Jump to content

Recommended Posts

Hi

Device is a Surface Pro 4 running Windows 10. 

So some backstory.

  • I tried downloading some software that seemed innocuous. Turned out to be malware-ridden.
  • I tried solving the issues myself which included:
    • Many MB scans and quarantining/deleting, My goal was basically to get rid of everything MB came up with and, mistakenly, I believed this would be sufficient to restore my device's health. I'm aware of and used RKill during this step too. RKill doesn't ever show a problem.
    • For the things I couldn't quarantine/delete via MB, I manually uninstalled the programs via the control panel or deleted folders and files or tried making some registry edits. I used tools like IOBit Unlocker to stop a certain process that protected some malware files from deletion. It worked and I got the files deleted, however I don't remember the name of the file/type of malware where I used this methodology. 
  • Got to a point where MB showed I was clean. But Windows Update/Defender wouldn't work; in Defender's case, even after uninstalling MB. Also, there is some browser hijacking going on whenever I try to search something using Chrome's address bar. For example, I type "best way to learn a language" into the Chrome address bar so as to search it using my default search provider (Google), there is some brief visit to a search60 site, and finally I'm staring at the Bing results for "best way to learn a langauge". I don't use Bing ever.
  • My next guess is that I was still infected, perhaps at a deeper level. I've read many times that anti-malware isn't 100% exhaustive.
  • I'm not technical, so my best course of action would be to recover/fresh start. I believe the malware has Recovery/Fresh Start disabled as well.
  • I also cannot create recovery media or use the refresh windows tool available from Microsoft without there being some convenient error.
  • GMER causes a blue screen mid-scan.

Per the FAQ post, relevant logs are attached. Any and all help is appreciated!

I installed PowerISO after the fact. If anyone knows of a good virtual drive that isn't considered adware, I'm all ears!

 

Addition.txt

FRST.txt

Malwarebytes Free Scan.txt

Rkill.txt

Edited by jesuschrist
Link to post
Share on other sites

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread.

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.