Shinobi1 Posted December 8, 2017 #1 Posted December 8, 2017 Hi guys I hope someone can help. I have been dealing with a virus called Hijack.exe file that embeds itself in my registry. It stops all my .exe, including Internet Explorer. I am able to run Malwarebytes from a shortcut (luckily) and get rid of the virus, but it keeps on getting infected. I think I may have got it here, either trying to patch AVG Internet Tune Up, or Malwarebytes Premium. Ironically trying to install anti-virus, anti-malare, has been my biggest and only issue. I would like to keep using Malwarbytes Premium, but I installed it from the latest thread here and it says that my Premium just expired, even though I did the preactivation thing. Anway, wondering if anyone knows how I can get rid of this virus in my registry, Malwarebytes keeps finding and quarantining it, but it seems to come back. Do you have any AV software or registry cleaner or something that you trust? As I have been weary.. Thank you very much for any help!
Administrator Bad Karma Posted December 8, 2017 Administrator #2 Posted December 8, 2017 You didn't specify wich windows is running but the most likely reason why your virus is resilient and reactivates itself after cleaning under windows is that it's nested in your system restore files. This is a place your antivirus can't reach without damaging your restore files. My advise to get rid of this is to disable the system backup/restore option (yes you will loose your old backups & rollback options but they are probably already infected). Then proceed to completely disinfect your system with an antivirus rescue cd. Almost all major antivirus company provides a free disinfection cd. The one you choose is your call but they are all decent. For a good mesure, after the cleanup by means of this cd, restart your system and crosscheck by a full scan with your actual antivirus. Once rid of the annoyance, reactivate your backup/restore feature. 2 2
Andr-Tech uk666 Posted December 8, 2017 Andr-Tech #3 Posted December 8, 2017 Try: Hidden Content Give reaction to this post to see the hidden content. STEP 1: Scan your computer with ESET Poweliks Cleaner……….. If you problem not fixed, please post with which windows operating system are you running. 8 5
Administrator Popular Post draww Posted December 21, 2017 Administrator Popular Post #4 Posted December 21, 2017 above are nice explanations. as an addition your virus seems to be injecting itself onto running system services/executables like explorer.exe but mostly svchost.exe. use autoruns utility to identify the startup objects and try to pin point malformed exe names that looks like system components under Windows or system32 folders (i.e. explore.exe, scvhost.exe, svch0st.exe - looks like original ones but different) a free tool to detect malware and hijackers -> Hidden Content Give reaction to this post to see the hidden content. 13 3 1
Recommended Posts