[Root][TWRP][COTR][BOOTLOADERS]Kindle Fire Utility v0.9.9 (4/5/13) [1st Gen Only!]

sd_shadow said:

See this post
https://xdaforums.com/showpost.php?p=73801216&postcount=478

Sent from my Pixel using Tapatalk

Click to expand...

Click to collapse

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 4/28/18
Scan Time: 7:49 PM
Log File: cb66ba22-4b3e-11e8-a69a-386077e7149d.json
Administrator: Yes

-Software Information-
Version: 3.4.5.2467
Components Version: 1.0.342
Update Package Version: 1.0.4910
License: Free

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Luis-PC\Luis

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 312736
Threats Detected: 119
Threats Quarantined: 119
Time Elapsed: 33 min, 10 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 20
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\FASTDATAX TASK, Delete-on-Reboot, [2089], [407191],1.0.4910
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CBB1C130-2C01-461D-9831-2D08ED1A5F12}, Delete-on-Reboot, [2089], [407191],1.0.4910
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{CBB1C130-2C01-461D-9831-2D08ED1A5F12}, Delete-on-Reboot, [2089], [407191],1.0.4910
Adware.FastDataX.EncJob, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FastDataX_is1, Delete-on-Reboot, [2089], [407194],1.0.4910
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Delete-on-Reboot, [433], [-1],0.0.0
Adware.Tuto4PC, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\MICROSOFT\EWMON, Delete-on-Reboot, [3004], [411133],1.0.4910
Adware.FastDataX, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\FastDataX, Delete-on-Reboot, [4009], [484533],1.0.4910
PUP.Optional.Tuto4PC, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\MICROSOFT\wewewe, Delete-on-Reboot, [576], [339689],1.0.4910
Adware.Tuto4PC, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\MICROSOFT\BIGTIME, Delete-on-Reboot, [3004], [411132],1.0.4910
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\APreSam, Delete-on-Reboot, [3004], [451260],1.0.4910
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MPrForShutT, Delete-on-Reboot, [3004], [451257],1.0.4910
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\NSaveA, Delete-on-Reboot, [3004], [451259],1.0.4910
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\PrAmNP, Delete-on-Reboot, [3004], [451258],1.0.4910
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\PrIncub, Delete-on-Reboot, [3004], [451256],1.0.4910
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{78CFF7EF-744F-96AA-77C8-62F389096473}, Delete-on-Reboot, [394], [511696],1.0.4910
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{54C9AEE0-C82B-4616-A9AE-E3F6FC223CE9}, Delete-on-Reboot, [394], [511696],1.0.4910
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{54C9AEE0-C82B-4616-A9AE-E3F6FC223CE9}, Delete-on-Reboot, [394], [511696],1.0.4910
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{3D22BC61-7A68-5F97-6035-446A362EA859}, Delete-on-Reboot, [394], [511696],1.0.4910
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0F6D1896-8F1B-49BF-B03E-1C4FB38CEC81}, Delete-on-Reboot, [394], [511696],1.0.4910
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{0F6D1896-8F1B-49BF-B03E-1C4FB38CEC81}, Delete-on-Reboot, [394], [511696],1.0.4910

Registry Value: 7
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Delete-on-Reboot, [433], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Delete-on-Reboot, [433], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Delete-on-Reboot, [433], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Delete-on-Reboot, [433], [-1],0.0.0
Adware.Tuto4PC, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\MICROSOFT\EWMON|PARTNER, Delete-on-Reboot, [3004], [411133],1.0.4910
Adware.Tuto4PC, HKU\S-1-5-21-2774592961-2643736497-1890012436-1000\SOFTWARE\MICROSOFT\BIGTIME|PARTNER, Delete-on-Reboot, [3004], [411132],1.0.4910
Adware.FastDataX.EncJob, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CBB1C130-2C01-461D-9831-2D08ED1A5F12}|PATH, Delete-on-Reboot, [2089], [407189],1.0.4910

