Solved

Searching for suggestions - POWELIKS: Malware Hides In Windows Registry keeps coming back

Posted on 2014-11-05
1
398 Views
Last Modified: 2014-11-08
Removed using all malware and virus tools for win7 but no luck.  I have a couple of friends that are saying they have done everything they know of but when they open task manager they see multiple com surrogate files.

Thanks
0
Comment
Question by:cesemj
1 Comment
 
LVL 27

Accepted Solution

by:
Predrag Jovic earned 500 total points
ID: 40425689
According to some reports RogueKiller and Norton Power eraser can clean this one
Download the RogueKiller executable, run it once. You won’t be able to fix anything but it needs to register itself. Then, reboot in safe mode, run the executable again. After the pre-scan is done, hit scan and wait. Get Task Manager running. After the scan is done, check the boxes for everything that is red or orange under the registry tab. After you’ve check the boxes, marking the items for deletion, use task manager to “end process” on every instance of dllhost.exe and then QUICKLY hit “DELETE” on RogueKiller (dllhost.exe processes will start running again if you wait too long, and you want to hit “DELETE” while none of them are running). Re-boot. You’re done and everything is back to normal.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Examines three attack vectors, specifically, the different types of malware used in malicious attacks, web application attacks, and finally, network based attacks.  Concludes by examining the means of securing and protecting critical systems and inf…
Each year, investment in cloud platforms grows more than 20% (https://www.immun.io/hubfs/Immunio_2016/Content/Marketing/Cloud-Security-Report-2016.pdf?submissionGuid=a8d80a00-6fee-4b85-81db-a4e28f681762) as an increasing number of companies begin to…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question