Author Topic: Win32:Evo-gen [Susp] (Read 81122 times)

REDACTED · « **Reply #45 on:** October 05, 2014, 02:14:38 PM »

Step 4 :

Quote

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.0 (10.05.2014:1)
OS: Windows 7 Ultimate x86
Ran by Benji144 on 05/10/2014 at 14:00:53,78
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\update wiseenhance
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\util wiseenhance
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_1_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\updateWiseEnhance_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\updateWiseEnhance_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\WiseEnhance_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\WiseEnhance_RASMANCS

~~~ Files

~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{0237E46B-0EE5-4E99-B6EB-C0713FBC91AA}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{03A3E413-FFA2-4362-AE93-7D4B02683723}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{089FDAAF-717E-44DE-9C08-F7F4B514BB8F}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{0BDF930B-2DD1-4249-BEBA-228BC3FF1F76}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{0DA51FB0-50C8-426E-A775-251BE7B2A94D}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{12BBA14F-A0D6-4FC6-8B86-5871F9E66F12}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{12C777D5-81A4-415A-A485-7066225CD017}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{13F0390E-1263-4859-ACB9-7FC15EF147B2}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{16903136-1CED-45D3-BBF0-5468BF8F9AB0}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{17E2E323-7B64-4CC5-9BEC-1F698987BB4E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{1AC4B529-6D2D-46EA-A38C-2A689A24FC34}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{1DF39F6C-37F7-4E72-BADE-E94AA58B0D00}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{212657FF-4BF7-464A-8A8F-DFBF27C77656}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{226A106E-359D-419F-9296-76BDC161DFBC}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{2281AE07-C794-40C0-A817-2A9D09FE89BC}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{22F3DA0A-0584-4C55-B9A2-85F29E291C84}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{26505F07-3A6F-4CCC-9770-3551DB7B5353}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{28F99112-9A7D-4D92-8281-3D95C81C014F}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{295C9630-9AB4-4B77-AB50-B92B2283979B}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{2EAFF508-C462-4CF0-99D4-0DA388FC7086}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{303A4FE7-9D47-48D1-9E16-68182D54B396}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{32AC0B16-0488-4020-8BFD-9F9C1C6B3FDB}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{358BC083-1405-43B9-B318-B480EA5D8F2B}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{3835337A-0ACE-44B3-A28D-F4035693886F}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{39DD1F34-CA71-4AF1-BCC1-C8B15FE7D191}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{3A5A4DA6-873F-41E1-B304-BD4E6A2EA0D4}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{3B0237D1-6B61-421A-9E2C-308A6D7ADD63}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{3BAA8E0C-9A1B-4625-B074-05F32C6D1492}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{3CDD1183-06B4-47FB-9004-4A0150A1B329}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{3F5AD229-DCDB-4AF8-BF39-1DEC0DD0CCD7}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{403087E7-A415-4111-927E-8BF240F2C41A}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{404F753D-2E50-4154-B331-C91405034BE3}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{41F2513F-53D5-4BF4-9445-8E919A751ADB}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{41F9BFB6-8953-4433-8F87-AEA2192E3B01}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{4359463D-D300-4E42-BD61-AD09EA2895D5}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{4CB63576-4D03-41F4-9A37-799B7E11ECA0}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{4FE588E1-603D-4A15-BCD3-DA0A7D8F7C9F}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{50F31BAC-659F-4EF5-9C6F-E4B79DCAAFC2}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{5148D5CB-6A74-4608-8A7A-738461827D47}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{546EBC14-7E27-4B6B-8686-1862006BC2A7}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{59A2906F-1690-4EC9-B764-F515BB85710B}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{5CA34297-E40E-4949-BD6E-AE25B4E3CEB4}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{5CBF1D2A-8C7C-4E2D-95CE-63530BAD4113}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{5CC2E2F6-01CC-4239-A607-22A000762CCE}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{6038CC9B-DDD6-4BB9-8E03-70E025481D2E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{6344F0E6-C6E7-48FC-8C38-FF0EAE427DD1}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{63E1EEF4-2429-4CAB-BA2B-98CBC3A76900}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{648D532E-D855-4706-ACBA-EAC8975FD3D5}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{666EB1EF-DAB9-4214-B50A-FE5D403D2E65}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{6730985D-55F2-4378-9C3F-BAE75F35F502}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{69BB1938-902E-4FDE-AF37-76E0E4C3922A}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{6D017291-BD0B-4F89-ACDC-5CB26BB94199}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{6DE92DE8-CC02-4A2E-8B01-F49FEDD09820}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{6E7E3F0C-A745-431D-A