|
Post by rickyg on Oct 21, 2014 4:38:40 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 21, 2014 9:34:15 GMT -8
Hopefully I have successfully stopped Tracur / Zbot also that had also started up and getting ready to get going.
The last step was to just take items and break malware apart, some go into quarantine
Now though in Normal Mode the system should be running a lot better and dllhost.exe should quieten down.
Quads
|
|
|
Post by rickyg on Oct 21, 2014 9:50:09 GMT -8
Does this mean that I am Trojan free? I should mention that when I look at running Processes in Task Manager I see a lot of things with *32 after the name. This is something new. Things like googledrivesync, software for my Brother printer, ieexplore.exe, NIS.exe and a lot of other things.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 21, 2014 13:41:23 GMT -8
As I said "The last step was to just take items and break malware apart, some go into quarantine" The *32 shown on the end of a running process denotes a 32 bit process running on a 64 bit Operating System Read carefully
Download Adwcleaner www.bleepingcomputer.com/download/adwcleaner/ on to your desktop The Blue Download Now @bleeping Computer button and run a scan ( Scan Button). It will create a log after. Or there is a Report button, ONE SCAN ONLY
Attach or paste the log back here Quads
|
|
|
Post by rickyg on Oct 21, 2014 13:58:02 GMT -8
The folder named C:\Util is a folder of software that I have written over the years. The newest program is from 2003. Also Norton just flashed that Suspicious.Cloud.7.EP was removed. It was AdwCleaner.exe! It is now gone from my desktop. Making me nervous. Attachment Deleted
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 21, 2014 14:07:32 GMT -8
FRST etc. keeps getting updated so at times AV's detect them as untrused etc. From time to time other tools we use like OTL, Adwcleaner, Combofix and so on have the same problem.
Quads
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 22, 2014 22:28:14 GMT -8
On with step 4, Complete system check for any file and cleanup of items and tools used. Special attention to the different settings I have asked for below You can leave Norton Enabled even though ESET may warn about it. just makes the scan take longer. The pictures below showing what to click may be blue instead of green on the ESET website now, but the procedure is still the same Please read carefully and Slowly, Notice all the settings listed below to check before starting the scan. Take note of the NO tick in the Remove found threats setting below at it needs to have the tick removed.
Hold down Control and click on the following link to open ESET OnlineScan in a new window. ESET OnlineScan
Click the For alternate browsers only: (Microsoft Internet Explorer users can skip these steps) Click on Posted Image to download the ESET Smart Installer. Save it to your desktop. Double click on the icon on your desktop. Check Click the button. Accept any security warnings from your browser. Under scan settings, check DON'T (NO)</font></b> check Remove found threats (reason for this is we don't want something deleted and then Windows won't load).
Click Advanced settings and select the following: Scan potentially unwanted applications Scan for potentially unsafe applications Enable Anti-Stealth technology
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time. Attach the resulting log in your next reply The scanner screen gives me the option of saving the results to a .txt file as part of the options after the scan has finished. Screenshot of part of the finished scan dialog box by ESET showing the options. List found threats and at the bottom of the listings is the options to save the list. Quads
|
|
|
Post by rickyg on Oct 23, 2014 9:20:13 GMT -8
ESETS took a long time and found 10 threats. I thought I still had some problems. Hard disk light has been thrashing a lot as well as Internet connection light. Task Manager showing nothing really going on. Attachment Deleted
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 23, 2014 9:23:43 GMT -8
Ever thought that is the ESET scanner scanning the Hard Drive and sending info back and forth over the net??
Quads
|
|
|
Post by rickyg on Oct 23, 2014 9:36:30 GMT -8
I was talking BEFORE I ran ESET. A lot of disk and Internet activity for the last several days.
|
|