Jump to content

Trying to see if this is some kind of threat to my PC.


Recommended Posts

When i start up my pc, the CMD bar pops up multiple times for a split second 20 seconds after it boots up and ONLY when it boots up, never randomly. it was too fast to see what was being booted up, but i did catch a glipse of "onedrive" and every cmd bar had "system32" in it im pretty sure.  I dont know if this is malicious or not, but i'd like to clear that up to see if theres any spyware, RATS, malware, trojans, or anything. if this is normal then all i need is confirmation of this being normal or not.

Link to post
Share on other sites

Hello @ScaredOfPeskyHackers and welcome back:

While you are waiting for the next qualified/approved malware removal expert helper to weigh in on your topic, and even though you may have run the following Malwarebytes utility, or its subsets, please carefully follow these instructions:

  1. Download the Malwarebytes Support Tool.
  2. In your Downloads folder, open the mb-support-x.x.x.xxx.exe file.
  3. In the User Account Control (UAC) pop-up window, click Yes to continue the installation.
  4. Run the MBST Support Tool.
  5. In the left navigation pane of the Malwarebytes Support Tool, click Advanced.
  6. In the Advanced Options, click only Gather Logs. A status diagram displays the tool is Getting logs from your computer.
  7. A zip file named mbst-grab-results.zip will be saved to the Public desktop, please attach that file in your next reply to this topic. Please do NOT copy and paste.

For the short time between when you post the diagnostic logs, and when your helper weighs in, please take no further self-directed remedial actions that will invalidate the diagnostic logs you will have sent.

Thank you.

Link to post
Share on other sites

  • Root Admin

Hello @ScaredOfPeskyHackers

 

Please follow the directions from the following topic for a more extensive article on cleaning Google Chrome

Resetting Google Chrome to clear unexpected issues
 

Then after cleaning Google Chrome, please run the following

 

Please download and run the following Kaspersky Virus Removal Tool 2020 and save it to your Desktop.

(Kaspersky Virus Removal Tool version 20.0.10.0 was released on November 9, 2021)

Download: Kaspersky Virus Removal Tool

How to run a scan with Kaspersky Virus Removal Tool 2020
https://support.kaspersky.com/15674

How to run Kaspersky Virus Removal Tool 2020 in the advanced mode
https://support.kaspersky.com/15680

How to restore a file removed during Kaspersky Virus Removal Tool 2020 scan
https://support.kaspersky.com/15681

 


Select the  image.png  Windows Key and R Key together, the "Run" box should open.

user posted image

Drag and Drop KVRT.exe into the Run Box.

user posted image

C:\Users\{your user name}\DESKTOP\KVRT.exe will now show in the run box.

image.png

add -dontencrypt   Note the space between KVRT.exe and -dontencrypt

C:\Users\{your user name}\DESKTOP\KVRT.exe -dontencrypt should now show in the Run box.
 
image.png


That addendum to the run command is very important, when the scan does eventually complete the resultant report is normally encrypted, with the extra command it is saved as a readable file.

Reports are saved here C:\KVRT2020_Data\Reports and look similar to this report_20210123_113021.klr
Right-click direct onto that report, select > open with > Notepad. Save that file and attach it to your reply.

To start the scan select OK in the "Run" box.

A EULA window will open, tick all confirmation boxes then select "Accept"

image.png

In the new window select "Change Parameters"

image.png

In the new window ensure all selection boxes are ticked, then select "OK" The scan should now start...

user posted image

When complete if entries are found there will be options, if "Cure" is offered leave as is. For any other options change to "Delete" then select "Continue"

user posted image

When complete, or if nothing was found select "Close"

image.png

Attach the report information as previously instructed...
 
Thank you
 
 

 

 

Link to post
Share on other sites

Thank you @AdvancedSetup! Before i do the scan i'd like to know if the google chrome thing is necessary or not, i have read it and i would like to know one thing, what are the best password managers? lastpass, 1password, or something else? i would like something that is very good and free, once i know all of this i will do the scan as soon as possible, most likely after you reply, Thank YOU!

Link to post
Share on other sites

  • Root Admin

Due to recent breach issues and previous breach issues it's become difficult to recommend Lastpass anymore.


1Password Will Kill the Last Password You Needed
https://www.reviewgeek.com/145292/1password-will-kill-the-last-password-you-needed/

LastPass Scandal Goes Nuclear, Parent Company Services Breached
https://www.reviewgeek.com/143695/lastpass-scandal-goes-nuclear-parent-company-services-breached/

Password Managers Compared: LastPass vs KeePass vs Dashlane vs 1Password
https://www.howtogeek.com/240255/password-managers-compared-lastpass-vs-keepass-vs-dashlane-vs-1password/

1Password has none, KeePass has none... So why are there seven embedded trackers in the LastPass Android app?
https://www.theregister.com/2021/02/25/lastpass_android_trackers_found/

 

Bitwarden
KeePass Password Safe

 

Cleaning up Google Chrome is one of the best things one can do to improve security and smooth operations. It's up to you as it's your computer but being in control of what is running on your system and cleaning items that may not belong is generally prudent.

 

Thank you @ScaredOfPeskyHackers

 

Link to post
Share on other sites

  • Root Admin
4 hours ago, ScaredOfPeskyHackers said:

i'd like to know if the google chrome thing is necessary or not

 

2 hours ago, ScaredOfPeskyHackers said:

For some odd reason, the download link for the kaspersky isnt working, i have clicked once and nothing downloaded, then a few more times and still nothing.

 

2 minutes ago, ScaredOfPeskyHackers said:

I am using chrome, downloading the program now.

 

Kind of shows my point of why it might be worthwhile cleaning Google Chrome. It's possible that it simply blocked it and you didn't notice.

 

Link to post
Share on other sites

Not much, basically no noticable problems with Chrome. I hate to say this but due to something ELSE, the scan will have to be run tomorrow, i know this must be very annoying and i do deeply apologize but, once tomorrow hits then I will be square to run the scan and every other steps, ive been super busy lately and i DEEPLY apologize for this long wait, thank you so much. @AdvancedSetup

Link to post
Share on other sites

a trojan popped up, and it said cure, i said continue and the trojan was located in system memory i think, i clicked cure and now its scanning all over again for some reason, AND i cant open anything at all, everything states i "dont have the right permissions" im getting super nervous, what is this, please help.

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.