Jump to content

Nkvd

Honorary Members
  • Posts

    58
  • Joined

  • Last visited

Everything posted by Nkvd

  1. I will keep it as I rarely use it for the boost functionality and more of a fps counter. If that is all thank you for your support and for helping clear out what the random error was about.
  2. I've updated everything on the list. As for Razer Cortex would that be a false positive? It's Razer's version of a performance booster that came with my Razer keyboard, unless its directly performing an impact issue I dont see a reason to uninstall it.
  3. Here is the Security Check log SecurityCheck.txt
  4. Thank you. At this point I didn't really expect much to be leftover just thought the random error was odd and maybe it could be traces left interfering with the system so I decided it was still worthy to get checked out. From the logs I managed to idenfity the problem with steam, for wjatever reason my firewall wasn't letting one of the game process through (blocked) and that could have been it, as for forza horizon the issue should in theory be fixed whenever I do a reinstall of it. Here is the FarBar fix log, for whatever reason it added 1.3GB to the disk instead of removing them but that will probably go away with a second restart Fixlog.txt
  5. Here is the scan log. My apologies for the self diagnosing, its a habit I developed since where Im from thats the only way to make sure everything is looked at. I trust your services and know they are of quality but still have that bad habit of mine. MBScanLog.txt
  6. Will do. For whatever reason the check results point to 35 detections even though Ive never had any actual nofitication of a detection.
  7. Here is the zip file along with the kprm file incase its needed. I didnt really thhink my system was infected up until I had that random error log pop up and later it filled the SSD seemingly by itself but ever since I had it infected originally its been rather iffy even after the clean install. As for the DXDIAG I had to run it as Im currently seeking game related support on another forum since the microsoft store is filled with bugs and a game kept going back to the title screen everytime Id tab out then the support fix just made it close on start mbst-grab-results.zip kprm-20220405163015.txt
  8. Here are the results of the custom scan. Again no detections. However I did notice something odd, when running DXDIAG from the start menu the system information shows a paging file still being used despite me having it disabled as shown bellow, I think this might be part of the issue as how my friend had previously stated likely the virus was hidden in the paging file, it would eat up the RAM so the desktop would be forced to use it to load and maintain any apps Id open and keep track of what I was doing/crash them by simply keeping track of what was in the paging file ESETScan3.txt
  9. I'm unaware of what a VM is I'm sorry. He looked it over in person but I suspect that the person who initially gave me the virus has been using my desktop as a virtual machine. I'm not sure if this helps but originally the virus was that Trojan pretending to be a copy of Word 2010 that was spread around a few years ago. I'm currently running a custom scan of everything except the D drive to see if it makes a difference
  10. Here is the scan result, for whatever reason it seemed to scan about the same ammount of files as the full scan did which is still nowhere near as much as I have. Ive run MSERT and KVRT before and both scanned at least double or tripple the ammount of files MBAM and ESET are scanning. As for hibernation I have it disabled via command line same for the windows paging file which is why the fluctuation is odd. Ive ran tests on my laptop which I suspected was infected and while disconnected from the internet there would be no fluctiations at all aswell as the screen not locking and it not going into sleep as I told it to in the settings, however when plugged to the ethernet it would go into sleep as regular and lock the screen as if it was being managed by an outside source with different windows settings. My friend who looked it over said there was a chance he was running a virtual machine on my desktop to be able to use it as his own pc while Im on it since the cpu would allow for it but that would explain the sudden unexpected performance drops but he looked it over fairly quickly so that might not be the case. ESETScan2.txt
  11. Apologize for how long its taken. Yesterday I let the scan run and left my desktop unattended for some time while it ran and when I came back for some reason it was hibernating with ESET closed and Im unsure if it finished the full scan or not. I noticed 4GB of space filled out of the blue but 2 were free'd up on restart. As for the scan I'll let it run for a few hours and post back once its finished
  12. I will re-do the scan but I clicked the full scan option, for some reason it just did not do it. Unless it only checks the C drive I have over 1 million files. It's an issue I've found before, don't know if it's related to malware or not, I will do a custom scan selecting all drives as it usually gets around the issue and post back the results afterwards
