Re: Infected LNK, False positive ?

Hello,

I have exactly the same problem :

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Outils et utilitaires\Monter une image.lnk

Isn't it a false positive ?

This appeared since ADWCleaner v.6.020

Yours, sincerely

Re: Can't delete UCGuard

 New logs  are needed as it is written here.

Re: Can't delete UCGuard

3) Do you want me to run the program again?


pedromatt, 2016-10-07 17:04:20 (UTC)

Yes, run FRST again and share links on new logs.

 

Re: Can't delete UCGuard

1) I installed it after I installed windows but I've unnistalled it some months ago.

2) Sorry, here is the correct link: https://up2sha.re/file?f=91kFxbulMbgk

3) Do you want me to run the program again?

Re: Can't delete UCGuard

pedromatt,

1) Do  you have installed Driver Booster? If yes, then I advise you to uninstall.

1) You did not answer.

https://up2sha.re/file?f=fmm8W0qTNqR

 

If it's more helpful

 


pedromatt, 2016-10-07 16:26:38 (UTC)

2) Link is not correct.

3) Make new FRST logs.  

Re: Can't delete UCGuard

pedromatt,

 

1) Do  you have installed Driver Booster? If yes, then I advise you to uninstall.

 

2) Download fixlist.txt file and save it to the Desktop.

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another ...

Infected LNK, False positive ?

Found on 2 computers

***** [ Raccourcis ] *****

Raccourci infecté:  C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Acronis\True Image\Outils et utilitaires\Monter une image.lnk ( /mount_image )

This Link is found as infected on 2 computers and I wonder on the reality of infection.?: I launched ADW cleaner and the resulting file "quarantine.db" contained the TXT:

SQLite forma...