Windows 10: I have contracted a Virus that shows many Ads Solved

Page 16 of 17 FirstFirst ... 614151617 LastLast

  1. Posts : 149
    Windows 10 Version 1709 as of 01-21-218
    Thread Starter
       19 Nov 2015 #151

    For @simrick & @lx07

    It's 11:20 am EST. I just completed the two assignments for this morning and, you'll be happy to hear, they both worked.

    Disabling the file:
    Yes Task Plugin Bus Microsoft Corporation C:\WINDOWS\system32\rundll32.exe "C:\Users\User\AppData\Local\Plugin Bus\xBin\PluginBus.dll",#3
    in CCleaner > Scheduled Tasks was effective in disappearing the DLL Error message on Reboot;

    and by adding a file to the Registry, Defender was reactivated. I used Option 2 because I likely have the Home Version.

    I'll run a full Scan with Defender now.

    On another matter: I received a notification both yesterday and this morning that "Adobe Acrobat Reader DC" was available for Download. I think this is the one that started my problems back on November 9.

    At this point, it looks like everything is "ship-shape." I am, of course, greatly indebted to the bloggers at Windows Ten Forums, and I'll try to be more careful about what I click on in the future. If I have any more problems or concerns with Windows 10, I'll know where I can go for support.

    Thanks a million, guys!
      My ComputerSystem Spec

  2.    19 Nov 2015 #152

    Writer said: View Post
    For @simrick & @lx07

    It's 11:20 am EST. I just completed the two assignments for this morning and, you'll be happy to hear, they both worked.
    HURRAH!!

    Writer said: View Post
    Disabling the file: in CCleaner > Scheduled Tasks was effective in disappearing the DLL Error message on Reboot;

    and by adding a file to the Registry, Defender was reactivated. I used Option 2 because I likely have the Home Version.
    Excellent news! Another malware infestation fully recovered!!

    Writer said: View Post
    I'll run a full Scan with Defender now.
    Excellent. I would recommend, when your free trial of Malwarebytes Anti-malware is finished, that you seriously consider purchasing that program. MBAM Pro + Defender is a good defense, and with the Anit-Exploit+CryptoPrevent+ Firefox with security tweaks, you should be in a very safe environment. BUT, user awareness is always the key!

    Writer said: View Post
    On another matter: I received a notification both yesterday and this morning that "Adobe Acrobat Reader DC" was available for Download. I think this is the one that started my problems back on November 9.
    Here's how you proceed:
    Open Ccleaner, and go to uninstall programs. Select Adobe Reader and uninstall it. Reboot the system, and go here for the download:

    Adobe Acrobat Reader DC Install for all versions

    Be sure to UNCHECK the optional offer in the middle section of the page.

    Writer said: View Post
    At this point, it looks like everything is "ship-shape." I am, of course, greatly indebted to the bloggers at Windows Ten Forums, and I'll try to be more careful about what I click on in the future. If I have any more problems or concerns with Windows 10, I'll know where I can go for support.

    Thanks a million, guys!
    You are quite welcome! So glad we got everything sorted! That was a really good one! Now you are the malware fighter and I can retire.

    p.s. in the future, infections must be dealt with immediately, before they spiral out of control....
      My ComputerSystem Spec


  3. Posts : 149
    Windows 10 Version 1709 as of 01-21-218
    Thread Starter
       19 Nov 2015 #153

    For @simrick and @lx07

    This is a follow-up that I'm sure will interest you:

    The Defender Full-Scan finished; I was surprised at the results:
    658,530 items were scanned.

    It found two severe threats:

    Trojan:Win32/startpage.xw

    Trojan:Win32/Varpes.J!plock
    The Alert Level was Severe
    Status: Succeeded

    Of course, I deleted the two threats immediately.

    Out of curiosity, I clicked on History: Two items were listed as Quarantined: The Alert Level was High:

    SoftwareBundler:Win32/InstallMonetizer 11-09-2015 4:36 pm

    SoftwareBundler:Win32/SBInstaller 11-09-2015 4:22 pm
    Category: Software Bundler

    Description: This program may install other potentially unwanted software.

    Recommended Action: Remove this software immediately.
    I deleted both of them.

    What is of note here is that I did not activate Defender on Nov. 9; I didn't know how. It must have detected a problem and automatically activated itself whereby it flagged the two Software Bundler files. This occurred just about two hours after the initial infection which occurred on November 9 at about 2:00 pm. This means that Defender was not immediately disabled by the viruses. It evidently took some time for the infection to become stronger as more malware was downloaded to my computer.

    I appears the Defender is very effective Anti-Virus software.
      My ComputerSystem Spec

  4.    19 Nov 2015 #154

    Writer said: View Post
    For @simrick and @lx07

    This is a follow-up that I'm sure will interest you:

    The Defender Full-Scan finished; I was surprised at the results:
    658,530 items were scanned.
    It found two severe threats:
    Trojan:Win32/startpage.xw
    Trojan:Win32/Varpes.J!plock
    The Alert Level was Severe
    Status: Succeeded

    Of course, I deleted the two threats immediately.

    Out of curiosity, I clicked on History: Two items were listed as Quarantined: The Alert Level was High:
    SoftwareBundler:Win32/InstallMonetizer 11-09-2015 4:36 pm

    SoftwareBundler:Win32/SBInstaller 11-09-2015 4:22 pm


    Category: Software Bundler

    Description: This program may install other potentially unwanted software.

    Recommended Action: Remove this software immediately.

    I deleted both of them.
    Yes, leftovers...you may find that for a little while, but nothing is active, and it could be that it even found them in a quarantine file (which renders them harmless). Good though, that we see Defender working properly!

    Writer said: View Post
    What is of note here is that I did not activate Defender on Nov. 9; I didn't know how. It must have detected a problem and automatically activated itself whereby it flagged the two Software Bundler files. This occurred just about two hours after the initial infection which occurred on November 9 at about 2:00 pm. This means that Defender was not immediately disabled by the viruses. It evidently took some time for the infection to become stronger as more malware was downloaded to my computer.

    I appears the Defender is very effective Anti-Virus software.
    Well, interesting. You don't have to "activate" Defender, per se, as it should always be running in the background, and performing automatic scans without any interaction from you. So, Defender was doing its job, until something downloaded which turned it off using group policy commands. Having Malwarebytes Antimalware Pro running would prevent this from happening again.

    Almost all of the malware we removed was located in your hidden AppData folder. This is a typical location for malware. The CryptoPrevent program is designed to prevent malicious files from running in the AppData folder. Malwarebytes Anti-Exploit also watches for "suspicious behaviour" of questionable executables and prevents them from running, or at least asks you if something should really be allowed to run or not.

    Coupled with the security modifications added to the Firefox browser, this layered protection we put in place for you should be quite robust. However, there's always the possibility of user error. Clicking on a malicious download and telling the file to run/install, may send up flags now for you, but *you* have final say - and if you tell it to go ahead and install, the computer will do what you say, and install it.

    So, be careful opening emails and attachments, be sure of the source when downloading programs, always scan your downloads before opening them (right-click on the file and select Scan with Malwarebytes Antimalware), stay away from "toolbars", and never use torrent programs.

    Have fun with Windows 10!
      My ComputerSystem Spec

  5.    19 Nov 2015 #155

    After all you've gone thru now is the time to make a good restore point and a system image.
      My ComputerSystem Spec


  6. Posts : 19,932
    Win 7 32, Win 7 64 Pro, Win 8.1 64 Pro, Win 10 64 Education Edition
       20 Nov 2015 #156

    Good suggestion. You can find the tutorial here on making a system image. Keep the images on a external HDD/FD that you don't have connected to the PC at all times. Keep several prior images archived in case you inadvertently make one with a virus.

