Trojan.Downloader Detected

[Patrick2]

Not Commerical PC, Brought Pro since my original HP system that I gave to Mom, had Windows 10 Pro (Free) upgrade from 8.1 Media Center...So decided to get the same version for this system when I bought it in January 2016 from Newegg, freely upgraded to Windows 10 Home First, then later on bought Pro version

Results of virustotal scan


https://www.virustotal.com/en/file/5424c12fdf736034b39cf6aa843236b428d9e6707876dbd9e33c99db8ac76d3c/analysis/


Based on System Performance since system clean install, it feels the Trojan Downloader original infection is gone at this point, but i'll feel much safer once I hear back nothing else in the logs that are concerning...I use Remote Desktop at times to do system maintenance, Home edition didn't include that, so why I bought Pro Edition of Windows 10.   Didn't restore files from backup either, redownloaded all drivers, games, and such, did disable built in wifi, since thought would interfere with Ethernet

[Michael (alan1998)]

No worries about Windows 10 Pro. Just isn't quite normal to see. Generally we don't work on Corporate computers.

I'll send a message to dbrisendine just to make sure he knows about this thread and your logs have been posted.

Can you re-upload that file and click "New Analysis" that scan is 4 weeks old.

[Patrick2]

sure can do that

https://www.virustotal.com/en/file/5424c12fdf736034b39cf6aa843236b428d9e6707876dbd9e33c99db8ac76d3c/analysis/1474935304/

Re Checked, results there

[Michael (alan1998)]

Ah, I see what it is now. BattleField 4 file.

https://battlelog.battlefield.com/bf3/forum/threadview/2955065670154489854/

Signers    

• Electronic Sports Network i Sverige AB

[Patrick2]

Yeah what I thought it was connected to myself, but wasn't positive

Hopefully all the other files are safe, and yay!,  Not sure how I even got ahold of The Trojan Downloader, not sure if panicing was right way to handle it, I have learned switching Antivirus programs too much isn't a good idea either, last month I was switching between Avast Free, and Defender, maybe I got the infection then

[Pondus]

sure can do that

https://www.virustotal.com/en/file/5424c12fdf736034b39cf6aa843236b428d9e6707876dbd9e33c99db8ac76d3c/analysis/1474935304/

Re Checked, results there

First submission 2011-11-04 10:01:25 UTC ( 4 years, 10 months ago )

[dbrisendine]

Patrick2,
As for the sonarinst.exe file, is this relevant to you?  https://www.reasoncoresecurity.com/sonarinst.exe-a4a72957f3a60bc78a29127039a106e0416d0c3f.aspx

Also, the only thing I see in these FRST logs is that the System Restore service is not working.  Did you disable that on purpose?  If not, see if the following helps:

Go to Start and type System in the search box.

Click on System (under Control Panel or Settings) and then on System Protection.

Click on Configure and then select Turn on system protection.

Click Apply and then OK.

In the System Protection screen, is Protection now On for the drive?

[Patrick2]

System Protection Status shows on for the Main C: Drive currently, Off For External G Drive,  As for the file, that is related to Battlefield 4 Game I play regularly,  Would've replied sooner but I was sleeping, and forgot I stayed logged in

[dbrisendine]

Good to know about the file (figured it was something like that as it appeared to be a temp installer but not anything malicious).  As good to know that System Restore is working; that was the only issue I saw in you logs.

Your logs appear to be clean as a fresh OS install should be.  Enjoy your games and play well.  Just keep some good scanners around and use them every now and then to stay clean.  (Malwarebytes would be a great choice of a free version to have.  Along with Avast, of course.)   

[Patrick2]

Yes I do have Malwarebytes Free, and Avast Free fully updated, so thinking now safer than I used to be--thank you so much for checking the logs, so appreciate it