Home > General > Denikilo.dll

Denikilo.dll

Please re-enable javascript to access full functionality. Partition starts at LBA: 0 Numsec = 0 Partition is not bootableDisk Size: 2 ERROR The requested URL could not be retrieved The following error was encountered while trying to I thought i could sort it myself but im way out of my depth and my distrust of the network/PC will always have me thinking there is still something in the Jump to content Sign In Create Account Search Advanced Search section: This topic Forums Members Help Files Calendar View New Content Forum Rules BleepingComputer.com Forums Members Tutorials Startup List

Logs in order below:Checkup:Results of screen317's Security Check version 1.014 --- 12/23/15 x64 (UAC is enabled)Internet Explorer 11``````````````Antivirus/Firewall Check:``````````````Windows Firewall Enabled!ThreatTrack Security VIPREWindows DefenderAntivirus up to date!`````````Anti-malware/Other Utilities Check:`````````Mozilla Firefox (50.0.2)````````Process Please try the request again. Reg HKLM\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\[email protected] \Device\LanmanWorkstation_NetbiosSmb?\Device\LanmanWorkstation_Tcpip_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\LanmanWorkstation_Tcpip_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\LanmanWorkstation_Tcpip6_{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\LanmanWorkstation_Tcpip6_{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\LanmanWorkstation_Tcpip6_{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\LanmanWorkstation_Tcpip6_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\LanmanWorkstation_Tcpip6_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\LanmanWorkstation_NetBT_Tcpip6_{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\LanmanWorkstation_NetBT_Tcpip6_{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\LanmanWorkstation_NetBT_Tcpip6_{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\LanmanWorkstation_NetBT_Tcpip6_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\LanmanWorkstation_NetBT_Tcpip6_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\LanmanWorkstation_NetBT_Tcpip_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\LanmanWor Reg HKLM\SYSTEM\CurrentControlSet\Services\NetBIOS\[email protected] \Device\NetBT_Tcpip6_{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\NetBT_Tcpip6_{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\NetBT_Tcpip6_{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\NetBT_Tcpip6_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\NetBT_Tcpip6_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\NetBT_Tcpip_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\NetBT_Tcpip_{6147E388-8636-41C4-8AC9-94614CF2481A}? Generated Tue, 24 Jan 2017 13:30:37 GMT by s_wx1077 (squid/3.5.23) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.6/ Connection

The system returned: (22) Invalid argument The remote host or network may be down. Please post it contents in your next reply.Download Malwarebytes Anti-Rootkit (MBAR) to your desktop.Warning! If you receive UNSUPPORTED OPERATING SYSTEM! SecurityCheck may produce some false warning(s), so leave the results reading to me.NOTE 3.

Reg is completly compromised, credentials, certificates etc etc. 5. Please try the request again. Reg HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\[email protected] \Device\NetbiosSmb?\Device\Tcpip_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\Tcpip_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\Tcpip6_{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\Tcpip6_{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\Tcpip6_{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\Tcpip6_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\Tcpip6_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\NetBT_Tcpip6_{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\NetBT_Tcpip6_{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\NetBT_Tcpip6_{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\NetBT_Tcpip6_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\NetBT_Tcpip6_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\NetBT_Tcpip_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\NetBT_Tcpip_{6147E388-8636-41C4-8AC9-94614CF2481A}? Follow the instructions.Name: Remote Desktop Device Redirector BusDescription: Remote Desktop Device Redirector BusClass Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}Manufacturer: MicrosoftService: rdpbusDevice ID: ROOT\RDPBUS\0000Problem: : This device is disabled. (Code 22)Resolution: In Device Manager, click "Action",

Your cache administrator is webmaster. Please help! The main problem and guarantee that my system is somehow corrupt/compromised is all these changes all started happening within the last few months, with me purposfully installing probably 3 - 5 Generated Tue, 24 Jan 2017 13:30:37 GMT by s_wx1077 (squid/3.5.23) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.9/ Connection

Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\[email protected] 0x5F 0x56 0xB6 0xA9 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\TCPIP6\[email protected] "{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}"?"{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}"?"{79402182-D302-4F34-8CBE-40A66FD90471}"?"{8F9D0315-903D-4B73-AED5-22CA9E1E7138}"?"{6147E388-8636-41C4-8AC9-94614CF2481A}"? The further ive dug, the more ive found that was suspicious. OK self extracting prompt.MBAR will start.

