I have changed Gmail password every few months and I am shocked to notice that emails moved from one label different label, or the contents of one gmail label was completely deleted. I have several gmails that used to be linked together. I have recently deleted one of the google accounts that was definitely hacked. I would like to be sure that logging into a google account could download malicious code into computer?
For the router, I have changed router password, resetted gateway, and the pin to physical reset using the suggested 30-30-30 seconds rule. But what I noticed is the router settings are not changeable as ATT router was a technician's router. So, there are no changeable settings (e.g. DNS Servers) and no firewall. Another observation was that DNS Servers would sometimes change from the ISP DNS Servers to 0.0.0.0 or 10.x.x.x. Router settings were not touched, but when I reset the router, all default settings were changed (default checked settings became unchecked - e.g.
Disable automatic searching for additional VPI/VCI Bypass Firewall Filter
Router security settings were never changed and appears and disappears at no notice.
For router firewall, there are no settings avalable for users to tweak. The router was updated many years ago and is set to update automatically. I checked that router remote access settings is unchecked. Please understand I try to convince my parents to change this router but to no avail. By the way, I am not able to upload pictures or files after my initial start of this topic. Please let me know what to do to resolve?
I have also noticed on any well-known websites I visited, there are ads in several webpage (not pop-up ads) saying "download windows 10 drivers", "remove malware - download". Another note, I see in the task manager several dllhost.exe with com surrogate entries.
I have been previously infected while usb and dvd was connected. I have a lot of contents that I use for one particular usb drive. So is there a way to safely transfer contents to a clean usb drive? Or are the files permanently infected and can't be restored to clean health? How could I check for USB peripherals malware?
For saving CCleaner startup log files, it asked me to save it to System32 folder. This seems to frequently occur for any files that I save.
I have copied and pasted the 3 CCleaner startup log files to desktop and it is attached below.
Yes Directory File ownership
Yes Directory Open PowerShell window here powershell.exe -noexit -command Set-Location -literalPath '%V'
Yes Drive Open PowerShell window here powershell.exe -noexit -command Set-Location -literalPath '%V'
Yes File McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll
Yes Folder McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll
Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Yes Task IHSelfDeleteTASK CMD /C DEL C:\WINDOWS\TEMP\IHUA151.tmp.exe
Yes Task IHUninstallTrackingTASK CMD /C DEL C:\WINDOWS\TEMP\IHU9913.tmp.exe
Yes Task McAfee DAT Built in test McAfee, LLC. C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\18.104.22.168\mcdatrep.exe /hcmode=periodic /periodicruncount=5
Yes Task McAfee Remediation (Prepare) McAfee, Inc. C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe /prepare
Yes Task McAfeeLogon McAfee, Inc. C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui /runkey
Yes Task OneDrive Standalone Update Task-S-1-5-21-4057986710-2119159447-59569340-1001 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKLM:Run SecurityHealth Microsoft Corporation %ProgramFiles%\Windows Defender\MSASCuiL.exe
# AdwCleaner 22.214.171.124 - Logfile created on Mon Dec 11 18:51:45 2017
# Updated on 2017/29/11 by Malwarebytes
# Database: 12-11-2017.1
# Running on Windows 10 Pro (X64)
# Mode: scan
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
***** [ Registry ] *****
No malicious registry entries found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
C:/AdwCleaner/AdwCleaner[C0].txt - [1131 B] - [2017/12/11 17:26:57]
C:/AdwCleaner/AdwCleaner[S0].txt - [944 B] - [2017/12/11 17:24:28]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########
Edited by t1t2t3, 11 December 2017 - 04:24 PM.