Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Problem to eliminate virus&malwares

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Problem to eliminate virus&malwares

Unread postby argamis » September 3rd, 2012, 8:48 pm

My sister has been using her desktop for half year without any anti-virus or malware programs. Yesterday I installed bitdefender and tried to remove and guys.
Bit defender asked us to get in to rescue mode to remove detected viruses and malwares. However we couldn't reach rescue mode because computer said "application cannot be run because of \bdr-ld01.mbr and so on. Now every time I boot the computer I have to select either to boot to windows7 or bitdefender rescue mode every time and its very annoying and still couldn't get rid of viruses. I formatted hard drive and reinstalled windows but still would solve the problem. Thus I visited this website to get helps and advice. Help will be very very much appreciated. Thank you


.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7601.17514
Run by Jinuk at 17:33:52 on 2012-09-03
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8087.5502 [GMT -7:00]
.
AV: Bitdefender Antivirus *Enabled/Updated* {98CD50CE-5097-4098-9669-6C401FB3969C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Bitdefender Antispyware *Enabled/Updated* {23ACB12A-76AD-4F16-ACD9-57326434DC21}
FW: Bitdefender Firewall *Enabled* {A0F6D1EB-1AF8-41C0-BD36-C575E160D1E7}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
C:\Program Files (x86)\msi\ODD Monitor\ODD_Monitor.exe
C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Jinuk\Downloads\FRST64.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files (x86)\Riot Games\League of legends\setup.exe
C:\Users\Jinuk\AppData\Local\Temp\{7C16F1D7-3329-40DB-9B0A-1221591684CC}\ISBEW64.exe
C:\Users\Jinuk\AppData\Local\Temp\{7C16F1D7-3329-40DB-9B0A-1221591684CC}\ISBEW64.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit=userinit.exe
mRun: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} - hxxp://support.dell.com/systemprofiler/ ... emLite.CAB
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{302ED913-9ACC-4DAF-AAD1-BE1FF5D723DA} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{710F39D8-F59E-4366-AAE8-2B12F8C33609} : DhcpNameServer = 192.168.15.1
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
mRun-x64: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Jinuk\AppData\Roaming\Mozilla\Firefox\Profiles\d6pnkmdd.default\
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
.
============= SERVICES / DRIVERS ===============
.
R0 avc3;avc3;C:\Windows\system32\DRIVERS\avc3.sys --> C:\Windows\system32\DRIVERS\avc3.sys [?]
R0 gzflt;gzflt;C:\Windows\system32\DRIVERS\gzflt.sys --> C:\Windows\system32\DRIVERS\gzflt.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [2012-9-3 93160]
R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2012-9-3 103504]
R1 BDVEDISK;BDVEDISK;C:\Windows\system32\DRIVERS\bdvedisk.sys --> C:\Windows\system32\DRIVERS\bdvedisk.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2012-9-3 98208]
R2 MSI_ODD_Service;MSI_ODD_Service;C:\Program Files (x86)\msi\ODD Monitor\ODD_Monitor.exe [2011-10-4 76800]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2012-9-3 2253120]
R2 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe [2012-9-3 95184]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-20 381248]
R2 UPDATESRV;Bitdefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [2012-9-3 68416]
R3 avchv;avchv Function Driver;C:\Windows\system32\DRIVERS\avchv.sys --> C:\Windows\system32\DRIVERS\avchv.sys [?]
R3 avckf;avckf;C:\Windows\system32\DRIVERS\avckf.sys --> C:\Windows\system32\DRIVERS\avckf.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 NTIOLib_X64;NTIOLib_X64;C:\Program Files (x86)\msi\ODD Monitor\NTIOLib_X64.sys [2010-1-18 14136]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0);C:\Windows\system32\DRIVERS\rusb3hub.sys --> C:\Windows\system32\DRIVERS\rusb3hub.sys [?]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0);C:\Windows\system32\DRIVERS\rusb3xhc.sys --> C:\Windows\system32\DRIVERS\rusb3xhc.sys [?]
