i tried to install an "unlock all" client for warzone, and i think i got a very aggressive malware

Status
Not open for further replies.

kooter420

New Member
Thread author
Aug 3, 2022
6
so to start things off yea i know, i installed an unlock all client, one of those blacklisted modifications that unlock everything as i didnt feel like grinding out levels and paying for skins and stuff, and the file name was titled "INJECTOR" something. shortly after the game files were corrupted and it said that an ordinal was corrupt, which fixed itself after i ran malwarebytes scans a couple of times, and i got rid of a dumpstack.log.tmp file which i assume kept opening a bunch of microsoft applications and eating up my memory and cpu usage, and that fixed most of the problems. i realized that it disabled my windows updates feature (like it entirely deleted the files responsible for such) along with changing my administration privileges and adding some weird account to my computer that had administration privileges while disabling the actual administrative account, and a bunch of official window applications no longer work as i cant access them. I cant go into the settings and alter this as im restricted from doing so and the UAC just wont open no matter how many times i've tried. i restored my system to before the virus occurred and my windows update now works, but my administrative permissions still dont work and i had to redelete the dumpstack file, and now in task manager everything seems to look normal, but office applications and apps like "search" and "my phone" and "news" start up randomly and consume really absurd amounts of memory and cpu usage (300mb and up) and i have to end task quite a few times before they get suspended or stop popping back up. and i really dont want to factory reset as i have a lot of settings for gaming that i dont want to have to go back and redo, along with my gpu drivers and such. what do i do? i've tried virtually everything to get this ##### off of my computer but none of it has worked and im kind of lost. im assuming its like a hidden rootkit or something but i have no idea. i forgot to mention that it has also hacked into one of my emails and i keep getting spam and stuff along those lines.
 

nasdaq

Moderator
Verified
Staff member
Nov 5, 2019
794
Hello, Welcome to MalwareTips.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

First run this program and will take it from there.

Download the Farbar Recovery Scan Tool (FRST).
Choose the 32 or 64 bit version for your system.
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

How to attach a file:
In the Reply section in the bottom of the topic Select Click the Attach Files.
Navigate to the location of the File.
Click the file. It will appear in the reply section.
Click the Post Reply button.

Please post the logs for my review.

Let me know what problems persists.

Wait for further instructions
 

kooter420

New Member
Thread author
Aug 3, 2022
6
as i am posting this, i also factory reset and clean installed, but the problems still persist. everytime i open task manager the cpu usage goes from 75-85% back down to the idle percentage, which i suspect to be like crypto mining or something remotely.
 

Attachments

  • Addition.txt
    23.5 KB · Views: 5

kooter420

New Member
Thread author
Aug 3, 2022
6
it wont let me upload the FRST.txt, is this also the virus? i cant tell. it says in inspect element that its been "blocked?" but i have no idea. i tried a boot scan with avast and nothing was found i guess.
 

nasdaq

Moderator
Verified
Staff member
Nov 5, 2019
794
Hi,

Open the FRST.TXT file with Notepad copy the text.

Replay to this post and paste the text in the reply box.

Click the Post reply button.
 

nasdaq

Moderator
Verified
Staff member
Nov 5, 2019
794
Hi,

Try to reset windows to factory level.

How to:

Read carefully and selecr the options to keep your files.
 

kooter420

New Member
Thread author
Aug 3, 2022
6
Hi,

Try to reset windows to factory level.

How to:

Read carefully and selecr the options to keep your files.
I’ve already done that twice and the malware is still there even after entirely wiping the computer and clearing my files
 

nasdaq

Moderator
Verified
Staff member
Nov 5, 2019
794
Hi,

I jus found this article. Follow the instructions.
Hope it helps.

Cpu usage high until i open task manager
 
Status
Not open for further replies.