Search the Community
Showing results for tags 'malware'.
-
This might sound stupid but my PC has been acting weird for a while and I'm concerned. This will be somewhat of a long one so hang tight. It started when I tried to reinstall Hamachi in order to play an ancient game (commando) with a friend. I suspect (I'm not fully sure) that it changed my "E" disk's permissions so the disk wouldn't let me edit or view files inside unless I tap on "continue" with the admin icon, everytime. I looked up online and "solved" the issue by creating a new user profile called "Everyone" for the E disk. Still not confident in this "solution" as I struggle to extract files inside this disk. Anyway, today I was playing a cracked version of The Forest (I'm sorry was trying it out for some friends) which the guy somehow managed to bypass steam's verification stuff and enabled multiplayer. Today while playing the game I was on our discord server's VC channel with my pals and discord would randomly start streaming and would repeat that despite me turning it off multiple times. And during one of my repeated efforts of closing the stream, the game wouldn't maximize so I had to force shutdown ny pc (by long pressing the power button). Odd thing was that my Motherboard's LEDs were still on. I have them turned off on my BIOS. I turned off the power fully and turned the power back on and THEN the lights would stay off. I'm really concerned now. Sorry if I sound stupid but can someone PLEASE help me! Am I screwed??
-
I have a local sata SSD hosting my OneDrive (with stuff like Documents, Desktop... etc also synced here) and as storage for downloads, including torrents through qBittorrent. It is a Fanxiang S101 2TB. Not a T1 manufacturer by any means, but by most reports they are reliable enough. I've had it for a year so far without other issues, and have done full block scanning to verify true capacity and read/write speeds are as advertised. Since 2 weeks ago it has started acting up. My system started stuttering frequently, including in games where I'm otherwise maintaining smooth 200 FPS before. I think I've tracked it down to this SSD. This SSD is not storing my games, nor any other software/apps, but it might be interfering with Windows itself since Desktop etc are on it. It frequently jumps to 100% disk usage, every few milliseconds. Sometimes it ramps back down straight away, other times it stays up for minutes. Even at 100% usage, the read/write speed in task manager are in the 2-digit KB/s range. It also seems to be throttling my qBittorrent downloads - popular linux ISOs with hundreds of seeders are now stuck in 5-50 KiB/s, where I used to easily do 50 MiB/s. I've done a full chkdsk f x r, took 4 hours, absolutely no bad sectors were discovered. It is at about 1 TB usage (out of 2 TB capacity). Would anyone have any ideas on how to further troubleshoot? Could the problem be originating elsewhere that's cascading into this SSD activity? Does this behaviour seem like malware?
-
Hi all Im working on an HP ProLiant DL385 Gen 7 for work as a project. It is currently unused. It was reported some years ago (before I started ) that there was Malware on the Server. Is there a way to check if this is true and even if I reinstall Windows Server 2019 R2 on it - will it be safe to use? Any help would be appreciated Cheers! Shane
-
I got a strange notification after updating my Samsung A33 5G phone yesterday. It's from an app called "AppCloud", by a company called IronSource. It's basically an app store that I cannot uninstall; only disable. When I click on the (bright orange) notification, the app asks me to agree to some terms and conditions. I don't agree and close the app. The notification stays there. There was no checkbox to install this app. I did not check if the terms and conditions checkbox I agreed to while installing a security update stated that malware would be installed along with said security update. I bought the phone new from Samsung via amazon about a year ago. I'm in Spain, but I bought the "italian version" of the phone on amazon because it was cheaper. I am not with a carrier (I use a pre-paid sim card). Has anyone else had this problem? Did I accidentally buy some bootleg phone from the Sicilian mafia? porca miseria... -
My computer got hijacked.....it keeps quitting task manager of file explorer if I browse system files....it stops me for installing any program....It shows a taskhost.exe program at startup but can't do anything to it cause it quit the whole task manager. -
So I was recently looking for an app to download manga to read manga offline but no luck, and it seems one of them was scanned as malware, but I already deleted it. I did some googling and many say its a false positive but I have to make sure. I also tried going to Appdate/Microsoft/Microsoft defender/Scans, but I can't open the scans file as I am denied access, to delete scanhistory so it won't show up. I also can't change the file permissions. So far I don't see any changes, but I am worried its hidden spyware and someone is recording or watching my screen and will steal account passwords or my payment details if I do any. I have windows 10, please help. Oh and I used Microsoft malicious software remover tool and it found nothing.
