tanner_doriano

I have attached the "Fixlog.txt" file as instructed and have retested as you requested. Additionally, I've attached the new logs generated after retesting. Despite following the steps and running the fix, when I waited for the next hour, the system still attempted to perform its scheduled download. It appears the issue persists despite the applied fix. Fixlog.txtFRST.txtAddition.txt

I have attached both the "FRST.txt" and "Addition.txt" logs from the Farbar Recovery Scan Tool as you instructed. Both logs are now ready for your review. FRST.txt Addition.txt

Hello Malwarebytes Community, I'm in a bit of a bind and desperately need your expertise. Two days ago, around 6:30-7:00 PM (GMT +8), I mistakenly executed a file I downloaded from the Internet. Only after running it did I realize its malicious intent, evident from a suspicious pre-build event in the code. (I cannot post the code here because it might tag my post as malicious.) Since then, my PC has been automatically downloading a .7z file to the "AppData/Local/Temp" folder every hour on the hour. This archive contains "aitstatic.exe", "ComSvcConfig.exe", and "MicrosoftCertificateServices.exe." Additionally, every time I start my computer, 2-3 command prompt windows briefly appear, and files named "Service.exe", "b.bat", and "b.vbs" are created in various public user folders (e.g., Public Downloads, Public Documents) also every hour on the hour. I've attempted to clean this infection with both Malwarebytes and Avast, but to no avail. The threat names reported by Avast vary, including IDP.HELU.SHADOW18, Script:SNH-gen [Trj], Win64:Malware-gen, and Win32:InjectorX-gen [Trj]. I am at my wit's end and worry about the safety of my personal data and the integrity of my system. Could anyone provide guidance on how to thoroughly remove this persistent malware? Any assistance or advice on tools and procedures to follow would be immensely appreciated. Thank you in advance for your time and help.