Hello:
On starting up the Windows XP PC today, I received following in a message box on the screen, with an OK button:
Window Title: This is a Richard Kennedy spacial… all hail Homer Simpson. Amen.
Window Content: Killed 0 processes that had loaded nnotes.dll
Would anyone know of this problem? I searched for above string in google, and found just one link at sunbeltsoftware.com, listing malware analysis.
Malwarebytes Anti-Malware 1.46 http://filehippo.com/download_malwarebytes_anti_malware/
always update so you have latest database before you scan
click the remove selected button to quarantine anything found
you may post the scan log here
first a boot scan with Avast, and if that doesn’t work do as Pondus suggested, a scan with MalwareByte. (a quick scan; don’t forget to update the software before scanning).
And if that still doesn’t work, someone here (Essexboy) might come to help you, he’s got special magic tools
Thank you Logos and Pondus. I ran MBAM and also Spybot S&D. Both did not report anything. Avast scan too was clear. What I got from MBAM is as below:
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) → Bad: (1) Good: (0) → No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) → Bad: (1) Good: (0) → No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) → Bad: (1) Good: (0) → No action taken.
All else was clean. Do I need to undertake a detailed scan with MBAM?
no that won’t change anything, if MBAM in quick scan mode didn’t found this, a full one won’t do better ;D (the full scan in mbam is just there to please users).
It appears that MBAM only detected that you don’t want to be notified when your firewall/AV/windows updates are off. If you didn’t do that purposely, then a piece of malware did it. There’s still this pop up that you mentioned in your first post. So what I think is that should stay tuned until Essexboy comes around and help you to clean your system.
[*]Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
[*]Select All Users
[*]Under the Custom Scan box paste this in
[*]Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
[*]When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
[*]Please attach both logs