MohawkADE

Been seeing this for many months now... When shutting down or restarting, a blank app (or occasionally two), that I've been unable to identify, has been showing up and interfering with the process. While I've not noticed any other malicious behavior on my PC, it is still unsettling and suspicious. Anybody know of any tricks to figure out what this app is?

So I found an alternate solution! It was suggested to me to try (in safe mode) copying the old problem files to a FAT32 drive, as they do not retain permission metadata, then copying them back after a reboot. Upon doing so, one odd note is that I renamed the folder to "temporary pictures" when putting it on the FAT32 flash drive. Upon copying it back it renamed itself back to "TEMP PIX". Very Strange. On seeing that little detail, I went into my registry and did a search for "temporary pictures", "TEMP PIX" and every other naming scheme I had for that folder. Ended finding all the folder names under a registry entry for AVG file protection, modified the entry to remove those names. At this point, all problem files are now renamable and deleteable. Thanks for all the guidance!

Just tried it, didn't work... very bizarre. Especially considering that the most of the folders next door (and the files within) to the one I am having issues with function just fine, ALL with the same permission settings. You guys got any other tips? Also updated the main post with additional steps I've taken. One odd thing to note is that I'm still able to copy the problem files to another location, the copied files can be moved / renamed / deleted all while the originals cannot, without going into safe mode. On learning about this, I tried a nuclear tactic: copying all data off the HDD with the problem files, formatting the drive and restoring the old data back into it's original place. The restored files retain the same problem yet their copies do not. Additionally, the problem seems to be specifically targeted towards a folder I use for my pictures and select files on my desktop. Restoring the pictures target location to the default does not seem to affect the problem. I'm hoping these details may provide a clue for some of you Windows Wizards.

After some drama I had with my OS (Win10) earlier, I resorted to a clean reinstall, though I've kept most of my files. But now a new problem has emerged... Within specific areas on my PC (mainly on other internal hard drives), every time I wish to Move / Rename / Delete any file or folder, I am greeted with a message saying "You need to provide administrator permission to perform this action". Pressing continue reveals an access denied message, clarifying that it requires permission from what seems to be either an old local user account that no longer exists (ALBA\MohawkADE) or an unknown account (S-1-5-21-4009105186-2181681972-3483528481-1001). My current user account is tied with my Microsoft account and is not the same name as the old account. Additionally, any new file deposited into these folders will also yield the same result. Here's a list of things attempted thus far: Changed properties/security settings to add Full control to my current user account; Windows still demands permission from old account In safe mode, copied all files into a new folder and deleted the old files; Windows still demands permission Created local account with same name as old account; Windows still demands permission Enabled Administrator account to manipulate files; Windows still demands permission Copied all contents to another hard drive, formatted drive with problem files and copied files back into place; problem persists although the copied problem files on the other hard drive can be moved/renamed/deleted. Taken ownership of files using advanced security settings, Windows still demands permission While I am able to manipulate any of my files as I please in Safe Mode, I REALLY don't want to reboot into Safe Mode every time I need to move, rename or delete a folder. Do you guys have any remedies?

Don't want to out myself on WHAT program I torrented, so I'll just say it's one of the more prominent programs for media production. Though I will mention that THIS particular download lacks comments and comes from an unverified host, despite it's high seed count. Something to keep in mind if you're navigating the same murky waters. YARR!

FINAL FOLLOW UP: I've reinstalled Win10 (sourced from Microsoft) with all (legit) programs and restored my files and preferences. Another virus scan for sanity's sake and then I cloned my OS, keeping it as a quick-backup option in case of another emergency. After that, I disconnected myself from my router and began a hunt for the source of the virus. Using my cloned OS as bait, I intentionally reinstalled some of the pirated programs, one by one. After each install, I boot the program at least once, close it and then set the date past two weeks into the future and reboot (in an attempt to prompt this particular virus out in the open). With all those installs, only one showed suspicious behavior. After running through the previously mentioned steps, my PC made an unprompted reboot after the previous one. When the OS came to, Windows defender, update and my Anti-Virus were gone. "Ah ha! Gotcha ya little $#!T" I deleted that program and it's installer, restored the Cloned OS, tested the remaining suspect software to no additional red-flags. While thankfully this virus only seemed to only be interested in using my PC to mine crypto rather than target my files, part of me wonders if that was just a first phase of a more sophisticated multi-staged attack. I can only speculate as cyber-security isn't my professional discipline, but through this experience, I've developed a better understanding and appreciation for it. And though the final solution I developed may be a bit overzealous for most use-cases, having these options at-the-ready certainly helps me sleep better. Thank you for all of your insightful input!

Yes, all downloaders & installers are from their respective websites. At this point I have a collection of them at the ready to streamline the next reinstall. I ran deep scans on all installers and program both pre-infection and post-infection, they've come up clean. I am suspecting something more inconspicuous, so I'll be taking some advice to withhold installing anything REMOTELY sketchy after a clean OS install and then see what happens after a 1 - 2 week period (time it take before the virus reemerges).

