Jump to content

Strange things happening


Recommended Posts

Over the last week or so I have noticed a general slow down of my computer when both starting and opening programmes.

 

More recently my Trend Micro Maximum keeps finding virus / malware and supposedly removes them after a restart.

 

Malwarebytes has found and removed some also. A rescan with Malwarebytes shows no threats.

 

CPU usage now, even at idle with nothing running, is above 55%

 

I have selected "do not show hidden folders" in Folder options, however, on start up the "desktop ini" icon is present.

 

???????????

 

Any ideas from the attached logs

 

Many thanks

 

FRST.txt

Addition.txt

 

Link to post
Share on other sites

Forgot this in the above post .....

 

This is the threat that Trend seems to find - requests a restart - and then finds again.

 

Threat: TROJ_COINMINE.SBF Source: Threat Affected Files: C:\Windows\Temp\svchost.exe Response: Detected Detected By: Real Time Scan

 

 

This one always seems to accompany the above.

 

Threat: TROJ_GEN.R08NC0RE615 Source: Malware Affected Files: C:\Windows\TEMP\lsass.exe Response: Removed Detected By: Real Time Scan
Link to post
Share on other sites

  • Root Admin

205.199.44.156 registeridm.com
205.199.44.16 registeridm.com
127.0.0.1 www.internetdownloadmanager.com
127.0.0.1 tone.com
127.0.0.1 www.tonec.com
127.0.0.1 registeridm.com
127.0.0.1 www.registeridm.com
127.0.0.1 secure.registeridm.com
127.0.0.1 internetdownloadmanager.com
127.0.0.1 www.internetdownloadmanager.com
127.0.0.1 secure.internetdownloadmanager.com
127.0.0.1 mirror.internetdownloadmanager.com
127.0.0.1 mirror2.internetdownloadmanager.com
127.0.0.1 mirror3.internetdownloadmanager.com
127.0.0.1 www.nero.com
127.0.0.1 www.nero.com/rus/index.html
127.0.0.1 www.nero.com/rus/support.html
127.0.0.1 www.nero.com/rus/support-customer-service-product-registration.html
127.0.0.1 www.nero.com/rus/store-upgrade-center.html
127.0.0.1 www.nero.com/rus/store-volume-licensing.html
127.0.0.1 www.nero.com/eng/support.html?NeroSID=392cba06859c3dcd87b47525e97a3b80
127.0.0.1 www.nero.com/eng/store-upgrade-center.html?NeroSID=392cba06859c3dcd87b47525e97a3b80
127.0.0.1 www.nero.com/eng/support-customer-service-product-registration.html?NeroSID=392cba06859c3dcd87b47525e97a3b80
127.0.0.1 www.nero.com/eng/index.html
127.0.0.1 www.nero.com/enu/support-nero8.html
127.0.0.1 my.nero.com
127.0.0.1 secure.nero.com/us/secure.asp
127.0.0.1 activation@nero.com
127.0.0.1 registernero.com

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.