MRun: "C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe" UNATTENDED URun: \\?\globalroot\Device\HarddiskVolume2\Users\Pat\AppData\Local\Temp\jgfhtdt.exe URun: "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet URun: "C:\Program Files (x86)\Mobile Stream\EasyTether\easytthr.exe" URun: "C:\Users\Pat\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver URun: "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun URun: C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe URun: "C:\Program Files (x86)\AIM\aim.exe" /d locale=en-US URun: "C:\Program Files (x86)\TOSHIBA\My Toshiba\MyToshiba.exe" /AUTO ĪV: AntiVir Desktop *Enabled/Updated* - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll Reg HKLM\SYSTEM\ControlSet003\services\BTHPORT\Parameters\Keys\002258e33c73 (not active ControlSet) Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002258e33c73 Reg HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\002258e33c73 (not active ControlSet) Time elapsed: 1 hour(s), 11 minute(s), 39 second(s)Ĭ:\Qoobox\Quarantine\C\Users\Pat\AppData\Local\ (Trojan.FakeMS) -> Quarantined and deleted successfully.Ĭ:\Users\Pat\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\46c5549d-56295fcf (Trojan.FakeMS) -> Quarantined and deleted successfully.Ĭ:\Users\Pat\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\2b76d2f4-208ac9a2 (Trojan.FakeMS) -> Quarantined and deleted successfully.Ĭ:\Users\Pat\AppData\Local\Temp\p9pl4141141822023382077.tmp (Exploit.Drop.3) -> Quarantined and deleted successfully. Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM I have done the primary steps listed and here are my logs. I ran malwarebytes in safe mode, deleted things I did not recognize in the open services and have maintained normality a few times but it always comes back.
I have had a fake antivirus program pop up and attempt to take over my pc. I have a lot of sketchy things going on on my laptop.