Jump to content
Posted 07 February 2016 - 10:07 PM
Posted 08 February 2016 - 12:41 AM
You can try running a couple scans to see if it was left behind.
According to Microsoft this virus does the following:
"This virus spreads by attaching its code to other files on your PC or network. Some of the infected programs might no longer run correctly." That may be the issue when Windows Defender attempts to remove it. It may be some sort of Process injection virus.
Try running the following:
• Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
• Vista/Windows 7 users right-click and select Run As Administrator.
• Once Open Click on "Change Parameters"
• Under "Additional Options" Select: Verify File Digital Signature And Detect TDLFS File System
• Click the Start Scan button.
• If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
• A log file named "TDSSKiller_version_date_time_log.txt" will be created and saved to the root directory (usually Local Disk C:).
Copy and paste the contents of that file in your next reply.
Edited by TazzyOpz, 08 February 2016 - 12:56 AM.
Posted 08 February 2016 - 01:33 AM
Okay, thanks. I just got back to my computer to check the status of a full Windows Defender scan and it said I also have a TROJAN WIN32-DYNAMER!ac. But when I tried to remove it WD just froze up and I had to taskkill WD. Now I'm running Rogue Killer to see what it can do. I may not get this cleared up 'till tomorrow. I'll get back to this forum, I presume others might be interested.
Edited by Hellraiser666, 08 February 2016 - 01:34 AM.
Posted 08 February 2016 - 09:17 AM
Getting back about this may be premature, but I'm hoping for feedback on this potential trojan infection, which for me has now take precedence over the original infection, "Dos Dodgy. A ." Here's how is played out so far:
8:30pm Windows Def finds Dos.Dodgy.A in real time. for the 2nd time in week.
11:30pm Ran full scan with WD. Dos.Dodgy.A isn't found, but TROJAN WIN32/DYNAMER!ac is found. Try to clean but WD freezes halfway through cleanup, have to taskkill WD
12:30am Ran Rogue killer, found PUP, simply described as "software," I deleted that threat.
12:45 Ran MB, found nothing
1:15 Ran TDS, found nothing
1:20 Ran Kaspersky av, found nothing
1:35 Ran WD-Quick scan, found TROJAN WIN32/DYNAMER!ac again. Tried to clean, same story.
2:05 Tried to run MB in safe mode, but computer was way overheated, so I cancelled.
This morning I noticed this info in WD:
container file D:\Preload\install\wim
D:\Preload\install\wim ->(Image 68694)\Program files (x86)\Wildgames\House of a thousand doors family Secrets
I did a little research this morning and there's talk this could be a false positive, some bloatware from WildTangent games stashed on RecoveryD. But I found nothing definitive either way. The only other clue I can offer is in Task Manager/Processes I notice that "disk" is going nuts, varying between 0% to 100% in a matter of seconds. Never happened before.
Anyone heard any good street talk about any of this? And I still haven't come to any definite conclusion about the original infection, DOS DODGY.A, which has not since reappeared but I suspect is still lurking.
P.s. Put me last on your list of concerns, this is a low-risk situation for me. Thanks.
Edited by Hellraiser666, 08 February 2016 - 09:44 AM.
Posted 08 February 2016 - 10:30 AM
Okay, this is winding down a bit. I thought it might be of help to others if I mentioned how this played out. I rebooted 3 times and every time WD found that same "trojan" on D partition. CPU usage was way beyond normal and I was running way too hot. Since I made a recovery usb after I updated to W10 about 6 weeks ago I decided to just delete that recovery drive on C. I rebooted and guess what, I'm sweet again. Yeah! I have no explanation as to how that file got on D out of the blue like that, or even if it was a true virus or just some troublesome bloatware. Anyway, if you want to consider this "solved" that's fine. And about that DOS DODGY? who knows, time will tell. I know this is a busy forum, I don't think my situation warrants any more of your time. However, if something noteworthy pops up then perhaps I'll stop back in if that's okay.
Thanks for giving me a place to run to. Have an adorable Monday.
Edited by Hellraiser666, 08 February 2016 - 11:23 AM.
Posted 08 February 2016 - 11:47 AM
Okay, I'm happy things seem to be cleared up.
Regarding the WD virus "Dos.Dodgy.A" I'm fairly certain it was removed by Windows Defender if it hasn't popped up again. However I would recommend giving Avast Free Anti-Virus a shot if you're looking for a bit better protection over Windows defender.
None the less hope I helped a little. Have a nice Monday as well
0 members, 0 guests, 0 anonymous users