Solved Windows Defender detecting severe threat possibly sabsik

kevinf80

Kevin
Malware Specialist
Joined
Mar 21, 2006
Messages
11,553
Can i see that log please,

Open Event Viewer, Open the search function on desktop taskbar, copy/paste or type Event Viewer, select run as administartor from options...

In event viewer expand the following:

Applications and Services Logs > Microsoft > Windows > Windows Defender Antivirus.

Double-click on "Operational".

In the Operational details pane, view the list of individual events to find your event. (scan) Identify by date and time.

Double Click on the event to see specific details, In the new window under "General" Tab select "Copy" paste that to notepad, save and attach to your reply...
 

kevinf80

Kevin
Malware Specialist
Joined
Mar 21, 2006
Messages
11,553
Hello Arthur Penney,

Yes that is exactly what I wanted to see.. Continue:

Delete cache and cookies in Microsoft Edge

1. Open Microsoft Edge, select Menu (3 dots icon on top right corner of the browser) > Settings > Privacy & services.

2. Under Clear browsing data, select Choose what to clear.

3. Select "Cached images and files" and "Cookies and other site data" check box and then select Clear.

Next,

Download "Microsoft's Safety Scanner" and save direct to the desktop

Ensure to get the correct version for your system....

https://docs.microsoft.com/en-us/wi...otection/intelligence/safety-scanner-download


Right click on the Tool, select Run as Administrator the tool will expand to the options Window
In the "Scan Type" window, select Full Scan
Perform a scan and Click Finish when the scan is done.


Retrieve the MSRT log as follows, and post it in your next reply:

1) Select the Windows key and R key together to open the "Run" function
2) Type or Copy/Paste the following command to the "Run Line" and Press Enter:

notepad c:\windows\debug\msert.log

The log will include log details for each time MSRT has run, we only need the most recent log by date and time....

Thanks,

Kevin..
 

Arthur Penney

Thread Starter
Joined
May 2, 2006
Messages
54
Kevin,
I was not totally sure what was wanted for the MS Edge clear. The box at the top was set to 1 hour, but wondered if that was all you wanted, so I panicked as usual and set it all time.
 

Attachments

kevinf80

Kevin
Malware Specialist
Joined
Mar 21, 2006
Messages
11,553
Hello Artur penney,

Apologies I should have been more clear with browser data removal, you got it right so we`re ok. MSERT log has came back clean, another good result.
How do you feel your system is responding now, any remaining issues or concerns..?

One othe point for Edge browser setting I would recommend. Go back to "Privacy" settings and alter the options to same positions as the attached image...

Thank you,

Kevin.
 

Attachments

Arthur Penney

Thread Starter
Joined
May 2, 2006
Messages
54
Kevin,
I have made the changes in Edge as you suggested. There is not anything obviously wrong with the notebook. After two infections in a fortnight, I do feel a bit more nervous about using it. It has advantages over the iPad , connecting to a printer, usb. But the iPad is far quicker to use, and rumoured to be safer, which is why I am on the iPad now.
 

kevinf80

Kevin
Malware Specialist
Joined
Mar 21, 2006
Messages
11,553
Hiya Arthur Penney,

Good to hear your PC is ok for you now, continue to finish up:

Right click on FRST here: C:\Users\USER\Desktop\FRST.exe and rename uninstall.exe when complete right click on uninstall.exe and select "Run as Administrator"

If you do not see the .exe appended that is because file extensions are hidden, in that case just rename FRST to uninstall

That action will remove FRST and all created files and folders...

Next,

Remove all System Restore Points: https://www.tenforums.com/tutorials/33593-delete-system-restore-points-windows-10-a.html#option2

Create clean fresh Restore Point: http://www.thewindowsclub.com/create-system-restore-point

Run Windows Disk Clean Up Utility - https://neosmart.net/wiki/disk-cleanup/

Consider the following:

Disable Remote Desktop: https://www.tenforums.com/tutorials...remote-desktop-connections-windows-10-pc.html

Disable Windows Telemetry: https://helpdeskgeek.com/windows-10/how-to-disable-windows-10-telemetry/

Malwarebytes Browser Guard (Free) for Firefox: https://addons.mozilla.org/en-GB/firefox/addon/malwarebytes/

Malwarebytes Browser Guard (Free) for Chrome: https://chrome.google.com/webstore/detail/malwarebytes-browser-guar/ihcjicgdanjaechkgeegckofjjedodee Will also work for Opera and Edge..

PatchMyPC, keep all your software upto date - https://patchmypc.com/home-updater#download

From there you should be good to go...

Next,

Read the following links to fully understand PC Security and Best Practices, you may find them useful....

Answers to Common Security Questions and best Practices

Do I need a Registry Cleaner?

Take care and surf safe

Kevin...
 

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Members online

Top