Posted 26 May 2015 - 04:53 PM
My network: Antiontec C1000a vdsl2 router/modem with laptop, iPhone, bluray players connected via wifi and a desktop via Ethernet. My roommate occasionally works from home on the desktop, connecting to his works network.
Two computers running Windows 7 infected with Trojans on the same network.
First thing that I noticed, the internet started acting strangely about two weeks ago. My connection would drop intermittently for seconds at a time often, doing that for an hour or so every now and then. I contacted my ISP several times, who would only tell me to turn my modem on and off. I looked at the modem/router admin screen. Didn't exactly know what I was looking at, but things seemed erratic. 144 retrains in 24hours
Ran FRST and found that a bunch of .dll files were downloaded without my knowledge. I also found a ton of notepad files with logs. I did the same on my roommates computer and it seemed to be even worse. I'm not an expert, but after some research I may have found possible evidence of "system.sav", "wow64" , "grant/bogart"(??) and "zero access" viruses/trojans.
Rather that trying to fix it, I just installed new hard drives and Windows 8.1. I haven't used them on my network yet
A couple days ago I got a strange text along the lines of "hey, I need to talk to you blah blah, text back please!". I unfortunately opened it, but didn't reply. Googled the number and several others reported similar texts that day. I have an iPhone 5 which I believe was connected to my computer once to add music
What do I do before I connect to my network again?
Are new HD's/OS's enough? Viruses can't hide in other hardware then infect a new hd, right?
Is my modem/router is infected/compromised? Will resetting it and changing the wifi/admin passwords be enough?
Is it possible that our smart bluray players could be infected?
Is my phone hacked?
Also, I had an external hard drive with important career related project files(not programs) connected. Is it possible to safely retrieve those without infecting my new system?
Should my roommate notify his employer?
Are the viruses I listed mostly used for things like click fraud? Or worse? Do I need to do anything beyond changing all of my passwords?
Sorry for so many, just freaking out a bit and want to get things back to normal. Any help would be appreciated