In Progress Backdoor:PHP/WebShell.A

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Nick1994

Thread Starter
Joined
Sep 1, 2017
Messages
1
Greetings

A few days ago Windows Defender detected Backdoor: PHP/Webshell.A on my computer (Windows 10 Home 64bit) and immediately put it in quarantaine. I have scanned the system with Windows Defender, Microsoft Support Emergency Response Tool and I have also let loose Malwarebytes on it. No new threats were detected.

However, I am curious as to whether this is related to some problems I have been experiencing on this computer the last 1 year. I don't know if these are merely hardware-related issues, or if it could be a virus or hacker. If this is only a hardware problem (hard disk, processor...) I'll repost this on the relevant forum. The symptoms are as such:
> my computer becomes unresponsive for several minutes
> mouse usually stays responsive (sometimes it also freezes)
> windows I hover over on the task bar will toggle, but clicking them doesn't open them
> task manager doesn't open when pressing ctrl+alt+del
> black screen and I have to manually reboot
> sometimes waiting for 3-5 minutes the task manager opens
> task manager usually shows disk at 100% after/during the freeze

My biggest worry is that there would be a hacker controlling my computer and performing actions on it while I don't know about it.

SysInfo:
Tech Support Guy System Info Utility version 1.0.0.4
OS Version: Microsoft Windows 10 Home, 64 bit
Processor: Intel(R) Core(TM) i3-2367M CPU @ 1.40GHz, Intel64 Family 6 Model 42 Stepping 7
Processor Count: 4
RAM: 3963 Mb
Graphics Card: Intel(R) HD Graphics 3000, 1789 Mb
Hard Drives: C: 297 GB (178 GB Free);
Motherboard: Dell Inc., 09FX1X
Antivirus: Windows Defender, Enabled and Updated
 

eddie5659

Moderator
Malware Specialist
Joined
Mar 19, 2001
Messages
37,264
Hiya and welcome to Tech Support Guy

Sorry for the lateness in a reply, these forums can be very busy. Are you still having this problem? If so, can you do the following and we'll go from there:

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

Thanks

eddie
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

No members online now.
Top