Solved Malware on my computer, help!

[FaceMelter]

The person who logged into my Runescape account also logged into my gmail. Even though my gmail says the login was from my IP address, no one could have logged into my account other than this person. I don't know if I should be worried about my gmail and whats steps I should take in that regard.

I have ran malware protection software on my computer. Deleted all the suspicious files, rebooted. Got an 'outbound ip ' thing that I have no idea what it is. I'm rerunning the MBAM and now running MBAR.

Thanks,
Ryan

 

[FaceMelter]

While rerunning MBAM, i found a file called Hijack.ShellA.Gen, I think this might be the root of the problem.

 

[TwinHeadedEagle]

Hello,



Please download Zemana AntiMalware and save it to your Desktop.

• Install the program and once the installation is complete it will start automatically.
• Without changing any options, press Scan to begin.
• After the short scan is finished, if threats are detected press Next to remove them.

Note: If restart is required to finish the cleaning process, you should click Reboot. If reboot isn't required, please restart your computer manually.​

• Open Zemana AntiMalware again.
• Click on
  
  icon and double click the latest report.
• Now click File > Save As and choose your Desktop before pressing Save.
• The only left thing is to attach saved report in your next message.

Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.

Running it on another one may cause damage and render the system unstable.

​

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

• Right-click on
  
  icon and select
  
  Run as Administrator to start the tool.
  (XP users click run after receipt of Windows Security Warning - Open File).
• Press the Fix button just once and wait.
• If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
• When finishes FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.

 

[FaceMelter]

I think the Zemana malware only found a plugin that I added for dota2.

 

[TwinHeadedEagle]

How is your PC behaving after FRST fix?

 

[FaceMelter]

I have not gotten any more 'outbound ip' notifications but I am still worried that there is a hidden trojan.

 

[FaceMelter]

Actually I just checked my MBAM and there are still some suspicious activity. i have attatched an .txt file.

 

[TwinHeadedEagle]

This MalwareBytes report doesn't show anything suspicious.

 

[FaceMelter]

So there are no problems with my computer?

 

[TwinHeadedEagle]

There was some malware, but nothing too serious. You need to tell me how is your PC behaving now?

 

[FaceMelter]

I haven't gotten any notifactions about any malware.
Thank you