-
I'm watching a live stream and I saw in the chat I saw a little survey pop up pertaining to what the video was about. My dumb ass clicked on it. Before I knew it my display was blinking black a couple times and then my pc restarted. It came back up and I immediately did a search on my c drive for the date and went to the approximate time that it happened to see if there were any new files that didn't look right. Nothing. I ran a scan in defender. Nothing. I also have an adblocker that is supposed to have real time protection with it for malware and ransomware and malicious websites. That didn't do anything either. I pull youtube back up and within minutes it starts locking up. I was able to close it before a full crash. Tried it a couple times with the same result. I'm really hating myself because RIGHT before that survey popped up in the chat, I noticed someone spamming and I saw a ton of the same character coming through over and over out of the corner of my eye. I didn't think anything of it and maybe 30 seconds later regular chat is scrolling and up come this survey. I didn't put two and two together until it was too late. How stupid of me. Anyway, youtube won't stop crashing. Any suggestions on how to figure out what happened and how to stop it?
-
So I recently bought and downloaded 嗜血印 Bloody Spell. I have found that a lot of Chinese games have questionable Kernel Level Anti-Cheats, thus I went to find out if this game had one before I ran it. In my looking I found this steam forum post and was wondering if anyone else has information about the game. https://steamcommunity.com/app/992300/discussions/0/1753525962482124107/ I am still uncertain whether or not these users' issue came from the game or elsewhere. Either way I want to toss it if this still and issue if the game does install malware or if it has Kernel Level access.
- 1 reply
-
- 1
-
.png)
-
- 嗜血印 bloody spell
- anti-cheat
- (and 2 more)
-
So I haven't had a computer/ laptop in forever. Like 15 yrs. I'm making a pc. But I wonder about Protective Software. Back in the day I was a kid and was sold some software like McAfee, or Nord something and I never knew if it was just a sales trick or if it actually helps. And Do I need something like this? One friend says no and the other says they wont pay for that lol. So I just don't want to make a pc and then get all messed up because I get hacked. Advice?
-
Is this what used to be a USB 2.0 type A male, that i just took apart, in anyway capable of running malicious software or code on my pc if plugged in? I can provide better pictures if requested
-
Summary Malware is spreading through minecraft mods and have already infected files on curseforge and possibly other sites as well. Quotes My thoughts I am a big fan of modding minecraft and luckily I have not downloaded any mods recently but if I had I would not have noticed the malware until it was too late. I'm a bit surprised that this kind of thing has not happened before as minecraft players are a big target. Sources https://www.bleepingcomputer.com/news/security/new-fractureiser-malware-used-curseforge-minecraft-mods-to-infect-windows-linux/
-
I just had youtube running when I heard my laptop whining , checked the taskmanager to see that firefox was using 100% of the CPU , and 4GB of RAM (first pic kinda bad, but you can make it out with the 2nd pic that firefox is the one using the resources I ended the task via task manager and reopened firefox with a result not so different I cleared the data , cache , cookies and yet no avail But the issue got resolved when I turned off wifi , tried loading a page in firefox (forcing it to end up with a no internet page) and then turned it back on I'll run a defender scan tonight (i.e now , its 12:15am lmao) hoping that nothing is serious Should I be concerned about something worse?
-
So... I just watched today's video and got a little spooked. I was considering buying a cheap mini pc from aliexpress (e.g. like this) for me to experiment on (pfsense, homeassistant, jellyfin, etc). With the context of today's video, the recent LTT hack (and the knowledge that Luke decided to nuke the whole PC because he said it wasn't worth trying to find out if the bios got infected or not), how can I be certain that if I were to buy something like that mini pc, it'd be malware free? Or should I refrain from buying it in favor of a more reputable product from a more known brand? Since I will definitely plug this thing to the internet, I feel like I can't be too careful. -
Sent from Mail for Windows Hi everyone, I could really use some help here. Not sure if this is a possible false alarm or anything but I would rather be safe than sorry, plus this could help the next person if they have a similar problem. I left my laptop on while I was out for about an hour because I was in the middle of something. Came back and I had an alert by my antivirus (Kaspersky), that I had a Trojan (Script). It had the option to remove the threat, and I had clicked to remove it, but it didn't work. So I attempted to shut down my PC but it was not allowing me to shut down when clicking to shut down. I opened the system tray in the bottom right to see if I could open my antivirus again and noticed that the windows security icon was red, and when I went to click on it, got an error message. I don't remember exactly what it said, but it was along the lines of "you may not have permission to open this". I also attempted to open some photos but nothing would open. So I force shut down my laptop by holding the power button, and when I turned it back on I had the same issue, Kaspersky popped up straight away, nothing was working again, but this time the threat removal worked. Kaspersky then did some system repair process to revert anything it thought the virus/malware may have damaged. I restarted the PC and everything seemed normal. Ran another virus scan, and luckily, no threats. I also then downloaded Malwarebytes and got the free trial and scanned, no threats detected there either. I then investigated where I may have gotten this virus or malware from, as I am very careful with the websites I visit, and programs I download. I had not remembered downloading a program for a very long time so something seemed off. I checked the quarantine centre in Kaspersky and opened where the file was located. It was located in a Google Chrome extension folder. The file had obviously been removed but the folder it was in was still accessible. I had not downloaded an extension for a long time. The only ones I had were an Adblocker, the same one I have used for years, and Kaspersky Protection extension for Chrome. I went and opened extensions on Chrome, and to my suprise there was a new one, that I have never used before or seen. It was also disabled. The extension was 'UltraSurf Security, Privacy & Unblock VPN'. I do not remember ever installing this. I deleted the extension, and sure enough, the folder the threat was located in was gone. Now I am unsure if this was some sort of false alarm from Kaspersky, or a genuine threat. It seems to have been removed. Should I be worried, is there any more steps I should take? Does anyone know if this extension being malicious? Sorry for the essay, I am just worried, and would like to know if I should do anything else to ensure my system is safe to use. Thanks so much in advance!
-
I needed an autoclicker so I was going to download it. Just wanted to check if it's safe to use.
-
Just found out this extension got removed from the chrome store due to malware. Anyone know if this is confirmed or suspected? The jist appears to be the app changed hands and then some closed-source code was added after-the-fact. At the very least it's suspicious. To quote IAmMarcellus: "Could @deanoemcke be held liable for any of this? Not only did he hand over the software to a malicious 3rd party, not disclose who they were, and lie about the code always being available for review on github, he also integrated a closed-source library for tracking user information well before handing it over: #1311 (comment), meaning that he didn't just empower a malicous actor, he also acted malicously himself." https://github.com/greatsuspender/thegreatsuspender/issues/1175 -
is it normal to have this many processes on task manager? I detected malware a day ago, something called Skype.exe, the reason I ask is because of the third(file.net) image , I used malwarebytes, avg , hitmanpro and windows defender to remove what was detected. Should I just do a format and reinstall windows? btw here is the post I did earlier about the malware
-
Today I experience malware on my pc, it looked like Skype but it was like a porn site, no I do not watch porn on here, I have a vpn, avg antivirus and malwarebytes on the pc, on task manager I found several Skype.exe processes which I ended and deleted, scanned and wiped with avg, malwarebytes, HitmanPro and Windows security, I have reinstalled windows as an update, I chose the option to keep personal files and apps. The two possible ways i got the malware were by the two games I installed from the Microsoft Store, Car Mechanic 2018 and Extreme Offroad, don't know which did it but I dont know anywhere else where i got the malware. The problem I have is that I dont know if that did the trick, according to the scans the pc is clean, but in the task manager I see repeated processes, Nvidia Container, COM surrogate, Runtime Brooker, btw I have deleted all of Nvidias software. Did the same for avg due to more processes appearing after a restart. are these repeated processes normal or should I do a format wipe and reinstall of windows?
-
Yesterday I downloaded a file that claimed it would install Dolby Atmos on my computer. I was skeptical at first since it was not an .appx file, but I scanned it using BitDerender and the results were initially safe so I proceed to open the file. Nothing appeared, no UAC warning, no setup, and Atmos was definitely not installed. I tried opening it again, this time I was looking at the task manager and I've found that it is was running at least three instances of the command prompt. It was then that the antivirus blocked the file. I used MalwareBytes and it deleted a file on Loca/Temp called dup2patcher.dll. I restarted my PC since BitDefender locked my access to hidden files and when I booted again I tried to scan my PC using BitDefender. But I thought something was wrong because everytime I tried to open BitDefender by double clicking it's icon on the windows tray, the other icons "flashed", like when my mouse is over them for a second before the antivirus opened. I found very odd that this only happened when I tried opening BitDefender, all the other programs that I tried to launch via the windows tray behaved normally so I'm thinking that maybe something is wrong with the antivirus itself. Here's a video of it happening, as I think my explanation is somewhat vague and hard to understand. Furthermore once when I tried to restart my computer I the following process was preventing it from restarting: CoreSync::â€<musync::â€<WSystemâ€>ObserverImpI I've searched it up and it seems that it linked to Adobe software, but given the circumstances and the fact that this never happened before I'm afraid that this is linked to all of this. Today I tried to end all processes I could and leaving the task manager to check on my CPU usage. It stayed on 2%, it occasionally went to 3% but never more than that if I left my PC unused. I'm wondering if the BitDefender thing is linked to a virus, and if so, if I should format my PC or try removing it some other way. Any advice? Thanks in advance.
-
So today, I woke up and went on my computer and it started acting funny. When I was trying to log in to my profile, it said profile couldn’t be loaded. Then after A few tries, I logged in and some of my stuff and drivers were deleted. Is there like a virus or something in my computer. Please Help.
-
I have just caught Firefox uploading to a Fastly server for no reason. I wasn't uploading anything i was just watching some YouTube videos. Should i be alarmed? Should i worry about this? Is it normal or do i need to check my PC for malware (MalwareBytes didn't find anything) Any help would be appreciated.
