Jump to content

"Drive-by exploit"


Recommended Posts

I received the email claiming that my Pc had been infected and this "person" has stolen my data and was holding it ransom. Computer was running fine, then I ran Avast full system scan then BOOM internet took a crap and my computer has been developing more and more symptoms. My internet isn't the best to begin with but its usually fine. So I have FRST, Malwarebytes, and ADWCleaner in preparation for getting rid of this thing. I ran MWB and it found one threat and was quarantined, ADWCleaner only really found the preinstalled lenovo software which i didnt get rid of. Going to upload these .txt files and if someone could help me it would be much appreciated. Wont be able to come back to view this subject until tomorrow morning once again thank you.

Addition.txt FRST.txt Malwarebytes.txt

Link to post
Share on other sites

13 minutes ago, TimLawrence said:

Well I understand that the email received may not have an affect but at the same time my internet is running at 1/4 speed when downloading and gaming as well as even the file browser is starting to become a little lack luster.

Then lets have @AdvancedSetup take a look at your logs. The email had nothing to do with your internet issues.

Link to post
Share on other sites

  • Root Admin

Hello @TimLawrence

I do not see any obvious signs of an infection. A couple of more minor issues.

 

Your Lenovo software is crashing. The following topics may potentially help you to resolve the issue if it continues.


Error: (09/18/2019 09:33:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe, version: 1.1.17.2, time stamp: 0x5c2fc902
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00007ff7f9361150
Faulting process id: 0x3088
Faulting application start time: 0x01d56e2df8b8d02c
Faulting application path: C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Faulting module path: unknown
Report Id: cabe720c-558d-4095-839a-a288935de7c0
Faulting package full name:
Faulting package-relative application ID:


https://www.file.net/process/lenovo.modern.imcontroller.exe.html

https://forums.lenovo.com/t5/ThinkPad-P-and-W-Series-Mobile/HELP-lenovo-modern-imcontroller-pluginhost-is-it-a-virus/m-p/3320146

 

Your Firefox browser has some type of policy set on it. You may want to remove any policies from Firefox
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

 

I would suggest cleaning up Google Chrome - please follow the directions from the following topic.

 

Let me know how things are after that.

Thanks

Ron

 

 

Link to post
Share on other sites

  • 2 weeks later...
  • Root Admin

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.