RJDoute Posted April 29, 2017 ID:1120861 Share Posted April 29, 2017 Attached are the log files, can anyone tell me what is going on? It detects the threats during the heuristic analysis. Thank you in advance, Ryan FRST.txt Addition.txt Link to post Share on other sites More sharing options...
kevinf80 Posted April 29, 2017 ID:1120881 Share Posted April 29, 2017 (edited) Hello RJDoute and welcome to Malwarebytes, My screen name is kevinf80, i`m here to help clean up your system. Make sure to run all scans from accounts with Administrator status, continue as follows please: Anyone other than the original starter of this thread please DO NOT follow the instructions and advice posted as replies here, my help and advice is NOT related to your system and will probably cause more harm than good... Continue with the following: Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into. "Do not open that file" NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work. Open FRST and press the Fix button just once and wait. The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply. Next, Clean install Malwarebytes from version 2 to version 3... Please download MBAM-clean and save it to your desktop. Right-click on mbam-clean.exe icon and select Run as Administrator to start the tool. It will ask you to reboot the machine - please do so. Run the cleaner tool again, re-boot when complete. <<<---do not miss this step If you have lost the activation licence key information it can be located here: http://www.cleverbridge.com/342/?scope=cusecolp Download Malwarebytes version 3 from the following link:https://www.malwarebytes.com/mwb-download/thankyou/ Double click on the installer and follow the prompts. If necessary select the Blue Help tab for video instructions.... When the install completes and is updated do the following: Open Malwarebytes, select > "settings" > "protection tab" Scroll down to "Scan Options" ensure Scan for Rootkits and Scan within Archives are both on.... Go back to "DashBoard" select the Blue "Scan Now" tab...... When the scan completes deal with any found entries... Then select "Export Summary" then "Text File (*.txt)" name that log and save , you can copy or attach that to your reply... If you have lost the activation licence key information it can be located here: http://www.cleverbridge.com/342/?scope=cusecolp Next, Download AdwCleaner by Xplode onto your Desktop. Or from this Mirror Double click on Adwcleaner.exe to run the tool Click on the Scan in the Actions box Please wait fot the scan to finish.. When "Waiting for action.Please uncheck elements you want to keep" shows in top line.. Click on the Cleaning box. Next click OK on the "Closing Programs" pop up box. Click OK on the Information box & again OK to allow the necessary reboot After restart the AdwCleaner(C*)-Notepad log will appear, please copy/paste it in your next reply. Where * is the number relative to list of scans completed... Next, Please download Junkware Removal Tool to your desktop. Shut down your protection software now to avoid potential conflicts. (re-enable when done) Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator". The tool will open and start scanning your system. Please be patient as this can take a while to complete depending on your system's specifications. On completion, a log (JRT.txt) is saved to your desktop and will automatically open. Post the contents of JRT.txt into your next message. Next, Download Microsoft's " Malicious Software Removal Tool" and save direct to the desktop Ensure to get the correct version for your system.... 32 Bit version:https://www.microsoft.com/downloads/en/confirmation.aspx?FamilyId=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en 64 Bit version:https://www.microsoft.com/downloads/en/confirmation.aspx?FamilyId=585D2BDE-367F-495E-94E7-6349F4EFFC74&displaylang=en Right click on the Tool, select “Run as Administrator” the tool will expand to the options Window In the "Scan Type" window, select Quick Scan Perform a scan and Click Finish when the scan is done. Retrieve the MSRT log as follows, and post it in your next reply: 1) Select the Windows key and R key together to open the "Run" function 2) Type or Copy/Paste the following command to the "Run Line" and Press Enter:notepad c:\windows\debug\mrt.log The log will include log details for each time MSRT has run, we only need the most recent log by date and time.... Next, Zip up and attach this folder C:\Windows\Minidump Let me see those logs in your reply, also tell me if there are any remaining issues or concerns... Thank you, Kevin..... fixlist.txt Edited April 29, 2017 by kevinf80 Link to post Share on other sites More sharing options...
RJDoute Posted April 29, 2017 Author ID:1120922 Share Posted April 29, 2017 Kevin, Please see attached. Only concern is the last two tools reported threats during the scan, but upon completion said nothing was detected. mwblog.txt Fixlog.txt AdwCleaner[C0].txt JRT.txt mrt.log Minidump.rar Link to post Share on other sites More sharing options...
kevinf80 Posted April 29, 2017 ID:1120927 Share Posted April 29, 2017 Can you run another scan with Malwarebytes, post the new log... Your mini dump files are indicating a problem with the video card driver, what is happening when your system crashes, what is running..? Link to post Share on other sites More sharing options...
RJDoute Posted April 29, 2017 Author ID:1120931 Share Posted April 29, 2017 Games primarily, whether it be Heroes of the Storm or Command and Conquer Generals: Zero Hour. I usually get a blue screen with MEMORY_MANAGEMENT or something memory related. The games crash somewhat regularly too. May be unrelated, but my plug n play Earforce 11 headphones are no longer being recognized by the machine since running all these scans? Thank you again for your assistance. Ryan mwblog.txt Link to post Share on other sites More sharing options...
kevinf80 Posted April 29, 2017 ID:1120934 Share Posted April 29, 2017 (edited) I`m not sure that any scans we`ve ran would affect the headphones, do you have software to reinstall the driver..? Regarding the video card, i`d recommend you go to the manufacturers website and check for a driver update... if the crashes continue the card will need checking to make sure is not faulty... How is your PC responding in general since malware has been removed, any issues or concerns...? Thank you, Kevin Edited April 29, 2017 by kevinf80 Link to post Share on other sites More sharing options...
RJDoute Posted April 29, 2017 Author ID:1120945 Share Posted April 29, 2017 The headphones don't have drivers, it used to just 'auto detect' when I would plug something into the headphone or microphone port and ask me what type of device it was. I would click a check box for "headphones" and "microphone" and then it would turn on. Now nothing happens when I plug it into the ports. Thus far everything appears to be in working order. I will update the Nvidia drivers and report back if any other issues are detected. Thank you very much for your help up until this point it is greatly appreciated. Ryan Link to post Share on other sites More sharing options...
kevinf80 Posted April 29, 2017 ID:1120949 Share Posted April 29, 2017 Can you open Device Manager, expand audio inputs outputs, is there an exclamation or question mark against any devices..? Link to post Share on other sites More sharing options...
RJDoute Posted April 29, 2017 Author ID:1120953 Share Posted April 29, 2017 No sir, the headphones don't appear there at all. No punctuation of any kind. Link to post Share on other sites More sharing options...
kevinf80 Posted April 29, 2017 ID:1120955 Share Posted April 29, 2017 Can you also expand Sound, Video and Game controllers.. Any question marks against those entries... Link to post Share on other sites More sharing options...
RJDoute Posted April 30, 2017 Author ID:1120960 Share Posted April 30, 2017 No sir, the only quesiton mark in device manager is under "Other" and lists as Ethernet. Link to post Share on other sites More sharing options...
kevinf80 Posted April 30, 2017 ID:1120968 Share Posted April 30, 2017 Run sfc /scannow command as instructed under "Option Two" from this link: https://www.eightforums.com/tutorials/3047-sfc-scannow-command-run-windows-8-a.html When that completes run "Option Three" from same link to get the log.... Link to post Share on other sites More sharing options...
RJDoute Posted April 30, 2017 Author ID:1120983 Share Posted April 30, 2017 This is what I did: I ran scannow twice, which fixed the headphones problem but the PC started crashing again. I updated the video card drivers, ran it again and it crashed once more. I rebooted and ran it and secured the log, attached. When it crashed the last time it said NTFS_FILE_SYSTEM (Ntfs.sys) sfcdetails.txt Link to post Share on other sites More sharing options...
kevinf80 Posted April 30, 2017 ID:1121013 Share Posted April 30, 2017 (edited) Can you zip up Minidump folder again and attach please.. Next, Please download VEW by Vino Rosso from HERE and save it to your Desktop. Double-click VEW.exe. to start, Vista and Windows 7/8/10 users Right Click and select "Run as Administrator" Under 'Select log to query...check the boxes for both Application and System. Under 'Select type to list... select both Error and Critical. Click the radio button for 'Number of events...Type 15 in the 1 to 20 box. Then click the Run button. Notepad will open with the output log. It will take a couple of minutes to generate the log, please be patient. Please post the Output log in your next reply. Thank you, Kevin Edited April 30, 2017 by kevinf80 typing mistake Link to post Share on other sites More sharing options...
RJDoute Posted May 17, 2017 Author ID:1125928 Share Posted May 17, 2017 Kevin, My apologies for the late response. I will be sure to donate for all the help you've given thus far. See attached, and thank you for any assistance you can render. Minidump.rar VEW.txt Link to post Share on other sites More sharing options...
exile360 Posted May 21, 2017 ID:1128638 Share Posted May 21, 2017 Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts