And last night I foolishly installed a program with a virus.
I have Norton Security which gave a 'good' rating to the viral program. On execution of the program it began showing much more activity then I thought it should. I found and uninstalled new entries in the program list. Then I ran about using 'the chicken with it's head cut off approach to security' like internal snooping and running CC cleaner at some registry keys that just seemed odd. I did end up at different reputable security sites and Microsoft fixed a couple things like better DEP for me. Coming to grips I installed Malewarebyes and that found and fixed PUP.wxDfast
I really had no desire to keep whatever was in registry at this point and restored an earlier version. The restore hung on boot and startup repair restored to a viral registry (restore point created by the virus). I tried to restore backwards again and however succeeded. I was then unable to use the web because Norton blocked intrusion from 75.75.75 or something. I rebooted again.
I reinstalled Malwarebytes and removed the virus again with two registry keys:
HKCR\scrfile\shell\open\command| (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: ("%1" /S) -> Quarantined and repaired successfully.
HKCR\regfile\shell\open\command| (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: (regedit.exe "%1") -> Quarantined and repaired successfully.
A couple hours ago, I opened the task manager and found it corrupted, followed MS direction for fixing that.
In the last 45 minutes I have had two 'task completed' sounds. I don't know why.
Any advice would be super.
Malewarebytes scanner is up now and shows all clear.
editing: Forgot, the virus hijacked my homepages and added a search engine to the lists, was why I knew to look for a problem. Did not get a repeat of that.
editing: Also, there was a point where I random chose to go to a Firefox link rather then a homepage, found youtube interface broken, so reinstalled Flash, Quicktime, and Firefox, just in case. Seems OK now.
Edited by Beach Plum, 11 July 2012 - 12:09 PM.