Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
R
R
Raspberry12252021-03-29 22:18:12
System administration
Raspberry1225, 2021-03-29 22:18:12

Which of the log events is abnormal?

Someone remotely breaks my PC: there is an antivirus, it seems that all remote access services are disabled, nevertheless strange events appear, updates are downloaded, hive logs are cleared and in the end my file system was broken: it was not possible to restore from the access point, not to mention substitution of system executable files, including antivirus. None of the "specialists" wanted to see anything, but what is happening is what is in the pictures.
I'm going to contact the FSB, help me understand which of the events are malicious and how to find a vulnerable spot?
606227c1aa87c750495850.png606227ca83c00425623464.png606227d34b9e5720902398.png606227db255a6556947953.png606227e611cd1469420939.png606227f0c73ab027139839.png

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
A
Alexey Kharchenko, 2021-03-29
@AVX

Horses, people mixed up in a bunch ...
You mixed everything in one question - and the FS broke, and the files were changed, and so on. The above pictures are typical for a regular PC under ten and even under seven, almost the same picture is often observed, even on computers that have never seen the Internet, let alone some kind of hack. There is no pathology here.
I want to know about these records - you just need to google, read the forums, and in the end you will come to the conclusion that there is nothing to dig there if there are no problems.
The FSB will simply ignore you. Don't be embarrassed. There is a problem - solve, but separately. And then it turns out that a half-dead computer, with a broken disk, or swollen capacitors in the PSU, and we are looking for hackers here.

Report
A
Alexey Dmitriev, 2021-03-30
@SignFinder

You are now in the stage of accepting the inevitable "anger". Therefore, write nonsense about the FSB, empathy, etc.
You have lost some data and either you will restore it and pay money for it, or at some point, having gone through all the stages, you will accept their loss and move on with your life.
They will not be able to answer your question here - screenshots are not enough to at least understand something - you need a thoughtful study. I think no one will agree to do it here by correspondence.
So accept the loss of data, or ask the right questions - how can you recover them, etc. And in this case - you need to stop all attempts to do it yourself - if you do not want to lose them completely by your actions.

Similar questions
R
rovshan22020-02-09 14:36:21
Where can I get c++ programs for debugging? 1Reply
B
BurBurunduk2021-01-28 12:26:04
How to create an OpenVPN tunnel to access a specific url or ip address? 2Reply
U
Urukhayy2017-01-13 13:38:56
How to update a file in Docker? 1Reply
P
Pavel2017-01-13 22:48:16
Is it possible to adequately configure bash ubuntu that is built into windows 10 to work? 1Reply
U
Urukhayy2019-06-09 19:49:51
If when you turn on the PC there is a black screen and the keyboard does not light up, is it in the BIOS? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question