Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Nasty virus that won't go away

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Nasty virus that won't go away

Unread postby osprey24 » April 10th, 2018, 11:20 am

I have tried everything that I have the knowledge/ability to do with no luck. Whenever I think that this bug is gone it is back, it has somehow allowed my computers to connect to each other, our cell phones and tablets (android) have been attacked by it (they have linked to the PC through hidden Bluetooth, when internet is killed the computer somehow uses the phone 4G signal as well, data usage has skyrocketed), it repeatedly has changed the settings/configuration of my gateway, it has even managed to connect to my Samsung smart TV. Malwarebytes and Rogue killer detected things a week or so ago but it has not helped. I tried to post last night but did not follow the directions properly, my apologies, I believe that I am doing as instructed on this attempt. In advance, thank you for any help anyone can offer.
You do not have the required permissions to view the files attached to this post.
osprey24
Active Member
 
Posts: 5
Joined: April 10th, 2018, 2:59 am
Advertisement
Register to Remove

Re: Nasty virus that won't go away

Unread postby pgmigg » April 10th, 2018, 11:47 am

Hello osprey24,

Welcome to the forum! :)

I am pgmigg and I'll be helping you with any malware problems.

Before we begin, please read and follow these important guidelines, so things will proceed smoothly.
  1. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  2. You must have Administrator rights, permissions for this computer.
  3. DO NOT run any other fix or removal tools unless instructed to do so!
  4. DO NOT install any other software (or hardware) during the cleaning process until we are done as well as
    DO NOT Remove, or Scan with anything on your system unless I ask. This adds more items to be researched.
    Extra Additions and Removals of files make the analysis more difficult.
  5. Only post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  6. Print each set of instructions if possible - your Internet connection will not be available during some fix processes.
  7. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
  8. Only reply to this thread, do not start another one. Please, continue responding, until I give you the "All Clean!" :cheers:
    Absence of symptoms does not mean that everything is clear.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions. In the meantime...

Note: If you haven't done so already, please read this topic ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.

Please read all instructions carefully before executing and perform the steps, in the order given.
lf you have any questions or problems executing these instructions, <<STOP>> do not proceed, post back with the question or problem.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start


Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 4238
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Nasty virus that won't go away

Unread postby pgmigg » April 10th, 2018, 1:04 pm

Hello osprey24,

Step 1.
Run CKScanner
  1. Please download CKScanner from Here
  2. Important: - Save it to your Desktop.
  3. Double-click CKScanner.exe and click Search For Files.
  4. After a very short time, when the cursor hourglass disappears, click Save List To File.
  5. A message box will verify the file saved.
  6. Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.

Step 2.
TSG - SysInfo utility
  1. Please download SysInfo utility and save it to your Desktop.
  2. Right click on SysInfo.exe, select "Run As Administrator..." to run it... if UAC prompts, please allow it.
  3. Right click, select copy and then paste in your next post.

Step 3.
Run CodeCheck Scan
  1. Please download codecheck from here to your Desktop.
  2. Make sure that codecheck.exe is on the your Desktop before running the application!
  3. Right-click on codecheck.exe and select "Run as administrator..." to run it.
  4. After a very short time a codecheck.txt icon will appear on your Desktop
  5. Double-click on the codecheck.txt icon on your Desktop and copy/paste the contents in your next reply.

Step 4.
CCleaner
Please download CCleaner ... © Piriform Ltd. and save ccsetup541.exe to your desktop.

To Install CCleaner:
Caution: Make sure to UNCHECK any other software install offers, before installing CCleaner.
  1. Right-click on ccsetup541.exe icon on your desktop and select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
  2. Press the "Next" button on Welcome to the CCleaner v5.41 Setup screen after selecting a language.
  3. Click "I Agree"...(License Agreement) if prompted.
  4. Click "Next" for default install location if prompted.
    The default is set to C:\Program Files\CCleaner. Unless you want it installed elsewhere, just leave it.
  5. Leave existed "Install Options" marks and click "Install".
  6. Uncheck View Release notes and click "Finish" when prompted.

To Run CCleaner:
  1. Right-click on CCleaner desktop icon and select "Run As Administrator..." to run it. If prompted by UAC, please allow it..
  2. Select and click Tools on the left Pane - you will see Uninstall tab in blue.
  3. Select and click Save to text file... button on the right bottom corner, add the name of opened tab to the name of suggested file install.txt, and safe it on your Desktop.
  4. Close CCleaner when finished.
  5. Locate saved file on the Desktop and attach it in your reply

Then:
Please tell me is this computer used for business purposes and connected to a business or educational network?
I need to know it - so I can provide the proper instructions.

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Answers to my questions related to your suspicions about hacking.
  3. Contents of CKFiles.txt log file
  4. Contents of SysInfo scan
  5. Contents of a log created by codecheck.txt
  6. Attached report file install.txt, saved after run of CCleaner.
  7. Answer to my question related to type of using of your computer

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 4238
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Nasty virus that won't go away

Unread postby osprey24 » April 11th, 2018, 12:19 am

CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.MN.11.SFABI0
----- EOF -----

Tech Support Guy System Info Utility version 1.0.0.4
OS Version: Microsoft Windows 10 Home, 64 bit
Processor: AMD A10-9620P RADEON R5, 10 COMPUTE CORES 4C+6G, AMD64 Family 21 Model 101 Stepping 1
Processor Count: 4
RAM: 7645 Mb
Graphics Card: AMD Radeon R5 Graphics, 512 Mb
Hard Drives: C: 930 GB (891 GB Free);
Motherboard: HP, 8332
Antivirus: Windows Defender, Enabled and Updated


Codecheck Version 1.0

04010


Alarms & Clock Microsoft Corporation 4/7/2018 10.1803.614.1000
AMD Radeon Settings Advanced Micro Devices, Inc. 3/30/2018 2017.0319.1455.26818
App Installer Microsoft Corporation 4/1/2018 1.0.12894.0
Bubble Witch 3 Saga king.com 4/4/2018 4.2.2.0
Calculator Microsoft Corporation 4/7/2018 10.1803.711.1000
Camera Microsoft Corporation 4/7/2018 2018.227.30.1000
Candy Crush Soda Saga king.com 4/4/2018 1.110.600.0
CCleaner Piriform 4/10/2018 5.41
Disney Magic Kingdoms Gameloft. 4/4/2018 2.8.2.3
Dolby Access Dolby Laboratories 4/4/2018 2.2.160.0
Feedback Hub Microsoft Corporation 4/8/2018 1.1712.811.1000
Get Help Microsoft Corporation 4/1/2018 10.1706.10602.0
Groove Music Microsoft Corporation 4/7/2018 10.18011.13411.1000
Mail and Calendar Microsoft Corporation 4/7/2018 17.9126.21425.0
Malwarebytes version 3.4.5.2467 Malwarebytes 4/4/2018 181 MB 3.4.5.2467
Maps Microsoft Corporation 4/8/2018 5.1711.10477.1000
Messaging Microsoft Corporation 4/1/2018 3.37.23004.0
Microsoft Office 365 - en-us Microsoft Corporation 4/1/2018 16.0.9126.2116
Microsoft Pay Microsoft Corporation 4/1/2018 2.2.18065.0
Microsoft Solitaire Collection Microsoft Studios 4/1/2018 3.18.12091.0
Microsoft Sticky Notes Microsoft Corporation 4/4/2018 2.1.18.0
Microsoft Store Microsoft Corporation 4/7/2018 11803.1001.6.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 3/30/2018 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 3/30/2018 17.1 MB 12.0.30501.0
Mixed Reality Viewer Microsoft Corporation 4/2/2018 3.1803.29012.0
Mobile Plans Microsoft Corporation 4/1/2018 3.1710.3044.0
Movies & TV Microsoft Corporation 4/7/2018 10.17122.16211.1000
My Office Microsoft Corporation 4/1/2018 17.8830.7600.0
Network Probe 3.0 ObjectPlanet, Inc. 4/2/2018 16.2 MB 3.0.0
News Microsoft Corporation 4/4/2018 4.23.10923.0
OneNote Microsoft Corporation 4/7/2018 17.9126.21251.0
Paint 3D Microsoft Corporation 4/4/2018 4.1803.21027.0
People Microsoft Corporation 4/8/2018 10.3.3472.1000
Photos Microsoft Corporation 4/7/2018 2018.18022.15810.1000
Print 3D Microsoft Corporation 4/1/2018 2.0.10611.0
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 4/9/2018 398 MB 6.0.1.8110
SketchBook Autodesk Inc. 4/4/2018 1.7.1.0
Spotify Spotify AB 4/9/2018 1.77.338.0
Store Experience Host Microsoft Corporation 4/1/2018 11802.1802.23001.0
Synaptics Pointing Device Driver Synaptics Incorporated 3/30/2018 46.4 MB 19.3.31.31
TeamViewer 9 TeamViewer 4/3/2018 9.0.93332
Tips Microsoft Corporation 4/8/2018 6.7.3462.1000
Voice Recorder Microsoft Corporation 4/7/2018 10.1803.613.1000
Weather Microsoft Corporation 4/3/2018 4.23.10923.0
Xbox Microsoft Corporation 4/1/2018 39.39.21002.0
Xbox Game bar Microsoft Corporation 4/1/2018 1.24.5001.0
Xbox Game Speech Window Microsoft Corporation 4/1/2018 1.21.13002.0
Xbox Identity Provider Microsoft Corporation 4/8/2018 12.39.13003.1000
Xbox Live Microsoft Corporation 4/1/2018 1.11.29001.0


I am the Operations Manager of a business and this computer is at times used for business however is not and never was to my knowledge connected to the company's LAN, it has used WIFI in my offices in the past, but never "networked" to my knowledge to my other PC's in the offices. It is used for checking email and basic document editing at home when I am away from an office, that's about it as far as the business goes. Overall it is my laptop that I use at home and will take to one of my offices on a rare occasion.

****I wanted to point out that CK Scanner, System Info Utility, and Code Check would not run even when following your instructions of right clicking, run as administrator, after getting errors and quitting them I got a box in the lower right screen from Windows Defender asking me to make "exclusions" for them, only after doing that were they able to run.*****
osprey24
Active Member
 
Posts: 5
Joined: April 10th, 2018, 2:59 am

Re: Nasty virus that won't go away

Unread postby pgmigg » April 11th, 2018, 12:35 am

Business Use
It appears you are using your computer for business purposes.

May I draw your attention to the couple of topics: ALL USERS OF THIS FORUM MUST READ THIS FIRST and Stand alone computers used in any type of business activity, which you should have read before posting for help.

The sections here explain why we do not offer help for such computers. Thank you for your understanding.


This topic is now closed.
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 4238
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 81 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware