GPT Drive infections?

[REDACTED]

That's one thing that scares the crap out of me. So even if you purchase a new hard drive will it come back? (I might be paranoid, no jokes). That is actually scary. I'm in the UK, possibilities it has affected me? Has anyone ever got it? If they did, I feel sorry for them. The worst thing in the world is the person who created the first infection to Computers/Laptops. I really hate them as it's got me into this mess where as others love it as they are glued into their devices and program the software all day long. Wish me luck into repairing my Laptop, otherwise it is a lifetime detention from School and no more Minecraft for me:( I am a Minecraft nerd and you can ask questions on Minecraft to me and I will 97% chance know the answer. That was my faveourite thing to do, now because of these infections, I'm scared to even login to Minecraft! ;( I'm sooooooo sad on this Laptop. Maybe I should remove the viruses and buy one of those new Windows 10 Laptops which come with the highest level security. xD

[REDACTED]

I'm getting Kaspersky now too, alongside avast! with no inturuptions what so ever. Recommend any tools to scan Boot Sectors of a hard drive (that's probably the only place I haven't scanned). Once my Laptop is eliminated from Viruses, I will be posting less often. Plus, I heard that there are viruses/malware/adware on iOS! Most occurring in China. They jailbroke their device, like me. But I do not install dodgy packages. Thanks everyone! (essexboy is the best)

[Eddy]

No, do not get Kaspersky as well.
https://blog.kaspersky.com/multiple-antivirus-programs-bad-idea/2670/

A well meant advise:

Do yourself a huge favor.
Do not try to beat the world record on the marathon while you can't even crawl one meter.

You are currently trying to look inside things while you don't/can't even see the outside.
Start with the basic things and go from there.

[REDACTED]

Thanks Eddy for that and for essexboy, the log is going to be delayed as homework is taking too long. Expect it coming in at 7:30 - 9:00 pm London time.

[Lisandro]

Start with the basic things and go from there.

Fully agree

[REDACTED]

Ok Eddy, going to leave Kaspersky where it is? I'll leave it anyway but when I tried running it alongside Avira, the Kaspersky corrupted my Drivers! avast! and Kaspersky work good together according to my experience with them. No problems over fighting for files, thanks for the tips Eddy!

[REDACTED]

Ehh, Laptop doing a full system scan with avast! Premier, once that is done, I'll do the log thingy. When I was scanning my media with MCShield, it detected malware !? I'll post screenshots of the files with the log when it's done.

[REDACTED]

essexboy, sorry, but when I open FRST64.exe some codes come up in notepad!?!? Please help. I was following your instructions.

[Michael (alan1998)]

is it called FRST.txt and Addition.txt? If so, please post that info.

Maybe I should remove the viruses and buy one of those new Windows 10 Laptops which come with the highest level security. xD

I just wanted to say this... If every time someone bought a new laptop because they got infected, actually happened, no one would have money, seriously. What you're better off doing is, getting it fixed, then staying educated about malware, and how it infects you, and browsing safely.

Windows can only do so much to help you. I run no security at home. Not even Defender runs anymore. I can almost bet 100% that I am malware, adware and virus free.

An AV will only protect 99% of your mistakes. Only you, and only you, can keep your machine safe. A program cannot do it for you.

[essexboy]

Those are the FRST results and need to be attached here...  Basically unless you run a multi million pound business the big boys will not eve see you

[REDACTED]

Ehh, no need my computer boots up properly now! Yeah! But the virus and malware is still lurking around, I found this suspicious file on my Windows 10 USB that MCShield detected, post it in a while (after food). Thanks essexboy for all your help!

[REDACTED]

The MCShield Logs AllScan.txt
It will be an attachment.
And is desktop.ini supposed to be in every This PC folder? Just enable see hidden files and folders and important Windows files and see if it is there for you.

The ESD-ISO is my drive (Windows 10 Recovery Drive) and apparently it is infected!?
The infected file is called bootmgr
I'll upload it onto Dropbox then post the link!
Thanks everyone who has participated.

[REDACTED]

I'll post the FRST.txt as soon as the scan is done. Anything else I will need to do?

[REDACTED]

Got the files, FRST.txt and Addition.txt, posting them as a attachment and will get the bootmgr up on dropbox ASAP.

[Pondus]

MCShield logs must be copy and paste, or we cant read it

For Essexboy ... opened with Android

  >>> MCShield AllScans.txt <<<

-----------------------------




MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 3.0.5.28 / DB: 2015.11.5.1 / Windows 8.1 <<<


09/11/2015 19:52:40 > Drive C: - scan started (no label ~698 GB, NTFS HDD )...



=> The drive is clean.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 3.0.5.28 / DB: 2015.11.5.1 / Windows 8.1 <<<


09/11/2015 19:53:05 > Drive E: - scan started (KASPERSKY ~7486 MB, FAT32 flash drive )...



=> The drive is clean.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 3.0.5.28 / DB: 2015.11.5.1 / Windows 8.1 <<<


09/11/2015 19:53:27 > Drive E: - scan started (ESD-ISO ~7500 MB, NTFS flash drive )...

>>> E:\autorun.inf > Legitimate file.


=> The drive is clean.





MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 3.0.5.28 / DB: 2015.11.5.1 / Windows 8.1 <<<


09/11/2015 19:56:02 > Drive E: - scan started (ESD-ISO ~7500 MB, NTFS flash drive )...

>>> E:\autorun.inf > Legitimate file.


---> Note: paranoid mode is enabled.


>>> E:\autorun.inf - Malware > Deleted. (15.11.09. 19.56 autorun.inf.825543; MD5: 1ee3bd713baf8da75ecd537f7e086eb8)

>>> E:\bootmgr - Malware > Deleted. (15.11.09. 19.56 bootmgr.273842; MD5: cdf075b70e5f612b4399a54b25d55192)


=> Malicious files   : 2/2 deleted.

____________________________________________

::::: Scan duration: 29sec :::::::::::::::::
____________________________________________




MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 3.0.5.28 / DB: 2015.11.5.1 / Windows 8.1 <<<


09/11/2015 20:55:47 > Drive E: - scan started (ESD-ISO ~7500 MB, NTFS flash drive )...



---> Note: paranoid mode is enabled.


>>> E:\FRST64.exe - Malware > Deleted. (15.11.09. 20.56 FRST64.exe.165875; MD5: e692e216b6fb1c1e9deafd1b6e895a94)


=> Malicious files   : 1/1 deleted.

____________________________________________

::::: Scan duration: 33sec :::::::::::::::::
____________________________________________




MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 3.0.5.28 / DB: 2015.11.5.1 / Windows 8.1 <<<


10/11/2015 16:18:11 > Drive C: - scan started (no label ~698 GB, NTFS HDD )...



=> The drive is clean.