Jump to content

weleh

Members
  • Posts

    3
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Hi kevin, thx for the reply My internet seems to work again, after use your fixlist.txt file below are fixlog.txt file Fix result of Farbar Recovery Scan Tool (x64) Version:07-11-2015 Ran by USER (2015-11-16 17:27:46) Run:1 Running from C:\Users\USER\Downloads Loaded Profiles: USER (Available Profiles: USER) Boot Mode: Normal ============================================== fixlist content: ***************** Start CloseProcesses: CreateRestorePoint: HKU\S-1-5-21-2868846963-4039655079-2950123165-1001\...\Run: [AdobeBridge] => [X] GroupPolicy: Restriction - Chrome <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION Winsock: Catalog9 01 C:\Windows\system32\Taersisevu.dll No File Winsock: Catalog9 02 C:\Windows\system32\Taersisevu.dll No File Winsock: Catalog9 03 C:\Windows\system32\Taersisevu.dll No File Winsock: Catalog9 04 C:\Windows\system32\Taersisevu.dll No File Winsock: Catalog9 16 C:\Windows\system32\Taersisevu.dll No File Winsock: Catalog9-x64 01 C:\Windows\system32\Taersisevu64.dll No File Winsock: Catalog9-x64 02 C:\Windows\system32\Taersisevu64.dll No File Winsock: Catalog9-x64 03 C:\Windows\system32\Taersisevu64.dll No File Winsock: Catalog9-x64 04 C:\Windows\system32\Taersisevu64.dll No File Winsock: Catalog9-x64 16 C:\Windows\system32\Taersisevu64.dll No File cmd: netsh winsock reset S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X] U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X] 2015-11-06 09:00 - 2015-11-06 09:04 - 00004760 _____ C:\Windows\SysWOW64\Taersisevu.ini 2015-11-06 09:00 - 2015-11-06 09:04 - 00002480 _____ C:\Windows\SysWOW64\TaersisevuOff.ini 2015-11-06 09:00 - 2015-11-06 09:04 - 00002480 _____ C:\Windows\system32\TaersisevuOff.ini 2015-11-06 09:00 - 2015-11-06 09:00 - 00000000 ____D C:\Users\USER\AppData\Roaming\cpuminer 2015-11-06 08:59 - 2015-11-15 18:00 - 00000000 ____D C:\Users\USER\AppData\LocalLow\Company 2015-11-06 08:59 - 2015-11-06 09:00 - 00000000 ____D C:\Users\USER\AppData\Local\Tempfolder 2015-11-06 08:59 - 2015-11-06 08:59 - 00003340 _____ C:\Windows\System32\Tasks\Tasemu 2015-11-06 08:59 - 2015-11-06 08:59 - 00000000 ____D C:\Windows\system32\qhj 2015-11-06 08:58 - 2015-11-06 08:58 - 00000000 ____D C:\uninst C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat C:\Users\USER\AppData\Local\Temp\avg-0e6eec46-62ab-4168-a0a7-b25808241466.exe C:\Users\USER\AppData\Local\Temp\Foxit Updater.exe C:\Users\USER\AppData\Local\Temp\SpOrder.dll Task: {3867BDC7-930E-470C-BD6D-212040BFDB98} - \updateTask -> No File <==== ATTENTION Task: {54E90AFC-949F-46ED-B637-CE2366B44529} - System32\Tasks\Tasemu => C:\PROGRA~1\SHOPPE~1\Zuctitga.bat C:\PROGRA~1\SHOPPE~1 cmd: sfc/scannow reboot: EmptyTemp: End ***************** Processes closed successfully. Restore point was successfully created. HKU\S-1-5-21-2868846963-4039655079-2950123165-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully C:\Windows\system32\GroupPolicy\Machine => moved successfully C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully "HKLM\SOFTWARE\Policies\Google" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000001" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000002" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000003" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000004" => key removed successfully "HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000016" => key removed successfully ========= netsh winsock reset ========= Initialization Function InitHelperDll in NSHHTTP.DLL failed to start with error code 10107 Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ========= End of CMD: ========= EagleX64 => service removed successfully klkbdflt2 => service could not remove C:\Windows\SysWOW64\Taersisevu.ini => moved successfully C:\Windows\SysWOW64\TaersisevuOff.ini => moved successfully C:\Windows\system32\TaersisevuOff.ini => moved successfully C:\Users\USER\AppData\Roaming\cpuminer => moved successfully C:\Users\USER\AppData\LocalLow\Company => moved successfully C:\Users\USER\AppData\Local\Tempfolder => moved successfully C:\Windows\System32\Tasks\Tasemu => moved successfully C:\Windows\system32\qhj => moved successfully C:\uninst => moved successfully C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat => moved successfully C:\Users\USER\AppData\Local\Temp\avg-0e6eec46-62ab-4168-a0a7-b25808241466.exe => moved successfully C:\Users\USER\AppData\Local\Temp\Foxit Updater.exe => moved successfully C:\Users\USER\AppData\Local\Temp\SpOrder.dll => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3867BDC7-930E-470C-BD6D-212040BFDB98}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3867BDC7-930E-470C-BD6D-212040BFDB98}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\updateTask" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{54E90AFC-949F-46ED-B637-CE2366B44529}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{54E90AFC-949F-46ED-B637-CE2366B44529}" => key removed successfully C:\Windows\System32\Tasks\Tasemu => not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Tasemu" => key removed successfully "C:\PROGRA~1\SHOPPE~1" => not found. ========= sfc/scannow ========= B e g i n n i n g s y s t e m s c a n . T h i s p r o c e s s w i l l t a k e s o m e t i m e . B e g i n n i n g v e r i f i c a t i o n p h a s e o f s y s t e m s c a n . V e r i f i c a t i o n 0 % c o m p l e t e . V e r i f i c a t i o n 1 % c o m p l e t e . V e r i f i c a t i o n 2 % c o m p l e t e . V e r i f i c a t i o n 2 % c o m p l e t e . V e r i f i c a t i o n 3 % c o m p l e t e . V e r i f i c a t i o n 4 % c o m p l e t e . V e r i f i c a t i o n 4 % c o m p l e t e . V e r i f i c a t i o n 5 % c o m p l e t e . V e r i f i c a t i o n 6 % c o m p l e t e . V e r i f i c a t i o n 6 % c o m p l e t e . V e r i f i c a t i o n 7 % c o m p l e t e . V e r i f i c a t i o n 8 % c o m p l e t e . V e r i f i c a t i o n 8 % c o m p l e t e . V e r i f i c a t i o n 9 % c o m p l e t e . V e r i f i c a t i o n 1 0 % c o m p l e t e . V e r i f i c a t i o n 1 0 % c o m p l e t e . V e r i f i c a t i o n 1 1 % c o m p l e t e . V e r i f i c a t i o n 1 2 % c o m p l e t e . V e r i f i c a t i o n 1 2 % c o m p l e t e . V e r i f i c a t i o n 1 3 % c o m p l e t e . V e r i f i c a t i o n 1 4 % c o m p l e t e . V e r i f i c a t i o n 1 4 % c o m p l e t e . V e r i f i c a t i o n 1 5 % c o m p l e t e . V e r i f i c a t i o n 1 6 % c o m p l e t e . V e r i f i c a t i o n 1 6 % c o m p l e t e . V e r i f i c a t i o n 1 7 % c o m p l e t e . V e r i f i c a t i o n 1 8 % c o m p l e t e . V e r i f i c a t i o n 1 8 % c o m p l e t e . V e r i f i c a t i o n 1 9 % c o m p l e t e . V e r i f i c a t i o n 2 0 % c o m p l e t e . V e r i f i c a t i o n 2 0 % c o m p l e t e . V e r i f i c a t i o n 2 1 % c o m p l e t e . V e r i f i c a t i o n 2 2 % c o m p l e t e . V e r i f i c a t i o n 2 2 % c o m p l