  13. Here is the log from the scan. Apologies for the late reply saw the message a bit late ESETScan.txt
  14. Just had my game randomly close itself twice in a row, second time I got some error saying firefox had crashed even though neither were corelated. Ive been getting this type of errors now and then. I noticed in the maintenance service logs the following lines which I think might be related, ive had the issue of apps being remotely shut off before aswell as seemingly random inputs, sometimes my keyboard even switches the layout to match an english one. I attached the full maintenance log bellow. Under Program Data I had a second Mozilla folder with random numbers after it which I deleted and seemingly did nothing which might be what was causing the issue, files were very similar but the shady one had extra content to it, I noticed it had a file with FLTK on it which I deleted and a similarly odd microsoft folder which I havent seen before, inside there was a document that when opened with notepad had the following link http://standards.iso.org/iso/19770/-2/2009/schema.xsd maintenanceservice.log
  15. Ive restarted the scanner and this time it seems to be going along nicely, I'll attach the log for the fail scan bellow incase it might be of interest. I looked them over briefly and the only weird thing I can see is the user having a name that does not show up as shown bellow, though granted I did temporarely create a local account with that name but I had to switch out of it as there was incompatibility with a microsoft store game. MBLogFailed.txt MBLogSuccessful.txt
  16. I usually unplug the desktop from the internet beforeshutting off and then from power but last night I forgot to do it and when I turned it back on I noticed about 4GB of extra disk space on the affected disk. This might be an issue as ive found before that everytime Id try to get help over the forum something like this would happen when presumebly the main part of the malware would be removed leaving just the basics needed to reinfected, Ive also switched out the router meanwhile aswell. The virus was hidding in the hibernation and paging files from windows so I removed both and it seemed to fix the issue for the most part aswell but later on after re enabling the paging file it became apparent again. As of now the scan is stuck searching for rootkits and it wont go past 210 scaned items even after 15 minutes which is rather unusual as usually thats about half the time a full scan will take and it gets through the first 5 stages in a few seconds. EDIT: Its been just about an hour and its still stuck at the same
  17. Here are the reports. I apologize for the delay as I only had the free time now. Ive included a screenshot of my C drive's main folders where the "temp" folder mentioned previously is located. The folder reappears with every shut down and restart but is always empty even when allowing the file explorer to show system files. I should add that the virus I originally got was decent at staying under the radar but with the paging file and hybernation file it went either inert or completely was disabled as it hid in the windows paging file, it was after I made windows stop getting a paging file that the following folder appeared. Looking through the logs I think for whatever reason MB's self procetion early start is off when it should be on but that seemed like the only thing out of the normal and could be from me forgetting to toggle that option. mbst-grab-results.zip
  18. Hello, I apologize for not instantly getting back to you as it was already past midnight so I did not have the time to follow the instructions. I will do them in a few hours in the morning and provide the logs as soon as I can afterwards so feel no need to check this thread until then (around 10 hours or so).
  19. Hello, I got this random error log on my windows temporary files and I think its related to malwarebytes. Ive had a virus in the past but a friend looked over my pc and suposedly it was mostly fixed and shouldnt be an issue again but I noticed things like a random file named "temp" appearing on my C drive and now the following error, just wanted to see if it was any major concern or even related to MB. mb_errors999.log
  20. I have no information as for how old the Dell is as it belongs to my fathe,r so very likely he would not want to do a full system install in the first place. As for the HP and ASUS which I own, the ASUS is the one Im currently in possession of and the HP I will have access to again in about a week or so. Considering all results so far would it still be advisable to do a clear install on all devices or would the HP and perhaps the ASUS be enough? I think that would be as far as I can go since it's both devices which I own and I possibly also overreacted, considering my timing tends to be very poor in these situations so it could all be coincidental, so considering how many scans I have already ran that came out negative possibly that was a mistake on my part however if you find it necessary to do a clear install on all devices I will get it done as soon as possible.