AVG-Free is the 3rd Party Anti-Virus I use, it seems to catch whatever gets loaded into the OS after Windows Update and Defender get destroyed but not before. Otherwise ALL Internal and External Hard Drives have been DEEP scanned before and after an OS Reinstall and have come up clean (according to AVG-Free). Not familiar with Trojan types, so I've attached a screenshot. I would have though so too, until I found that attachment on my Hard Drive in a place where Microsoft Windows and Mail downloaded a bunch of other email attachments. But since the problem has emerged after deleting the suspicious email and attachment off both my Inbox and Hard Drive, I am currently looking toward other potential viral sources. I own some, though I've always been in a habit of thoroughly scanning them before use (all suspicious program and their installers currently on my system, scan clean). Never had any problems until now so I will be giving some of those programs a pause for critical assessment on my next reinstall. M.2 SSD for OS 3 HDDs for Programs and Backups, 2 SSDs for Games and Cache

For the last couple of months, I've been plagued with a couple of Trojan Horses, paired with what appears to be some sort of miner. It wrecks Windows Defender, Update along with any 3rd Party Antivirus program. So I've gone with the scorched earth approach of reinstalling my OS, but then it would pop back up a week later. In my investigations, I've traced a potential source towards a suspicious email in my inbox with an attachment that sets off all the red flags. And while I am not in the habit of downloading fishy attachments, apparently it seems the "Microsoft Mail and Calendar" app is. So I deleted all traces of that message and reinstalled my OS one more time and guess what? It's back! Dunno what I'm missing as I am deep scanning my whole PC every time and getting an all clear from my Anti-Virus. I am currently at a loss of options because I don't know where this damn Trojan is hiding and I'm hesitant to do another reinstall on account of the time & productivity cost involved. Any tips?

UPDATE - Steps Taken So Far: Updated Intel chipset drivers on motherboard No new drivers for Keyboard or Tablet Unplugged Steam Controller and Tablet Reinstalled AMD-all-in-1 (motherboard) drivers Uninstalled AMD Ryzen Master Reinstalled Graphics Drivers with DDU Updated software & drivers for HTC Vive I'll be following up with updates if I note any additional crashes or other issues.

Already did, no issues found there, problem still persists.

Nevermind, Displayport cable seems to have fixed the problem (data-rate bottleneck perhaps?)

For the past couple of weeks, my system has been plagued with random BSODs with no apparent cause or trigger to set it off. It happens when gaming or in VR, it happens when working with 3D rendering, video editing and folding-at-home, but it also happens when idle. Error reports suggest ntoskrnl.exe as the main culprit in most of these incidents, but these reports are unable to pinpoint the exact cause why. Taking the advice of the BSOD Posting Instructions, I've attached links to the Sysnative BSOD Collection zip and the Resource and Performance Monitor System Diagnostic logs below: Sysnative BSOD Collection Zip Resource and Performance Monitor System Diagnostic Log System Info: Windows 10 x64 - version 1909, build 18363.778, installed on 25 Nov, 2019 AMD Ryzen 2700x - 8 core, 3.7 Ghz CPU Geforce RTX 2080Ti - Graphics Card ASRock x370 Killer SLI/ac - Motherboard Rosewill Lightning ATX 1300w - PSU Creative Labs Sound BlasterX AE-5 - Sound Card CORSAIR Vengeance LED (2 x 16GB) DDR4-3000 - RAM My Suspects in this case: 1) RAM incompatible with motherboard/CPU (Currently clocked to 2800 Mhz, clocking to full 3000 Mhz leads to more instability yet defaulting to 2133 MHz does not yield in better stability than current clock speeds.) 2) Driver issues (Unable to determine what driver to which device and a reliable trigger to cause BSOD.) Attempted Fixes (still unsolved): Uninstalled/Reinstalled or Updated Drivers Updated Windows MemTest - no errors Chkdsk (sfc /scannow) Reseated RAM modules / Changed slots (1&3 to 2&4) Adjusted RAM clock speeds Reinstall Antivirus Hopefully with a few extra eyes and additional expertise, I can make a stronger determination and hopefully fix for this issue. Thanks for taking the time to assist me with this.

I just picked a 2nd Monitor, a BenQ SW240 to compliment my main monitor, ASUS VG236HE. Managed to pick it up using the promo code from the last LTT video talking about professional coloring tips. The plan being to have my ASUS for 120hz gaming and the BenQ for professional coloring work. Plugged everything in and everything was looking fine, then I go to test for a comparison between the 2 monitors by booting up Photoshop to make a color gradient and compare the banding between both monitors. Problem is that it was taking forever to load, once loaded (after 7 minutes of waiting) I select the paint brush tool and apply a dab on an empty canvas, it takes 4 minutes to process that single paint dab. It's not just Photoshop but any professional program I had planned to use with this 2nd monitor, After Effects, Premiere Pro, Davinci Resolve, they all just freeze up when the 2nd monitor is plugged in. Even shutting down or restarting takes forever with the 2nd Monitor. If I disconnect the monitor and reset my PC, everything goes back to normal and all those programs load up normally and are usable, so I tried plugging the monitor back in with those programs loaded up and they work for a little while but eventually slow down to an unusable crawl again. I'm at a loss with how I can fix this, I just ordered a DisplayPort cable to see if I get any better results but I'm considering returning the monitor if I cannot find a solution. Specs: OS: Win 10 64bit on M.2 SSD CPU: AMD Ryzen 1800x GPU: GTX 1080 RAM: 32 GB Displays: ASUS VG236HE on Dual Link DVI (120hz) BenQ SW240 on HDMI (60hz)

That's the problem... I can't update. "Cannot update because disk layout uefi firmware isn't supported"