![]() ![]() HKLM\.\Run: => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (Comodo Security Solutions, Inc. HKLM\.\Run: => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\.\Run: => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) (If an entry is included in the fixlist, the registry item will be restored to default or removed. ![]() (SEIKO EPSON CORPORATION) C:\Program Files\EPSON\portcommunicationservice\PCSVC.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Data\xxxMS-ert64.exe (Macrovision Corporation -> Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Lagerkvist Teknisk Radgivning i Boras HB -> Olof Lagerkvist) C:\Windows\System32\imdsksvc.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Firebird Project) C:\Program Files\Firebird\Firebird_25\bin\fb_inet_server.exe (CPSSoft) C:\Program Files (x86)\CPSSoft\ACCURATE5 License Manager\bin\AccurateLicenseManager.exe > COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe > COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe > COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe > COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe > COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe ![]() ![]() > COMODO) C:\Program Files (x86)\Comodo\COMODO Secure Shopping\csssrv64.exe (Autodesk, Inc -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe () C:\Program Files (x86)\CPSSoft\ACCURATE5 License Service\aclicfivsvc.exe (If an entry is included in the fixlist, the process will be closed. Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States) Running from D:\APP\FarbarRecoveryScanTool-FRST Ran by GraciaAmanta (administrator) on GRACIAAS (AXIOO NEON HNM MODEL) (28-05-2021 17:33:08) Scan result of Farbar Recovery Scan Tool (FRST) (圆4) Version: 25-05-2021 Maybe someone can help to guide what i have to do with files from FRST scanning for remove that virus. Please see attach 2 pictures that i capture "network intrusion" to IP (224.0.0.252 / 252 / 22) when using Comodo AV to try blocking IP (224.0.0.000 - 255)īelow, I attach files from Farbar Recovery Scan Tool (FRST) scanning. That is a unique symptom, when i try to connected to internet, this unknown virus immediately send "some-information" to IP like : This virus still exist after new booting. I already try to scan with Microsoft Safety Scanner - v 1.339.1425.0, but still not yet success too. This virus still remain exist after booting. I have tried to scan with Malwarebytes dan Hitman Pro, but not yet success. Please help for guidance to remove Glupteba (maybe ?) and unknown virus that send out some information to ip 224.0.0.251 / 224.0.0.252 / 224.0.0.22 when i connected to internet. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |