Win32/PrcView Application

Hello- I need some help. I ran the ESET Online Scanner and it found an infection, but it appears that it will not remove it. Here it is:

'C:\System Volume Information\_restore{42A52EF0-079C-4207-8748-312A94F106A3}\RP423\A0101091.exe Win32/PrcView application'

My computer just hasn't 'felt' right lately, and my regular AV, nor Malwarebytes, has found anything.

Do I need to install and run the tools as provided in 'READ and RUN ME FIRST' section and post logs at this point?

Thank-you-

timw

 

OK, will do, 'Kestrel13'. Thank-you.

timw

 

'Kestrel13', here are the .zip reports you have requested. When you have had time to analyze them, I have some other matters to share with you regarding this issue, but I would rather wait until after you have deciphered the logs.
Thanks so much!

timw

 

Will do, but normal start up mode makes the pc slow as a snail.

I'll delete the 3 items you recommended, run scan, report back with results.

 

Thank you, 'Kestrel13', for your help. Listed below is a chronology of what I have done SINCE you had me run the original 5 scans.

1) Ran eset Online Scanner- here are the results:
C:\MGtools\Process.exe Win32/PrcView application-cleaned by deleting
- quarantined (Deleted MGTools from system root C:\)

2) Returned Start Up mode from Selective to Normal. (Restarted)

3) Deleted the 3 files from the Windows directory.

4) Went into System Properties, toggled System Restore to 'Off', applied,
toggled back to 'On', applied.

5) Ran fresh download of eset Online Scanner. No Threats Found.

'Kestrel13', would you please be so kind as to inform me what is going on, and how did that threat get on my pc, and how to prevent it from reoccurring?
These things are getting by my avast! Internet Security AV and Firewall, and also Malwarebytes scans.

Of further note, there is something I need to tell you as mentioned per original post- running GMER messes my system up, and Combofix will freeze up, requiring a hard shut down. I know, I have heard the lecture before regarding Combofix. I have used it many times before with no ill effects. I always back up system and registry and set a restore point before running the powerful tools.
Again, I am very grateful for all of your help!
Sincerely-
timw

 

'Kestrel13', here are some screen shots of the Normal Start Up in Sys Config.
I don't know what half that stuff is, and the progs are not even on my System!
This machine is Pentium 4 powered and needs as few processes running as possible. In Selective start up mode, I only ha the avast! start. I think a lot of the things are residual in nature within the Registry from progs in the past that I have removed via revo.
Please see attached .zip files.
Thanks!
timw