Weird behavior, possible Trojan


  1. frankmanguiob
    Posts : 5
    Windows 10
       New #1

    Weird behavior, possible Trojan


    Symptoms:
    1. Volume icon appears with a red cross even though all sound devices are working.
    2. With UAC set to default, a notification pops up at startup asking my permission to run explorer.exe
    3. I can't run some programs.
    4. Malwarebytes web protection suddenly disabled and can't be re-enabled. I'm using the latest one.
    5. System restore fails all the time, so can't go that path either.

    I suspect it is malware that targets/makes a fake explorer.exe, but not entirely convinced since there is only one instance and the CPU load is not constantly high. but I want to know if anyone has encountered this before and might point me int the right direction, like the name of the malware, perhaps.

    Thanks, everyone!
      My Computer
    Quote Quote

  3. Bree
    Posts : 31,604
    10 Home x64 (22H2) (10 Pro on 2nd pc)
       New #2

    frankmanguiob said:
    4. Malwarebytes web protection suddenly disabled and can't be re-enabled. I'm using the latest one.
    Welcome to TenForums @frankmanguiob

    Have you tried a scan with Malwarebyte Chameleon? If you are using 3, see:
    Malwarebytes | Chameleon - Free Malware Removal Tool

    There's also Defender Offline.
    Windows Defender Offline Scan in Windows 10
      My Computers
    Quote Quote

  4. cottonball
    Posts : 579
    Windows 10 Home
       New #3

    frankmanguiob,

    Welcome to TenForums!

    You can give this tool a try to see what it finds...

    Please use the Farbar Recovery Scan Tool Download
    Save FRST to your Desktop.
    [Note: You need to run the version compatible with your system: 32 bit or 64 bit]

    Double-click FRST to run it.
    When the tool opens click Yes to the disclaimer.
    Next, press the Scan button.

    When done, the tool makes a log (FRST.txt) on the Desktop.
    Also, the first time the tool is run, it makes another log: (Addition.txt).

    Please attach both reports in your reply.


    Note: FYI, MBAM v3 has experienced problems lately.
      My Computer
    Quote Quote

  6. frankmanguiob
    Posts : 5
    Windows 10
    Thread Starter
       New #4

    @Bree

    Thanks! Chameleon ran but it didn't detect anything. Defender offline doesn't work for some reason. I can't even view event logs.
      My Computer
    Quote Quote

  7. frankmanguiob
    Posts : 5
    Windows 10
    Thread Starter
       New #5

    -duplicate-
      My Computer
    Quote Quote

  8. frankmanguiob
    Posts : 5
    Windows 10
    Thread Starter
       New #6

    -duplicate-
      My Computer
    Quote Quote

  9. frankmanguiob
    Posts : 5
    Windows 10
    Thread Starter
       New #7

    Hi cottonball,

    Thanks!

    Please see the attached.

    Cheers,
    Frank
    Weird behavior, possible Trojan Attached Files
      My Computer
    Quote Quote

  10. cottonball
    Posts : 579
    Windows 10 Home
       New #8

    frankmanguiob,

    My apology for the delay. Can't remember getting a notification of your reply.

    Looked at the reports provided, and did not see malware.

    You may want to run a System File Check on the OS:
    SFC Command - Run in Windows 10

    Use: Option Three

    If you see: Windows Resource Protection found integrity violations

    Then, please reboot, and run the sfc /scannow command again.

    Sometimes it takes running the sfc /scannow command up to 3 times before all is fixed.

    If no luck, and still looking at integrity violation, please use Option Five: To View Only the "SFC" Scan Results from the CBS.LOG

    Next, attach the sfcdetails.txt in you reply for someone to look at.
      My Computer
    Quote Quote

 

  Related Discussions
sticky keys weird behavior
in General Support

I have an ASUS Rog gamer running windows 10. When sticky keys are turned on weird behavior happens when certain letters are chosen. The letter f often causes the feedback window to open. However, in word the find search of opens. The letter r...
Hello everyone I'm using surface pro 5 now and usually I can get around 5 hours of battery life. I've done everything to improve the battery life and I install the battery bar. I discover that when my battery is above 50% ,discharge rate will...
System restore - weird behavior
in Backup and Restore

I seem to be running into some odd behavior with system restore. I wanted to delete my old restore points and create a new one. So under system restore>configure, I selected delete. The "current usage" dropped to 0 GB. But when I closed it and went...
The only reason I'm using Windows at all, (and not using Linux), is Windows is the only OS that's "handicap accessible" for people with my type of eye problems. I have very poor eyesight... and without the magnifier, I can't use the computer at...
Weird behavior after update
in General Support

I had a recent update of win10. After that everything is ok except when I launch applications a small window with an html file open with the buttons save and open. If I open they open in the browser but nothing happen if I save them the same because...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 17:47.
Find Us




Windows 10 Forums