(If needed I can attached the full DxDiag file)
I have a Trojan/virus/malware/etc...IDK... what I do know is I cannot remove it and it's causing increasingly numerous problems. I attempted to download some "free" dlc for a game I bought. I got a free load of problems instead. Here's my adventure so far...
About a week ago I first downloaded the "DLC". Chrome said "you dont wanna download that...i ignored" Windows defender said "hey, this is a bad idea, ima put this outa reach" ...i ignored... then i finally downloaded and opened and next thing i knew 15+ "games" were downloading onto my desktop. I ran a program I came across while ago called "RKill" and it stopped the downloading of these "games." I began looking on here for way to fix the numerous problems i started experiencing. 1st, all shortcuts when to some 'googlesearch' website, deleted all shortcuts and replaced on desktop with correct shortcut paths. Then removed the files that "RKill" found and terminated....wish i kept the logs because I attempted to "scrub" everything but now i still have viruses and no idea where they are located.
Onto the current problem
What prompted me to look into possible maleware/virus is I cannot open task manager after about 3 seconds of logging into my windows 10 account. If i open right away it will open, but any delay and i get this error: "Taskmgr.exe - Entry Point Not Found
The procedure entry point ImageList_CoCreateInstance could not be located in the dynamic link library C:\Windows\system32\taskmgr.exe" - attached snippet of error message
- I checked and i do have the application Taskmgr in this file location: C:\Windows\System32
I have downloaded and used "HitmanPro 3.8.0 - Build 292 64 Bit (30day free trial) - attached the first log of running this: "HitmanPro_20170520_1156
- It identified the following program as maleware: msiexec64.exe
- i have "deleted it" multiple times now using HitmanPro and each time when I reboot I get a black screen with the file name/location at the top of my screen (looks similar to cmd window but full screen)...then when I relog into windows it is still there.
Steps I have taken:
I have thought to myself if i block the program that Hitman is linking to the maleware than that may help...so i created in inbound rule in my firewall block this program...no luck.
I have ran cmd's sfc /scannow nothing identified as wrong
Also, when I attempted to download and run Farbar Recovery Scan Tool (FRST) chrome closes instantly...any site i attempt to open that has FRST or Farbar Recover Scan Tool causes chrome to crash...which ive never seen that before.
When I run "RKill" now it BSOD with a "Critical_Proccess_"Died/Ended
I do not have any system restore points...unfortunately I've never used them...worse case scenario I fresh reinstall....i just hate the thought (slow download speed for redownloading games).... Whatever help you all can provide is MUCH appreciated! Thanks in advance!
Edited by hamluis, 20 May 2018 - 02:24 PM.
Moved from MRL to Am I Infected - Hamluis.