Virus Encrypted Files, dllhost.exe take over, unable to down load Farbar Tool

[HDRoadking06]

Please Help Clear coumputer and recover documents if possible.

 

[HDRoadking06]

I was able to download the Farbar Recovery Scan Program by using one of the other users on this computer, I ran the scan and I have upoaded the txt files below.

 

[TwinHeadedEagle]

Hello,

You can try this service to try restoring your files. If it isn't possible, then I cannot help you restore encrypted files.

https://www.decryptcryptolocker.com/

 

[HDRoadking06]

Hello still waiting to see if Decryptcyptolocker can help with files, how about help with the dllhost.exe problem?

 

[TwinHeadedEagle]

Scan with ComboFix

This is a very powerful tool that should be used only if advised by Malware Analyst.
Do not run ComboFix on your own!

Referring to this instruction, please download ComboFix by sUBs and save it to your desktop.
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

• Right-click on
  
  icon and select
  
  Run as Administrator to start the tool.
• Accept the disclaimer and agree if prompted to install Recovery Console.
• Do not take any actions while ComboFix goes through your System - it may cause it to stall!
• This scan may take some time!
• When finished - it will display a logfile (located also on your main drive, usually C:\ComboFix.txt).

Include that log in your next reply.

If you'll encounter any issues with internet connection after running ComboFix, please visit this link.

If an error about operation on the key marked for deletion will appear after running the tool, please reboot your machine.

 

[HDRoadking06]

Ok, I downloaded and ran combofix, atached is the log for your review.




.

 

[TwinHeadedEagle]

This looks ok. Let's run FRST tool again:

Scan with Farbar Recovery Scan Tool

Please re-run Farbar Recovery Scan Tool to give me a fresh look at your system.

• Right-click on
  
  icon and select
  
  Run as Administrator to start the tool.
  (XP users click run after receipt of Windows Security Warning - Open File).
• Make sure that Addition option is checked.
• Press Scan button and wait.
• The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.

Please include their content into your next reply.

 

[HDRoadking06]

Ok, I have downloaded and run the updated version of the Free 2015 AVG and ran the scan, it picked up 12 threats, three of whcih it could not secure. I will up load pictures of scanner screen. I have copied the Fanbar Scanner to the main user account and re-ran the scan total, see the attached test. I am still having an issue with the dllhost.exe opening several times and slowing the computer, these can be seen in the task manager process screen. I can close them one at a time by ending the process. They come back open from time to time. attached is the last FRST text. I dd notice on the Farbar Recovery Scan tool there is a "fix" button which I have never pushed, will it solve my problem?

 

[TwinHeadedEagle]

We still have some work to do:

Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.

Running it on another one may cause damage and render the system unstable.

​

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

• Right-click on
  
  icon and select
  
  Run as Administrator to start the tool.
  (XP users click run after receipt of Windows Security Warning - Open File).
• Press the Fix button just once and wait.
• If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
• When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.

Fix with AdwCleaner

Please download AdwCleaner by Xplode and save the file to your desktop.

• Right-click on
  
  icon and select
  
  Run as Administrator to start the tool.
• Follow the prompts and click Scan.
• When finished, please click Clean.
• Upon completion, click Report. A log (AdwCleaner[S*].txt) will open.

Please include the contents of that file in your reply.

Scan with Malwarebytes' Anti-Malware

Please download Malwarebytes Anti-Malware and save it to your desktop.

• Install the progam and select update.
• Once updated, click the Settings tab, in the left panel choose Detctions & protection and tick Scan for rootkits.
• Click the Scan tab, choose Threat Scan is checked and click Scan Now.
• If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
• Upon completion of the scan (or after the reboot), click the History tab.
• Click Application Logs and double-click the Scan Log.
• At the bottom click Export and choose Text file.

Save the file to your desktop and include its content in your next reply.