New
#1
Upload the log files. So Cottonball can take a look at them.
@Cottonball
He didn't have the option to choose Repair your computer so I had him run the FRST tool inside SafeMode.
GilV37,
Just glanced at the thread in he BSOD forum...
In Safe Mode with Networking, please download a new copy of the Farbar Recovery Scan Tool
Select the 64-bit version.
Save it to your Desktop.
Please provide the FRST.txt in your reply. <<---
- Double-click the downloaded file to run it.
- When the tool opens click Yes to disclaimer.
- Press the Scan button.
- FRST64 makes a log (FRST.txt) in the same directory from which the tool is run (Desktop).
The first time the tool is run, it also makes another log: Addition.txt
Also post the Addition.txt in your reply. Just attach the one from the previous run.
AS requested, here are the two files.
Addition.txt
FRST.txt
amsecure.exe --->Click “Start” menu and go to “Run” option. Type-in the following text exactly as it is specified here:What is amsecure.exe? This word is a synonym to the rogue anti-spyware application called Internet Security 2013. This is the malicious application which we described in our previous article. Amsecure.exe is its core process that starts running on the attacked machine from the very first moments of system startup. All attempts of users to get rid of Internet Security 2013 virus turn out to be vain because they can’t terminate this amsecure.exe process. Thus, if one succeeds in stopping this dangerous process on the attacked machine, he/she will surely be able to completely remove the rogue.
taskkill.exe /F /IM amsecure.exe
This should stop the process of Internet Security 2013. (if you could not do it from the first attempt then try again).
Wait for cottonball to give you more instructions.
I did this twice, and still got the blue screen of Death.
GilV37
The step you did that Jacee had you do will not remove the rootkit you have. The rootkit is what is causing your BSOD
The step only stops the Internet Security 2013 from running.
GilV37,
That FRSt report is loaded with problems.
While I go thru it, please do the following in normal Windows or Safe Mode with Networking...whichever works:
Please download RogueKiller:
Tlcharger RogueKiller (Site Officiel)
When you get to the website, go to where it says:
(Download link) Lien de téléchargement:
Select the version with the x64. (Presuming that is what your system is.)
Click the dark-blue button to download.
Save to the Desktop.
Close all windows and browsers.
Right-click and select: Run as Administrator
At the program console, wait for the prescan to finish. (Under Status, it says: Prescan finished.)
Press: SCAN
When done, a report opens on the Desktop: RKreport.txt
Please provide the RKreport.txt (Mode: Scan) in your reply.
Bear with me, because the timing for all this has to be right, and the FRST fix has to follow RogueKiller, without any reboot in between.