e t e . V e r i f i c a t i o n 2 3 % c o m p l e t e . V e r i f i c a t i o n 2 4 % c o m p l e t e . V e r i f i c a t i o n 2 4 % c o m p l e t e . V e r i f i c a t i o n 2 5 % c o m p l e t e . V e r i f i c a t i o n 2 6 % c o m p l e t e . V e r i f i c a t i o n 2 6 % c o m p l e t e . V e r i f i c a t i o n 2 7 % c o m p l e t e . V e r i f i c a t i o n 2 8 % c o m p l e t e . V e r i f i c a t i o n 2 8 % c o m p l e t e . V e r i f i c a t i o n 2 9 % c o m p l e t e . V e r i f i c a t i o n 3 0 % c o m p l e t e . V e r i f i c a t i o n 3 0 % c o m p l e t e . V e r i f i c a t i o n 3 1 % c o m p l e t e . V e r i f i c a t i o n 3 2 % c o m p l e t e . V e r i f i c a t i o n 3 2 % c o m p l e t e . V e r i f i c a t i o n 3 3 % c o m p l e t e . V e r i f i c a t i o n 3 4 % c o m p l e t e . V e r i f i c a t i o n 3 4 % c o m p l e t e . V e r i f i c a t i o n 3 5 % c o m p l e t e . V e r i f i c a t i o n 3 6 % c o m p l e t e . V e r i f i c a t i o n 3 6 % c o m p l e t e . V e r i f i c a t i o n 3 7 % c o m p l e t e . V e r i f i c a t i o n 3 8 % c o m p l e t e . V e r i f i c a t i o n 3 8 % c o m p l e t e . V e r i f i c a t i o n 3 9 % c o m p l e t e . V e r i f i c a t i o n 4 0 % c o m p l e t e . V e r i f i c a t i o n 4 0 % c o m p l e t e . V e r i f i c a t i o n 4 1 % c o m p l e t e . V e r i f i c a t i o n 4 2 % c o m p l e t e . V e r i f i c a t i o n 4 2 % c o m p l e t e . V e r i f i c a t i o n 4 3 % c o m p l e t e . V e r i f i c a t i o n 4 4 % c o m p l e t e . V e r i f i c a t i o n 4 4 % c o m p l e t e . V e r i f i c a t i o n 4 5 % c o m p l e t e . V e r i f i c a t i o n 4 6 % c o m p l e t e . V e r i f i c a t i o n 4 6 % c o m p l e t e . V e r i f i c a t i o n 4 7 % c o m p l e t e . V e r i f i c a t i o n 4 8 % c o m p l e t e . V e r i f i c a t i o n 4 8 % c o m p l e t e . V e r i f i c a t i o n 4 9 % c o m p l e t e . V e r i f i c a t i o n 5 0 % c o m p l e t e . V e r i f i c a t i o n 5 0 % c o m p l e t e . V e r i f i c a t i o n 5 1 % c o m p l e t e . V e r i f i c a t i o n 5 2 % c o m p l e t e . V e r i f i c a t i o n 5 2 % c o m p l e t e . V e r i f i c a t i o n 5 3 % c o m p l e t e . V e r i f i c a t i o n 5 4 % c o m p l e t e . V e r i f i c a t i o n 5 5 % c o m p l e t e . V e r i f i c a t i o n 5 5 % c o m p l e t e . V e r i f i c a t i o n 5 6 % c o m p l e t e . V e r i f i c a t i o n 5 7 % c o m p l e t e . V e r i f i c a t i o n 5 7 % c o m p l e t e . V e r i f i c a t i o n 5 8 % c o m p l e t e . V e r i f i c a t i o n 5 9 % c o m p l e t e . V e r i f i c a t i o n 5 9 % c o m p l e t e . V e r i f i c a t i o n 6 0 % c o m p l e t e . V e r i f i c a t i o n 6 1 % c o m p l e t e . V e r i f i c a t i o n 6 1 % c o m p l e t e . V e r i f i c a t i o n 6 2 % c o m p l e t e . V e r i f i c a t i o n 6 3 % c o m p l e t e . V e r i f i c a t i o n 6 3 % c o m p l e t e . V e r i f i c a t i o n 6 4 % c o m p l e t e . V e r i f i c a t i o n 6 5 % c o m p l e t e . V e r i f i c a t i o n 6 5 % c o m p l e t e . V e r i f i c a t i o n 6 6 % c o m p l e t e . V e r i f i c a t i o n 6 7 % c o m p l e t e . V e r i f i c a t i o n 6 7 % c o m p l e t e . V e r i f i c a t i o n 6 8 % c o m p l e t e . V e r i f i c a t i o n 6 9 % c o m p l e t e . V e r i f i c a t i o n 6 9 % c o m p l e t e . V e r i f i c a t i o n 7 0 % c o m p l e t e . V e r i f i c a t i o n 7 1 % c o m p l e t e . V e r i f i c a t i o n 7 1 % c o m p l