Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

bsdriver.sys Adware

Virus Malware Adware

  • This topic is locked This topic is locked

#1
thatonezero

thatonezero

    New Member

  • Member
  • Pip
  • 5 posts

Hi! I've had trouble with this for days. Recently, my brother infected my computer with a virus. I've discovered it was known as Games Desktop. I managed to remove everything relating to this except for bsdriver.sys, which is disguising itself as a system driver and spontaneously installing programs to my computer. It's driving me insane! I've tried Norton, AVG, Avast, Malwarebytes Cleaner, and Adware Cleaner. Adware cleaner specifically detects it and says it removes it in the log, but if I scan again it just comes back with each reboot.

 

I'm running the latest Win10 x64 build. Please, help quick!


  • 0

Advertisements


#2
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,797 posts
Hi! My name is zep516 and Welcome to Geekstogo!
I'll do the best I can to resolve your computer issue
Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, don't continue Stop and ask! Never be afraid to ask questions! :)

Download this version of the tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
and save it to the Desktop. Right click and run as administrator. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please also paste it to your reply.
  • 0

#3
thatonezero

thatonezero

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

Sorry, I was trying to see fixes from elsewhere on the forum. I think that the bsdriver file is gone, (no clue how I got rid of it) but I found an extension that is also malicious in Chrome. It isn't listed under the list of extensions, but I found a thread where I identified it as BuyNSave.

 

Attached File  FRST.txt   795.12KB   131 downloads

 

Attached File  Addition.txt   78.75KB   98 downloads


  • 0

#4
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,797 posts
Shopper-Z also installs bsdriver.sys

Shopper-Z is an adware program that displays intrusive advertisements in web sites that you visit.

Let me have some time to look over logs.
  • 0

#5
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,797 posts
Hello,

There's just left over stuff in the logs and we will clean it up. Not seeing anything else.

Download the enclosed Attached File  fixlist.txt   1.23KB   214 downloads file. Save it in the location FRST64 is--> (C:\Users\Jake\Downloads). Run FRST64 and click on the Fix button. Wait until finished.

The tool will make a log in the location FRST64 is, (Fixlog.txt). Please post it to your reply.
  • 0

#6
thatonezero

thatonezero

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

Attached File  Fixlog.txt   4.83KB   171 downloads


  • 0

#7
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,797 posts
How is everything now ?
  • 0

#8
thatonezero

thatonezero

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

AdwCleaner still lists it in the registry tab and in the folder tab.

It finds a files named "lmjegmlicamnimmfhcmpkclmigmmcbeh", which is the extension name of BuyNSave. It isn't listed under Chrome's extensions tab, however.


Edited by thatonezero, 20 July 2015 - 08:40 PM.

  • 0

#9
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,797 posts

AdwCleaner still lists it in the registry and under Chrome.


Are there any symptoms on the computer ?


Can you post AdwCleaner log, It's at (C:\AdwCleaner ).
  • 0

#10
thatonezero

thatonezero

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

I just realized that the extension ID I showed is for Google Drive, which, for some reason, is being displayed on AdwCleaner. I guess I should ignore that. It's fixed then, I guess. Thank you for all your help.


  • 0

#11
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,797 posts
You're welcome

You should remove all the tools and delete the logs we / you created. I have an automated tool to do it, but I'm a bit Leary to use it on Windows 10 as I'm not a 100 Percent familiar with it.
  • 0

#12
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,797 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.

Thanks
Joe :)
  • 0






Similar Topics


Also tagged with one or more of these keywords: Virus, Malware, Adware

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP