Jump to content


  • Content Count

  • Joined

  • Last visited

About sheepdisease

  • Rank
    New Member
  1. I did look up that folder and saw that the tool always deleted it but nothing explained why. I don't have the files any more to check them out. I mean the restore points that you asked me to enable. I want them to be saved to a different partition.
  2. Thanks for your reply. I have attached the results of your instructions. Can you please tell me what this is? C:\Users\Hill\AppData\Roaming\AdvertismentImages C:\Users\Hill\AppData\Roaming\AdvertismentImages Also, I have a partition set up for backups. Can I tell Windows where to store the backup for the C:\ drive to another partition? Fixlog.txt
  3. Nothing found in MBAM. Not sure what this entry is in Adware: C:\Users\Hill\AppData\Roaming\AdvertismentImages For information I am using NordVPN and AdGuard (both up to date) so the IP addresses showing in hosts and elsewhere are very likely connected to that. MWBAM.txt AdwCleaner[S00].txt FRST.txt Addition.txt
  4. Hello there, I am very savvy when it comes to not getting caught out by phishing scams and any attempts to get me to provide sensitive information of bogus websites. That being said, somehow someone ordered two £100.00 Amazon Vouchers without my consent and not using my laptop this month. I know it is true because when I log into amazon.co.uk it shows as an order. I have contacted Amazon to inform them about it but it has left me wondering how this is even possible. I have two step authentication set up, so even if they knew my password from one of the many breaches which seem to happen all the time with websites being hacked, how did they get in? Even when I try to login, it usually asks me to verify using my phone. That makes me wonder if there is actually something on my system that I should be concerned about. I am using Bitdefender Total Security 2019 (fully up-to-date), which has detected nothing malicious during a thorough scan of everything (it took over 15 hours). I ran GMER 2.2.19882 and couldn't see anything obvious, could someone else please cast their eye over this? Needless to say, in the mean time I have changed my password. rootkit.log
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.