-
I've been using Avast Premium Security for years and the experience has always been positive (except for the annoying pop-up ads), but as my current subscription is about to expire I'm left wondering if it is still necessary in this day and age when I keep hearing about how good Windows Defender is. Besides, aren't malware and ransomware the biggest threats these days more so than viruses? Wouldn't be better to invest in a solid firewall and/or malware removal tools (and common sense, of course) instead of relying on these services and the speed with which they update their databases? Avast is offering a pretty awesome discount to renew my subscription, but would that be the right move? Would invest in something like Malwarebytes be a better option instead? -
I understand that some people have been having issues with the trusd process pinning people's CPU usage. I have read on other forums that it is a bug that has occurred on some updates of macOS. There are two things that I wanted to address. The first is that people are hesitant about reinstalling macOS. The only thing that happens during a reinstall is it replaces ONLY the macOS files. It will keep all the files and programs from before on your computer. I’m unsure if people understand that if you delete the main volume will you lose application and documentation information. If someone is that concerned about losing data creating a TimeMachine backup will keep a snapshot of your system. Second, if you didn’t just recently update your mac and this process is happening to you it might be malware. More specifically adware/ keylogger. I had a friend give me their laptop and was complaining that their computer was running super sluggish and sometimes won’t even load a website. I tried connecting it to two different Wi-Fi signals (home and work) also attempted to connect it via Ethernet. Of course, the first thing I do is open the Activity monitor and sure enough “trusd” was using 130% of my CPU usage. I looked up what might be the issue tried their troubleshooting steps and nothing fixed it even the reinstall which yes, I had tried to no prevail. I then installed Malwarebytes ran a scan and come to find out there was a keylogger on her computer. Quarantined and delete the files from the hard drive and boom everything was back to normal. Ran my copy of Bitdefender just to double-check and there was even more Adware on top of the computer (A total of 50 different files). I do believe that with macOS security is the number one thing with Apple. However, that doesn’t automatically mean Macs DON’T get viruses. All of this to summarize. macOS reinstallation won’t delete all your files it will just reinstall the macOS main program files. If still concerned make a backup before starting the process. Also, Macs won’t get viruses but CAN get malware. Run a scan to be sure that it’s not the issue.
-
Hi all, I'm here for a little help. Earlier today I clicked on a link to a website, when my anti-virus (Kaspersky) which I have the paid internet security version of, detected and blocked a few what seems to be download attempts. Three of the "events" say download denied, and one says "Detected legitimate software that can be used by intruders to damage your computer or personal data". My question is, why was one of them just detected, and why is it that since this I have run a Kaspersky scan and a Malwarebytes scan and it has not come up. (Hopefully the above image helps) If it has just been "detected" does that mean it was also removed? If not how can I remove it? Should I still be worried about having a serious malware infection? I'm considering fresh installing windows including removing all my data if needed as I use this PC a lot. Please any help and peace of mind will be much appreciated.
-
I recently downloaded the windows x64 version of libimobiledevice-winx64 which is a open source toolset for controlling an iOS device through a computer. I'm not going to link the GitHub repository here since doing so would probably violate some forum rules for posting potentially malicious links but if you want to find it google is your friend. Upon downloading it and using it for a basic iOS JIT workaround to run dolphin on iOS 14.4+ which I was successful in doing I went on paying little mind to the program. This was until a preformed a Bitdefender antivirus scan and the program was flagged as a Gen:Variant.Bulz.542714 I deleted the file and rescanned and Bitdefender came up clean. I've been avoiding using windows defender since a current bug that has been reported by other users causes it to always detect a threat then "take action" without any logs. (Windows Defender notification, took action against threat....but there's nothing there? - Windows - Linus Tech Tips) Wanting to investigate further into this odd "virus" I attempted to search the name and could not find any documentation on bulz.542714. Undeterred, I decided to return to the GitHub repository I originally downloaded the file from and attempted to redownload it at this point to determine if the libimobiledevice file that the antivirus claimed was infected had been infected at a later time or was a false positive* in Bitdefender from the time of download. Interestingly, upon clicking the GitHub repository download link the user content download URL for GitHub this time around was blocked. Upon verifying that the download domain was a official GitHub download and not a phishing URL I went to override the Bitdefender domain block and redownloaded the file. Immediately upon downloading the file without even unzipping the file I went and scanned the file with Bitdefender and sure enough the scan flagged the same file from before as Gen:Variant.Bulz.542714. As before I deleted the entire GitHub package and ran a full scan with Bitdefender. This time my PC came up clean. I come here to try and get a second opinion. What is my next step? Do I ignore this? Should I change all my passwords and assume my accounts are compromised? I don't think this has anything to do with the windows took action against threats bug since that predates me even downloading libimobiledevice-winx64. What do you guys recommend? Thanks in advance! *the specific file that Bitdefender claimed to be infected was idevicedebug.exe
.png)