e t e . V e r i f i c a t i o n 7 2 % c o m p l e t e . V e r i f i c a t i o n 7 3 % c o m p l e t e . V e r i f i c a t i o n 7 3 % c o m p l e t e . V e r i f i c a t i o n 7 4 % c o m p l e t e . V e r i f i c a t i o n 7 5 % c o m p l e t e . V e r i f i c a t i o n 7 5 % c o m p l e t e . V e r i f i c a t i o n 7 6 % c o m p l e t e . V e r i f i c a t i o n 7 7 % c o m p l e t e . V e r i f i c a t i o n 7 7 % c o m p l e t e . V e r i f i c a t i o n 7 8 % c o m p l e t e . V e r i f i c a t i o n 7 9 % c o m p l e t e . V e r i f i c a t i o n 7 9 % c o m p l e t e . V e r i f i c a t i o n 8 0 % c o m p l e t e . V e r i f i c a t i o n 8 1 % c o m p l e t e . V e r i f i c a t i o n 8 1 % c o m p l e t e . V e r i f i c a t i o n 8 2 % c o m p l e t e . V e r i f i c a t i o n 8 3 % c o m p l e t e . V e r i f i c a t i o n 8 3 % c o m p l e t e . V e r i f i c a t i o n 8 4 % c o m p l e t e . V e r i f i c a t i o n 8 5 % c o m p l e t e . V e r i f i c a t i o n 8 5 % c o m p l e t e . V e r i f i c a t i o n 8 6 % c o m p l e t e . V e r i f i c a t i o n 8 7 % c o m p l e t e . V e r i f i c a t i o n 8 7 % c o m p l e t e . V e r i f i c a t i o n 8 8 % c o m p l e t e . V e r i f i c a t i o n 8 9 % c o m p l e t e . V e r i f i c a t i o n 8 9 % c o m p l e t e . V e r i f i c a t i o n 9 0 % c o m p l e t e . V e r i f i c a t i o n 9 1 % c o m p l e t e . V e r i f i c a t i o n 9 1 % c o m p l e t e . V e r i f i c a t i o n 9 2 % c o m p l e t e . V e r i f i c a t i o n 9 3 % c o m p l e t e . V e r i f i c a t i o n 9 3 % c o m p l e t e . V e r i f i c a t i o n 9 4 % c o m p l e t e . V e r i f i c a t i o n 9 5 % c o m p l e t e . V e r i f i c a t i o n 9 5 % c o m p l e t e . V e r i f i c a t i o n 9 6 % c o m p l e t e . V e r i f i c a t i o n 9 7 % c o m p l e t e . V e r i f i c a t i o n 9 7 % c o m p l e t e . V e r i f i c a t i o n 9 8 % c o m p l e t e . V e r i f i c a t i o n 9 9 % c o m p l e t e . V e r i f i c a t i o n 9 9 % c o m p l e t e . V e r i f i c a t i o n 1 0 0 % c o m p l e t e . W i n d o w s R e s o u r c e P r o t e c t i o n f o u n d c o r r u p t f i l e s b u t w a s u n a b l e t o f i x s o m e o f t h e m . D e t a i l s a r e i n c l u d e d i n t h e C B S . L o g w i n d i r \ L o g s \ C B S \ C B S . l o g . F o r e x a m p l e C : \ W i n d o w s \ L o g s \ C B S \ C B S . l o g . N o t e t h a t l o g g i n g i s c u r r e n t l y n o t s u p p o r t e d i n o f f l i n e s e r v i c i n g s c e n a r i o s . T h e s y s t e m f i l e r e p a i r c h a n g e s w i l l t a k e e f f e c t a f t e r t h e n e x t r e b o o t . ========= End of CMD: ========= EmptyTemp: => 494.6 MB temporary data Removed. The system needed a reboot. ==== End of Fixlog 17:49:50 ====
  2. Hello, sorry for the wrong location on posting this : https://forums.malwarebytes.org/index.php?/topic/175107-cannot-connect-to-internet-after-using-malwarebytes/# But here's my problem: Yesterday I run full scan using malwarebytes and got 300an virus/malware detection But after finished it, and I want to connect to internet, I cannot do it Condition: 1. I installed Kaspersky internet security first and unable to remove malware 2. After full scan with malwarebytes, all malware seems to completely removed 3. I can use internet on IE, but for firefox or chrome nothing happened How can I fix this? Please anyone can help me..... Thanks FRST.txt Addition.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.