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 17
Adware.FastDataX.EncJob, C:\PROGRAM FILES (X86)\FASTDATAX, Delete-on-Reboot, [2089], [407194],1.0.4910
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\WEATHERINSPECT, Delete-on-Reboot, [3004], [419918],1.0.4910
Adware.Tuto4PC, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\6HDE6F1XRC, Delete-on-Reboot, [3004], [487473],1.0.4910
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\ad76a4d8-2bc7-0, Delete-on-Reboot, [649], [407181],1.0.4910
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\ad76a4d8-3a03-1, Delete-on-Reboot, [649], [407181],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\js, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\USERS\LUIS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\eunz05jy.default\EXTENSIONS\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233, Delete-on-Reboot, [1155], [450133],1.0.4910
Adware.FastDataX.EncJob, C:\Users\Luis\AppData\Local\FastDataX\log\installer, Delete-on-Reboot, [2089], [474798],1.0.4910
Adware.FastDataX.EncJob, C:\Users\Luis\AppData\Local\FastDataX\log, Delete-on-Reboot, [2089], [474798],1.0.4910
Adware.FastDataX.EncJob, C:\USERS\LUIS\APPDATA\LOCAL\FASTDATAX, Delete-on-Reboot, [2089], [474798],1.0.4910
Adware.Tuto4PC, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\BESTDOWNLOADER, Delete-on-Reboot, [3004], [515829],1.0.4910
Adware.Tuto4PC, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\BOOSTPC, Delete-on-Reboot, [3004], [515830],1.0.4910
Adware.Tuto4PC, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\CLEANCOMPUTERNEW, Delete-on-Reboot, [3004], [515831],1.0.4910
Adware.Tuto4PC, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\PUBLICHOTSP, Delete-on-Reboot, [3004], [515832],1.0.4910
Adware.Tuto4PC, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\SHUTDOWNTIME, Delete-on-Reboot, [3004], [515833],1.0.4910