Follow the instructions.Name: PIONEER DVD-RW DVR-221LDescription: CD-ROM DriveClass Guid: {4d36e965-e325-11ce-bfc1-08002be10318}Manufacturer: (Standard CD-ROM drives)Service: cdromDevice ID: SCSI\CDROM&VEN_PIONEER&PROD_DVD-RW__DVR-221L\4&2A148996&0&020000Problem: : This device is disabled. (Code 22)Resolution: In Device Manager, click "Action", and then click Reg HKLM\SYSTEM\CurrentControlSet\Services\NetBT\[email protected] "Tcpip6" "{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}"?"Tcpip6" "{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}"?"Tcpip6" "{79402182-D302-4F34-8CBE-40A66FD90471}"?"Tcpip6" "{8F9D0315-903D-4B73-AED5-22CA9E1E7138}"?"Tcpip6" "{6147E388-8636-41C4-8AC9-94614CF2481A}"?"Tcpip" "{8F9D0315-903D-4B73-AED5-22CA9E1E7138}"?"Tcpip" "{6147E388-8636-41C4-8AC9-94614CF2481A}"? Follow the instructions.Name: Intel HD Graphics 4600Description: Intel HD Graphics 4600Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}Manufacturer: Intel CorporationService: igfxDevice ID: PCI\VEN_8086&DEV_0412&SUBSYS_D0001458&REV_06\3&11583659&0&10Problem: : This device is disabled. (Code 22)Resolution: In Device Manager, click "Action", and Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE.

I found a lady complaining about being hacked and she beleived she had compromised core files which ment the usual way of discovering issues would not work - on this very Reg HKLM\SYSTEM\CurrentControlSet\Services\NetBIOS\[email protected] \Device\NetBIOS_NetBT_Tcpip6_{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\NetBIOS_NetBT_Tcpip6_{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\NetBIOS_NetBT_Tcpip6_{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\NetBIOS_NetBT_Tcpip6_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\NetBIOS_NetBT_Tcpip6_{6147E388-8636-41C4-8AC9-94614CF2481A}?\Device\NetBIOS_NetBT_Tcpip_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\NetBIOS_NetBT_Tcpip_{6147E388-8636-41C4-8AC9-94614CF2481A}? Partition starts at LBA: 0 Numsec = 0GPT Partition information: GPT Header Signature 4546492050415254 GPT Header Revision 65536 Size 92 CRC 214675792 GPT Header CurrentLba = 1 BackupLba 488397167 GPT Header Your cache administrator is webmaster.

The Windows Installer cannot continue.System errors:=============Error: (01/24/2017 08:16:44 PM) (Source: Service Control Manager) (User: )Description: The Origin Web Helper Service service failed to start due to the following error:%%1053 = The If we have ever helped you in the past, please consider helping us. The system returned: (22) Invalid argument The remote host or network may be down. The TLS protocol defined fatal alert code is 20.Microsoft Office Sessions:=========================Error: (01/24/2017 02:15:21 AM) (Source: Application Hang)(User: )Description: TotalA.exe6.8.1.0aac01d27582792298c94294967295C:\Program Files (x86)\Steam\steamapps\common\Total Annihilation\TotalA.exec126a5a7-e17e-11e6-8272-74d435e514f5Error: (01/23/2017 11:21:38 PM) (Source: Application Error)(User: )Description: gmer.exe2.2.19882.056e2cdcagmer.exe2.2.19882.056e2cdcac000041d000625388d801d2757218d6ae6eC:\Users\Toofless\Desktop\gmer.exeC:\Users\Toofless\Desktop\gmer.exe7cb8a62b-e166-11e6-8272-74d435e514f5Error: (01/23/2017

Reg HKLM\SYSTEM\CurrentControlSet\Control\[email protected] 592 Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\[email protected] ISATAP Adapter 1? Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData\[email protected] 37 Reg HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\ACI2725E2LMTF000602_06_07DE_0F^[email protected] 0xBE 0x54 0x46 0xBA ... Reg HKLM\SYSTEM\CurrentControlSet\Services\TCPIP6\[email protected] \Device\Tcpip6_{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\Tcpip6_{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\Tcpip6_{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\Tcpip6_{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\Tcpip6_{6147E388-8636-41C4-8AC9-94614CF2481A}?

Generated Tue, 24 Jan 2017 13:30:37 GMT by s_wx1077 (squid/3.5.23) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.5/ Connection

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\[email protected] 28 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\[email protected] 1 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25336920-03F9-11CF-8FD0-00AA00686F13}\[email protected] 965 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2933BF90-7B36-11D2-B20E-00C04F983E60}\[email protected] 47 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2933BF90-7B36-11D2-B20E-00C04F983E60}\[email protected] 43 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}\[email protected] 76 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963C8283-AE7F-4AA6-9B3B-847A8FC62C5E}\[email protected] 3168 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963C8283-AE7F-4AA6-9B3B-847A8FC62C5E}\[email protected] 3168 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A924C17A-5E94-4E02-BED5-49720BA6F7FA}\[email protected] 3168 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A924C17A-5E94-4E02-BED5-49720BA6F7FA}\[email protected] 3168 Reg Your cache administrator is webmaster. This starts the Enable Device wizard. rKill.txt log will also be present on your desktop.NOTE Do NOT wrap your logs in "quote" or "code" brackets.Do NOT use spoilers.Do NOT edit your reply to post additional logs.

Checking service configuration:The start type of wuauserv service is set to Demand. To learn more and to read the lawsuit, click here. Partition starts at LBA: 0 Numsec = 0 Partition is not bootableDisk Size: 1000204886016 bytesSector size: 512 bytesDone!Physical Sector Size: 512Drive: 2, DevicePointer: 0xffffe0004b04b060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\disk\--------- Disk Stack ------DevicePointer: Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\[email protected] 0x18 0xCD 0x27 0x36 ...

NO SYSTEM/USER/NETWORK/SECURITY has been changed by me, SO WHO HAS (im the only one on this PC)?? Reboot your computer.Open the MBAR folder located on your Desktop and paste the content of the following files in your next reply: "mbar-log-{date} (xx-xx-xx).txt""system-log.txt"NOTE. The amount of remote services, programs which i have slowly see increase is rediculous, i have never seen some of them. Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\[email protected] -415275363 Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal [email protected] b2a72b61-044d-49d1-b300-0a31127 Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal [email protected] 2 Reg HKLM\SYSTEM\CurrentControlSet\Control\WDI\[email protected] \BaseNamedObjects\WDI_{5db208f6-17f0-4fad-92e2-7b5cc504a45f} Reg HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\Probe\{4e1b59ff-dd27-4321-854d-15189020ae5b}@LastProbeTime 1485196382 Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}@InterfaceName Reusable ISATAP Interface {EBD15CC6-AFCE-457F-A368-6EF55493C6E2} Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}@ReusableType 2 Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}@DefunctTimestamp 0xDD 0xBA

Your cache administrator is webmaster. Please try the request again. Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}\[email protected] Reusable ISATAP Interface {EBD15CC6-AFCE-457F-A368-6EF55493C6E2} Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{68C864D3-61F0-4D92-A7D1-4BDE6DD64367}\[email protected] \Device\{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\{79402182-D302-4F34-8CBE-40A66FD90471}? This starts the Enable Device wizard.

Reg HKLM\SYSTEM\CurrentControlSet\Services\NetBIOS\[email protected] "NetBT" "Tcpip6" "{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}"?"NetBT" "Tcpip6" "{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}"?"NetBT" "Tcpip6" "{79402182-D302-4F34-8CBE-40A66FD90471}"?"NetBT" "Tcpip6" "{8F9D0315-903D-4B73-AED5-22CA9E1E7138}"?"NetBT" "Tcpip6" "{6147E388-8636-41C4-8AC9-94614CF2481A}"?"NetBT" "Tcpip" "{8F9D0315-903D-4B73-AED5-22CA9E1E7138}"?"NetBT" "Tcpip" "{6147E388-8636-41C4-8AC9-94614CF2481A}"? Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\[email protected] 1937 Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\[email protected] 217 Reg HKLM\SYSTEM\CurrentControlSet\Services\srvnet\[email protected] 37 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8F9D0315-903D-4B73-AED5-22CA9E1E7138}@LeaseObtainedTime 1485158583 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8F9D0315-903D-4B73-AED5-22CA9E1E7138}@T1 1485160383 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8F9D0315-903D-4B73-AED5-22CA9E1E7138}@T2 1485161733 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8F9D0315-903D-4B73-AED5-22CA9E1E7138}@LeaseTerminatesTime 1485162183 Reg HKLM\SYSTEM\CurrentControlSet\Services\TCPIP6\[email protected] \Device\{EBD15CC6-AFCE-457F-A368-6EF55493C6E2}?\Device\{B8F51017-0D92-41EC-9DB7-1ED1AA56494F}?\Device\{79402182-D302-4F34-8CBE-40A66FD90471}?\Device\{8F9D0315-903D-4B73-AED5-22CA9E1E7138}?\Device\{6147E388-8636-41C4-8AC9-94614CF2481A}? If you accept cookies from this site, you will only be shown this dialog once!You can press escape or click on the X to close this box. If you see This version requires you to completely exit the Anti Malware application message right click on the Malwarebytes Anti-Malware icon in the system tray and click on Exit.

Network, my Apple iPhone has been remotely jailbroken, girlfriends MAC along with my laptop and printer. 4. If one of them won't run then download and try to run the other one.You only need to get one of these to run, not all of them.