My Window Defender has been constantly showing the notification
"Found some malware
Window Defender is removing it"
This happens twice every minute. I checked the detected items in History of Window Defender and here is what it shows:
Note: I am using Window 10 64-bit
Here is the link to the information about the detected item on Microsoft website:
Basically every minute Window Defender is detecting the same malware twice, in two different locations. One goes to a Google Chrome .lnk file and the other Internet Explorer (I never use IE). I have tried to look for these two files in the location stated, but they weren't there (possibly because they are being constantly removed?).
I started having this issue yesterday while browsing the internet. I have tried Full Scan by Window Defender and Threat Scan by Malwarebytes Anti-Malware Premium several times and they both came up with nothing. I don't have any evidence that this malware is doing anything to my system. I have checked Control Panel, Apps&Feature, Google Chrome Extension and so far nothing malicious has been installed. At the time before this problem started, I remember Malwarebytes and Window Defender picked up a few malwares, trojans and cleaned them properly.
In addition to my two default AV software, I have also tried rkill, AdwCleaner, JRT, Hitman Pro (one time free-use), Zemana Anti Malware and so far nothing has fixed the problem.
I have also tried removing Google Chrome completely and reinstalled it. I even tried booting from Win10 Installation USB and ran a System Restore.
I also downloaded CCleaner and deleted a bunch of unnecessary files. After this, my Window Defender is acting really strange. The Real-time protection function is turning itself on and off. It can turn on but then an error message that would pop up, saying:
An unexpected problem occured. Install any available
updates, then try to start the program again. For
information on installing updates, see Help and
Error Code: 0x8050800c
I don't know if this is the result of CCleaner or an action of the malware itself. I tried running sfc /scannow and did not find anything corrupted or missing.
I have also posted on Whirlpool and has been following the instruction of a senior member there. He instructed me to run FRST, upload the log files, then run his fixlist.txt. It didn't fix the problem. Right now I'm running ESET Online Scanner. Here is the link to the Whirlpool post - https://forums.whirlpool.net.au/forum-replies.cfm?t=2580085
I'm completely new to this forum and found you guys after hours of looking for a fix to my problem. I really hope someone could lead me in the right direction.
Thank you so much, in advance.
Edited by akhsim, 03 November 2016 - 02:38 PM.