Any advice on removing a script exploit?
I'm not amazingly computer literate. This is the only information I can find. I've done an in-depth manual virus scan and it's found nothing! The problem is, every time it gets blocked it says the same time "16:02". It doesn't tell me where it is as it only prevents it running after it tries to. How can I find and remove this file? I'm pretty sure it's trying to run constantly as I see the CMD box pop up every couple of hours and it's becoming frustrating. Thanks in advance!!
Reason: Exploit:W32/ScriptStager.A!DeepGuard
Answers
-
Hi keymasterwan
I suggest you to open a support ticket (https://www.f-secure.com/en/business/support-and-downloads/submit-a-sample) to our detection team, providing FSDiag and Autorun logs:
AUTORUNS
Autoruns is a Microsoft application which can also be downloaded from
http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
1. Download Autoruns.exe to your desktop.
2. Run the Autoruns.exe with administrator privileges. A list will start to be generated.
3. Once it is done, click on File -> Save As, choose the destination as your computer Desktop and save it under the filename "AutoRuns.arn".
0
Categories
- All Categories
- 4.7K WithSecure Community
- 3.6K Products
- 1 Get Support