Hi,
Last week Zone Alarm detected 'backdoor.win32.androm.bmne' - treatment showed as 'treated' - ZA log showed it was located in a Thunderbird email attachment. New ZA logs show nothing. However, I am unable to update Spybot Prof (upgraded today) or Malwarebytes. Also receiving error messages from Chrome and system overall is VERY sluggish. Unable to run ERUNT or DSS - receiving error message "this file is not compatible with this version of Windows" (=Win 7 64-bit). I was able to run aswMBR which log is shown below:
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2014-02-10 15:36:16
-----------------------------
15:36:16.333 OS Version: Windows x64 6.1.7601 Service Pack 1
15:36:16.333 Number of processors: 4 586 0x100
15:36:16.334 ComputerName: ONSCREENOFFICE UserName: KIP
15:36:17.901 Initialize success
15:36:43.996 AVAST engine download error: 0
15:36:47.130 The log file has been saved successfully to "C:\Users\KIP.OnscreenOffice\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2014-02-10 15:36:16
-----------------------------
15:36:16.333 OS Version: Windows x64 6.1.7601 Service Pack 1
15:36:16.333 Number of processors: 4 586 0x100
15:36:16.334 ComputerName: ONSCREENOFFICE UserName: KIP
15:36:17.901 Initialize success
15:36:43.996 AVAST engine download error: 0
15:36:47.130 The log file has been saved successfully to "C:\Users\KIP.OnscreenOffice\Desktop\aswMBR.txt"
15:37:04.233 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
15:37:04.239 Disk 0 Vendor: ST31000524AS JC4B Size: 953869MB BusType: 3
15:37:04.336 Disk 0 MBR read successfully
15:37:04.340 Disk 0 MBR scan
15:37:04.343 Disk 0 Windows 7 default MBR code
15:37:04.351 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
15:37:04.362 Disk 0 Partition 2 00 1B Hidd FAT32 NTFS 14524 MB offset 206848
15:37:04.367 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 381546 MB offset 29952000
15:37:04.394 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 557696 MB offset 811358226
15:37:04.424 Disk 0 scanning C:\windows\system32\drivers
15:37:11.636 Service scanning
15:37:24.562 Modules scanning
15:37:24.581 Disk 0 trace - called modules:
15:37:24.606 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
15:37:24.613 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007504060]
15:37:24.619 3 CLASSPNP.SYS[fffff8800261743f] -> nt!IofCallDriver -> [0xfffffa800723ee40]
15:37:24.625 5 ACPI.sys[fffff88000e0b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80071be680]
15:37:24.632 Scan finished successfully
15:37:31.146 Disk 0 MBR has been saved successfully to "C:\Users\KIP.OnscreenOffice\Desktop\MBR.dat"
15:37:31.151 The log file has been saved successfully to "C:\Users\KIP.OnscreenOffice\Desktop\aswMBR.txt"
Thank you for your assistance.