Good morning,
I have been receiving messages that my svchost.exe is infected.
After reading the “Logs to assist in cleaning malware” post, I have attached the mbam, frst and addition logs.
I am in the middle of the aswmbr scan.
Thanks in advance for the assistance!
Hello,
https://sites.google.com/site/cannedfixes/home/hosted-images-tools/remove%20outdated.jpg
Uninstall some programs
We need to uninstall some unwanted/unneeded programs.
[*]Press the
https://sites.google.com/site/cannedfixes/farbar-recovery-scan-tool/WindowsKey.png
- R on your keyboard at the same time. Type appwiz.cpl and click OK.
[*]Search there for each entry mentioned below, right-click the entry and click Uninstall one at a time
The list of programs to uninstall:
[*]7-Zip Packages
[*]YTD Video Downloader 4.8.9
After completing uninstalls, please manually reboot your machine!
Note: If you get the message like: An error occurred while trying to uninstall, just press Yes.
https://sites.google.com/site/cannedfixes/home/hosted-images-tools/51a612a8b27e2-Zoek.png
Scan with ZOEK
Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
[*]Right-click on
https://sites.google.com/site/cannedfixes/home/hosted-images-tools/51a612a8b27e2-Zoek.png
icon and select
https://sites.google.com/site/cannedfixes/home/hosted-images-tools/RunAsAdmin.jpg
Run as Administrator to start the tool.
[]Wait patiently until the main console will appear, it may take a minute or two.
[]In the main box please paste in the following script:
createsrpoint;
autoclean;
emptyalltemp;
bitsadmin /reset /allusers;b
ipconfig /flushdns;b
[*]Make sure that Scan All Users option is checked.
[*]Push Run Script and wait patiently. The scan may take a couple of minutes.
[*]When the scan completes, a zoek-results logfile should open in notepad.
[*]If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)
Post its content into your next reply.
Have uninstalled the progs, run zoek and attached the zoek-results & aswMBR logs.
How is the situation now?
I haven’t seen any problems so far. I just rebooted (I usually received at least 2 warnings on a reboot) and no problems.
Very good.
The following will implement some post-cleanup procedures:
Download DelFix by Xplode and save it to your desktop.
[*]Run the tool by right click on the
http://www.imgdumper.nl/uploads6/51a5ce45267c1/51a5ce45263de-delfix.png
icon and Run as administrator option.
[*]Make sure that these ones are checked:
[]Remove disinfection tools
[]Purge system restore
[*]Reset system settings
[*]Push Run and wait until the tool completes his work.
All tools we used should be gone. Tool will create an report for you (C:[B]DelFix.txt)
[SIZE=1]The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.
Looks like it cleaned up pretty neatly. Do you want to see the log?
Is not necessary, best regards
Thank you very much!! Have a great day!