|
|
Post by stcook on Oct 31, 2014 6:58:05 GMT -8
I seem to have been infected with a trojan virius that causes 10-15 simultaneous dllhost.exe*32 processes to run when using Chrome & its killing my speed/performance.
I've run some of the Norton scans but can't get rid of it and need help.
|
|
|
|
Post by stcook on Oct 31, 2014 8:02:21 GMT -8
I downloaded the Farbar Recovery Scan tool to my desktop and created the two notepad files and can upload the first file, but need to use wikiupload for the addition file.
|
|
|
|
Post by stcook on Oct 31, 2014 8:04:17 GMT -8
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 31, 2014 9:33:39 GMT -8
Who told you to run FRST, which is against board guidelines / warnings on every threads, Maybe just can't read, or just want to do their own thing.
Quads
|
|
|
|
Post by stcook on Oct 31, 2014 10:03:58 GMT -8
I guess I misread the instructions you were giving others to get started. What's the first step?
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 31, 2014 10:08:18 GMT -8
Have a looks at the start of each thread, What is in the colour RED for starters
Quads
|
|
|
|
Post by stcook on Oct 31, 2014 10:13:08 GMT -8
Quads i did read the information regarding not downloading anything until directed & read the other posts fully.
I understand your concern.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Oct 31, 2014 23:34:11 GMT -8
PINCHED SOMEONES INSTRUCTIONS  We need to Reset the process [/a] [*]Ensure the following is ticked: - Remove disinfection tools
 Then click Run. The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply. Once you have the log file saved, please reboot your system to complete the clean up process. After that, please proceed with the following: Read Slowly and all of it.Please download www.bleepingcomputer.com/download/farbar-recovery-scan-tool/ You need to download the 64 bit version. Place FRST64.exe onto your desktop from where ever it downloaded to. IF IT IS NOT ON THE DESKTOP (YOU DID NOT DOWNLOAD DIRECTLY TO DESKTOP), THEN RIGHT CLICK ON THE DOWNLOADED FILE AND SELECT CUT. FIND A BLANK SPOT ON YOUR DESKTOP AND RIGHT CLICK ON IT, SELECT PASTE AND THE FILE WILL BE ON THE DESKTOP. Thank You (this is very important later on)! Start FRST64 that is on your DesktopThe tool will start to run. When the tool opens click Yes to disclaimer. (if it does) Press Scan button. It will make two logs ( FRST.txt and addition.txt) on your Desktop. Please attach the logs in your reply back. Or open the logs in notepad and copy the logs and paste back in a message as a reply. ( Ask if you don't know how to do either of these). Right now the forum will not allow one to attach the Addition.txt file so please use wikisend.com to upload the file and then post the download link here in your reply post. So the things I need to see on your next post(s) are: The DelFix log so I know we are starting on the right path The fresh FRST scan log FRST.txt The fresh Addition.txt log [/ul] |
|
|
|
Post by stcook on Nov 1, 2014 9:03:08 GMT -8
# DelFix v10.8 - Logfile created 01/11/2014 at 11:43:03 # Updated 29/07/2014 by Xplode # Username : stcook - LOANER01-SAN1 # Operating System : Windows 7 Professional Service Pack 1 (64 bits) ~ Removing disinfection tools ... Deleted : C:\FRST Deleted : C:\AdwCleaner Deleted : C:\Users\stcook\Desktop\Addition.txt Deleted : C:\Users\stcook\Desktop\FRST.txt Deleted : C:\Users\stcook\Desktop\FRST64 (2).exe Deleted : C:\Users\stcook\Downloads\adwcleaner_4.002.exe Deleted : C:\Users\stcook\Downloads\FRST64 (1).exe Deleted : C:\Users\stcook\Downloads\FRST64 (2).exe Deleted : C:\Users\stcook\Downloads\FRST64.exe Deleted : C:\Users\stcook\Downloads\RogueKiller.exe Deleted : HKLM\SOFTWARE\AdwCleaner ########## - EOF - ########## FRST.txt (28.7 KB) wikisend.com/download/389308/Addition.txt |
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Nov 1, 2014 19:55:13 GMT -8
You may want to read carefully all of this message first before starting the steps.
NOTE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Download the script attached, needs to be the same file name as well (fixlist.txt), have it on the Desktop, so that fixlist.txt is next to FRST64.exe,
DO NOT DRAG AND DROP to download the script, it won't work for FRST (Right click on the attachment link (not the normal left click) and from the menu choose Save As or Save Link as.)
The script tells FRST what to do.
Start FRST that is on the desktop
When the tool opens click Yes to disclaimer. (if it still does)
Press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) please post it to your reply (attach or paste)
Quads
|
|
