Step 01 and step 02 are not working (virus cannot be detected), so I followed the third steps and here are the details of the computer file logs generated.
Farbar Recovery Scan Tool (FRST) (x86) Version: 01/02/2018 Performed by Deepak (administrator) on DEEPAK-PC 17:39:20) Running (01.11.2018 from C: Users Deepak Downloads Loaded profiles: Deepak (Available profiles: Deepak) Platform: Microsoft Windows 7 Ultimate Service Pack 5 (X86) Language: US English Internet Explorer version 19 (default browser: Chrome) Startup mode: normal Farbar Recovery Scan Tool Tutorial: http://www.geekstogo.An com / forum / topic / 335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool /
(If the entry is safe in the patch list, the operation will be closed. The file will not be moved.)
(TeamViewer GmbH) C: Program Files TeamViewer TeamViewer_Service.exe (Malwarebytes) C: Program Files Malwarebytes Anti-Malware MBAMService.exe (Skillbrains) C: Program Files Skillbrains lightshot 5.4.0.35 Lightshot.exe (Oracle Corporation) C: Program Files Common Files Java Java Update jusched.exe (Google Inc.) C: Program Files Google Update 1.3.33.7 GoogleCrashHandler.exe (f.lux Software LLC) C: Users Deepak AppData Local FluxSoftware Flux flux.exe (Malwarebytes) C: Program Files Malwarebytes Anti-Malware mbamtray.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe (Microsoft Corporation) C: Windows Microsoft.NET Framework v4.0.30319 mscorsvw.exe (Malwarebytes) C: Program Files Malwarebytes Anti-Malware mbam.exe (Google Inc.) C: Program Files Google Chrome Application chrome.exe
(If a specific entry is in the hotfix list, all registry entries are restored or deleted by default. The file cannot be moved.)
(If there is an addition to the hotfix list because it is a registry entry, it will be converted to deletedor restored to default.)
Internet Explorer: =================== HKU S-1-5-21-3322282323-1521124264-3092823622-1000 Software Microsoft Internet Explorer Main, start page redirect cache = hxxp: //www.msn.Java ™ com / en-in / ? ocid = iehp bho: SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C: Program Files Java jre1.8.0_151 bin ssv.dll [2018-01-10] (Oracle Corporation) BHO: Java Plugin ™ 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> Files Java jre1 c: program.8.0_151 bin jp2ssv.dll [2018-01-10] Group )
FireFox: ======== FF (Oracle DefaultProfile: o1rqh4ku.default FF ProfilePath: C: Users Deepak AppData Roaming Mozilla Firefox Profiles o1rqh4ku.default [2018-01-11] FF Plugin: @ java.com / DTPlugin, version = 11.151.2 -> C: Program Files Java jre1.8.0_151 bin dtplugin npDeployJava1.dll (Oracle [2018-01-10] Corporation) FF Plugin: @ java.com / JavaPlugin, version = 11.151.2 -> C: Program Files Java jre1.8.0_151 bin plugin2 npjp2.dll [10.01.2018] (Oracle Corporation) FF @tools plugin: .google.com / Google Update; version = 3 -> C: Program Files Google Update 1.3.33.7 npGoogleUpdate3.dll [2018-01-01] (Google Inc.) FF Plugin: @ tools.google.com / Google Update; version = 9 -> C: Programs Google Update 1.3.33.7 npGoogleUpdate3.dll [2018-01-01] (Google Inc.) FF Plugin: Adobe Reader C: Program Files -> Files Adobe Acrobat Reader DC Reader AIR nppdf32.dll [2017-11-05] (Adobe Systems Inc.)
Chrome: ======= CHR Profile: C: Users Deepak AppData Local Google Chrome User Data Default [2018-01-11] Expanded Ne CHR: (Slides) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions aapocclcgogkmnckokdopfmhonfmgoek [2018-01-01] Extension CHR: – (docs) C: Users Deepak AppData Local Google Chrome User Data Default Extensions aohghmighlieiainnegkcijnfilokake [2018-01-01] CHR extension: (Google Drive) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions apdfllckaahabafndbhieahigkjlhalf [2018-01-01] Extension CHR: (YouTube) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-01] Extension CHR: (Flikover) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions bpchjdomogcnjcpiommjlhgmngalhppb [01/10/2018] Extension CHR: (Tables) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions felcaaldnbdncclmgdcncolpebgiejap [2018-01-01] Extension CHR: (FlikoverTwo) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions fkdgnchibkdnlcffkafniolmfiahehjh [2018-01-01] CHR Extension: (Google Docs Offline) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-02] Extension CHR: (Chrome Web Store Payments) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions nmmhkkegccagdldgiimedpiccmgmieda [2018-01-01] CHR extension: (Gmail) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions pjkljhegncpnkpknbcohdijeoejaedia [2018-01-01] Extension CHR: (Chrome Media Router) – C: Users Deepak AppData Local Google Chrome User Data Default Extensions pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-01-01]
(If your path is on the hotfix list, it will most likely be removed from the registry. The folder will not be moved unless it is placed separately.)
MBAM R2 service; C: Program Files Malwarebytes Anti-Malware mbamservice. [4563920 exe Amazon.de] (Malwarebytes) R2 TeamViewer; C: Program Files TeamViewer TeamViewer_Service.exe 12/15/2017] [10945776 (TeamViewer GmbH) R2 WinDefend; C: Program Files Windows Defender mpsvc.dll [680960 2016-05-16] (Microsoft Corporation)
(If the entry is in the hotfix list, it is removed from the computer. The file does not move, as shown separately.)
R1 ES protection driver; C: Windows system32 drivers mbae.sys [59896 2017-11-29] () chameleon R2 MBAM; C: Windows System32 Drivers MbamChameleon.sys [168376 12/30/2017] (Malwarebytes) R3 C: Windows System32 DRIVERS farflt mbamfarflt; .sys 01/11/2018] [91576 (Malwarebytes) MBAM R3 protection; C: Windows System32 DRIVERS mbam.sys 2018-01-11] [40376 (Malwarebytes) R3 MBAMSwissArmy; C: Windows System32 Drivers mbamswissarmy.sys [221112 2018-01-11] (Malwarebytes) R3 MBAMWebProtection; C: Windows System32 DRIVERS mwac.sys [65824 (Malwarebytes) R3 2018-01-11] MP sensor; C: Windows System32 DRIVERS ASACPI. [5810 sys 2004-08-13] () C3-VGPU; System32 drivers rdvgkmd.sys [X] S1 ZAM; ?? C: Windows System32 drivers zam32.sys [X] S1 ZAM_Guard; ?? C: Windows System32 drivers zamguard32.sys [X]
(If an entry is clearly in the hotfix list, it is sometimes removed from the registry. Do not move the file unless it is listed separately.)
(If there is another entry in the patch list, that particular file / folder will be moved.)
Fortect is the world's most popular and effective PC repair tool. It is trusted by millions of people to keep their systems running fast, smooth, and error-free. With its simple user interface and powerful scanning engine, Fortect quickly finds and fixes a broad range of Windows problems - from system instability and security issues to memory management and performance bottlenecks.
1. Download Fortect and install it on your computer
2. Launch the program and click "Scan"
3. Click "Repair" to fix any issues that are found