S3 BDSandBox;BDSandBox;\??\C:\Windows\system32\drivers\bdsandbox.sys --> C:\Windows\system32\drivers\bdsandbox.sys [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-9-3 114144]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\drivers\nusb3hub.sys --> C:\Windows\system32\drivers\nusb3hub.sys [?]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\drivers\nusb3xhc.sys --> C:\Windows\system32\drivers\nusb3xhc.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S4 BdDesktopParental;Bitdefender Desktop Parental Control;C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [2012-9-3 63784]
.
=============== Created Last 30 ================
.
2012-09-04 00:32:22 -------- d-----w- C:\Riot Games
2012-09-04 00:24:57 -------- d-----w- C:\FRST
2012-09-04 00:08:08 -------- d-----w- C:\ProgramData\Dumps
2012-09-03 23:49:01 464375 ----a-w- C:\ProgramData\1346715881.bdinstall.bin
2012-09-03 23:47:16 -------- d-----w- C:\ProgramData\BDLogging
2012-09-03 23:47:11 93160 ----a-w- C:\Windows\System32\drivers\BdfNdisf6.sys
2012-09-03 23:47:11 79952 ----a-w- C:\Windows\System32\drivers\bdsandbox.sys
2012-09-03 23:47:11 76944 ----a-w- C:\Windows\System32\drivers\bdvedisk.sys
2012-09-03 23:47:11 511328 ----a-w- C:\Windows\capicom.dll
2012-09-03 23:47:10 1721576 ----a-w- C:\Windows\System32\WdfCoInstaller01009.dll
2012-09-03 23:47:09 545064 ----a-w- C:\Windows\System32\drivers\avckf.sys
2012-09-03 23:47:09 258736 ----a-w- C:\Windows\System32\drivers\avchv.sys
2012-09-03 23:47:08 691896 ----a-w- C:\Windows\System32\drivers\avc3.sys
2012-09-03 23:46:21 -------- d-----w- C:\Users\Jinuk\AppData\Roaming\Bitdefender
2012-09-03 23:46:20 -------- d-----w- C:\ProgramData\Bitdefender
2012-09-03 23:45:16 -------- d-----w- C:\Users\Jinuk\AppData\Roaming\QuickScan
2012-09-03 23:45:08 138232 ----a-w- C:\Windows\System32\drivers\gzflt.sys
2012-09-03 23:45:07 329800 ----a-w- C:\Windows\System32\drivers\trufos.sys
2012-09-03 23:45:07 -------- d-----w- C:\Program Files\Bitdefender
2012-09-03 23:40:58 50706 ----a-w- C:\ProgramData\1346715648.bdinstall.bin
2012-09-03 23:40:08 70134 ----a-w- C:\ProgramData\1346714931.5136.bin
2012-09-03 23:36:45 -------- d-----w- C:\Program Files (x86)\Riot Games
2012-09-03 23:36:16 -------- d-----w- C:\Users\Jinuk\AppData\Local\PMB Files
2012-09-03 23:36:16 -------- d-----w- C:\ProgramData\PMB Files
2012-09-03 23:36:13 -------- d-----w- C:\Program Files (x86)\Pando Networks
2012-09-03 23:33:55 -------- d-----w- C:\Windows\Panther
2012-09-03 23:33:21 -------- d-----w- C:\Windows\System32\OEM
2012-09-03 23:33:21 -------- d-----w- C:\Hotfix
2012-09-03 23:33:21 -------- d-----w- C:\Drivers
2012-09-03 23:29:28 739 ----a-w- C:\ProgramData\1346714931.4312.bin
2012-09-03 23:29:28 739 ----a-w- C:\ProgramData\1346714931.2016.bin
2012-09-03 23:29:28 4737 ----a-w- C:\ProgramData\1346714931.4120.bin
2012-09-03 23:29:28 3042 ----a-w- C:\ProgramData\1346714931.3184.bin
2012-09-03 23:29:28 1515 ----a-w- C:\ProgramData\1346714931.2684.bin
2012-09-03 23:29:28 13533 ----a-w- C:\ProgramData\1346714931.1812.bin
2012-09-03 23:29:28 10112 ----a-w- C:\ProgramData\1346714931.4328.bin
2012-09-03 23:29:21 40910 ----a-w- C:\ProgramData\1346714931.4208.bin
2012-09-03 23:28:56 6209 ----a-w- C:\ProgramData\1346714931.4800.bin
2012-09-03 23:28:51 101740 ----a-w- C:\ProgramData\1346714931.4716.bin
2012-09-03 23:27:46 -------- d-----w- C:\Program Files\Common Files\Bitdefender
2012-09-03 23:20:40 2727424 ----a-w- C:\Windows\System32\drivers\athrx.sys
2012-09-03 23:20:40 2727424 ----a-w- C:\Windows\System32\athrx.sys
2012-09-03 23:20:40 -------- d-----w- C:\Program Files (x86)\Dell Wireless
2012-09-03 23:18:10 -------- d-----w- C:\Users\Jinuk\AppData\Local\Mozilla