    System Image - Create in Windows 10 - Windows 10 Forums

    A system image is an exact copy of a drive or partition which can be used to restore your PC to the state it was in at the time the image was made. By default, a system image only includes the drives that Windows requires to run, including Windows 10 itself, your system settings, programs, and files. You may also include any other drive in the image if you wish. When you restore your computer from a system image it is a complete restoration, you cannot choose individual items to restore and all of your current programs, system settings, and files are replaced with the contents of the system image.

    This tutorial will show you how to create a system image backup in Windows 10 to be able to use to restore the contents of your computer back to the state it was in when the system image was created if your hard drive fails or your computer ever encounters problems.
      My ComputerSystem Spec


  7. Posts : 149
    Windows 10 Version 1709 as of 01-21-218
    Thread Starter
       20 Nov 2015 #157

    For @Borg 386 and @KACI

    Thanks for the tips concerning creating another Restore Point and doing a System Image; I'll do both.
      My ComputerSystem Spec

  •    20 Nov 2015 #158

    Writer said: View Post
    For @Borg 386 and @KACI

    Thanks for the tips concerning creating another Restore Point and doing a System Image; I'll do both.
    Good idea.
    And, when you're sure everything is working well, you can go ahead and delete all the quarantined items in Malwarebytes Antimalware and SuperAntiSpyware too.
      My ComputerSystem Spec


  • Posts : 149
    Windows 10 Version 1709 as of 01-21-218
    Thread Starter
       20 Nov 2015 #159

    For @simrick

    There were about 30 or 40 quarantined files in Malwarebytes AM which I removed, and there were none in SuperAntiSpyware.

    Thanks for the rep, by the way. I'm probably the only guy who has ever gotten a rep for following instructions.
      My ComputerSystem Spec

  •    20 Nov 2015 #160

    Writer said: View Post
    For @simrick

    There were about 30 or 40 quarantined files in Malwarebytes AM which I removed, and there were none in SuperAntiSpyware.
    Okay great! :)

    Writer said: View Post
    Thanks for the rep, by the way. I'm probably the only guy who has ever gotten a rep for following instructions.
    Actually, no, you're not. You're the second person.
      My ComputerSystem Spec


  •  
    Page 16 of 17 FirstFirst ... 614151617 LastLast

    Related Threads
    BEST Anti-Virus for Windows 10 Pro ?? in AntiVirus, Firewalls and System Security
    I have been using Norton Anti-Virus for 10 years and Norton Security the past 3 years !! I actually bought a 3-User pack on a Super Sale Price (from Norton). My Wife uses on and I have one "unused" !! Since I Upgraded to WINDOWS 10 PRO I find...
    Malware or Virus? in AntiVirus, Firewalls and System Security
    I usually use downmagz.com to download magazines. Today, I went to there to get some mags and when I went to the download page I got a popup that said CableONE has blocked the website. Clicked OK and then a page came up with a blue screen and...
    Solved ?Question about virus behavior. in AntiVirus, Firewalls and System Security
    Hi all, story; I got a virus about 6 months ago,,around then,, I had a pro-virus program, and it found virus after virus,after virus,,,,uhh infected files,,, my question is; why didnt the virus program kill the "source of the virus"? was i...
    Help with a virus in AntiVirus, Firewalls and System Security
    Hi everyone, So here is my issue, I installed some software but it turned out to be a fake version of that software. It installed a ton of bloat and popups and all of that. When ever I uninstalled the software it would reinstall itself and it was a...
    VIRUS TOTAL Bookmarked in AntiVirus, Firewalls and System Security
    While Miles was helping some one in Eight Forums he made a recommendation for the user to scan a URL with an online scanner. An then it came to me, I should have Virus Total bookmarked. https://virustotalcloud.appspot.com/static/img/logo.png ...
    Our Sites
    Site Links
    About Us
    Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

    Designer Media Ltd
    All times are GMT -5. The time now is 16:54.
    Find Us