Solved Pernicious malware that hijacks .exe files with a pop-up filled with Chinese characters.

seraph7

New Member
Thread author
Jan 20, 2019
2
Hi, I wonder if any of you guys have come across such a maleare? I am online a lot and am very mindful of the risks involved. I use Windows Defender in conjunction with Malwarebytes Premium 3.0+,. Three weeks ago, I must have accidentally clicked on something I shouldn't or some script got past my Firefox (I use uBlock Origins, No Coin and Malwarebytes add-ons) and I ended up with something vthat hijacked my .exe application files. Running scans with Windows Defender, Malwarebytes, and then Kaspersky AV, Avast AV (Free), Spybot SD, Sophos AV (Free) and Hitman Pro cleaned up a few PUPs but the problem still persisted. Using rKill and Power Tool managed to contain the problem somewhat. But I felt that the malware was not totally eradicated. Even after I did a clean install, I noticed that Microsoft Edge would open on its own and I suspect that the desktop I was in was a clone. Does it make sense? Or was I being paranoid.

To cut a long story short, I have done another 'clean' install, this time with software and Windows from another system and have yet to go online. So far things seen okay. But I still worry.

What do you guys think? Any ideas as to what this malware is? I have also used autoruns but the malware recognises this now and then. As it does with procmon.

Any ideas and insight will be much appreciated.
 
  • Like
Reactions: bayasdev

seraph7

New Member
Thread author
Jan 20, 2019
2
Thank you for the guidelines. Unfortunately I have already taken the nuclear option and so far am only beginning to reinstall my programs with additions like afInf32, Shadow Defender and Voodoo Shield. Previously, before formatting my SDD, I had used frst64 but wasn't clear about sending it's report for a fix list. I now know better.
Still, I wrote in to find out if my infection has been encountered before or if it's something new.
I hope I have not offended.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top