tman555 0 Posted May 18, 2023 Share Posted May 18, 2023 SysInspector-DESKTOP-12IE3DG-230518-162914.zipHi there, I'm having serious troubles with my laptop. Can you help me? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,070 Posted May 18, 2023 Administrators Share Posted May 18, 2023 Please elaborate more on what issues you are having with your laptop. If you suspect it to be infected with malware, provide logs collected with ESET Log Collector. Link to comment Share on other sites More sharing options...
tman555 0 Posted May 18, 2023 Author Share Posted May 18, 2023 (edited) I was infected by two different trojans after an evil twin attack: Ymacco and !BOB in system32. sfc /scannow gives periodically damaged files recovered.ELC_logs.zip Here is the .zip generated by your tool without Eset SysInspector option Edited May 18, 2023 by tman555 Link to comment Share on other sites More sharing options...
tman555 0 Posted May 18, 2023 Author Share Posted May 18, 2023 This is with sysinspection (I was excluding it because it seems to be stuck but it just takes a longer time) ELC_logs.zip Link to comment Share on other sites More sharing options...
Administrators Marcos 5,070 Posted May 18, 2023 Administrators Share Posted May 18, 2023 ESET is not installed. Please make sure to install ESET and run a full disk scan first. Link to comment Share on other sites More sharing options...
tman555 0 Posted May 18, 2023 Author Share Posted May 18, 2023 Ok, I'll reinstall it. Link to comment Share on other sites More sharing options...
tman555 0 Posted May 18, 2023 Author Share Posted May 18, 2023 The complete scan doesn't find anything. Link to comment Share on other sites More sharing options...
tman555 0 Posted May 18, 2023 Author Share Posted May 18, 2023 Here the logs now essp_logs.zip Link to comment Share on other sites More sharing options...
Administrators Marcos 5,070 Posted May 18, 2023 Administrators Share Posted May 18, 2023 There are no suspicious files in your logs. The only weird thing is that there are still AVG files although it's not among installed sw. c:\program files\avg\antivirus\aswamsi.dll, , AVG AMSI COM object, AVG Technologies CZ, s.r.o. c:\program files\avg\antivirus\aswhook.dll, , AVG Hook Library, AVG Technologies CZ, s.r.o. c:\program files\avg\antivirus\ashshell.dll, , AVG Shell Extension, AVG Technologies CZ, s.r.o. c:\program files\avg\antivirus\aswcmnbs.dll, , AVG Common functions, AVG Technologies CZ, s.r.o. c:\program files\avg\antivirus\dll_loader.dll, , AVG dll loader, AVG Technologies CZ, s.r.o. c:\program files\avg\antivirus\aswcmnis.dll, , AVG independent functions, AVG Technologies CZ, s.r.o. c:\program files\avg\antivirus\aswcmnos.dll, , AVG HW dependent library, AVG Technologies CZ, s.r.o. Besides that, there are errors like this: Filter Manager: Failed to connect to volume '\Device\HarddiskVolume3'. A system restart is required for the volume to be available for filters. Final Status: 0xC03A001C. The device driver for the Trusted Platform Module (TPM) has detected a fatal error in the TPM hardware that prevents the use of TPM services (such as data encryption). For more information about this hardware issue, contact your computer manufacturer. Did you enable data encryption? Link to comment Share on other sites More sharing options...
tman555 0 Posted May 18, 2023 Author Share Posted May 18, 2023 AVG files were there because I didn't restart the computer. No, I didn't enable data encryption, but at this point I think someone disabled it. Link to comment Share on other sites More sharing options...
itman 1,659 Posted May 18, 2023 Share Posted May 18, 2023 (edited) 4 hours ago, Marcos said: The device driver for the Trusted Platform Module (TPM) has detected a fatal error in the TPM hardware that prevents the use of TPM services (such as data encryption). For more information about this hardware issue, contact your computer manufacturer. Did you enable data encryption? The TPM issue can be caused by a number of different reasons. Best to search the web for solutions. This first one I would try is to update/reinstall TPM driver via Win Device Manager. Edited May 18, 2023 by itman Link to comment Share on other sites More sharing options...
Recommended Posts