Jump to content

Persistent .exe click malware


Seraph

Recommended Posts

Hi, I desperately need help here. I am using Malwarebytes Premium installed on Windows 10 build 1809. Somehow this malware got through and it has been very persistent. Malwarebytes scans do not detect it and even after a system reset, it comes back. I notice that there are folders that should not be there and suspect that the virus has created a virtual drive from which to launch a fake copy of my windows system.

The reason why I suspect I am infected is that everytime I click on an application file. I get a pop up with Chinese characters. So far it has been a irritant because it seems to run on a schedule. However, running programs from Desktop seems to bypass the virus for a short period of time. Scanning with both Windows Defender and Malwarebytes reveal nothing an I fear both have been compromised. Running Trend Micro's Anti-Threat Toolkit picked out 14 threats. But even after cleaning nthensustem.after that and rebooting, the malware is still back in force.

Please help. Or should I just opt.for the nuclear option and completely format my SSD drive and reinstall Windows from a USB? I have a Lenovo Thinkpad X10 Yoga.

Thanks in advance.

Link to post
Share on other sites

Hello  and :welcome:

I'll see if we can find what's causing this.

Please take your time.

 NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

Download Malwarebytes Support Tool
https://downloads.malwarebytes.com/file/mbst?src=Forums-Reply

    Once the file is downloaded, open your Downloads folder/location of the downloaded file
    Double-click mb-support-X.X.X.XXXX.exe to run the program
        You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
    Place a checkmark next to Accept License Agreement and click Next
    You will be presented with a page stating, "Get Started!"
    Click the Advanced tab

Click the Gather Logs button

A progress bar will appear and the program will proceed with getting logs from your computer

Upon completion, a file named mbst-grab-results.zip will be saved to your Desktop. Click OK

Please attach the file in your next reply.

Link to post
Share on other sites

Hello  and :welcome:

I'll see if we can find what's causing this.

Please take your time.

 NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

Download Malwarebytes Support Tool
https://downloads.malwarebytes.com/file/mbst?src=Forums-Reply

    Once the file is downloaded, open your Downloads folder/location of the downloaded file
    Double-click mb-support-X.X.X.XXXX.exe to run the program
        You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
    Place a checkmark next to Accept License Agreement and click Next
    You will be presented with a page stating, "Get Started!"
    Click the Advanced tab

Click the Gather Logs button

A progress bar will appear and the program will proceed with getting logs from your computer

Upon completion, a file named mbst-grab-results.zip will be saved to your Desktop. Click OK

Please attach the file in your next reply.

Link to post
Share on other sites

  • 2 weeks later...
  • Root Admin

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.