Jump to content

Computer and Laptop Infected I Believe. Please help :)

BiteBack
 Share

Recommended Posts

BiteBack

BiteBack

Posted
Posted

Hello People,

  • I believe my computer, which I am typing from, as been infected as much as I don't want to believe. Sometimes the cursor stops working when I'm typing and goes back to the first time of the email I'm trying. A video on my YouTube History just disappeared as I was looking at it. I couldn't and still don't believe it.
  • I am using the Malware Bytes trial but my old internet security picked up a network attack. So this maybe a hacker????
  • I'm using a VPN also but it look like the FRST said it has failed?
  • Internet dropping in and out and it never did before. I'm connected via a homeplug by the way. I do have wifi router of course.
  • I've already done a hard set of my PC after some hackers tried to scam me. I feel it might be them maybe but I did a real format.
  • I just did the FRST then the other internet security said it was threat. I had the TXT files then they were gone.
  • Did get again and all the get the files out of Quarantine in the internet security.


Laptop:
Tab for homepage literally opened by itself for my work laptop. Was so strange. Mouse didn't move though. 
A few weeks about the update screen when you shut down looked ridiculously fake and wouldn't shut down

2020-12-30.png

2021-01-03.png

Addition.txt FRST.txt

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Hello @BiteBack

I don't see anything obvious in the logs to indicate the computer is actually infected. Let me have you run the following though which will do some generic clean up and checks on the system.

Please make sure you temporarily disable your BullGuard if it's using any antivirus engines

 

 

Please download the attached fixlist.txt file and save it to the Desktop or location where you ran FRST from.
NOTE. It's important that both files, FRST or FRST64, and fixlist.txt are in the same location or the fix will not work.

Please make sure you disable any real time antivirus or security software before running this script. Once completed make sure you re-enable it.

NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system that cannot be undone.

Run FRST or FRST64 and press the Fix button just once and wait.
If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart.
The tool will make a log on the Desktop (Fixlog.txt) or wherever you ran FRST from. Please attach or post it to your next reply.

Note: If the tool warned you about an outdated version please download and run the updated version.

NOTE-1:  This fix will run a scan to check that all Microsoft operating system files are valid and not corrupt and attempt to correct any invalid files. It will also run a disk check on the restart to ensure disk integrity. Depending on the speed of your computer this fix may take 30 minutes or more.

NOTE-2: As part of this fix all temporary files will be removed. If you have any open web pages that have not been bookmarked please make sure you bookmark them now as all open applications will be automatically closed. Also, make sure you know the passwords for all websites as cookies will also be removed. The use of an external password manager is highly recommended instead of using your browser to store passwords.

The following directories are emptied:

  • Windows Temp
  • Users Temp folders
  • Edge, IE, FF, Chrome and Opera caches, HTML5 storages, Cookies and History
  • Recently opened files cache
  • Flash Player cache
  • Java cache
  • Steam HTML cache
  • Explorer thumbnail and icon cache
  • BITS transfer queue (qmgr*.dat files)
  • Recycle Bin

Important: items are permanently deleted. They are not moved to quarantine. If you have any questions or concerns please ask before running this fix.

The system will be rebooted after the fix has run.

fixlist.txt

Thanks

 

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Thanks, the log looks good.

Please temporarily exit out of or disable current antivirus and run the following.

 

Let me have you run a different scanner to double-check. I don't expect it to find anything, but no harm in checking.

I would suggest a free scan with the ESET Online Scanner

Go to https://download.eset.com/com/eset/tools/online_scanner/latest/esetonlinescanner.exe

  • It will start a download of "esetonlinescanner.exe"
  • Save the file to your system, such as the Downloads folder, or else to the Desktop.
  • Go to the saved file, and double click it to get it started. 
  • When presented with the initial ESET options, click on "Computer Scan".
  • Next, when prompted by Windows, allow it to start by clicking Yes 
  • When prompted for scan type, Click on Full scan 
  • Look at & tick  ( select )   the radio selection "Enable ESET to detect and quarantine potentially unwanted applications"   and click on Start scan button.
  • Have patience.  The entire process may take an hour or more. There is an initial update download.
  • There is a progress window display.
  • You should ignore all prompts to get the ESET antivirus software program.   ( e.g.  their standard program).   You do not need to buy or get or install anything else.
  • When the scan is completed, if something was found, it will show a screen with the number of detected items.  If so, click the button marked “View detected results”.
  • Click The blue “Save scan log” to save the log.
  • If something was removed and you know it is a false finding, you may click on the blue ”Restore cleaned files”  ( in blue, at bottom).
  • Press Continue when all done.  You should click to off the offer for “periodic scanning”.

 

 

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

That is just a false positive and it won't actually stop or prevent your VPN from working. It's just the installer. You can always visit ExpressVPN and download the latest version and install as well.

Otherwise, all looks okay at this time. You may want to consider viewing the following topic though and cleaning up Google Chrome

 

Is there anything else I can assist you with or are you still having any other issues?

 

  • Like 1
Link to post
Share on other sites
BiteBack

BiteBack

Posted
  • Author
Posted
7 minutes ago, AdvancedSetup said:

That is just a false positive and it won't actually stop or prevent your VPN from working. It's just the installer. You can always visit ExpressVPN and download the latest version and install as well.

Otherwise, all looks okay at this time. You may want to consider viewing the following topic though and cleaning up Google Chrome

 

Is there anything else I can assist you with or are you still having any other issues?

 

I don't think there is anything else. I'm just confused what caused those constant network attacks.
Thanks for your help. I'll be going through that thread, and others, tomorrow. Looks like good info.

Link to post
Share on other sites
BiteBack

BiteBack

Posted
  • Author
Posted
11 minutes ago, AdvancedSetup said:

Not sure what you mean by a "homeplug"

The choice is yours as to which antivirus you use. Malwarebytes should be able to protect you but many customers on Windows 10 do run Windows Defender with Malwarebytes and appear quite happy with that combination.

 

These are homeplug . Homeplug Link - click here

You connect one to the router and one to the computer


 

Link to post
Share on other sites
BiteBack

BiteBack

Posted
  • Author
Posted
11 minutes ago, AdvancedSetup said:

Not sure what you mean by a "homeplug"

The choice is yours as to which antivirus you use. Malwarebytes should be able to protect you but many customers on Windows 10 do run Windows Defender with Malwarebytes and appear quite happy with that combination.

 

These are homeplug . Homeplug Link - click here

You connect one to the router and one to the computer


 

Link to post
Share on other sites
BiteBack

BiteBack

Posted
  • Author
Posted

I

11 hours ago, AdvancedSetup said:

Hello @BiteBack

I see you have a couple of duplicate posts. May I ask if you did that on purpose or the page was not refreshed? Just wanting to try to track down why some people seem to post the same content a 2nd or 3rd time.

Thank you

 

I definitely didn't mean to. Was it just me doing at or other people???? because I was a bit worried myself and tried to even delete some

Link to post
Share on other sites
  • 2 weeks later...
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread.

Please review the following for Tips to help protect from infection

Thank you

 

 

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

  I accept