2012-09-03 23:16:13 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-09-03 23:16:13 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-09-03 23:16:13 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2012-09-03 23:16:13 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-09-03 23:13:23 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-09-03 23:13:18 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-09-03 23:13:04 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-09-03 23:13:04 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-09-03 23:04:12 -------- d-----w- C:\Windows\SysWow64\NV
2012-09-03 23:04:12 -------- d-----w- C:\Windows\System32\NV
2012-09-03 22:58:25 -------- d-----w- C:\Program Files\Common Files\Intel
2012-09-03 22:58:25 -------- d-----w- C:\Program Files (x86)\Common Files\Intel
2012-09-03 22:56:51 -------- d-----w- C:\Program Files (x86)\msi
2012-09-03 22:54:17 -------- d-sh--w- C:\Windows\Installer
2012-09-03 22:53:18 74272 ----a-w- C:\Windows\System32\RtNicProp64.dll
2012-09-03 22:53:18 539240 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2012-09-03 22:53:18 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll
2012-09-03 22:48:30 -------- d-----w- C:\Dell
2012-09-03 22:46:36 -------- d-----w- C:\Users\Jinuk\AppData\Local\Diagnostics
.
==================== Find3M ====================
.
.
============= FINISH: 17:34:33.93 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 9/3/2012 3:44:35 PM
System Uptime: 9/3/2012 4:54:39 PM (1 hours ago)
.
Motherboard: Alienware | | 08PG26
Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz | CPU 1 | 3401/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 930 GiB total, 898.402 GiB free.
D: is FIXED (NTFS) - 1 GiB total, 0.67 GiB free.
E: is CDROM (CDFS)
F: is FIXED (NTFS) - 1397 GiB total, 435.071 GiB free.
G: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP3: 9/3/2012 3:53:05 PM - Installed Realtek Ethernet Controller Driver
RP4: 9/3/2012 3:54:27 PM - Installed MSI ODD Monitor
RP5: 9/3/2012 3:56:29 PM - Installed MSI ODD Monitor
RP6: 9/3/2012 4:12:52 PM - Windows Update
RP7: 9/3/2012 4:16:15 PM - Windows Update
RP8: 9/3/2012 5:32:10 PM - Installed League of Legends
.
==== Installed Programs ======================
.
Dell Wireless Driver Installation
Intel(R) Processor Graphics
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mozilla Firefox 15.0 (x86 en-US)
Mozilla Maintenance Service
MSI ODD Monitor
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
Pando Media Booster
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Renesas Electronics USB 3.0 Host Controller Driver
.
==== Event Viewer Messages From Past Week ========
.
9/3/2012 3:54:23 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {9C0BA3C1-2B67-45EB-BF69-BED9658D28D2} as /. The error: "740" Happened while starting this command: C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe -Embedding
.
==== End Of File ===========================
argamis
Active Member
 
Posts: 1
Joined: September 3rd, 2012, 8:37 pm
Advertisement
Register to Remove

Re: Problem to eliminate virus&malwares

Unread postby MWR 3 day Mod » September 7th, 2012, 1:26 pm

Hi,

We are sorry to see your topic is over three days old and no one has yet been able to respond and offer help.

If you still require assistance, please post a link to your topic in our Waiting for help with malware removal? forum, and our staff will make an effort to assist you as promptly as possible. Only post a LINK to this topic, DO NOT post your DDS log!

Please do not reply to this topic.

If you haven't posted within two days in the "Waiting for help with malware removal?" forum, we will assume you have been able to get assistance in other ways and this topic will be closed.
MWR 3 day Mod
MRU Undergrad
MRU Undergrad
 
Posts: 2534
Joined: April 4th, 2008, 8:40 am

Re: Problem to eliminate virus&malwares

Unread postby deltalima » September 9th, 2012, 10:57 am

Due to a lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: random/random and 68 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware