Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

Author Topic: Malware infection following a moment of madness  (Read 30431 times)

0 Members and 1 Guest are viewing this topic.

SuperDave

  • Malware Removal Specialist
  • Moderator


  • Genius
  • Thanked: 1020
  • Certifications: List
  • Experience: Expert
  • OS: Windows 10
Re: Malware infection following a moment of madness
« Reply #15 on: November 18, 2012, 12:08:56 PM »
Could you please run the ESET scan again and see what comes up?
Windows 8 and Windows 10 dual boot with two SSD's

whathim

    Topic Starter


    Beginner

    Re: Malware infection following a moment of madness
    « Reply #16 on: November 19, 2012, 07:51:11 AM »
    This time ESET scan found one threat.  Should we be expecting more?

    C:\System Volume Information\_restore{45B5E8B9-949A-471E-999D-F381DA56A2D3}\RP159\A0048884.EXE   a variant of Win32/Kryptik.AFAX trojan   cleaned by deleting - quarantined

    Ps. Windows Search is still not displaying properly (crunched up search form) as shown in previous post.

    SuperDave

    • Malware Removal Specialist
    • Moderator


    • Genius
    • Thanked: 1020
    • Certifications: List
    • Experience: Expert
    • OS: Windows 10
    Re: Malware infection following a moment of madness
    « Reply #17 on: November 19, 2012, 12:54:47 PM »
    Quote
    Ps. Windows Search is still not displaying properly (crunched up search form) as shown in previous post.
    Is that your only problem now? Could you send me a screenprint?

    How to post screenshots or images
    Windows 8 and Windows 10 dual boot with two SSD's

    whathim

      Topic Starter


      Beginner

      Re: Malware infection following a moment of madness
      « Reply #18 on: November 19, 2012, 02:10:57 PM »
      Apart from the Windows Search problem, I’m not currently noticing any remaining malbehavior.  Here are two screen images showing the scrunched up search form.

      Start > Search > For Files or Folders...


      Windows Explorer > Search






      SuperDave

      • Malware Removal Specialist
      • Moderator


      • Genius
      • Thanked: 1020
      • Certifications: List
      • Experience: Expert
      • OS: Windows 10
      Re: Malware infection following a moment of madness
      « Reply #19 on: November 19, 2012, 06:38:15 PM »
      Ok. I can't make out those pictures but I would suggest that you create a new thread in this forum and see if someone can help you with that problem.
      Let's do some cleanup.


      To uninstall ComboFix

      • Click the Start button. Click Run. For Vista: type in Run in the Start search, and click on Run in the results pane.
      • In the field, type in ComboFix /uninstall


      (Note: Make sure there's a space between the word ComboFix and the forward-slash.)

      • Then, press Enter, or click OK.
      • This will uninstall ComboFix, delete its folders and files, hides System files and folders, and resets System Restore.
      ***********************************************
      Click Start> Computer> right click the C Drive and choose Properties> enter
      Click Disk Cleanup from there.



      Click OK on the Disk Cleanup Screen.
      Click Yes on the Confirmation screen.



      This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
      ************************************************
      Go to Microsoft Windows Update and get all critical updates.

      ----------

      I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

      SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
      * Using SpywareBlaster to protect your computer from Spyware and Malware
      * If you don't know what ActiveX controls are, see here

      Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

      Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

      Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
      Safe Surfing!
      Windows 8 and Windows 10 dual boot with two SSD's

      whathim

        Topic Starter


        Beginner

        Re: Malware infection following a moment of madness
        « Reply #20 on: November 20, 2012, 07:01:09 AM »
        While Combofix.was uninstalling it popped up a message box saying, “There’s a newer version of ComboFix available.  Would you like to update ComboFix”.  I clicked “No”.  Later it sounded an alarm and popped the message shown here.



        I clicked “OK” and then it popped up another message as shown here.



        Again I clicked “OK” and then it ran to completion.

        I’m having trouble with the Windows updates.  I have “Automatic Updates” turned on and at every shut down, there are five Windows updates that take ages attempting to install but fail.  They are listed here.



        Looking back through the updates history I see this has been happening from 16th November.

        I realise these remaining problems may have nothing to do with lingering virus/malware so I will try to resolve them outside this thread.  Dave, please accept a big thank you from me for helping me through this.  It is much appreciated.

        Keith

        SuperDave

        • Malware Removal Specialist
        • Moderator


        • Genius
        • Thanked: 1020
        • Certifications: List
        • Experience: Expert
        • OS: Windows 10
        Re: Malware infection following a moment of madness
        « Reply #21 on: November 20, 2012, 12:25:33 PM »
        It reads " If an update failed to install, click the Failed icon to learn how to solve the problem. Did you do that?
        Windows 8 and Windows 10 dual boot with two SSD's

        whathim

          Topic Starter


          Beginner

          Re: Malware infection following a moment of madness
          « Reply #22 on: November 20, 2012, 02:06:09 PM »
          Yes, I did that for the update that fails but I’m not too concerned about a security update for the ancient .NET Framework 1.1, SP1.  I’m more worried by the other 4 (of the batch of 5) because they have green ticks next to them and yet keep reinstalling at every machine shutdown.  I don’t feel confident they have installed properly?  Maybe I need to try manually installing them.  Maybe I’ll end up reinstalling .NET 4.

          SuperDave

          • Malware Removal Specialist
          • Moderator


          • Genius
          • Thanked: 1020
          • Certifications: List
          • Experience: Expert
          • OS: Windows 10
          Re: Malware infection following a moment of madness
          « Reply #23 on: November 20, 2012, 04:22:05 PM »
          I really don't understand why they keep installing. Have you tried contacting MS?
          Windows 8 and Windows 10 dual boot with two SSD's

          whathim

            Topic Starter


            Beginner

            Re: Malware infection following a moment of madness
            « Reply #24 on: November 21, 2012, 09:41:36 AM »
            Just for the record, and hopefully to help someone if they have similar problems:

            I fixed the persistent Windows updates issue described above as follows.

            I downloaded and run the .NET Framework Repair Tool, http://www.microsoft.com/en-us/download/details.aspx?id=30135 (this is actually Version 2, I believe).  The tool runs in stages and I had to do stage two, where it repairs .NET Framework (back to 2.0) before I got an improvement.  This fixed 4 of the five updates.  The remaining update is for .NET 1.1, so it makes sense the tool could not fix this.  For this update I simple blocked it from Windows Updater.

            I also fixed the jusched.exe crashing problem.  I elected to send an error report, which sent me to a diagnostics page, which the sent me on to a new Java version page.  Installing this new version seems to have fixed it.

            Keith

            SuperDave

            • Malware Removal Specialist
            • Moderator


            • Genius
            • Thanked: 1020
            • Certifications: List
            • Experience: Expert
            • OS: Windows 10
            Re: Malware infection following a moment of madness
            « Reply #25 on: November 21, 2012, 01:27:56 PM »
            Good news.  ;D
            Windows 8 and Windows 10 dual boot with two SSD's