  21. I'm still away on holiday so as of now I dont have access to it as I'm not there anymore however I can send you the details as soon as I get back to it. As for personal data I dont keep any on my computers so a full whipe and reinstall of both drives and the OS is viable. Would you recomend I do this for the ASUS computer aswell or just the HP?
  22. I was using Steam as by default it autoboots with your computer and a majority of us who have it installed will leave that option on by default. As for doing a full reinstall on all devices I am only able to do so for the HP and ASUS computers as I do not own the Dell Latitude. Even so I don't have the skill to do a clean install by myself so I would rather go take both to a repair shop and ask for it to be done there. With that in mind when taking it in do I request that they whipe both drives clean and re-install a new copy of windows to both? And wouldn't there be a chance if there is something infected at the root level it stays in the motherboard?
  23. Here are the logs as requested. While disabling real time protection from Windows Defender I noticed it did not give me administrator permissions even though Im logged in as administrator and never created a new login in the first place, I also noticed a folder under the windows section of Roaming that was logging all recent apps and files I opened. Previously I ran a script recommended by a youtuber who does videos on cybersecurity who claimed it would be able to rid if it malware so after doing a full windows reinstall from the cloud I ran it, I can provide the script file and/or video detailing it if it's of interest however it did not seem to fix the issue and I suspect it could be the reason behind it locking web defender as it also mentioned it would remove various types of telemetry included with windows so I figure that could be the reason behind those 2 options being unavaliable, that's not to say I think it has any malicious intents as it was one member of his server who recommended I check these forums in the first place but it could have gotten in the way of some functionality of the requested scans. As for the laptop Im still encountering the same issue with it creating extra processes and filling up RAM everytime I get on and my friend gets back to his pc, while he is away from it neiter of those issues occur until he gets back. Addition.txt AdwCleaner[S00].txt ESETScan.txt FRST.txt MBScan1-3-22.txt Fixlog.txt
  24. I will do as instructed as soon as possible. As for the laptop Im currently using even despite the scans it is still acting up very weirdly. Still having the same issue of the person I suspect infected me pretty much following me around becoming online and offline when I do and everytime he is on my RAM starts acting up being taken up rather fast. Ive also noticed my connection to our router failing occasionally now as the router goes undetectable by my computer for some time, that happening mostly when I attempt to google any other possible solution for this, it is not happening on other computer I reported back on previously. It is a far fetch but I dont think my machine is actively trying to be controled more so just remotely monitored by some creep with too much free time. This is the 3rd day in a row where he stays on until I shut my laptop and phone off and gets back online as soon as I turn both of those on the next day. Fact is unless Im currently online or have my devices on he usually will only be around from about 3pm to 3am, in comparison today as soon as I went online at 9am he instantly came online a few minutes later, same goes for me leaving my computer on until very late in the night where in one instance I completely forgot about it until the next morning and he was still on until I shut it off at which time he immediatly went offline. I also should note the issue with rogue chrome processes appearing is also present whenever he is online on his computer. Originally I had kaspersky warn me about the files saying they were potentialy malicious during download but my friend told me to ignore it as it was likely just Kaspersky overreacting and allow the files in, since that kaspersky was unable to detect any infection no matter how indepth the scans were and only malwarebytes found an issue. Is there a way to possibly block his home IP to counter it? I've considered taking the next step and getting the law involved as usually that is the only way these people will give up but I dont consider it to be necessary unless the issue stays unresolved.
  25. Ive attached both new file instances bellow. This device isnt mine so while I did not uninstall spyhunter I left the recommendation. Tomorrow I will likely have access to the computer that was originally infected so if possible I'd like a few reccomendations as what to do about it since Im unsure of how long I will be around it as I'm still on vacation, however I will be able to at the very least perform a few scans. I will work on a list of all issues I was able to find on it up until now and upload it in the form of a .txt file once done. Addition.txt FRST.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.