Hello
Yesterday the computer had the Avast screen saver running so I moved the mouse to “wake it up” and had an Avast alert screen.
The message was “Sign of “Win32:Malware-gen” has been found in “c:\program files (x86)\hewlett-packard\hp quick launch buttons\addfiltr.exe” file.” My desktop was blank except for the alert window. If I tried to do anything I would get a message of “access denied”. The only thing it would let me do is continue …now, Avast will start and scan but wil not launch. Everything else “seems” normal. I’ve run Malwarebytes and it didn’t find anything so then I ran OTL and have attached the reports. I did notice that AddFiltr shows up in Services(local) but in description is says “<failed to read description. Error code 2>”.
The computer has had Avast pro installed since I got it in 2007.
Any assistance would be appreciated!
Can you submit the file to www.virustotal.com and post the results link?
I would but the system cannot find the file!
I’ve attached the OTL “extras” file separately as the Files were large
Since windows cannot locate the file reported to be infected what would be my next step.
The file does show up as a process, although unidentified.
I have not rebooted the machine since the alert.
The avast screen saver continues to run, which is something it rarely did before.
I did get Avast simple to run and it found four instances of Win32:Ups. I clicked “move to chest” each time it was reported and it proceeded. However, when I looked at the report it said that it was unable to process them.
Any help is appreciated.
That is a legitimate file http://www.runscanner.net/lib/AddFiltr.exe.html you need to upload to Avast as a False positive and for now exclude it from the scan
I’s a little weird that windows can’t find a legitimate file isn’t it?
That together with AddFiltr shows up in Services(local) but in description is says “<failed to read description. Error code 2>”.
So how do I rid the computer of the four reports of Win32:Ups?