Something is being executed when I use mouse? Logs provided

Status
Not open for further replies.

Cerica

New Member
Thread author
Jul 20, 2020
2
Hello, I think malware is stealing my mouse inputs to execute commands. When I press down a mouse button it will release on it's own. I did clean windows install and mouse worked like normal for few days and then it started again.

Previously malware unencrypted all my drives and made MBR partitions on them which I deleted before installing windows again.

I think there is something fishy in the umpdc.dll file.
 

Attachments

  • MBAM.txt
    1.2 KB · Views: 9
  • AdwCleaner[C01].txt
    1.9 KB · Views: 7
  • AdwCleaner[S01].txt
    1.5 KB · Views: 8
  • FRST.txt
    288 KB · Views: 8
  • Addition.txt
    24.4 KB · Views: 8
  • umpdc.dll.txt
    10.6 KB · Views: 8

nasdaq

Moderator
Verified
Staff Member
Nov 5, 2019
1,425
Hello, Welcome to MalwareTips.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

I know you have issues with your mouse but, How is the computer running?
You have GROUP POLICY RESTRICTIONS ON ALL PROGRAM?
Did you set this?

HKLM Group Policy restriction on software: %USERPROFILE%\AppData\*\*.exe\ <==== ATTENTION
HKLM Group Policy restriction on software: %USERPROFILE%\AppData\*\*\*.exe\ <==== ATTENTION
HKLM Group Policy restriction on software: %USERPROFILE%\AppData\*\*\*\*.exe\ <==== ATTENTION
HKLM Group Policy restriction on software: %USERPROFILE%\AppData\*\*\*\*\*.exe\ <==== ATTENTION
etc....
 

Cerica

New Member
Thread author
Jul 20, 2020
2
I know you have issues with your mouse but, How is the computer running?
You have GROUP POLICY RESTRICTIONS ON ALL PROGRAM?
Did you set this?

If that is not done by Hard_Configurator then it is not done by me. At least not intentionally.

The computer and programs run fine.
 

nasdaq

Moderator
Verified
Staff Member
Nov 5, 2019
1,425
Hello, Welcome to MalwareTips.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Glad I asked because I know nothing about this.
I have now see what it does at:

I cannot verify the intetrity of the protected files.
I hope your system was stable when you ran the program.

As for the rest of your logs nothing was found to be bad or malware.
---

I think there is something fishy in the umpdc.dll file.
This file as I understand should not be changed or deleted.
===

You can try to reinstall it and see if the problem gets solved.

Or try a new mouse if possible, yours may be going bad.
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top