|
Post by sj12ds on Oct 29, 2014 16:25:22 GMT -8
Yes it is doing much better. I have been getting some warning by Symantec about some temp files like this DWH3226.tmp and warning that it is a Trojan.gen.2. Then it does not quarantine. I also now have one dllhost.exe*32 process in my task manager that was not there before.
What was the Trojan/virus I had before the fix?
Now as I am writing this I have two dllhost processes and neither one will let me close them.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 29, 2014 16:33:40 GMT -8
You had Tracur and Poweliks
The DWH**.tmp detection by Symantec is a Symantec problem I placed fix links for that on the Norton forum
dllhost.exe is a legit files and is used by ligit programs including by Microsoft for legit purposes. If there are Many of then and a 90% - 100% CPU that is Poweliks
Quads
|
|
|
Post by sj12ds on Oct 30, 2014 1:55:44 GMT -8
OK. Well thank you for all you do for people. You guys are great!
Am I good to go now or should I do something else?
What can I do to prevent this in the future. I would like to prevent any and all attacks if that is even possible.
Thank you again.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 30, 2014 19:29:25 GMT -8
On with step 4, Complete system check for any file and cleanup of items and tools used. Special attention to the different settings I have asked for below You can leave Norton Enabled even though ESET may warn about it. just makes the scan take longer. The pictures below showing what to click may be blue instead of green on the ESET website now, but the procedure is still the same Please read carefully and Slowly, Notice all the settings listed below to check before starting the scan. Take note of the NO tick in the Remove found threats setting below at it needs to have the tick removed.
Hold down Control and click on the following link to open ESET OnlineScan in a new window. ESET OnlineScan
Click the For alternate browsers only: (Microsoft Internet Explorer users can skip these steps) Click on Posted Image to download the ESET Smart Installer. Save it to your desktop. Double click on the icon on your desktop. Check Click the button. Accept any security warnings from your browser. Under scan settings, check DON'T (NO)</font></b> check Remove found threats (reason for this is we don't want something deleted and then Windows won't load).
Click Advanced settings and select the following: Scan potentially unwanted applications Scan for potentially unsafe applications Enable Anti-Stealth technology
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time. Attach the resulting log in your next reply The scanner screen gives me the option of saving the results to a .txt file as part of the options after the scan has finished. Screenshot of part of the finished scan dialog box by ESET showing the options. List found threats and at the bottom of the listings is the options to save the list. Quads
|
|
|
Post by sj12ds on Oct 31, 2014 9:04:39 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 31, 2014 23:27:24 GMT -8
It is Ok to have those 2 files just sitting there, or you could manually delete them yourself, Even Symantec have used Ask with their products Tools and Quarantines we used to be removed Please download DelFix by Xplode to your Desktop. toolslib.net/downloads/viewdownload/2-delfix/Double-click to run the program; Note: Windows Vista/7/8 users right-click and choose Run as administrator Make sure the Remove Disinfection tools is ticked / selected in the list Click RunA log will be opened after the operation is finished Copy and Paste it in your next reply Quads
|
|
|
Post by sj12ds on Nov 1, 2014 6:33:00 GMT -8
Here is the log:
# DelFix v10.8 - Logfile created 01/11/2014 at 10:30:54 # Updated 29/07/2014 by Xplode # Username : James - OWNER-PC # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST Deleted : C:\Users\James\Desktop\FRST-OlderVersion Deleted : C:\Users\James\Desktop\Addition.txt Deleted : C:\Users\James\Desktop\Fixlog.txt Deleted : C:\Users\James\Desktop\FRST.txt Deleted : C:\Users\James\Desktop\FRST64.exe
########## - EOF - ##########
Does this mean that I am clean? What can I do to prevent this in the future?
Thanks again!
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 1, 2014 17:15:16 GMT -8
|
|
|
Post by sj12ds on Nov 2, 2014 2:39:36 GMT -8
Thanks Quads! Thank you soooooo much for all your help! You are a life saver!
|
|