Solved Name Not Available Virus but not in the way you'd think

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
 

Attachments

  • fixlist.txt
    3.1 KB · Views: 1
Fix result of Farbar Recovery Scan Tool (x64) Version:09-01-2015
Ran by Nathan (2016-01-10 22:18:38) Run:1
Running from C:\Users\Nathan\Downloads
Loaded Profiles: Nathan (Available Profiles: Nathan & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [UpdReg] => C:\WINDOWS\UpdReg.EXE
ShortcutTarget: Sound - Shortcut.lnk -> (No File)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll => No File
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll => No File
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File]
U3 idsvc; no ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
2014-05-09 08:41 - 2014-05-09 08:41 - 0000000 _____ () C:\Users\Nathan\AppData\Local\Driver_LOM_8161Present.flag
2014-06-24 16:27 - 2014-06-24 16:27 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-08-06 15:55 - 2015-08-06 15:55 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
C:\Users\Nathan\AdobeAIRInstaller.exe
C:\Users\Nathan\Apache_OpenOffice_4.1.1_Win_x86_install_en-US.exe
C:\Users\Nathan\chromeinstall-8u31.exe
C:\Users\Nathan\Firefox Setup 31.0.exe
C:\Users\Nathan\npp.6.6.9.Installer.exe
C:\Users\Nathan\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Nathan\AppData\Local\Temp\sqlite3.dll
Task: {063888EE-AA7D-4A03-9992-E3B69FC6F472} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {48B19E18-4D0E-4836-B981-DBCF4D0FD19A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {62E750FA-7FED-4AD2-A3F7-8818259F4A83} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {66D3556B-976C-41C1-91E6-525C0A7D88CA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {6C836039-17EA-4803-9482-5C2656D55D2D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8F4C3A2F-D807-437E-BAA4-10DF9721ED47} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {9302C133-8558-43F8-B444-DE9108313957} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A281C0B9-D971-4C60-A15A-822C8EC6B2EB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {AF5EFC28-4804-4FDC-8382-A25B8FECBB2C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {B14DF7AB-3E37-4DAC-A4E6-6BA60B8D2B9C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {B2235008-0CB3-4C0B-B073-E1B7990C62D5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F099F235-B038-4925-BA7B-C61594C2673A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdReg => value removed successfully
ShortcutTarget: Sound - Shortcut.lnk -> (No File) => not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}" => key removed successfully
"HKCR\CLSID\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}" => key removed successfully
"HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.5.0" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.3.2" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.5.0" => key removed successfully
idsvc => service removed successfully
VBoxNetFlt => service removed successfully
wfpcapture => service removed successfully
wpcsvc => service removed successfully
C:\Users\Nathan\AppData\Local\Driver_LOM_8161Present.flag => moved successfully
C:\ProgramData\Ament.ini => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\Users\Nathan\AdobeAIRInstaller.exe => moved successfully
C:\Users\Nathan\Apache_OpenOffice_4.1.1_Win_x86_install_en-US.exe => moved successfully
C:\Users\Nathan\chromeinstall-8u31.exe => moved successfully
C:\Users\Nathan\Firefox Setup 31.0.exe => moved successfully
C:\Users\Nathan\npp.6.6.9.Installer.exe => moved successfully
C:\Users\Nathan\AppData\Local\Temp\dllnt_dump.dll => moved successfully
C:\Users\Nathan\AppData\Local\Temp\sqlite3.dll => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{063888EE-AA7D-4A03-9992-E3B69FC6F472}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{063888EE-AA7D-4A03-9992-E3B69FC6F472}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48B19E18-4D0E-4836-B981-DBCF4D0FD19A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48B19E18-4D0E-4836-B981-DBCF4D0FD19A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{62E750FA-7FED-4AD2-A3F7-8818259F4A83}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62E750FA-7FED-4AD2-A3F7-8818259F4A83}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{66D3556B-976C-41C1-91E6-525C0A7D88CA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66D3556B-976C-41C1-91E6-525C0A7D88CA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6C836039-17EA-4803-9482-5C2656D55D2D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C836039-17EA-4803-9482-5C2656D55D2D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8F4C3A2F-D807-437E-BAA4-10DF9721ED47}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8F4C3A2F-D807-437E-BAA4-10DF9721ED47}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9302C133-8558-43F8-B444-DE9108313957}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9302C133-8558-43F8-B444-DE9108313957}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A281C0B9-D971-4C60-A15A-822C8EC6B2EB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A281C0B9-D971-4C60-A15A-822C8EC6B2EB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF5EFC28-4804-4FDC-8382-A25B8FECBB2C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF5EFC28-4804-4FDC-8382-A25B8FECBB2C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B14DF7AB-3E37-4DAC-A4E6-6BA60B8D2B9C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B14DF7AB-3E37-4DAC-A4E6-6BA60B8D2B9C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B2235008-0CB3-4C0B-B073-E1B7990C62D5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2235008-0CB3-4C0B-B073-E1B7990C62D5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F099F235-B038-4925-BA7B-C61594C2673A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F099F235-B038-4925-BA7B-C61594C2673A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully

