Malware removal?(Couldn't think of an original title)

I’ll need the FRST.txt as well.

I know.Strangely it won’t upload.I’ll try again.

Copy and paste, or zip and attach it.

Here I go

[HEADING=1]Program Removal:[/HEADING]

Uninstall these programs listed below:

[ul]
[li]McAfee (HKLM...\McAfee.WPS) (Version: 1.22.203.1 - McAfee, LLC)[/li][li]WebAdvisor by McAfee (HKLM-x32...{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.949 - McAfee, LLC)[/li][/ul]

In Geek uninstaller click [COLOR=rgb(65, 168, 95)]View MS Store Apps. [COLOR=rgb(243, 121, 52)]Remove this:

[ul]
[li]McAfee → C:\Program Files\McAfee\wps\1.22.203.1 [2024-09-19] ()[/li][/ul]
While you are in there remove any apps that you do not use.

With GeekUninstaller:

Use Force Mode if one of the programs will not uninstall.
[COLOR=rgb(243, 121, 52)]You will need to Remove Mcafee as there is already Avira installed on this machine, and having two Antivirus applications can cause issues!!

---

---

[/COLOR][/COLOR][/COLOR]

[HEADING=1]FRST Fix.[/HEADING]

Download attached fixlist.txt file and save it to the Desktop. NOTE. It’s important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system Run FRST/FRST64 and press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run. When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

Unzip to your desktop.

---

---

[HEADING=2]Do you know what these are?[/HEADING]

C:\Users\mattn\AppData\LocalLow\f8afd462e3bf2d24ae 8bff2dd7144205aeadf013a462d9112c9ef7d285208c99
C:\Users\mattn\AppData\LocalLow\9384b3ce81a0a4bec3 7d00c684944e3ecfbe8aa24714513ba90798b78c925035
C:\Users\mattn\AppData\LocalLow\a6540bf5930ec992dd 5d2dc86377ffba82e6f01eb2fe57fc446d8c88aed6d278
C:\Users\mattn\AppData\LocalLow\2f3c47a346f652668c 2a3cc07e6306669d2a6e5f9fb1088902ddabd1be757030
C:\Users\mattn\AppData\LocalLow\d40544c696616e4af0 c6ea20714070e5b7e08d1e1f5d1ca03b7afe7bbc7ede28
C:\Users\mattn\AppData\LocalLow\779935c3c0e8495fea 93095d68ef2bc50fb6b465ec8e46bf605902794d32d053
C:\Users\mattn\AppData\LocalLow\cdc1487962cfd44871 b1c31969e0d909c1149dcefe7f58e2bdcc3962483dcf66
C:\Users\mattn\AppData\LocalLow\c8d1244d215a354e02 651fb2b918c4dc22334b9d24247ca7ad75c99d3f1011ef
C:\Users\mattn\AppData\LocalLow\d7fb279b61b1161fd7 158236631042e92e60bef281802679efcfb1f1ff298016
C:\Users\mattn\AppData\LocalLow\d3f2f420f6164bbff4 f4c7be963975348677e4857eb910010960b99e1d8e3103
C:\Users\mattn\AppData\LocalLow\f5e2c3a594959493a6 644dd17bf1964d506f0df4b0ecc6929ef7c1f8f6a3408c
C:\Users\mattn\AppData\LocalLow\86660111396adba6ef d1ce5c30bb9a3e4e475e72123372aa61119381f7970872
C:\Users\mattn\AppData\LocalLow\3a91625889d020df5d 7e22b8a5823c0517cc924c5f1b8d0036ed9c17c599bffe
C:\Users\mattn\AppData\LocalLow\a7dc5dfac87f7e1d72 9b3e3bbfccfb871f20c4c594434031e0411606fe1358de
C:\Users\mattn\AppData\LocalLow\1d20e7546529928277 d4278a9d0ff3056b064cfafd8280d5cfe2836e1832256e
C:\Users\mattn\AppData\LocalLow\0b5eacb3a7d0189ae0 9bc2d2cb032ac8ce3360e9ae285e9e8878930f3a55be09

---

---

[HEADING=2]I’ll need the following:[/HEADING]

Post the Fixlog after running the fixlist:
Post fresh FRST and addition.txt logs.
Explain to me what your issues are?

I Apologize, there was a misspelled word in my script, that will cause the batch to not function.

Here it is revised.

Not sure if I got your instructions right,but I first unnstalled these two from the Installed Apps directory in Settings.
[COLOR=rgb(65, 168, 95)][COLOR=rgb(243, 121, 52)][COLOR=rgb(243, 121, 52)]
Then,once in Geek,I could find no trace of anything McAfee related,maybe I should have uninstalled with Geek from the start,sorry but I’m a noob [/color][/color][/color]

All good, now move onto the FRST fix please,

Before going on with the FRST fxes,I looked them up,and they seem to be shader cache files for my Intel graphic card.Should I delete them?
It’s a kinda long story,I believe I got infected through a corrupted portable wi-fi router,and now I have reason to believe my activities on and off the web(while connected to a different network than the afore-mentioned one) are being monitored.

No If they are related to your Intel graphic card then leave them.
All good we will get to the bottom of it. Run the FRST fix, post the Fixlog, and new FRST and Addition.txt logs, along with this as well. This tool will check in places that FRST does not.

Download ZHP Suite to your desktop.
Unzip it there.
Right Click Run as admin.
Hit the scanner button.
Once it is complete a file name ZHPdiag.txt will be on your desktop.
Attach it.

Fixlog file in the attachment,waiting for the second scan to finish.

Here’s the txt files for the second scan.On to downloading ZHP Suite.

And here’s the ZHPDiag file.