Pal

Member
  • Content Count

    15
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Pal

  • Rank
    Member
  1. Seems to be like the same from before. Simplitec folder is still back after restarting the PC. I'm not sure if it still poses a risk or not but it always seems to be empty. Maybe it's just leftovers from an uninstall? scan_171227-163538.txt FRST.txt Addition.txt
  2. Here's the roguekiller log rk_AB4D.txt
  3. Ran a follow-up scan just in case, here's the logs. Let me know if there's anything else I need to do! scan_171222-004158.txt FRST.txt Addition.txt
  4. So far so good! The CPU issue seems to have gone away for now, thank you for your patience. Here's the fix log Fixlog.txt
  5. ran new scans, here's the logs scan_171219-183136.txt FRST.txt Addition.txt
  6. upon reboot EEK detected scewInt.exe and cobpkum.exe again 12/19/2017 4:51:49 PM Behavior Blocker detected suspicious behavior "CryptoMalware" of "C:\Users\Pasue-A240\AppData\Local\scewlnt\cobpkum.exe" 12/19/2017 4:51:59 PM A notification message "Suspicious behavior has been found in the following program: C:\Users\Pasue-A240\AppData\Local\scewlnt\cobpkum.exe" has been shown 12/19/2017 4:51:45 PM Behavior Blocker detected suspicious behavior "TrojanDownloader" of "C:\Users\Pasue-A240\AppData\Local\scewlnt\scewlnt.exe" 12/19/2017 4:51:45 PM A notification message "Suspicious behavior has been found in the following program: C:\Users\Pasue-A240\AppData\Local\scewlnt\scewlnt.exe" has been shown system-log.txt mbar-log-2017-12-19 (16-34-46).txt
  7. The quarantined files seemed to have been remade as soon as I restarted the PC. So far whatever infected the PC has been utilizing a large chunk if not all of my CPU resources periodically FRST.txt scan_171218-164959.txt Addition.txt
  8. On a seperate computer I downloaded FRST64 and made fixlist and moved them onto a USB flash drive, then ran it in recovery mode with CMD, here's the fixlog.txt Fixlog.txt
  9. After I make the fixlist.txt, I reopen the file and it seems to be empty. If I try to rename a txt file into fixlist it doesn't let me do it either. Fixlog.txt
  10. here are the two files from Farbar Recovery Scan Tool FRST.txt Addition.txt
  11. Emsisoft Anti-Malware scan shows that there is an application that cannot removed, the scan results are attached on the file There were also some other files from previous scans I would like help with. The folders were not affected by selecting the option to quarantine. When I click the folders it says that I do not have permissions to access. -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- 12/14/2017 8:48:39 PM Behavior Blocker detected suspicious behavior "TrojanDownloader" of "C:\Users\Pasue-A240\AppData\Local\scewlnt\scewlnt.exe" 12/14/2017 8:48:39 PM A notification message "Suspicious behavior has been found in the following program: C:\Users\Pasue-A240\AppData\Local\scewlnt\scewlnt.exe" has been shown 12/14/2017 8:48:42 PM User "PASUE-A240\Pasue-A240" clicked "Quarantine now" ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- 12/14/2017 8:29:45 PM Behavior Blocker detected suspicious behavior "CryptoMalware" of "C:\Users\Pasue-A240\AppData\Local\scewlnt\cobpkum.exe" 12/14/2017 8:29:47 PM A notification message "Suspicious behavior has been found in the following program: C:\Users\Pasue-A240\AppData\Local\scewlnt\cobpkum.exe" has been shown 12/14/2017 8:29:50 PM User "PASUE-A240\Pasue-A240" clicked "Quarantine now" ------------------ scan_171214-204854.txt