==== End of Fixlog 22:18:40 ====
 
Last scans...

redtarget.gif
Download Security Check from here or here and save it to your Desktop.
  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run


redtarget.gif
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center
  • Windows Update
  • Windows Defender
  • Other Services

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.


redtarget.gif
Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
  • Double click on TFC.exe to run the program.
  • Click on Start button to begin cleaning process.
  • TFC will close all running programs, and it may ask you to restart computer.


redtarget.gif
Download Sophos Free Virus Removal Tool and save it to your desktop.
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
 
Results of screen317's Security Check version 1.009
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
Kaspersky Anti-Virus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Java 8 Update 60
Adobe Flash Player 20.0.0.267
Mozilla Firefox (42.0)
Google Chrome (48.0.2564.48)
Google Chrome (48.0.2564.71)
````````Process Check: objlist.exe by Laurent````````
Kaspersky Lab Kaspersky Anti-Virus 16.0.0 avp.exe
Kaspersky Lab Kaspersky Anti-Virus 16.0.0 avpui.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
 
Farbar Service Scanner Version: 03-01-2016
Ran by Nathan (administrator) on 10-01-2016 at 22:34:06
Running from "C:\Users\Nathan\Downloads"
Microsoft Windows 10 Pro (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****
 
TFC Log (not that you asked for it)
Emptying Temp folders.


User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default.migrated

User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes

User: Nathan
->Temp folder emptied: 74185743 bytes
->Temporary Internet Files folder emptied: 6793516 bytes
->Java cache emptied: 16226994 bytes
->FireFox cache emptied: 9446919 bytes
->Google Chrome cache emptied: 68764816 bytes
->Flash cache emptied: 57839 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 37160 bytes
%systemroot%\System32 .tmp files removed: 91812264 bytes
%systemroot%\System32 (64bit) .tmp files removed: 34814616 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 325953425 bytes

Emptying RecycleBin. Do not interrupt.

RecycleBin emptied: 59531575 bytes
Process complete!

Total Files Cleaned = 656.00 mb
 
Running that last virus killer scan, but those last scans knocked out all audio output. Didn't run a reset after the last one though.
 
Scans can/t affect your audio output.
As a matter of fact we didn't anything serious on your computer so your original audio issue must have some other culprit.
 
I'm definitely not upset, I'm sure it will be fixed with a reset. I'm sure it had nothing to do with anything you wrote. I have minimal experience with coding, I definitely would have recognized anything malicious in a text that small. Again, thank you for your help this far. Was just giving you an update as it goes on. All I've been doing since we started is email, youtube, netflix, and a steam game that has no internet connection and being run offline.
 
2016-01-11 03:40:17.291 Sophos Virus Removal Tool version 2.5.5
2016-01-11 03:40:17.291 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.

2016-01-11 03:40:17.291 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2016-01-11 03:40:17.291 Windows version 6.2 SP 0.0 build 9200 SM=0x100 PT=0x1 WOW64
2016-01-11 03:40:17.292 Checking for updates...
2016-01-11 03:40:17.302 Update progress: proxy server not available
2016-01-11 03:40:24.627 Option all = no
2016-01-11 03:40:24.627 Option recurse = yes
2016-01-11 03:40:24.627 Option archive = no
