HKLM\.\Run: => C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.) (If an entry is included in the fixlist, the registry item will be restored to default or removed. (The Chromium Authors & Aluísio Augusto Silva Gonçalves) C:\Users\ndjokic\Desktop\multibox\StarBreakMultibox\App\Chromium\64\chrome.exe () C:\Users\ndjokic\Desktop\multibox\StarBreakMultibox\ChromiumPortable.exe (Gorenie) C:\Users\ndjokic\AppData\Local\Temp\dxdiag.exe (TechSmith Corporation) C:\Program Files (x86)\Camtasia\TscHelp.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (hxxp://) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (If an entry is included in the fixlist, the process will be closed. Internet Explorer Version 11 (Default browser: FF) Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States) Loaded Profiles: ndjokic (Available Profiles: ndjokic) Running from C:\Users\ndjokic\Desktop\av\frst Scan result of Farbar Recovery Scan Tool (FRST) (圆4) Version:13-04-2016 Addition.txt was too large to attach despite having the 3 things unchecked as the instructions said, so I split it up. In FRST, there was no "all users" checkbox. I used tweaking, FRST and aswmbr as instructed. exe, but I can't seem to remove its containing folder because it's "in use". I manually removed both programs in control panel, closed the processes and reset the account settings.
Immediately after running it, my user account settings were changed to never ask for permission before doing admin things, my browser homepage was set to yessearches, the programs yessearches and wajam appeared in the control panel programs list, and a bunch of gibberish-named processes appeared in the task manager. exe from an untrusted source after scanning it with MSE and receiving a "no threats found".
0 kommentar(er)
