Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Several functions are greyed out


  • Please log in to reply
1 reply to this topic

#1 stefanbonnarens

stefanbonnarens

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:02:21 PM

Posted 20 April 2014 - 04:19 PM

Hi all,

 

I am using a Windows 7 laptop with McAfee installed when I suddenly got a message that something Windows Firewall blocked a part of Microsoft SharePoint Upload Center called groove.exe. I was a bit surprised (and also a bit dazed off) and made the terrible mistake of disabling the block. After a few minutes I saw that my taskmanager was greyed out and when I started task manager via the command prompt I got the error message that task manager was disabled by my system administrator. Also regedit was blocked the same way.

 

At that time I knew I was infected. I ran McAfee scan, CCleaner and Malwarebytes and was able to remove the virus. The task manager and registry editor were again available.

 

A couple of days later I suddenly saw my task manager again greyed out with the same error message. I ran Mcafee again, CCleaner and they removed stuff but not the virus (as the task manager was still greyed out). Strangely enough I saw that Malwarebytes could not be opened again. It just did not show any graphical interface.

Running Bitdefender did not help either (it ran but could not remove the virus as task manager was stil greyed out).

 

I then used combofix and it removed files and now my task manager is again available as well as the registry editor. However still Malwarebytes cannot be run.

I have a log file which I can share if needed. I sure want to know what I really says.

 

Kind regards

 

Stefan

 



BC AdBot (Login to Remove)

 


m

#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 50,579 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:21 AM

Posted 20 April 2014 - 06:06 PM


Since you already ran Combofix due to possible malware infection, its log should be thoroughly reviewed by trained experts in order to ascertain what was detected/removed and what malware you're dealing with. A log should have been created and saved to the root directory, usually C:\ComboFix.txt.

Please follow the instructions in the Preparation Guide For Requesting Help starting at Step 6.
  • If you cannot complete a step, then skip it and continue with the next.
  • In Step 6 there are instructions for downloading and running DDS which will create two logs. (Note: Windows 8.1 Users will not be able run DDS and create a log)
When you have done that, start a new topic and post the required logs to include your ComboFix log in the Virus, Trojan, Spyware, and Malware Removal Logs forum, NOT here, for assistance by the Malware Response Team Experts.
-- ComboFix logs are not permitted in this forum.

After doing this, please reply back in this thread with a link to the new topic so we can closed this one.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users