8CF-7B685C8CFBBC}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{737A7057-3FE1-4D0B-8F2F-C0659D7CE86B}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{73DE5629-F52F-4B9D-9A6E-A381E036F2FC}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{74960338-A13F-4A15-B7BB-F8CA18A976BE}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{77CC481A-BF6B-479B-B59C-7BB48BCF58E9}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{7D4035BB-7323-4B49-8112-67EF4483726A}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{7D7CA2BA-36B1-4842-9949-6ACBF46327BD}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{7DE9470A-3E86-4208-9415-0B6168E01032}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{83509F70-6C34-4192-827F-77C156EDD619}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{83F73102-33C0-4D0D-B49F-18C5677E00CC}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{852E6638-6A24-447E-8659-9102C9D16888}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{87669F00-B4EB-4446-A1A6-97522362A01B}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{8AC2961B-73D4-405E-8464-96D9122C58B1}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{8D58CC9B-550C-4049-B6C5-D50ADFE19483}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{8EFD2788-34BD-430A-B4B1-EC3B6B12C4A5}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{92799248-2BEB-440E-A5E4-DB5FF5089804}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{92F3890A-AB11-4B87-99FE-FA66BBBFA59D}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{936753F9-D5D3-463E-821F-C0F55B1BFA8E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{940EC267-AE77-4B73-BBCA-6401F3FB30AF}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{94ECD95E-0AE0-4DA7-8DFF-809BB08EB718}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{A144E5A7-7D4A-437B-992C-7A39C2F4EFB2}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{A32BBA88-2051-4097-8F5E-41692D1DAC8F}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{A6AF2DF6-CF18-411B-809C-1958D6A55874}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{AA64703B-F15B-44FB-8AD7-E12604B68CDD}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{AAF0B92F-9A34-4F98-AC86-FA36614CDD52}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{ACF6A845-A54A-4BF6-9440-F3A9073054E9}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{AF0F0812-9F9A-424A-91AE-D1FEDF48520C}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{B145003A-3E41-4EF9-B5EE-4C01949B7563}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{B16AFE4B-523E-4177-9E78-656C1F28A951}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{B41C0F03-BEC1-414B-B7C9-307591D83AD8}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{B84C0AFD-4C9F-4F63-AFC2-86CA413614C4}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{C37D7421-E531-4099-A34F-936461FFB21F}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{C47036E3-FC62-43A8-B181-5E9D76A64F4E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{C54F6E41-206F-4271-AF86-EB05C10BCE42}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{C5F760E8-287E-4170-B42C-EF869031C885}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{C8435BFA-5132-4144-8D56-96A5DD7A00E0}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{C890EBF9-1DD5-49BB-855E-03E9A757611F}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{CEB124EB-4618-4C9E-8921-E74D2840F5FB}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{CF118129-5DED-44B0-8F04-DA21CBD860D5}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{CF37EC1A-0B30-4678-9842-3B7A81EC1065}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{CFFF7D60-161E-4FBF-B8D0-CBAB49C4CD3A}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{D001EDCA-C138-44C8-9F6B-FE4041F7DB8C}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{D14CC9A3-69B5-49C4-A815-BEF597B26465}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{D5EED371-7DCF-445A-B5FC-DD708186EB2D}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{D8E1B4C7-AD36-4492-BA2C-3D97AE118A7E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{DCCA8AE5-B619-412B-8D41-C76FCBBDB6B2}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{DE4C8164-D0CE-4E2D-AF9D-F44EF7E55DF0}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{DE4D0483-1761-4637-9DB5-DF1924A3850A}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{DF383683-C14E-40B9-9DE0-6674EC321F69}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{DFEE1369-DC76-4FE0-A65E-FBDD4D72435E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{E0257A65-4292-49AC-9081-A2382025DBC9}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{E3D6CB5D-660A-4295-9573-ABE0E65D8E3E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{E604CB47-4547-4BC5-BECC-23AD81731FBE}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{E6397EE5-76DA-444A-BF76-43AB854920E0}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{E8D3A853-4360-41D7-A686-11F6826AC593}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{EBF94998-691C-48D5-A221-A3278E90408E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{ECD6037D-A674-4C61-9D35-C635F91BEF03}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{EF519791-9C87-43F4-A046-AFCB857BCF70}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{F228563B-A39A-4702-A4E9-63C40BA0637E}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{F285D864-2BDF-4D77-B4AF-B41A727FC980}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{F68B6DE7-4046-4CD3-BC00-7B276B51DA87}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{F6ED6545-4254-46C0-BE4D-DA31ADE9FAEA}
Successfully deleted: [Empty Folder] C:\Users\Benji144\appdata\local\{FC804018-29F7-47C1-AAEE-51EF1BD120E6}