2016-01-11 03:40:24.627 Option service = yes
2016-01-11 03:40:24.627 Option confirm = yes
2016-01-11 03:40:24.627 Option sxl = yes
2016-01-11 03:40:24.627 Option max-data-age = 35
2016-01-11 03:40:24.627 Option EnableSafeClean = yes
2016-01-11 03:40:25.918 Option vdl-logging = yes
2016-01-11 03:40:25.918 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2016-01-11 03:40:25.918 Machine ID: 4e5ac009873846d7a6d500e7d58b81e7
2016-01-11 03:40:25.934 Component SVRTcli.exe version 2.5.5
2016-01-11 03:40:25.934 Component control.dll version 2.5.5
2016-01-11 03:40:25.934 Component SVRTservice.exe version 2.5.5
2016-01-11 03:40:25.934 Component engine\osdp.dll version 1.44.1.2230
2016-01-11 03:40:25.934 Component engine\veex.dll version 3.63.0.2230
2016-01-11 03:40:25.934 Component engine\savi.dll version 9.0.0.2230
2016-01-11 03:40:25.934 Component rkdisk.dll version 1.5.30.0
2016-01-11 03:40:25.934 Version info: Product version 2.5.5
2016-01-11 03:40:25.934 Version info: Detection engine 3.63.0
2016-01-11 03:40:25.934 Version info: Detection data 5.22
2016-01-11 03:40:25.934 Version info: Build date 12/8/2015
2016-01-11 03:40:25.934 Version info: Data files added 275
2016-01-11 03:40:25.934 Version info: Last successful update (not yet updated)
2016-01-11 03:40:59.946 Downloading updates...
2016-01-11 03:40:59.952 Update progress: [I96736] Looking for package C1A903B2-E63E-483b-982D-04BB9C457C60 1.0
2016-01-11 03:40:59.952 Update progress: [I49502] Found supplement SAVIW32 LATEST
2016-01-11 03:40:59.952 Update progress: [I49502] Found supplement IDE523 LATEST
2016-01-11 03:40:59.952 Update progress: [I49502] Found supplement IDE524 LATEST
2016-01-11 03:40:59.952 Update progress: [I49502] Found supplement IDE525 LATEST
2016-01-11 03:40:59.952 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 1
2016-01-11 03:40:59.952 Update progress: [I19463] Syncing product SAVIW32 63
2016-01-11 03:41:00.614 Update progress: [I19463] Syncing product IDE523 121
2016-01-11 03:41:01.448 Installing updates...
2016-01-11 03:41:02.072 Error level 1
2016-01-11 03:41:02.072 Update progress: [I19463] Syncing product IDE524 131
2016-01-11 03:41:02.072 Update progress: [I19463] Syncing product IDE525 26
2016-01-11 03:41:05.655 Update successful
2016-01-11 03:41:13.181 Option all = no
2016-01-11 03:41:13.181 Option recurse = yes
2016-01-11 03:41:13.181 Option archive = no
2016-01-11 03:41:13.181 Option service = yes
2016-01-11 03:41:13.181 Option confirm = yes
2016-01-11 03:41:13.181 Option sxl = yes
2016-01-11 03:41:13.181 Option max-data-age = 35
2016-01-11 03:41:13.181 Option EnableSafeClean = yes
2016-01-11 03:41:13.506 Option vdl-logging = yes
2016-01-11 03:41:13.506 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2016-01-11 03:41:13.506 Machine ID: 4e5ac009873846d7a6d500e7d58b81e7
2016-01-11 03:41:13.506 Component SVRTcli.exe version 2.5.5
2016-01-11 03:41:13.506 Component control.dll version 2.5.5
2016-01-11 03:41:13.506 Component SVRTservice.exe version 2.5.5
2016-01-11 03:41:13.506 Component engine\osdp.dll version 1.44.1.2230
2016-01-11 03:41:13.506 Component engine\veex.dll version 3.63.0.2230
2016-01-11 03:41:13.506 Component engine\savi.dll version 9.0.0.2230
2016-01-11 03:41:13.506 Component rkdisk.dll version 1.5.30.0
2016-01-11 03:41:13.506 Version info: Product version 2.5.5
2016-01-11 03:41:13.506 Version info: Detection engine 3.63.0
2016-01-11 03:41:13.506 Version info: Detection data 5.22
2016-01-11 03:41:13.506 Version info: Build date 12/8/2015
2016-01-11 03:41:13.506 Version info: Data files added 275
2016-01-11 03:41:13.506 Version info: Last successful update 1/10/2016 10:41:05 PM

