Possible Malware Symptoms.

[Jcwisgod]

I went AFK for about 30 mins, and the "w" key was typing by itsself, I didn't think much of it but I rebooted to be sure and the screen black screened and took 10-15 mins to load, also when I ran the aswMBR scan, my screen bluescreened (BSOD).

 

[TwinHeadedEagle]

I was away from PC, do you still need my help?

 

[Jcwisgod]

I'm not sure, my laptop was acting strange. I don't think I'm infected but never can be 100% sure

 

[TwinHeadedEagle]

Can you explain to me why aren't you using Antivirus. There are signs of Bitdefender, but I don't think it is fully functional?


Please download Malwarebytes AntiRootkit (MBAR) and save it to your desktop.
For full instructions how MBAR works, read this article

> Doubleclick on the MBAR file

and allow it to run.
• Click OK on the next screen, to allow the package to extract the contents of the file to its own folder named mbar.
• mbar.exe will launch automatically. On some systems, this may take a few extra seconds. Please be patient and wait for the program to open.
• After reading the Introduction, click Next if you agree.

• On the Update Database screen, click on the Update button. Once you see 'Success: Database was successfully updated' click on Next
• Under Scan Targets ensure all boxes are ticked. Then click the Scan button.

Notice: with some infections, you may see two messages boxes:
- 'Could not load protection driver'. Click 'OK'.
- 'Could not load DDA driver'. Click 'Yes' to this message, to allow the driver to load after a restart. Allow the computer to restart. Continue with the rest of these instructions.

>> If malware is not detected, click the Exit button to close the program and post the mbar-log-year-month-day.txt and system-log.txt reports.

>> If an infection/s are found ensure Create Restore Point are ticked. Then select the "Cleanup! button to remove threats.
• The clean up procedure will be scheduled for process, pop-up will be shown.
Select the Yes button and the system should re-boot to complete the cleaning process.

>> Notice: only if an RootKit are detected, ensure to run fixdamage.exe tool located in mbar folder, \Plugins\fixdamage.exe
- Run fixdamage.exe, at the black window to continue type Y (alias for Yes). Wait few seconds for execution ...
- When you see "press any key to exit" fix is completed, press any key to close the window. Reboot the system.


> The following reports will be created in mbar folder:
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt

Please post both logs in your next reply.

 

[Jcwisgod]

I am using an Antivirus, I'm using Windows Defender, and running Malwarebytes Pro alongside it for now. I had bitdefender when I first got this laptop, maybe it's leftover Registry keys? Adding the 2 logs as attachments.

 

[TwinHeadedEagle]

PC seems clean. How is the situation at the moment?


Go here and remove Bitdefender remnants --> http://www.bitdefender.com/support/How-to-uninstall-Bitdefender-333.html

Then install Antivirus.

 

[Jcwisgod]

Haven't noticed any other problems. I got Windows Defender, planning on getting Avast soon

 

[TwinHeadedEagle]

Ok, then we're done


• The following will implement some post-cleanup procedures:

=> Please download DelFix by Xplode to your Desktop.

Run the tool and check the following boxes below;

Remove disinfection tools

Create registry backup

Purge System Restore
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.

 

[Jcwisgod]

Sorry for late reply, thank you for your help appreciate it