malware removal result logs

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by knkmomma, Oct 26, 2013.

  1. knkmomma

    knkmomma Private E-2

    here is my rkreport.. I hope I am doing this correctly.
    malwarebytes log is 2nd
    TDSSKiller log is 3rd attachment
    Hitman pro logs 4th
     

    Attached Files:

    knkmomma, Oct 26, 2013
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Also need to see the MGlogs.zip from running MGTools please.
     
    Kestrel13!, Oct 26, 2013
    #2
  3. knkmomma

    knkmomma Private E-2

    I am having trouble getting that one for some reason.. I can't figure out what I am doing wrong.. I am running windows8.1 and it would let me download that file on C: drive.. any Ideas of how to get it to do that.. I watched the video 4 times and my computer doesn't give me the opts to do that.. It let me download it. When I go to use it the black box comes up, I wait and it says press any button to continue.. I do and it disappears.. I also can find the log files you need for that after.
     
    Last edited: Oct 26, 2013
    knkmomma, Oct 26, 2013
    #3
  4. knkmomma

    knkmomma Private E-2

    This is what is written in the black box that pops up.. hopefully this will help... :cry






    ******************************************************************************
    * GetLogs.bat - (c) 10/02/2006 By Chaslang *
    * This version supports Win2K, XP, Vista and Win 7 *
    * This small batch file is just used to automatically run all of the scans *
    * that are part of the MGtools collection. *
    * It is automatically run by MGtools.exe during installation and can be run *
    * at anytime there after to create a full set of logs. *
    * 07/24/2013 Version 2.54 - Automatic ReZip execution on fail of MGlogs *
    ******************************************************************************

    GetLogs.bat - 07/24/2013 Version 2.54

    64 bit Windows OS found
    Your OS Version is Unsupported by GetLogs

    Microsoft Windows [Version 6.3.9600]
    Press any key to continue . . .
     
    knkmomma, Oct 26, 2013
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    This is due to the new Windows 8.1 change to the version number string. I will have to update MGtools to allow for this.


    In the meantime, run the below scan for Kestrel13!


    Please download OTL by OldTimer.
    • Save it to your desktop.
    • Double-click on the OTL icon on your desktopto run it. (Note: if using Vista, Win7 or Win8 use right-click and select Run as Administrator)
    • Check the "Scan All Users" checkbox.
    • Check the "Standard Output".
    • Change the setting of "Drivers" and "Services" to "All"
    • Copy the text in the code box below and paste it into the [​IMG] text-field.
      Code:
      activex
netsvcs
drives
    • Now click the [​IMG] button.
    • One report will be created:
      • OTL.txt <-- Will be opened
    • Attach OTL.txt to your next message. (How to attach)
     
    chaslang, Oct 26, 2013
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    New version of MGtools is available that hopefully works okay for you. Try download and running the below:

    MGtools
     
    chaslang, Oct 26, 2013
    #6
  7. knkmomma

    knkmomma Private E-2

    here is the results.. I hope it helps.. whatever it is it keeps taking control of my computer.. typing 2e2e2e2e2e2e2e2e2e2e and other stuff as I try to type addresses in address box.. or will try to pop u edit menu or type other stuff at log in.. I also find myself on a page that says AVG safe search page.. maybe its a virus.. you are the expert.. I hope you can help.. it is EXTREMELY stressful.. I am sure you understand.. By the way I have yet to figure out where the safe boot menu is I have tried F2 F8 F10 and F12.. Hopefully you can help me on that too.. Thanks :)
     
    knkmomma, Oct 26, 2013
    #7
  8. knkmomma

    knkmomma Private E-2

    OTL.exe
     
    Last edited: Oct 26, 2013
    knkmomma, Oct 26, 2013
    #8
  9. knkmomma

    knkmomma Private E-2

    DeviceID: Disk #0, Partition #4
    PartitionType: GPT: Unknown
    Bootable: False
    BootPartition: False
    PrimaryPartition: False
    Size: 14.00GB
    Starting Offset: 985170706432
    Hidden sectors: 0


    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\taylorsmarine profile pic.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\310.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\309.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\308.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\307.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\306.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\305.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\304.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\302.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\299.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\298.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\297.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\296.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\295.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\294.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\293.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\291.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\289.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\288.jpg:Roxio EMC Stream
    @Alternate Data Stream - 199 bytes -> C:\Users\trent\SkyDrive:ms-properties

    < End of report >
     
    knkmomma, Oct 26, 2013
    #9
  10. knkmomma

    knkmomma Private E-2

    DeviceID: Disk #0, Partition #4
    PartitionType: GPT: Unknown
    Bootable: False
    BootPartition: False
    PrimaryPartition: False
    Size: 14.00GB
    Starting Offset: 985170706432
    Hidden sectors: 0


    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\taylorsmarine profile pic.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\310.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\309.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\308.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\307.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\306.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\305.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\304.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\302.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\299.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\298.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\297.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\296.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\295.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\294.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\293.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\291.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\289.jpg:Roxio EMC Stream
    @Alternate Data Stream - 76 bytes -> C:\Users\trent\Documents\288.jpg:Roxio EMC Stream
    @Alternate Data Stream - 199 bytes -> C:\Users\trent\SkyDrive:ms-properties

    < End of report >
     
    knkmomma, Oct 26, 2013
    #10
  11. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Kestrel13!, Oct 27, 2013
    #11

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds