Fibril.exe

Bonjour, En lançant Rkill, il me détecte un truc bizarre à chaque fois savez-vous de quoi il peut s'agir ?

Performing miscellaneous checks:

 * Modified HKCU\...\Winlogon: [Shell] => explorer.exe, C:\Users\AppData\Roaming\fibril.exe

 * No issues found.

Quand je vais dans le chemin indiqué, il n'y a rien même dans les fichiers cachés...

Re: PUP \SysNative\drivers\mrxsmb22.sys

SysNative, means System32.

I found it here:

C>Windows>System32>drivers

Name                     Size

mrxsmb.22.sys       57 KB

And

C\AdwCleaner\Quarantine\

I then tracked it thru Manic Time to the exact time in seconds and found what happened at that time as confirmed adw, installer wnd.

What this was is a fake Cedrick Collomb Portable. Unlocker is only an Install.

Would not delete man...

Major difficulties with AdwCleaner v. 7.0.3.1

I am helping a friend clean a grossly infected computer. Windows 10. Uses McAfee AV.

He ran Malwarebytes 3 without difficulty and it cleaned with no problem at all. I do have the log if needed but cannot find a way to attach the text file

He then attempted to use AdwCleaner v. 7.0.3.1 but it would not complete cleaning and received a box with notification that a problem had stopped the clean....

Re: Start\Windows icon

it's a native windows 10.

I'm not sure the cause is clean_dns, mind you, I'm still stalling on reformatting or such, so much work. 'Start' after doing the following :

Get-AppXPackage -AllUsers | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register "$($_.InstallLocation)\AppXManifest.xml"}

using Powershell improves things a bit, but doesn't let me use Restart or Shutdown or open News e...

Re: Adwcleaner freeze when cleaning

# AdwCleaner v6.046 - Logfile created 14/05/2017 at 10:24:09 # Updated on 24/04/2017 by Malwarebytes # Database : 2017-05-14.1 [Server] # Operating System : Windows 7 Ultimate Service Pack 1 (X64) # Username : iQuang - IQUANG-PC # Running from : D:\Downloads\adwcleaner_6.046.exe # Mode: Scan # Support : https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found....

Re: ENABLESHELLEXECUTEHOOKS

Merci beaucoup,

Effectivement je lui ai fait parvenir les rapports de FRST.

Apparemment, rien n'est anormal : ce serait un faux positif.

Bonne fin de soirée.

fil

Re: ENABLESHELLEXECUTEHOOKS

Malekal s'occupe de toi sur CCM.

Re: ENABLESHELLEXECUTEHOOKS

Pas de réponse ?

cdt

Re: ENABLESHELLEXECUTEHOOKS

rebonsoir,

je vous poste les liens.

cdt