~~~ FireFox

Successfully deleted: [File] C:\user.js
Emptied folder: C:\Users\Benji144\AppData\Roaming\mozilla\firefox\profiles\f1ybergn.default-1398531465893\minidumps [34 files]

~~~ Chrome

Successfully deleted: [Folder] C:\Users\Benji144\appdata\local\Google\Chrome\User Data\Default\Extensions\ejocekekgcaldnmjngfdbmbeebcekelc

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05/10/2014 at 14:02:18,67
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

REDACTED · « **Reply #46 on:** October 05, 2014, 06:23:14 PM »

How is your PC performing? I require the aswMBR and RogueKiller logs as well.

REDACTED · « **Reply #47 on:** October 06, 2014, 12:28:41 AM »

What is "aswMBR" ? I didn't find any software like this.

Actually, I think it's better since my first post. My computer didn't switch on with any malware alert from Avast. I think everything is ok now.
Thanks for all !!!

(I attached the roguekiller log)

REDACTED · « **Reply #48 on:** October 06, 2014, 09:06:04 AM »

Hi,

Step #5 ESET Online Scanner
Disable your security programs which includes but not limited to anti-virus, anti-malware, anti-spyware et cetera. Peruse this for additional information.
- Download esetsmartinstaller_enu.exe by clicking here.
- Right-click on the program and choose Run as administrator.
- Accept their terms and condition and proceed.
- Install Add-On/Active X if prompted.
- From the Computer Scan Setting --
  - Enable detection of potentially unwanted application
- Click on Advanced Setting--
  - Uncheck the following box --
  - - Remove Found Threats
  - Check the following boxes --
  - - Scan archives;
    - Scan for potentially unsafe applications
    - Enable Anti-Stealth Technology
- Click on Start and wait for the virus signature database to update.
- The online scan will begin automatically and can take several hours.
  - Note: Do not touch either the Mouse or keyboard during the scan. Otherwise it may stall.
- After the Scan finishes --
- - If no threats were found:
    - Put a checkmark in Uninstall application on close.
    - Close the program and report that nothing was found
  - If threats were found:
    - Open the file located in C:\Program Files\ESET\ESET Online Scanner\log.txt (32-bit) or C:\Program Files (x86)\ESET\ESET Online Scanner\log.txt (64-bit).
    - Attach the log file in your next reply.
Note: Enable your security programs afterwards.

Required Log(s):
- ESET Scan Log

Regards,
Valinorum

Author Topic: Win32:Evo-gen [Susp] (Read 81122 times)

REDACTED

Re: Win32:Evo-gen [Susp]

REDACTED

Re: Win32:Evo-gen [Susp]

REDACTED

Re: Win32:Evo-gen [Susp]

REDACTED

Re: Win32:Evo-gen [Susp]