Is it Malware?

Welcome to Major Geeks!

You have 4 more logs to attach from the below:

• Malwarebytes
• TDSSKiller
• Hitman Pro
• MGtools

 

You have a boot record infection.

Your Malwarebytes log indicated you took no action. Please run it again and fix anything it finds. Logs need to be saved after fixing not before.

Also re-run TDSSKiller and if the below items show again, Quarantine/Delete ( which ever is allowed ) them this time. Only fix these lines

Code:

14:51:40.0114 6060  ================ Scan MBR ==================================
14:51:40.0173 6060  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:51:40.0174 6060  Suspicious mbr (Forged): \Device\Harddisk0\DR0
14:51:40.0247 6060  \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
14:51:40.0247 6060  \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
14:51:40.0253 6060  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
14:51:40.0446 6060  \Device\Harddisk1\DR1 - ok

Then immediately reboot your PC. After reboot, continue with the below.

Please do the below so that we can boot to System Recovery Options to run a scan.

For 32-bit (x86) systems download Farbar Recovery Scan Tool and save it to a flash drive.
For 64-bit (x64) systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options from the Advanced Boot Options:

• Restart the computer.
• As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
• Use the arrow keys to select the Repair your computer menu item.
• Select US as the keyboard language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account an click Next.

On the System Recovery Options menu you will get the following options:

• Select Command Prompt
• In the command window type in notepad and press Enter.
• The notepad opens. Under File menu select Open.
• Select "Computer" and find your flash drive letter and close the notepad.
• In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
  Note: Replace letter e with the drive letter of your flash drive.
• The tool will start to run.
• When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) on the flash drive. Please attach this file to your next reply. (See: How to attach)

Now run a new scan with TDSSkiller and attach a new log.

 

Okay those look good. Now run a new scan with RogueKiller and attach the new log. I want to see if it still detects anything.

Also tell me if you are still having problems?

 

You did not attach it.

Well is it still running okay now?