Page 1 of 2 12 LastLast
  1.    02 May 2016 #1
    Join Date : Nov 2015
    Posts : 9
    WINDOWS 10

    Microsoft bananas


    Since first installation of Win10 on new Laptop with 8.1 Pre-installed, my computer has been infested with virus. I have had experts from Comodo and Microsoft to check and recheck, but the viruses reappears... At first I thought icrosoft had gone bananas in controlling my every move on my own laptop, denying access rights and general configuration trouble.

    That's all I know this virus does... Every attempt to configure Windows and different accounts are made useless within days. All I can do on my machine is pretty much reboot, reinstall... One day my Microsoft account was cancelled three or four times. Adobe account denied access most of the time. I have no idea what the purpose of the virus is, but I has a lot in common with 'Blocking-Virus'. Except no ransom has appeared.

    I am no virus expert and never hope to become one. But I have a nagging feeling this is connected to my first bad experience with virus. I never used antivirus except for checking now and then until my computer was hijacked for a week about a year ago. Even when I tried to enter BIOS I was stopped by whoever had taken control. For a week if I tried to start the machine, I was bombarded with silly reasons for why this was done. I had no interest whatsoever, but was alarmed by all the nonsense they had provided as some kind of ideology. Pages after pages stating that I was without hope and that I was very stupid not to stop the attack. I didn't spend a lot of time reading this. The only thing that struck me as odd, was that the writings were not half bad grammar and spelling wise. Then again, I did not analyze the texts.

    This might be paranoia, but when with no further explanation I could suddenly start the computer. I used every antivirus I could find to get rid of the what I thought was planted. There was all kinds of virus on all computers at my home. Comodo was recommended and I liked that they have support 24/7 and that their so called 'GeekBuddies' use remote access. Once I had three shifts of GEEKS after another working what seemed to me solely on my computer. They all at some point argued that my laptop and different drives were virus free, but I could see from the screen that there was some essential part of their software that they could not configure as it was meant.

    What to do next... I am very much fed up with rebooting and reinstalling. I have a background from journalism and photography naturally have some files, mostly photographs I guess, that I absolutely don't want to erase. I get bored reading technical stuff about virus, but would like to know if small and smart can a virus be. Are there examples of just a few numbers and bits added to for example a JPEG file? And if so, are they impossible tom detect if tailored for one infection. Because that's where I land in my paranoia, that some virus freak somewhere planted something and can activate it whenever I go online. My chief problem with this theory is why would anyone have interest in my files...

    Well, after a night installing I got the message as the first time installing Windows 10 that Defender has been shut down blocked or whatever on this computer. That's a sure sign that next time I reboot, I might have to re-install...

    Jo Arthur Andersen
      My ComputerSystem Spec
  2.    02 May 2016 #2
    Join Date : Oct 2013
    NW Florida
    Posts : 9,674
    Windows 10 Pro and Windows 10 Pro Insider

    Please run Malwarebytes free. Be sure to uncheck the trial option during install Malwarebytes | Anti-Malware for your home and for your business
    after that run Kaspersky TDSS Killer Download Free TDSSKiller - Rootkit Removal | Kaspersky Lab US
    Then run the ESET Online Scanner http://www.eset.com/us/online-scanne...S-BR-C-Other|B

    Whatever any of those find, please upload the log files. this will tell you how to upload files and screenshots here. https://www.tenforums.com/tutorials/1...en-forums.html
      My ComputersSystem Spec
  3.    02 May 2016 #3
    Join Date : Feb 2015
    Bamberg Germany
    Posts : 18,014
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu

    Hey Steve he might want to run FRST64 after too: Farbar Recovery Scan Tool Download


    It also works on Win10, I ran it for something on the Malwarebytes Forum, for MBAE before.
    Farbar Recovery Scan Tool, or FRST, is a portable application designed to run on Windows XP, Windows Vista, Windows 7 and Windows 8 in normal or safe mode to diagnose malware issues. It is also possible to run FRST in the Windows Recovery Environment in order to diagnose and fix boot issues.

    This program will display detailed information about the Windows Registry loading points, services, driver services, Netsvcs entries, known DLLs, drives, and partition specifications. It will also list some important system files that could be patched by malware.
      My ComputersSystem Spec
  4.    02 May 2016 #4
    Join Date : Aug 2015
    Posts : 824
    Win10/64 Pro 1511 (and 2 Win 7/64 Ult & Pro systems)

    Quote Originally Posted by Cliff S View Post
    Hey Steve he might want to run FRST64 after too: Farbar Recovery Scan Tool Download


    It also works on Win10, I ran it for something on the Malwarebytes Forum, for MBAE before.
    For the record, FRST itself is just a non-invasive, diagnostic scanner.
    It may point to malware infection and other anomalies.
    But in order to remove malware and fix other issues, it requires the skills of a trained malware expert to craft a customized "fixlist.txt" script. One then re-runs it with the script, to generate a "fixlog.txt" log file.

    Or did I misunderstand??

    <just sayin'>

    Cheers,

    MM
      My ComputerSystem Spec
  5.    02 May 2016 #5

    Jo, try Essenbe's suggestion first.

    If that doesn't work, download the free Win Patrol and see what your start-up programs are. If that doesn't work, try a "clean boot." The instructions are simple and you can find them at https://support.microsoft.com/en-us/kb/929135

    It's possible that you don't have a virus; you have either a software conflict or a software vs. hardware conflict.
      My ComputerSystem Spec
  6.    02 May 2016 #6
    Join Date : Oct 2013
    NW Florida
    Posts : 9,674
    Windows 10 Pro and Windows 10 Pro Insider

    @Cliff S and @MoxieMomma I'm sure you guys are more experienced at malware than I am.
      My ComputersSystem Spec
  7.    02 May 2016 #7
    Join Date : Jul 2015
    PA, USA
    Posts : 476
    Windows 10 Pro (Mix of Builds) / Linux Mint

    Quote Originally Posted by essenbe View Post
    @Cliff S and @MoxieMomma I'm sure you guys are more experienced at malware than I am.
    Perhaps, but your recommendation of MBAM is spot on target to begin with.

    OP, unless you had this "Virus" prior to your installing windows 10, I doubt your issues are virus related, adware/malware possibly, or other SW/HW issues related to the upgrade on your particular system, not the fault of windows 10 itself.
      My ComputerSystem Spec
  8.    02 May 2016 #8
    Join Date : Jun 2015
    Posts : 85
    Windows 10 64-bit

    @ joarthur98 . Is the laptop the only PC connected to the modem/router? Not talking Apple or Android. Not an expert on virus/malware but it could be your router that is compromised as you've done reinstalls. Just a thought.
      My ComputerSystem Spec
  9.    20 May 2016 #9
    Join Date : Nov 2015
    Posts : 9
    WINDOWS 10
    Thread Starter

    Windows 10 forum.
    Thanks a lot for all the advice. I am sorry for my late comment. I tried twice, but my laptop crashed to bluescreen both times when I started typing. I got spooked enough to stay away. I have only read through the advice once. This time I write my comments in advance and will copy your answers and see if it works. I am already impressed by your efforts. If it works I will be even more impressed, anyway post the outcome here.
    Since last, I have re-installed at least twice. Of other fun; tried to run ‘mrt.exe’ several times as ‘Defender’ is useless. several times the last couple of weeks. When running it builds up to 3-4 virus found, but when done it says all is fine. At random I checked one of the files it said was without problems -it was called ‘folstart’. I looked it up and learned that it was not a nice file at all. I tried to follow some advice but it ended in crash and re-install first time – now I have deleted nearly at random any registry keys program and files that I thought looked suspicious. Probably a few too many. Status; pc barely functioning
    Among the more annoying things since last was that twice I have lost a few hours’ work where I thought not possible. First time was working with a picture in Photoshop with a saved copy and automatic save every five or ten minutes. Photoshop stopped working or rather disappeared in a blink. My saved copy and Photoshop’s safety were also gone. Later the same happened working in Word, on a file uploaded to OneDrive to be safe. I had written six or seven pages when word got stuck. When re-opening the file it was half a page. I got a message asking if I wanted my file merged with OneDrive’s remote and happily agreed. Next my file was reduced to two sentences.

    I wrote this a few days ago. Probably will try tour advice - in computor hell now. It just seems so pointless to be spending 95 % of my time trying to avoid anotrher crash. My host file is full of addresses - and I have spent near two days tring to delete it, every ICACLS command and TAKEOWN. Thanks again...

    Jo Arthur
      My ComputerSystem Spec
  10.    20 May 2016 #10
    Join Date : Nov 2015
    Posts : 9
    WINDOWS 10
    Thread Starter

    Malwarebites, TDSS Killer...


    I have seen Malwarebites and TDSS Killer been recommended before so I had the mbam-file dowloaded on another computer. It worked and found a lot, crashed and got a lot of messages saying how infected it was... I will call it an improvement that it looks like my computer is actually being used for something if that is what the addresses in my hosts-file means. It says it wS created by SPYBOT , but yhen I don't understand why it has made it impossible to alter it.

    I will try and upload some screenshots, but now the machine is so slow I have to wait some 30 seconds for my typing here to finish. This is just incredible boring...
      My ComputerSystem Spec

 
Page 1 of 2 12 LastLast


Similar Threads
Thread Forum
Microsoft Edge: What's Next for Microsoft's New Browser & Web Platform
Microsoft Edge: What's Next for Microsoft's New Browser & Web Platform Source: Microsoft Edge: What's Next for Microsoft's New Browser and Web Platform Channel 9
Windows 10 News
Microsoft Mahjong and Microsoft Solitaire collection never opens
Well, i made a search for a solution to this problem all over the net including your forum and other forums, no luck. it is not a matter of life or death, but i would like to be able at least to open the apps. Sorry if i posted an old problem,...
Gaming
'This product is licensed to: Microsoft Microsoft'
44725 I have been looking everywhere but I cannot find if this is normal or not. I was an Insider on 10547 but then had to install 10240 RTM( I remember seeing my name on the 'registered to:' tab. But now when I enter 'winver' I see it's registered...
Windows Insider
Microsoft Health and Microsoft Band: The Next Step
Source: Microsoft Health and Microsoft Band: The Next Step in Our Journey - The Official Microsoft Blog
Windows 10 News
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 08:28.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums