-
December 1st, 2014, 09:08 PM
#46
got this on security check
UNSUPPORTED OPERATING SYSTEM! ABORTED!
-
December 1st, 2014, 09:09 PM
#47
Farbar Service Scanner Version: 21-07-2014
Ran by kspee_000 (administrator) on 01-12-2014 at 20:09:41
Running from "C:\Users\kspee_000\AppData\Local\Microsoft\Windows\INetCache\IE\LMMRPLC1"
Microsoft Windows 8.1 Pro (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Disabled Policy:
========================
Action Center:
============
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MsMpEng.exe => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
-
December 1st, 2014, 09:14 PM
#48
You must read my instructions MORE carefully.
In Security Check instructions there is a note:
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run
-
December 1st, 2014, 09:24 PM
#49
looks like that scan will take time will send the results tommarrow...Thanks Broni you are always the man to come to with the tuff stuff.....
-
December 1st, 2014, 09:30 PM
#50
here broni
Results of screen317's Security Check version 0.99.91
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
Windows Defender
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 2.0.3.1025
Java 7 Update 71
Google Chrome (39.0.2171.65)
Google Chrome (39.0.2171.71)
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
-
December 1st, 2014, 09:31 PM
#51
-
December 2nd, 2014, 06:46 AM
#52
2014-12-02 01:14:21.990 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-12-02 01:14:21.990 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-12-02 01:14:21.990 Windows version 6.2 SP 0.0 build 9200 SM=0x100 PT=0x1 WOW64
2014-12-02 01:14:21.990 Checking for updates...
2014-12-02 01:14:22.005 Update progress: proxy server not available
2014-12-02 01:14:30.147 Option all = no
2014-12-02 01:14:30.147 Option recurse = yes
2014-12-02 01:14:30.147 Option archive = no
2014-12-02 01:14:30.147 Option service = yes
2014-12-02 01:14:30.147 Option confirm = yes
2014-12-02 01:14:30.147 Option sxl = yes
2014-12-02 01:14:30.147 Option max-data-age = 35
2014-12-02 01:14:30.147 Option EnableSafeClean = yes
2014-12-02 01:14:33.132 Option vdl-logging = yes
2014-12-02 01:14:33.132 Component SVRTcli.exe version 2.5
2014-12-02 01:14:33.132 Component control.dll version 2.5
2014-12-02 01:14:33.132 Component SVRTservice.exe version 2.5
2014-12-02 01:14:33.132 Component engine\osdp.dll version 1.44.1.2171
2014-12-02 01:14:33.132 Component engine\veex.dll version 3.56.0.2171
2014-12-02 01:14:33.132 Component engine\savi.dll version 8.1.4.2171
2014-12-02 01:14:33.132 Component rkdisk.dll version 1.5.30.0
2014-12-02 01:14:33.132 Version info: Product version 2.5
2014-12-02 01:14:33.132 Version info: Detection engine 3.56.0
2014-12-02 01:14:33.132 Version info: Detection data 5.04
2014-12-02 01:14:33.132 Version info: Build date 7/29/2014
2014-12-02 01:14:33.132 Version info: Data files added 1035
2014-12-02 01:14:33.132 Version info: Last successful update (not yet updated)
2014-12-02 01:14:37.984 Downloading updates...
2014-12-02 01:14:37.984 Update progress: [I96736] Looking for package C1A903B2-E63E-483b-982D-04BB9C457C60 1.0
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement SAVIW32 LATEST
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement IDE505 LATEST
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement IDE506 LATEST
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement IDE507 LATEST
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement IDE508 LATEST
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement IDE509 LATEST
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement IDE510 LATEST
2014-12-02 01:14:37.984 Update progress: [I49502] Found supplement IDE511 LATEST
2014-12-02 01:14:37.984 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 1
2014-12-02 01:14:37.984 Update progress: [I19463] Syncing product SAVIW32 46
2014-12-02 01:14:42.012 Update progress: [I19463] Syncing product IDE505 175
2014-12-02 01:14:51.341 Installing updates...
2014-12-02 01:14:52.013 Update progress: [I19463] Syncing product IDE506 201
2014-12-02 01:14:52.013 Update progress: [I19463] Syncing product IDE507 162
2014-12-02 01:14:52.013 Update progress: [I19463] Syncing product IDE508 184
2014-12-02 01:14:52.013 Update progress: [I19463] Syncing product IDE509 177
2014-12-02 01:14:52.013 Update progress: [I19463] Syncing product IDE510 138
2014-12-02 01:14:52.013 Update progress: [I19463] Syncing product IDE511 1
2014-12-02 01:15:54.511 Update successful
2014-12-02 01:16:02.732 Option all = no
2014-12-02 01:16:02.732 Option recurse = yes
2014-12-02 01:16:02.732 Option archive = no
2014-12-02 01:16:02.732 Option service = yes
2014-12-02 01:16:02.732 Option confirm = yes
2014-12-02 01:16:02.732 Option sxl = yes
2014-12-02 01:16:02.732 Option max-data-age = 35
2014-12-02 01:16:02.732 Option EnableSafeClean = yes
2014-12-02 01:16:02.904 Option vdl-logging = yes
2014-12-02 01:16:03.154 Component SVRTcli.exe version 2.5
2014-12-02 01:16:03.170 Component control.dll version 2.5
2014-12-02 01:16:03.170 Component SVRTservice.exe version 2.5
2014-12-02 01:16:03.170 Component engine\osdp.dll version 1.44.1.2171
2014-12-02 01:16:03.170 Component engine\veex.dll version 3.56.0.2171
2014-12-02 01:16:03.170 Component engine\savi.dll version 8.1.4.2171
2014-12-02 01:16:03.170 Component rkdisk.dll version 1.5.30.0
2014-12-02 01:16:03.170 Version info: Product version 2.5
2014-12-02 01:16:03.170 Version info: Detection engine 3.56.0
2014-12-02 01:16:03.170 Version info: Detection data 5.04G
2014-12-02 01:16:03.170 Version info: Build date 7/29/2014
2014-12-02 01:16:03.170 Version info: Data files added 1035
2014-12-02 01:16:03.170 Version info: Last successful update 12/1/2014 8:15:54 PM
2014-12-02 01:25:25.030 SafeClean bin directory is empty.
2014-12-02 01:25:26.686 Scan cancelled by user.
2014-12-02 01:25:26.686
------------------------------------------------------------
2014-12-02 01:33:03.490 Sophos Virus Removal Tool version 2.5.3
2014-12-02 01:33:03.490 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-12-02 01:33:03.490 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-12-02 01:33:03.490 Windows version 6.2 SP 0.0 build 9200 SM=0x100 PT=0x1 WOW64
2014-12-02 01:33:03.490 Checking for updates...
2014-12-02 01:33:03.490 Update progress: proxy server not available
2014-12-02 01:33:13.917 Option all = no
2014-12-02 01:33:13.917 Option recurse = yes
2014-12-02 01:33:13.917 Option archive = no
2014-12-02 01:33:13.917 Option service = yes
2014-12-02 01:33:13.917 Option confirm = yes
2014-12-02 01:33:13.917 Option sxl = yes
2014-12-02 01:33:13.917 Option max-data-age = 35
2014-12-02 01:33:13.917 Option EnableSafeClean = yes
2014-12-02 01:33:15.605 Option vdl-logging = yes
2014-12-02 01:33:16.183 Component SVRTcli.exe version 2.5
2014-12-02 01:33:16.183 Component control.dll version 2.5
2014-12-02 01:33:16.183 Component SVRTservice.exe version 2.5
2014-12-02 01:33:16.183 Component engine\osdp.dll version 1.44.1.2171
2014-12-02 01:33:16.183 Component engine\veex.dll version 3.56.0.2171
2014-12-02 01:33:16.183 Component engine\savi.dll version 8.1.4.2171
2014-12-02 01:33:16.355 Component rkdisk.dll version 1.5.30.0
2014-12-02 01:33:16.355 Version info: Product version 2.5
2014-12-02 01:33:16.355 Version info: Detection engine 3.56.0
2014-12-02 01:33:16.355 Version info: Detection data 5.04G
2014-12-02 01:33:16.370 Version info: Build date 7/29/2014
2014-12-02 01:33:16.370 Version info: Data files added 1035
2014-12-02 01:33:16.370 Version info: Last successful update 12/1/2014 8:15:54 PM
2014-12-02 01:33:55.511 Update not required
2014-12-02 02:27:00.792 Could not open C:\Boot\BCD
2014-12-02 02:28:23.761 >>> Virus 'Mal/VMProtBad-A' found in file C:\Games\Borderlands The Pre-Sequel\Binaries\Win32\steam_api.dll
2014-12-02 02:28:34.152 Could not open C:\hiberfil.sys
2014-12-02 02:38:54.448 Could not open C:\swapfile.sys
2014-12-02 02:43:47.948 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-12-02 02:43:47.948 Could not open C:\System Volume Information\{46eb2c85-766e-11e4-bedb-1c6f65fab647}{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-12-02 02:43:47.948 Could not open C:\System Volume Information\{4fd92cf1-7833-11e4-bee4-1c6f65fab647}{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-12-02 02:43:47.948 Could not open C:\System Volume Information\{c1de121b-7590-11e4-bed6-1c6f65fab647}{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-12-02 02:43:47.948 Could not open C:\System Volume Information\{e00e82d8-7821-11e4-bee3-1c6f65fab647}{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-12-02 02:43:47.948 Could not open C:\System Volume Information\{fab32e18-731d-11e4-bed3-1c6f65fab647}{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-12-02 03:09:52.136 Could not open LOGICAL:0004:00000000
2014-12-02 03:09:52.402 Could not open E:\
2014-12-02 03:10:25.730 >>> Virus 'Troj/Keygen-DX' found in file G:\Windows Hacktivator\Windows Hacktivator\w7lxe.exe\FILE:0001
2014-12-02 03:10:26.058 Could not open PHYSICAL:0081:0000:0000:0001
2014-12-02 03:10:26.245 The following items will be cleaned up:
2014-12-02 03:10:26.245 Mal/VMProtBad-A
2014-12-02 03:10:26.245 Troj/Keygen-DX
-
December 2nd, 2014, 06:50 AM
#53
Clean up never removed this {Troj/Keygen-DX}
-
December 2nd, 2014, 06:59 PM
#54
Update your Java version here: http://www.java.com/en/download/manual.jsp
Alternate download: http://www.filehippo.com/search?q=java
Note 1: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.
Note 2: If you're running 64-bit system make sure you install BOTH, 32-bit and 64-bit Java.
Note 3: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. If you don't want to run another extra service, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and restart your computer.
==============================================
Your computer is clean
1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.
Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
- Activate UAC (optional; some users prefer to keep it off)
- Remove disinfection tools
- Create registry backup
- Purge System Restore
- Reset system settings
Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.
2. Make sure Windows Updates are current.
3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!
4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Launch a quick scan now" link)
5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.
6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.
7. Run Temporary File Cleaner (TFC), AdwCleaner and Junkware Removal Tool (JRT) weekly (you need to redownload these tools since they were removed by DelFix).
8. Download and install Secunia Personal Software Inspector (PSI): http://secunia.com/vulnerability_scanning/personal/. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.
9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.
10. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.
11. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tuto...r-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/foru.../#entry3187642
12. Please, let me know, how your computer is doing.
-
December 6th, 2014, 08:29 PM
#55
The issue seems to be resolved.
-
December 7th, 2014, 09:48 AM
#56
Yes sir...Sorry for not getting back. Working just great,thanks again Broni. Your da man
-
December 7th, 2014, 02:19 PM
#57
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|