Hello, I got a virus trojan backdoor issue!
The infected computer is an Asus Desktop running windows 8.1 64 bit
I got the issues and bonus malware while installing a freeware vst (for music)
I knew I should have ended the process and reinstalled it properly but yep I accepted a bad install.
My computer acted up after 15 minutes and disabled UAC and windows defender and lots of stuff popped up.
Anyways I think I removed most of the bonus malware, but the root problem is still there.
Malware included Daily Wiki, changes to browser, adware for chrome and firefox and ie browser, installed adware toolbar as well on chrome. Adware on desktop.
additionally it added a few files in the system32 and sysWOW64 which got flagged when I zipped them to virus total
After running an malwarebytes scan and removal and then a restart, I lost internet connection and I could not update windows defender. On top of that, whenever I run something, there is now a bad image error asking me to reinstall programs because it was corrupted.
I panicked and ran windows defender offline which was updated as of december 26 2015. (It is a usb image) It found a (which was also detect using the "online" version, which still was unable to remove it giving an error.
I know the main detected part is dnsapi.dll, but I can't do anything so that's all I know. dw I'm not doing any extra installs or runs of programs on my own anymore.
-edit I also had a group policy error for the windows defender, I have changed UAC back to max and also enabled windows defender very early on, I also got an error with an MMC snap-in as it was missing while I was going to look at the firewall inbound/outbound rules.
Edited by mariowh, 26 December 2015 - 11:11 AM.