File: 75
PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\ad76a4d8-2bc7-0\BITB85C.tmp, Delete-on-Reboot, [3817], [257931],1.0.4910
PUP.Optional.Amonetize.Gen, C:\PROGRAMDATA\ad76a4d8-3a03-1\BITB2EE.tmp, Delete-on-Reboot, [3817], [257931],1.0.4910
Adware.FastDataX.EncJob, C:\WINDOWS\SYSTEM32\TASKS\FASTDATAX TASK, Delete-on-Reboot, [2089], [407191],1.0.4910
Adware.FastDataX.EncJob, C:\PROGRAM FILES (X86)\FASTDATAX\UNINS000.DAT, Delete-on-Reboot, [2089], [407194],1.0.4910
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\bwpah.dll, Delete-on-Reboot, [2089], [407194],1.0.4910
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\FastDataX.exe, Delete-on-Reboot, [2089], [407194],1.0.4910
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\unins000.exe, Delete-on-Reboot, [2089], [407194],1.0.4910
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\unins000.msg, Delete-on-Reboot, [2089], [407194],1.0.4910
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\WEATHERINSPECT\CAST.CONFIG, Delete-on-Reboot, [3004], [419918],1.0.4910
Adware.Tuto4PC, C:\Program Files (x86)\WeatherInspect\4MH6CSEJ66WZYN4.exe.config, Delete-on-Reboot, [3004], [419918],1.0.4910
Adware.Tuto4PC, C:\Program Files (x86)\WeatherInspect\config.conf, Delete-on-Reboot, [3004], [419918],1.0.4910
Adware.Tuto4PC, C:\Program Files (x86)\WeatherInspect\RDZY7.exe.config, Delete-on-Reboot, [3004], [419918],1.0.4910
Adware.Tuto4PC, C:\Program Files (x86)\WeatherInspect\uninstaller.exe, Delete-on-Reboot, [3004], [419918],1.0.4910
Adware.Tuto4PC, C:\Program Files (x86)\WeatherInspect\uninstaller.exe.config, Delete-on-Reboot, [3004], [419918],1.0.4910
Adware.Wajam, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\S2S.EXE, Delete-on-Reboot, [433], [455164],1.0.4910
Adware.Tuto4PC, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\6HDE6F1XRC\OneTwo.exe.config, Delete-on-Reboot, [3004], [487473],1.0.4910
Adware.Tuto4PC, C:\Users\Luis\AppData\Local\Temp\6HDE6F1XRC\OneTwo.exe, Delete-on-Reboot, [3004], [487473],1.0.4910
Adware.Tuto4PC, C:\Users\Luis\AppData\Local\Temp\6HDE6F1XRC\SecondL.exe, Delete-on-Reboot, [3004], [487473],1.0.4910
Adware.Tuto4PC, C:\Users\Luis\AppData\Local\Temp\6HDE6F1XRC\SecondL.exe.config, Delete-on-Reboot, [3004], [487473],1.0.4910
Adware.Tuto4PC, C:\Users\Luis\AppData\Local\Temp\6HDE6F1XRC\up.exe, Delete-on-Reboot, [3004], [487473],1.0.4910
Adware.Tuto4PC, C:\Users\Luis\AppData\Local\Temp\6HDE6F1XRC\up.exe.config, Delete-on-Reboot, [3004], [487473],1.0.4910
PUP.Optional.BitsInstall.BITSRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\MICROSOFT\NETWORK\DOWNLOADER\QMGR0.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\APPLICATION DATA\MICROSOFT\NETWORK\DOWNLOADER\QMGR0.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.BitsInstall.BITSRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\MICROSOFT\NETWORK\DOWNLOADER\QMGR1.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\APPLICATION DATA\MICROSOFT\NETWORK\DOWNLOADER\QMGR1.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.BitsInstall.BITSRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\MICROSOFT\NETWORK\DOWNLOADER\QMGR0.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\MICROSOFT\NETWORK\DOWNLOADER\QMGR0.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.BitsInstall.BITSRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\MICROSOFT\NETWORK\DOWNLOADER\QMGR1.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.BitsInstall.BITSRST, C:\PROGRAMDATA\MICROSOFT\NETWORK\DOWNLOADER\QMGR1.DAT, Delete-on-Reboot, [649], [-1],0.0.0
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-128.png, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-18.png, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-48.png, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-64.png, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\js\background.js, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\manifest.mf, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\mozilla.rsa, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\mozilla.sf, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\bg.jpg, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\index.html, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\main.js, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\manifest.json, Delete-on-Reboot, [1155], [450133],1.0.4910
PUP.Optional.SuperFind, C:\Users\Luis\AppData\Roaming\Mozilla\Firefox\Profiles\eunz05jy.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\style.css, Delete-on-Reboot, [1155], [450133],1.0.4910
Adware.FastDataX.EncJob, C:\Users\Luis\AppData\Local\FastDataX\log\installer\28-03-2018(18-07).log, Delete-on-Reboot, [2089], [474798],1.0.4910
Adware.FastDataX.EncJob, C:\Users\Luis\AppData\Local\FastDataX\log\installer\28-03-2018(18-08).log, Delete-on-Reboot, [2089], [474798],1.0.4910
Adware.FileTour, C:\WINDOWS\SYSTEM32\TASKS\{78CFF7EF-744F-96AA-77C8-62F389096473}, Delete-on-Reboot, [394], [511696],1.0.4910
Adware.FileTour, C:\WINDOWS\SYSTEM32\TASKS\{3D22BC61-7A68-5F97-6035-446A362EA859}, Delete-on-Reboot, [394], [511696],1.0.4910
Adware.WizzMonetize.Generic, C:\PROGRAM FILES\0R2QE3R18N\UNINSTALLER.EXE, Delete-on-Reboot, [12060], [516622],1.0.4910
Adware.Tuto4PC.Generic, C:\PROGRAM FILES (X86)\MOLPIA\4680074.EXE, Delete-on-Reboot, [3778], [414802],1.0.4910
Adware.LoadMoney, C:\PROGRAM FILES (X86)\MINIMAL ADB AND FASTBOOT\ZIPKFHD7TWRP2_8_7_0RECOVERY.EXE, Delete-on-Reboot, [391], [513452],1.0.4910
Adware.LoadMoney, C:\PROGRAM FILES (X86)\MINIMAL ADB AND FASTBOOT\ZIPKFHD7TWRP2_8_7_0RECOVERY.RAR, Delete-on-Reboot, [391], [513452],1.0.4910
Adware.Adposhel, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\IS-EH4NS.TMP\BWPAH.DLL, Delete-on-Reboot, [444], [425937],1.0.4910
Adware.Tuto4PC.Generic, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\IS-T565B.TMP\RELATIONSHIP.EXE, Delete-on-Reboot, [3778], [414802],1.0.4910
Adware.Tuto4PC.Generic, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\IS-JHU5J.TMP\KILO.EXE, Delete-on-Reboot, [3778], [414802],1.0.4910
Adware.Tuto4PC.Generic, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\IS-T565B.TMP\SETUP.EXE, Delete-on-Reboot, [3778], [489336],1.0.4910
Adware.FileTour, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\RAR$EXA3084.36231\KINDLE_FIRE_UTILITY_V0_9_9.EXE, Delete-on-Reboot, [394], [516505],1.0.4910
Adware.FastDataX, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\DATA.EXE, Delete-on-Reboot, [4009], [463466],1.0.4910
Adware.Elex, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\ZDJ.EXE, Delete-on-Reboot, [682], [515352],1.0.4910
Adware.Downloader, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\WEBUPD.EXE, Delete-on-Reboot, [390], [499620],1.0.4910
Trojan.Agent, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\WIGETFL.EXE, Delete-on-Reboot, [382], [434714],1.0.4910
PUP.Optional.DriverToolkit, C:\USERS\LUIS\DOWNLOADS\DRIVERTOOLKITINSTALLER.EXE, Delete-on-Reboot, [879], [512879],1.0.4910
Adware.FileTour, C:\USERS\LUIS\DOWNLOADS\KINDLE_FIRE_UTILITY_V0_9_9.RAR, Delete-on-Reboot, [394], [516505],1.0.4910
PUP.Optional.BundleInstaller, C:\USERS\LUIS\DOWNLOADS\IMPALER_PSX_EBOOT_CREATOR.ZIP, Delete-on-Reboot, [393], [507577],1.0.4910
Adware.FileTour, C:\USERS\LUIS\APPDATA\ROAMING\Microsoft\Windows\Recent\Kindle_Fire_Utility_v0_9_9(1).lnk, Delete-on-Reboot, [394], [516505],1.0.4910
Adware.FileTour, C:\USERS\LUIS\DOWNLOADS\KINDLE_FIRE_UTILITY_V0_9_9(1).RAR, Delete-on-Reboot, [394], [516505],1.0.4910
Adware.LoadMoney, C:\USERS\LUIS\DOWNLOADS\ZIPKFHD7TWRP2_8_7_0RECOVERY.RAR, Delete-on-Reboot, [391], [513452],1.0.4910
Generic.Malware/Suspicious, C:\DOWNLOADS\TRAINER.ZIP, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\NSME6E7.TMP\KMSAUTO NET.EXE, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\SETUP.EXE, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\INSTALLER_MI.EXE, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\BUT-SETUP-9.EXE, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\APPDATA\LOCAL\TEMP\WEATHERINSPECT.EXE, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\DOWNLOADS\1123_JADE_EMPIRE_SPE.ZIP, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\DOWNLOADS\SETUPIMGBURN_2.5.8.0.EXE, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\DOWNLOADS\SETUPIMGBURN_2.5.8.0(1).EXE, Delete-on-Reboot, [0], [392686],1.0.4910
Generic.Malware/Suspicious, C:\USERS\LUIS\DOWNLOADS\WINISO.EXE, Delete-on-Reboot, [0], [392686],1.0.4910

Physical Sector: 0
(No malicious items detected)


(end)

Click to expand...

Click to collapse

Duncan Idaho said:

For anyone new, please do NOT use the9.9 version in the OP, its not a legit link nor a legit file, all it does is download a trojan virus that will proceed to infect your machine with a plethora of uneeded crap.

ESET Id's it as a variant of kryptik.GGEO trojan. The file is NOT safe.

Also I leave the malwarebytes log:

Click to expand...

Click to collapse

sd_shadow said:

Yes, read the last few pages...

Sent from my PH-1 using Tapatalk

---------- Post added at 08:45 PM ---------- Previous post was at 08:38 PM ----------

https://xdaforums.com/showpost.php?p=73801216&postcount=478

Click to expand...

Click to collapse

Duncan Idaho said:

So why is the OP still using links that lead to a trojan virus? Why hasn't a mod edited them out or placed actually legit links or a warning? I suffered a scare because the trojan specifically targets bank login information.

Click to expand...

Click to collapse

sd_shadow said:

XDA No Longer Recommends Dev-Host
http://www.xda-developers.com/xda-devhost/

---------- Post added at 08:50 PM ---------- Previous post was at 08:48 PM ----------


Why are you downloading it, this hasn't been relevant
For several years

Click to expand...

Click to collapse

Duncan Idaho said:

Because I need the fastboot drivers to make use of the fastboot commands on my kindle HD 7" 2nd gen, and it was my understanding that the KFU happened to have them.

Click to expand...

Click to collapse

brightjh01 said:

this is malware /

Click to expand...

Click to collapse

R3SiEViL said:

Anyone with a link to the v0.9.9 version? The posted link doesn't work. . Thanks in advance.

Click to expand...

Click to collapse

Speed_freak5150 said:

I know this is an old post. I am trying to root an OKF that is no longer supported by Amazon, but is still usable if I could get apps back on it after doing a factory reset.

Click to expand...

Click to collapse

Speed_freak5150 said:

It is on 6.3.4

Click to expand...

Click to collapse

triangleonastick said:

i tried to use this specifically the 9.9 one (on my windows 10 (64)) and it seems to not play nicely with my fire specifically it cannot see the boot status of the kindle it says boot status: unknown if I do attempt to root it tells me this WARNING: Couldn't compute FAST_CWD pointer.
if i run it as admin it cant find the get file
please help i cant find any resources as to how solve these issues as most talk about fixing the adb status from offline (mine is online)

Click to expand...

Click to collapse

sd_shadow said:

This really doesn't work anymore.
Which firmware is on the Fire?

Sent from my Moto E (4) using Tapatalk

Click to expand...

Click to collapse

triangleonastick said:

The fire itself runs the 6.3.1.5 fire os

Click to expand...

Click to collapse