![]() HKU\NetworkService\.\RunOnce: "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe" HKU\LocalService\.\RunOnce: "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe" HKU\Default User.WINDOWS\.\RunOnce: "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe" HKU\Administrator.UPSTAIRS.000\.\RunOnce: "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe" HKU\Administrator.UPSTAIRS\.\RunOnce: "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe" HKU\Administrator\.\RunOnce: "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe" HKLM\.\Run: "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe" (Acronis) HKLM\.\Run: "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui (AVAST Software) HKLM\.\Run: "C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe" -s (PC Tools) (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe (PC Tools) C:\Program Files\PC Tools Firewall Plus\FWService.exe (Alcatel-Lucent) C:\Program Files\Common Files\Motive\pcCMService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ASUSTeK COMPUTER INC.) C:\WINDOWS\ATKKBService.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe ![]() (Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastUI.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (PC Tools) C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe Microsoft Windows XP Service Pack 3 (X86) OS Language: English(US) Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-06-2013 Here are the results of the Farbar Recovery Scan Tool: Do NOT take any action on any " Attach Files on the post composition page, browse to where you saved the file, and These types of scans can produce false positives. Do not use your computer for anything else during the scan.ĭouble-click gmer.exe. Unzip it to your Desktop.īefore scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while the scan is being performed. Poste the FRST.txt and (after the first scan only!) the Addition.txt.ĭownload GMER Rootkit Scanner from here or here.Don´t change one of the checkboxes and hit Scan.Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start -> Computer (right click) -> properties) Please post up the log files by MBAM where the threats werde detected. Please check the file in the code box via Virustotal Absence of symptoms does not always mean the computer is clean. I will give you some advice about prevention after the cleanup process. If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.If you can not post all logfiles in one reply, feel free to use more posts. Post all Logfiles as a reply rather than as an attachment unless I specifically ask you.This would change the output of our tools and could be confusing for me. Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so.If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.Sometimes one step requires the previous one. Perform everything in the correct order.If there is anything that you do not understand kindly ask before proceeding. First, read my instructions completely.My name is Marius and I will be assisting you with your Malware related problems.īefore we move on, please read the following points carefully.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |