Follow up from this thread:
http://www.techsupportforum.com/foru...ck-964481.html
And this have more than enough logs and scan details
Caught the Simda rootkit. Help? - Virus, Trojan, Spyware, and Malware Removal Logs
Got a virus last Friday, Windows Defender identified as Win32.Simda. MalwareBytes cleaned most of it.
Windows Defender, MalwareBytes (anti-malware & anti-rookit), AdwCleaner, Hitman Pro, ESET Smart Security, Kaspersky Virus Removal Tool, Kaspersky TDSSKiller, RogueKiller, Microsoft Safety Scanner, RKill... nothing find any infection.
Safe mode don't change anything. Network works fine when booting on another HD/OS on the same computer.
The only symptoms I have are:
-Many domains blocked, in browser AND application. Anti-virus won't connect to databases, Windows update won't work, etc. List so far include: microsoft.com, eset.com, bleepingcomputer.com, virustotal.com, steampowered.com, gamespot.com, facebook.com, cnet.com, ign.com, probably tons of others. Facebook and Steam seems to connect, but it block when trying to connect to akamaihd.net for additional content. But other sites like youtube and reddit works just fine.
-If I create a new Windows user, it configure IE network setting to use a proxy (localhost:64955) and it wouldn't connect to any site, presumably because the virus service got cleaned out. Removing the proxy setting, I get the same domain blocked symptoms.
Your DDS utility tells me "DDS is not meant to be run in 'compatibility mode'. The program will now exit".
Same thing with the ESET Simda Cleaner Utility, it tells me I'm using an unsupported version of Windows.
Is there some registry key forcing compatibility mode?
GMER log attached, it found some things (that FRST/FSS/SystemLook wouldn't find).
http://www.techsupportforum.com/foru...ck-964481.html
And this have more than enough logs and scan details
Caught the Simda rootkit. Help? - Virus, Trojan, Spyware, and Malware Removal Logs
Got a virus last Friday, Windows Defender identified as Win32.Simda. MalwareBytes cleaned most of it.
Windows Defender, MalwareBytes (anti-malware & anti-rookit), AdwCleaner, Hitman Pro, ESET Smart Security, Kaspersky Virus Removal Tool, Kaspersky TDSSKiller, RogueKiller, Microsoft Safety Scanner, RKill... nothing find any infection.
Safe mode don't change anything. Network works fine when booting on another HD/OS on the same computer.
The only symptoms I have are:
-Many domains blocked, in browser AND application. Anti-virus won't connect to databases, Windows update won't work, etc. List so far include: microsoft.com, eset.com, bleepingcomputer.com, virustotal.com, steampowered.com, gamespot.com, facebook.com, cnet.com, ign.com, probably tons of others. Facebook and Steam seems to connect, but it block when trying to connect to akamaihd.net for additional content. But other sites like youtube and reddit works just fine.
-If I create a new Windows user, it configure IE network setting to use a proxy (localhost:64955) and it wouldn't connect to any site, presumably because the virus service got cleaned out. Removing the proxy setting, I get the same domain blocked symptoms.
Your DDS utility tells me "DDS is not meant to be run in 'compatibility mode'. The program will now exit".
Same thing with the ESET Simda Cleaner Utility, it tells me I'm using an unsupported version of Windows.
Is there some registry key forcing compatibility mode?
GMER log attached, it found some things (that FRST/FSS/SystemLook wouldn't find).