2016-01-11 03:56:38.937 >>> Virus 'Mal/Generic-S' found in file C:\AMD\Packages\Apps\Radeon-Crimson-15.11-ccc-zh-chs64-64bit.exe
2016-01-11 03:57:11.676 Could not open C:\hiberfil.sys
2016-01-11 03:57:11.694 Could not open C:\pagefile.sys
2016-01-11 04:02:35.294 Could not open C:\ProgramData\Kaspersky Lab\AVP16.0.0\SysWHist\file_cache\meta
2016-01-11 04:02:49.485 Could not open C:\swapfile.sys
2016-01-11 04:02:49.526 Could not open C:\System Volume Information\{13a6a579-b257-11e5-9bed-001bdc0fc54f}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-01-11 04:02:49.527 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-01-11 04:02:49.527 Could not open C:\System Volume Information\{5fd28f14-b811-11e5-9c00-001bdc0fc54f}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-01-11 04:02:49.527 Could not open C:\System Volume Information\{60e8a6de-b742-11e5-9bfc-001bdc0fc54f}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-01-11 04:02:49.527 Could not open C:\System Volume Information\{72ce50d2-b74a-11e5-9bfd-001bdc0fc54f}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-01-11 04:02:49.528 Could not open C:\System Volume Information\{d134b5e9-a5ce-11e5-9beb-001bdc0fc54f}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-01-11 04:02:49.528 Could not open C:\System Volume Information\{ff234f02-b306-11e5-9bef-001bdc0fc54f}{3808876b-c176-4e48-b7ae-04046e6cc752}
2016-01-11 04:02:53.390 Could not open C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Current Session
2016-01-11 04:02:53.390 Could not open C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
2016-01-11 04:02:53.393 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOCK (virus scan failed)
2016-01-11 04:02:53.408 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOCK (virus scan failed)
2016-01-11 04:02:55.949 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\GCM Store\LOCK (virus scan failed)
2016-01-11 04:02:55.977 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.com_0.indexeddb.leveldb\LOCK (virus scan failed)
2016-01-11 04:02:56.012 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cfhdojbkjhnklbpkdaibdccddilifddb\LOCK (virus scan failed)
2016-01-11 04:02:56.020 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cmedhionkhpnakcndndgjdbohmhepckk\LOCK (virus scan failed)
2016-01-11 04:02:56.026 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dkigkllnlkoblfbgfnfngfcnhmndonjm\LOCK (virus scan failed)
2016-01-11 04:02:56.033 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\elioihkkcdgakfbahdoddophfngopipi\LOCK (virus scan failed)
2016-01-11 04:02:56.062 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Managed Extension Settings\cfhdojbkjhnklbpkdaibdccddilifddb\LOCK (virus scan failed)
2016-01-11 04:02:56.707 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOCK (virus scan failed)
2016-01-11 04:02:56.722 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOCK (virus scan failed)
2016-01-11 04:02:56.739 Could not check C:\Users\Nathan\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dkigkllnlkoblfbgfnfngfcnhmndonjm\LOCK (virus scan failed)
2016-01-11 04:06:00.489 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2016-01-11 04:06:00.490 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2016-01-11 04:06:01.873 Could not open C:\Windows\System32\config\BBI
2016-01-11 04:06:01.887 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2016-01-11 04:06:01.888 Could not open C:\Windows\System32\config\RegBack\SAM
2016-01-11 04:06:01.889 Could not open C:\Windows\System32\config\RegBack\SECURITY
