:\Users\liuc\Desktop\Geometry Dash By Cris79 (Reupload)\Geometry Dash By Cris79 (Reupload)\steam_api.dll" belongs to malware 'Mal/VMProtBad-A'.

2017-04-03 15:26:35.191 File "C:\Users\liuc\Desktop\Geometry Dash By Cris79 (Reupload)\Geometry Dash By Cris79 (Reupload)\steam_api.dll" has been cleaned up.

2017-04-03 15:26:35.191 Removal successful

2017-04-03 15:26:35.193 Error: cleanup failed.

2017-04-03 15:26:36.572 Error level 0


 

 

Addition.txt

FRST.txt

JRT.txt

AdwCleaner[C0].txt

AdwCleaner[S0].txt

Link to post
Share on other sites

  • Root Admin

Please Run TFC by OldTimer to clear temporary files:

  • Download TFC from here and save it to your desktop.
  • http://oldtimer.geekstogo.com/TFC.exe
  • Close any open programs and Internet browsers.
  • Double click TFC.exe to run it on XP (for Vista and Windows 7 right click and choose "Run as administrator") and once it opens click on the Start button on the lower left of the program to allow it to begin cleaning.
  • Please be patient as clearing out temp files may take a while.
  • Once it completes you may be prompted to restart your computer, please do so.
  • Once it's finished you may delete TFC.exe from your desktop or save it for later use for the cleaning of temporary files.

 

Then restart the computer and once back into Windows go ahead and remove all of the AdwCleaner logs. Then run AdwCleaner again and allow it to remove anything it finds and post back the new clean log.

The same for JRT

Then run Malwarebytes and check for updates, then do a Custom Scan and select the entire C: volume and let it scan and post back that new log as an attachment too.

Thanks

 

Link to post
Share on other sites

I was able to run all the programs except for malwarebytes itself. Whenever I try to open it, it says "Unable to connect the Service".

Adwcleaner log:

# AdwCleaner v6.045 - Logfile created 05/04/2017 at 16:52:26
# Updated on 28/03/2017 by Malwarebytes
# Database : 2017-04-04.2 [Server]
# Operating System : Windows 8.1  (X64)
# Username : liuc - HOMENET9
# Running from : C:\Users\liuc\Desktop\adwcleaner_6.045.exe
# Mode: Clean
 
 
 
***** [ Services ] *****
 
 
 
***** [ Folders ] *****
 
 
 
***** [ Files ] *****
 
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\s5m
 
 
***** [ Web browsers ] *****
 
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: default-search.net
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: overwolf.en.softonic.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: search.conduit.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: ask.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: search
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: trovi.search
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: isearch.avg.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: pdf-blender.en.softonic.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: search.aol.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Deleted: gjkpcnacdgdlpfejlgflolpaigoicibh
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 4\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\liuc\AppData\Local\Google\Chrome\User Data\Profile 4\Web data] [Search Provider] Deleted: ask.com
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [2650 Bytes] - [05/04/2017 16:52:26]
C:\AdwCleaner\AdwCleaner[S0].txt - [2811 Bytes] - [05/04/2017 16:51:34]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2796 Bytes] ##########
JRT log:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.2 (03.10.2017)
Operating System: Windows 8.1 x64 
Ran by liuc (Administrator) on Wed 04/05/2017 at 17:01:13.49
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 0 
 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 04/05/2017 at 17:03:50.49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Link to post
Share on other sites

  • Root Admin

Yes, please go ahead and reinstall the program.

 

Please read the following topic and then run the Malwarebytes Clean Removal tool mb-clean

https://forums.malwarebytes.com/topic/196955-malwarebytes-mb-clean-tool/

The download link for the tool is:  https://downloads.malwarebytes.com/file/mb_clean


Restart the computer when done and reinstall Malwarebytes 3 with the latest build again.

Here is the link for the latest installer
https://downloads.malwarebytes.com/file/mb3


Thank you

Ron

 

Link to post
Share on other sites

  • Root Admin

Great, the log says the files were placed in Quarantine. Just to ensure nothing is left over let's go ahead and run another virus scanner from Kaspersky.

 

Please download and run the following tool to remove any found threats. There should be a log created, please post back that log.

Kaspersky Virus Removal Tool

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.