Infected LNK, False positive ?

Found on 2 computers

***** [ Raccourcis ] *****

Raccourci infecté:  C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Acronis\True Image\Outils et utilitaires\Monter une image.lnk ( /mount_image )

This Link is found as infected on 2 computers and I wonder on the reality of infection.?: I launched ADW cleaner and the resulting file "quarantine.db" contained the TXT:

SQLite forma...

New *October 2016 * Adwcleaner "Cleans" identified issues, and they return upon reboot

Seeking help from the tech community! 

Computer background:

Windows 10 Home

First Virus Protector: McAfee (full) - Nothing found Currently uninstalled

Second Protector - AdwCleaner - Cleaned up items, but they return upon reboot 

Third Virus Protector: Ad-aware (full) - Cleaned up some stuff, but did not identify AdwCleaner items Currently Installed

Fourth Protector - HitmanPro (free) - ...

Re: File not disinfected: C:\WINDOWS\System32\dnsapi.dll

Thanks fr33tux, here is the log:

1. ========================= SEAF 1.0.1.0 - C_XX 2.  3. Commencé à: 06:43:11 le 06/10/2016 4.  5. Valeur(s) recherchée(s): 6. dnsapi.dll 7.  8. Légende: TC => Date de création, TM => Date de modification, DA => Dernier accès 9.  10.  11. ====== Fichier(s) ====== 12.  13.  14. "C:\Windows\System32\dnsapi.dll" [ ARCHIVE | 499 Ko ] 15. TC: 25/08/2016,07:11:35 | T...

Re: File not disinfected: C:\WINDOWS\System32\dnsapi.dll

Hello,

Can you do the following to look for "dnsapi.dll" files on your computer ?

  • Download SEAF : https://toolslib.net/downloads/viewdownload/155-seaf/
  • Right-click on the icon -> Execute as Administrator.
  • In the search field, type "dnsapi.dll".
  • Then, start the search. A report will open when the search is over (it contains the search results). Please share it here.

Best regards,

File not disinfected: C:\WINDOWS\System32\dnsapi.dll

As the title suggests. I believe this virus is responsible for Windows Defender not being to update its definitions or run at all. Log:

# AdwCleaner v6.020 - Logfile created 05/10/2016 at 20:24:47
# Updated on 14/09/2016 by ToolsLib
# Database : 2016-10-03.1 [Server]
# Operating System : Windows Embedded 8.1 Industry Pro  (X64)
# Username : Jamie - JAMIES-PC
# Running from : C:\Users\Jamie\Do...

Re: A whole lot of damage

Thanks for your reply. There was one more thing that wasn't working that I forgot to mention, the HP Simple Pass fingerprint reader for logging in. There may have been more. Fortunately I did have a system image, and I restored everything. I have to say I was more than surprised that 18 items were flagged for deletion, I have MalwareBytes and AntiExploit Premium running, I am very picky when it...

Adsfix is not a good tool

first I wanna to say this tool is not good for The following reasons.

as I just scan your tool with virustotal.com it is turns out that your tool is a Trojan and ?! so I can not say anything other then your tool is scanning the system very slowly and it taked up too much ram and the scan never done ! also your tool it is created Several processes in the Task Manager which make the screen/other...

Can't get rid of few malwares (yessearches)

Some time ago I notaice that when I am using spotify and my google chrome is open, some random ads shows up. It was little anoying so I wanted to get rid of it.  So basicly I use: MalwayBytes, AdwCleaner, Eset scan, Avast, HitmanPro, JRT. Uninstaled and instaled Chrome few times, uninstaled Spotify.  I did nearly every possible think and every time I open Chrome those guys come back. When I cle...

Re: sqlite3 error

# DelFix v1.013 - Logfile created 04/10/2016 at 22:00:41
# Updated 17/04/2016 by Xplode
# Username : Lewlew - BLACKHOLE
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)

~ Activating UAC ... OK

~ Removing disinfection tools ...

Deleted : C:\FRST Deleted : C:\AdwCleaner Deleted : C:\RegBackup Deleted : C:\TDSSKiller.3.0.0.44_27.07.2015_01.54.57_log.txt Deleted : HKCU\conso...

Re: ADWcleaner Remove and returned next day after cleaning

Hello,

Sorry for the delay.

Can you share more informations with FRST ?

  • Download FRST
  • Right-click on the file -> "Execute as Administrator"
  • Click on the "Scan" button
  • The logfile is saved as FRST.txt , and additional informations are in Addition.txt.
  • Please host them on Up2Share and share the generated link.

Best regards,