2016-01-11 04:06:01.889 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2016-01-11 04:06:01.890 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2016-01-11 04:15:23.243 >>> Virus 'Troj/Bitcoin-O' found in file E:\$RECYCLE.BIN\S-1-5-21-3163850612-2172465220-4024923071-1000\$RNYH8DU\miners\bfgminer\miner.php
2016-01-11 04:15:27.169 >>> Virus 'Troj/Bitcoin-O' found in file E:\$RECYCLE.BIN\S-1-5-21-3163850612-2172465220-4024923071-1000\$RNYH8DU\miners\cgminer\miner.php
2016-01-11 04:17:12.235 Could not open LOGICAL:0006:00000000
2016-01-11 04:17:12.252 Could not open G:\
2016-01-11 04:17:12.260 Could not open LOGICAL:0007:00000000
2016-01-11 04:17:12.276 Could not open H:\
2016-01-11 04:17:12.284 Could not open LOGICAL:0008:00000000
2016-01-11 04:17:12.300 Could not open I:\
2016-01-11 04:17:12.308 Could not open LOGICAL:0009:00000000
2016-01-11 04:17:12.324 Could not open J:\
2016-01-11 04:17:12.332 Could not open LOGICAL:0019:00000000
2016-01-11 04:17:12.348 Could not open Z:\
2016-01-11 04:17:12.405 Could not open PHYSICAL:0082:0000:0000:0001
2016-01-11 04:17:12.409 Could not open PHYSICAL:0083:0000:0000:0001
2016-01-11 04:17:12.413 Could not open PHYSICAL:0084:0000:0000:0001
2016-01-11 04:17:12.417 Could not open PHYSICAL:0085:0000:0000:0001
2016-01-11 04:17:12.421 Could not open PHYSICAL:0086:0000:0000:0001
2016-01-11 04:17:12.421 The following items will be cleaned up:
2016-01-11 04:17:12.421 Mal/Generic-S
2016-01-11 04:17:12.422 Troj/Bitcoin-O
 
Update your Java version here: https://www.techspot.com/downloads/6463-java-se.html
Alternate download: http://www.java.com/en/download/manual.jsp

Note 1: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.
Note 2: If you're running 64-bit system make sure you install BOTH, 32-bit and 64-bit Java.

=====================================

Your computer is clean

1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download
51a5ce45263de-delfix.png
DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
  • Activate UAC (optional; some users prefer to keep it off)
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
  • Reset system settings
Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.

2. Make sure Windows Updates are current.

3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC), AdwCleaner and Junkware Removal Tool (JRT) weekly (you need to redownload these tools since they were removed by DelFix).

8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

11. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642

12. Please, let me know, how your computer is doing.
 
Well, the problem isn't gone, though my computer is noticeably faster. It's still trying to find some of it's temp files haha but it's re-learning. Issues started compounding shortly after I installed a new sound card which was to aid what seemed to be the mobo's built in sound card getting glitchy, although the Name Not Available thing only happened after a month or two with the card.

That being said, can't hate on free help, and I GREATLY appreciate the step by step and patience. Any way I can review you so others know you're a stellar "malware annihilator"?
 
Your kind words from your last reply are good enough.
Thank you :)

Your sound issue is definitely not malware related so you may want to create new topic in Windows forum.
 
You must log in or register to reply here.

Similar threads

Z
Sony's latest PS5 beta update brings AI noise cancellation to the controller
Replies
0
Views
155
zohaibahd
Z
A
Adobe's new audio AI tool can isolate voices and other sounds in recordings
Replies
0
Views
266
Alfonso Maruccia
A
Shawn Knight
Google is adding podcasts to YouTube Music
Replies
4
Views
448
Plutoisaplanet
Plutoisaplanet

Latest posts

Back