I’m seeing multiple avast warnings of this virus. Avast moves it to the chest but it keeps coming back. Help!! (Thanks-in-advance!)
System: Win7 Ultimate 64-bit
I’m seeing multiple avast warnings of this virus. Avast moves it to the chest but it keeps coming back. Help!! (Thanks-in-advance!)
System: Win7 Ultimate 64-bit
Attach your basic logs. (MBAM, FRST and aswMBR…!!)
Instructions: https://forum.avast.com/index.php?topic=53253.0
Requested logs are attached.
Good job, now you’ve to wait a bit…
Hello,
Posted FRST log does not show the PUP/Adware nor any other form of real malware presence.
We will preform the additional check via tool called Zoek. Zoek shall preform some fixes and examination at the same time.
Please download Zoek tool by Smeenk (
http://www.mcshield.net/personal/magna86/Images/Zoek_icon.png
) from here and save it to your Desktop.
Unpack the archive…
[*]Close any open browsers and temporarily disable your AntiVirus program. (if it is necessary)
If you are unsure how to do this please read this or this Instruction.
[*]Double click on zoek.exe to run the tool. Please wait while the tool does not start…
[*]Copy the text present inside the code box below and paste it into the large window in the zoek tool:
Uninstall-List;
EmptyCLSID;
C:\Windows\System32\dkabcoms.exe;i
C:\Windows\system32\DKabcoms.exe;i
C:\Windows\SysWOW64\DKabcoms.exe;i
C:\ProgramData\374311380;vs
ResetHosts;
ResetIEProxy;
ipconfig /flushdns >> %temp%\log.txt;b
bitsadmin /reset /allusers >> %temp%\log.txt;b
EmptyFoldersCheck;Delete
StandardSearch;
AutoClean;
[*] Click on
http://www.mcshield.net/personal/magna86/Images/Run%20Script%20by%20zoek.png
button.
Please wait until a logreport will open (this can be after reboot)
[*]Save notepad to your Desktop and attach here zoek-results.log
Note: It will also create a log in the C:\ directory named “zoek-results.log”
Zoek-results log attached.
Cool. Zoek has done a few thing … but still there is nothing dangerus here. Still, run zoek again with this script and tell me how is the computer running now?
EmptyAllTemp;
Notice: I do not need the fresh created zoek logreport.
Computer seems fine now. The avast warning messages would pop up unexpectedly so I’ll need a few days to be sure they’re gone.
Thank to all involved for all your help!
Monitor that please and if avast! throw a warning post the screenshot. I shall remove used tools now.
• The following will implement some post-cleanup procedures:
=> Please download DelFix by Xplode to your Desktop.
Run the tool and check the following boxes below;
[i]
http://www.mcshield.net/personal/magna86/Images/checkmark.png
Remove disinfection tools
http://www.mcshield.net/personal/magna86/Images/checkmark.png
Create registry backup
http://www.mcshield.net/personal/magna86/Images/checkmark.png
Purge System Restore [/i]
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:[b]DelFix.txt[/b])
The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.