Tonight Malwarebytes Pro during a full scan detected 7 instances Trojan.Dorkbot.ED.
I was shocked as I have been running daily quick scans by Malwarebytes Pro and SuperAntiSpyware. About once a week I have been running full scans. I also run daily scans by WebRoot but have poor confidence in the effectiveness of this anti-virus.
I don’t remember clicking on anything suspicious today or every but I cleared a ton of E-Mails from Outlook 2013. As I screened them the preview feature was on I didn’t click on anything but the doc preview was running.
The laptop is only a few months old. I did screw up setting it up for the first time. I was having trouble with my eyes when I did a search for Mozilla Firefox to load it. I didn’t notice but Google put adds right at the top of the search now and the shading to different is almost impossible to see. I since figured out how to shut these adds off.
It looked like a real Mozilla Firefox page, I gave it permission to run and the laptop seemed to freeze up. I immediately tried to shut down but it didn’t respond so I quickly removed the battery in an attempt to stop the infection.
I did a complete reload of all software after wiping all space on drive C. Later I realized that there might have been an infections on the recover partition D that I did not wipe.
Could you please advise on what preliminary actions I should take to curb any attempted fraud attempts. Possibly making matters much worse is that I have been running Last Pass as my password manager and worry that it may have been compromised.
If need be I will shut this machine down and pick up an inexpensive laptop to communicate with and leave the wireless off on the infected machine while cleaning out the malware.
I also suspect my Galaxy S4 may be a BOT as it responds much slower than usual and it always seems to be sending from emails. I would also appreciate if you could advise me on what to do with the phone.
Another nasty problem is that I have been backing up on a fairly regular basis with Acronis to a WD passport. All my recovery documents are here including a complete back up of my old laptop that I will need to reload docs and data to my infected machine once cleared of infections.