Weird processes, is it malware?

[damnitq]

Good morning.

For around 2 months I'm having problems with my connection - router is randomly loosing signal, there are problems logging into banks because of some IP problems, also I can't log into my paypal anymore because of some fraud protection, etc. That's why I decided to share my problem with You since I'm getting really worried about this situation.
I have called my ISP about the situation but all they have done was changing the phone number which im actually using on simcard from them.

Router I'm using is 4G EE Router HH70VB. After some time of reading and trying to fix my problem, I found that this router has some backdoor SSH credentials. That made me even more worried.

Backdoor in EE 4GEE HH70

I'm really thankful for any further help and advices.

Wish You guys great morning.

 

[nasdaq]

Hello, Welcome to MalwareTips.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

No malware was found in your logs.

Please download the attached Fixlist.txt file to the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The Computer will restart when the fix is completed.

It will create a log (Fixlog.txt) please post it to your reply.
===

Please post the Fixlog.txt and let me know what problem persists.

If you know the process name that is causing issues please post the name of the process.

 

[damnitq]

Hello there. So in my opinion, someone is tracking and stealing my informations through ssh credentials backdoor of my router. Through local laptop which I can't really get onto.

Before format there was a lot of weird "root" registry keys, also my firewall settings are constantly changning.

There are many svchost.exe processes working and weird "DisturbedCOM" LRPC warning events in event viewer

Greetings.

 

[nasdaq]

Hi,

There are many svchost.exe processes working and weird "DisturbedCOM" LRPC warning events in event viewer

This as far as I know is not caused by malware.

You may have seen this topic.

DisturbedCOM server permission issues.

social.microsoft.com

What I suggest is that you start a new topic in the Windows 10 Forum at BleepingComputer.
You may have to register.

Windows 10 Support Forum

Windows 10 Support: Use this forum to ask questions, and give answers for Microsofts Windows 10 operating system. Note: Any discussion topics on Windows 10 should be posted in the Windows 10 Discussion subforum

www.bleepingcomputer.com

An expert with this issue will be able to help you as this is not my forte.

This topic will be closed in 6 days.
If you need to return please do.

 

[damnitq]

Thank You very much for advice.