Backdoor on my pc (Solved)

**Ichigo** · 12-22-2022, 11:54 AM

Here’s the fixlog but does it mean that I still had the backdoor on my computer or was it for something else?

**Ichigo** · 12-22-2022, 11:56 AM

Im currently scanning with eset scanner

**Malnutrition** · 12-22-2022, 12:05 PM

The fix was just me being thorough, there were remnants of the infection …

But as I suspected, there is a bit of another piece of malware, that has been detected. I had FRST check it at virus total.

VirusTotal

https://www.virustotal.com/gui/file/2a6b7c7e5b9ade93b37b6068db3702c27a10a29609ea8d2dff2740e0a2282de7/detection/f-2a6b7c7e5b9ade93b37b6068db3702c27a10a29609ea8d2dff2740e0a2282de7-1665504155

VirusTotal

We will need to remove it with FRST. It is this file, the last thing I suspected from your logs.
[COLOR=rgb(184, 49, 47)]
c:\users\pcgamer\appdata\roaming\modestmenu\secret scan.exe

Here is your fixlist. Run this when Eset is done, Eset is a bit aggresive, so it may detect minor things, no need to be alarmed if the detection level is high.[/COLOR]

**Ichigo** · 12-22-2022, 12:16 PM

okay

**Ichigo** · 12-22-2022, 12:25 PM

what are the consequences of this malware?

**Malnutrition** · 12-22-2022, 12:34 PM

What you already know, they had access to your accounts of social media, possibly your banking information what ever pictures files etc you had on your machine, a fresh format is not going to change that, the malware is gone now. It is up to you to change all your passwords and notify your bank that your computer was infected. From this point on I’d stay away from torrents.

**Ichigo** · 12-22-2022, 12:36 PM

I meant what are the consequences of this one
c:\users\pcgamer\appdata\roaming\modestmenu\secret scan.exe

**Malnutrition** · 12-22-2022, 12:36 PM

If you are asking about the latest detection from VirusTotal. I am not sure it is the last file I thought might be a problem, there is not much information about it. It may well be safe, but if two or more engines detect something, then I remove it. Unless it is known to be safe to the user.

**Malnutrition** · 12-22-2022, 12:39 PM

These scanners do get things wrong sometimes. I just play things on the safe side.

**Malnutrition** · 12-22-2022, 05:57 PM

@Ichigo Do you have questions about anything else, or do you consider the issue resolved?

**Ichigo** · 12-22-2022, 07:22 PM

Here is the eset log (this was before the FRST fix)

**Ichigo** · 12-22-2022, 07:26 PM

Originally posted by Malnutrition

@Ichigo Do you have questions about anything else, or do you consider the issue resolved?

I don’t have any question if you are 100% sure the backdoor isnt on my computer anymore, thank you so much for the help! Have a good day.

**Ichigo** · 12-22-2022, 07:27 PM

Actually I got a question

**Ichigo** · 12-22-2022, 07:27 PM

[ATTACH type=“full”]11100[/ATTACH]
I used to use the clipboard, but now I can’t activate it

**Ichigo** · 12-22-2022, 07:28 PM

it says in yellow that some of these settings are hidden or managed by my organization

Backdoor on my pc (Solved)

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment