Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

I need help with my Hijackthis log scan #276

Open
ingroudani opened this issue Jan 20, 2025 · 9 comments
Open

I need help with my Hijackthis log scan #276

ingroudani opened this issue Jan 20, 2025 · 9 comments
Labels
Cure PC

Comments

@ingroudani
Copy link

I got the blue screen of death on windows 10

Then I run Hijackthis scan after struggling with restarting my laptop.

Step 1: Logs

Step 2:

  1. What did you done before the problem occurs: navigating on Chrome
  2. What programs (browsers) affected by the problem: Windows 10
  3. Steps to reproduce: restart many time until the
  4. Expected behavior: _________________
  5. If applicable, add screenshots to help explain your problem.

Image

Thanks a lot
@Sandor-Helper
Copy link

Sandor-Helper commented Jan 20, 2025
edited
Loading

Hi and welcome,
I think you already have a CollectionLog-date-time.zip file, Please attach it to your next post.

@ingroudani
Copy link
Author

Hi and welcome, I think you already have a CollectionLog-date-time.zip file, Please attach it to your next post.

here is the log CollectionLog-2025.01.19-23.52.zip

CollectionLog-2025.01.19-23.52.zip

@Sandor-Helper
Copy link

This file:

C:\WINDOWS\system32\drivers\GoogleHaxm.sys

please upload to www.virustotal.com and post here link to analyze result.

@ingroudani
Copy link
Author

am grateful for your help.

https://www.virustotal.com/gui/file/a164abb68e0318465e2fdab21e72c610f3866739b481cd2eca3d87ccf27db4cc

@Sandor-Helper
Copy link

I apologize for the delay in replying.

Please get me more logs:

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce logs called FRST.txt and Addition.txt in the same directory the tool is run from.
  • Please attach the logs back here.

@ingroudani
Copy link
Author

here is the logs of fanbar .
thanks a lot

Addition.txt
FRST.txt

@Sandor-Helper
Copy link

If you know this file - GoogleHaxm.sys - do not follow the recommendations below.
If the file is unknown, we will try to delete it, as it often causes exactly these problems.
Just in case, a Restore Point will be made and it will be possible to restore the state of the system before the script was executed.

Temporarily turn off any antivirus.
Highlight following code:

Start::
CloseProcesses:
SystemRestore: On
CreateRestorePoint:
HKU\S-1-5-21-4188026348-1366600709-3576104063-1001\...\MountPoints2: {d8365774-8d6e-11ec-ac0c-cc2f7165564d} - "E:\SISetup.exe" 
Task: {C2EC1CD3-23A3-4D16-8B6B-AC3338FD7890} - System32\Tasks\superlocal => C:\Users\HP PRO\AppData\Roaming\AdvancedWordpad_beta\ScanDisp.exe [111080 2025-01-13] (IObit CO., LTD -> IObit)
C:\Users\HP PRO\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb
R1 googlehaxm; C:\WINDOWS\system32\drivers\GoogleHaxm.sys [250560 2025-01-02] (Microsoft Windows Hardware Compatibility Publisher -> Google)
S1 bglmvlvk; \??\C:\WINDOWS\system32\drivers\bglmvlvk.sys [X]
S1 bshiloph; \??\C:\WINDOWS\system32\drivers\bshiloph.sys [X]
S1 fhntzckt; \??\C:\WINDOWS\system32\drivers\fhntzckt.sys [X]
S1 gacpvexk; \??\C:\WINDOWS\system32\drivers\gacpvexk.sys [X]
S1 jnanbvgh; \??\C:\WINDOWS\system32\drivers\jnanbvgh.sys [X]
S1 ltkmarhe; \??\C:\WINDOWS\system32\drivers\ltkmarhe.sys [X]
S1 odjcfpzl; \??\C:\WINDOWS\system32\drivers\odjcfpzl.sys [X]
S1 ospzojkx; \??\C:\WINDOWS\system32\drivers\ospzojkx.sys [X]
S1 qwynwnsj; \??\C:\WINDOWS\system32\drivers\qwynwnsj.sys [X]
S1 riyrmvwd; \??\C:\WINDOWS\system32\drivers\riyrmvwd.sys [X]
S1 rsxjkxst; \??\C:\WINDOWS\system32\drivers\rsxjkxst.sys [X]
S1 snaglbkw; \??\C:\WINDOWS\system32\drivers\snaglbkw.sys [X]
S1 uihtrbtt; \??\C:\WINDOWS\system32\drivers\uihtrbtt.sys [X]
AV: 360 Total Security (Enabled - Up to date) {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
ExportKey: HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions
EmptyTemp:
Reboot:
End::

Copy highlighted text (right click - Copy).
Run FRST (FRST64) as Administrator.
Press Fix button once and wait. Program will create (Fixlog.txt). Attach it to the next post.

PC will reboot.

@ingroudani
Copy link
Author

Thank you very much for your help and guidance

I have installed Windows 11 instead of win10 with a format.

Again, I am very thankful for you help.

@Sandor-Helper
Copy link

Okay, that's a good solution too. Good luck!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Cure PC
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Sandor-Helper @ingroudani