Jump to content

Did not detect intrusions


Recommended Posts

Once a malicious actor gains root access mailwarebytes will not find anything suspect ?

I used the trial on my PC. Had no alerts.

I have it on my phone too and am nervous as I found all this out 10 hrs ago.

I knew something was going on with a bunch of hosts running and event viewer logs but it said everything was great. No problems found.

I had no remote access selected on Win 11. Yet mailwarebytes was unable to notice a remote user changing my registry, adding files, had some clipboard view, made themselves at home and shared all my drives. When I went into the event viewer I couldn't believe it. All I had to do was look up these files and events on Google and yanked the ethernet cord out. Then I realized they had wifi running in the background as well. It was a long night and day. I can't even turn the pc on without fear of intrusion and nervous about this phone. I had to change passwords but thought, hey, maybe that's a dumb idea if this could be on my phone too and they may have not have got all my info yet. I'm not going to give it to them if they can remotely view my screen. What does someone do now? Burn my new PC? Expensive firewood. Even though yall say my phone is good I think its infected too. It says to "log into windows. Your account needs attention" every couple of hrs with the Samsung app, Link to Windows that I cant uninstall 🤦

I had thought that it would catch odd remote connections. I'm pretty sure that's the only way someone gets in, unless they have physical access and a USB stick with some payload ready to inject some Java or whatnot. I can only think of throwing my 2 980 PRO'S and WD SN850 in the firepit, start over and check manually for viruses.  I read its pretty easy to control windows pc and install non detectable scripts and its game over.   Is that true?

 

Link to post
Share on other sites

47 minutes ago, Deadcoin said:

Once a malicious actor gains root access mailwarebytes will not find anything suspect ?

Once a computer is compromised, it can take a lot more than just scanning with Malwarebytes to correct the issue.

While you are waiting for the next qualified/approved malware removal expert helper to take on your case, even though you may have run the following Malwarebytes utility or its subsets, please carefully follow these instructions:

Do not try any other cleaning of any kind after running the support tool. Use the computer as little as possible, or even better don’t use it at all except to check this topic and follow the instructions given.

Restart the computer.

Then do the following after restart.

WARNING: Do Not click the Repair System under Advanced unless requested by a Malwarebytes support agent or authorized helper

  1. Download the Malwarebytes Support Tool.
  2. In your Downloads folder, open the mb-support-x.x.x.xxx.exe file.
  3. In the User Account Control (UAC) pop-up window, click Yes to continue the installation.
  4. Run the MBST Support Tool.
  5. In the left navigation pane of the Malwarebytes Support Tool, click Advanced.
  6. In the Advanced Options, click only Gather Logs. A status diagram displays the tool is Getting logs from your computer.
  7. A zip file named mbst-grab-results.zip will be saved to the Public desktop, please attach that file in your next reply to this topic. Please do NOT copy and paste.

For the short time between when you post the diagnostic logs, and when your helper weighs in, please take no further self-directed remedial actions that will invalidate the diagnostic logs you will have sent.

Thank you.

 

Link to post
Share on other sites

Is there a way I can download this to a USB and run it or do I have to plug the ethernet cable back in?

Its been off. They got my wifi, modem, pc and probably this phone. Yikes.

Trying to think how to do that without log into email with my new passwords that's all.

 

Link to post
Share on other sites

  • Root Admin

Hello  and  :welcome:    @Deadcoin

 

My screen name is AdvancedSetup and I will assist you with your system issues.
 

Let's keep these principles as we proceed. Make sure to read the entire post below first.

  • Please follow all steps in the provided order and post back all requested logs
  • Please attach all log files to your post, unless otherwise requested
  • Temporarily disable your antivirus or other security software first. Make sure to turn it back on once the scans have been completed.
  • Temporarily disable Microsoft SmartScreen to download the software below if needed. Make sure to turn it back on once the scans are completed.
  • Searching, detecting, and removing malware isn't instantaneous and there is no guarantee to repair every system.
  • Before we start, please make sure that you have an external backup, not connected to this system, of all private data.
  • Do not run online games while the case is ongoing. Do not do any free-wheeling or risky web-surfing.
  • Only run the tools I guide you to use. Please don't run any other scans, download, install or uninstall any programs while I'm working with you.
  • Cracked, Hacked, or Pirated programs are not only illegal but also can make a computer a malware victim.
  • Having such programs installed is the easiest way to get infected. It is the leading cause of ransomware encryption. It is at times also a big source of current Trojan infections.
  • If there are any on the system you should uninstall them before we proceed.
  • Please be patient and stick with me until I give you the "all clear". We don't want to waste your time, please don't waste ours.
  • If your system is running Discord, please be sure to Exit it while this case is ongoing.

 

It can be downloaded and run from USB

Thank you

 

 

Link to post
Share on other sites

  • 4 weeks later...
  • 2 weeks later...
  • Root Admin

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Tips to help protect from infection

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.