Antivirus for Windows and macOS devices | ESET.ESET Smart Security (bit) Download ( Latest)
Looking for:
Download Internet Security with antivirus | ESETDownload ESET Smart Security | ESET
You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality. Posted 29 November - PM. Hi all, I have some concerns I was hoping to get some help with. My home network and PC have been hacked in the past and I am seeing similar events even with a new modem and fresh PC as well as a paid BitDefender subscription installed on my newer laptop that is throwing some red flags.
This is a Windows 10 home computer and is only used for my personal use. In the past, someone in our building had hacked our home network and was downloading large amounts over our network and seemingly transferring my files over through the "Homegroup" utility. I managed to catch it in action one day which led me to noticing more and more issues. Anti-virus and anti-malware scans paid and unpaid would never find anything and Rogers basically said it was our responsibility.
Recently I have had some performance issues with my newest PC and have not been able to track down the cause which led me to checking event viewer for more info. My biggest concern with this is the login process: Advapi. I have researched that this is for web-based logons, such as through IIS, however I see no reason for these events as no one should be logging onto this PC but me and I always do it locally with a local account. I am seeing a logon type as 5 meaning it's a service but I am unsure how to track down more info on what service would be doing this.
Should I be concerned? This is very similar behaviour in event viewer to before my remediation tactics. This is a basic home network video game consoles, laptops, printers, etc. Posted 30 November - PM. Please do not PM me asking for support - use the forums instead. Graduate of the Bleeping Computer malware removal study hall. Posted 01 December - AM. Hi iMacg3 , Thanks for your response.
It is a relief that you think it is nothing malicious, these events happen pretty frequently and I was reading conflicting info online regarding what they could mean, including that my computer could possibly be infected. I also see some Audit failures for something trying to access the Administrator and Default Account but these are both disabled thus the failures. Here are the log files that you asked for:.
Posted 03 December - AM. Posted 04 December - PM. Hello again, thanks for the advice, I will do this tomorrow and post the results. And no, I only have the paid version of BitDefender, the MalwareBytes is a free version with a Premium trail as I had just installed it before posting to scan.
Should be expiring soon. Posted 06 December - PM. Posted 07 December - PM. Posted 08 December - PM. Posted 11 December - PM. I created the system restore point, double clicked on FRST The fixlist.
Is it because I am running it on my desktop? I do not have a file called fixlist and I thought this step was supposed to create it. Am I doing something wrong? Posted 12 December - PM. Posted 13 December - AM.
Posted 13 December - PM. Community Forum Software by IP. Sign In Create Account. Javascript Disabled Detected You currently have javascript disabled. Register a free account to unlock additional features at BleepingComputer.
Welcome to BleepingComputer , a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in.
Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site. Click here to Register a free account now! Page 1 of 2 1 2 Next. This event is generated when a logon session is created. It is generated on the computer that was accessed.
The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon. The logon type field indicates the kind of logon that occurred.
The most common types are 2 interactive and 3 network. The New Logon fields indicate the account for whom the new logon was created, i. The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases. The impersonation level field indicates the extent to which a process in the logon session can impersonate. The authentication information fields provide detailed information about this specific logon request.
This will be 0 if no session key was requested. I am iMacg3 and will be helping you with your computer problems. Please keep the following information in mind before we begin: Back up any important data before we continue.
Back up any important data on your computer to external media. I will not knowingly suggest any steps that will damage your computer; however, malware infections are often unpredictable and it may be necessary to reformat and reinstall your operating system depending on the infection. Running additional tools on your system can interfere with the clean-up process, or cause issues such as false positives. Please read all instructions carefully, and complete them in the order listed.
Items that are especially important will be highlighted in bold or red. If your computer seems to start working normally, please don't abandon the topic. Even if your system is behaving normally, there may still be some malware remnants left over. Additionally, malware can re-infect the computer if some remnants are left. Therefore, please complete all requested steps to make sure any malware is successfully eradicated from your PC. If you have pirated or illegal software on your computer, uninstall it now before proceeding.
Therefore, please remove any, if present, before we begin the cleanup. If you don't respond to your topic in 5 days, it will be closed. If your topic is closed and you still need assistance, send me or any Moderator a Personal Message with a link to your topic.
If you have questions at any time during the cleanup, feel free to ask. Note : You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, and that will be the right version. Right-click FRST. Press the Scan button. When finished, it will produce logs called FRST. Please copy and paste the logs in your next reply. Here are the log files that you asked for: FRST.
GP63 Leopard 8RD If an entry is included in the fixlist, the process will be closed. The file will not be moved. Apple Inc. Micro-Star International CO. Micro-Star International Co. Realtek Semiconductor Corp. Samsung Electronics CO. VMware, Inc. If an entry is included in the fixlist, the registry item will be restored to default or removed. If an entry is included in the fixlist, it will be removed from the registry.
Comments
Post a Comment