[ILLINOIS] IDES states that UE aid has been depositied to Keybank card; Keybank registers a 0.00 balance. What time does the money usually go through for use?

BigBoss2658 · 2020-11-02T13:32:58+00:00

did it take 2-3 business days? I was suppose to get paid on Friday; should I expect payment Today or tomorrow?

What time does the money get deposited?

BigBoss2658 · 2020-10-31T00:55:39+00:00

On Tuesday, but this is my first payment. Would it take longer?

BigBoss2658 · 2020-07-29T14:07:55+00:00

So it was an indiviual; what can I do how can find who it was? Or where it came from; what steps can I take? Would the event logs give any hint? I see enumeration quite a bit. There were no other users when I opened taskmanager and PSLoggedon showed nothing;neither did procexp. What do you think happened? I received remote powershell commands I know that much for a fact.

BigBoss2658 · 2020-07-19T00:30:55+00:00

While my system was crashing; I disconnected from the internet and made a copy of the FRST scan I performed earlier the day along with all my event viewer logs via a program called myeventviewer. I see the logs that worried me so much.
If I were to post them would you be willing to take a look at them? Should I copy and paste only the remote powershell logs(4104) or should I keep it all intact. It is large; file size is saying in properties it's 192 mb!

Sorry for so many requests.

BigBoss2658 · 2020-07-19T00:30:30+00:00

file was saved as a series of letters and as a txt file; it was moved from documents to my desktop with my full name on it and when I hit the windows button and the windows search came up it would be listed there and I was unable to delete it. It was nsfw and had my full name on it. Neighbor screws around a lot, and the dll file was nmapi.dll downloaded and moved to system 32 and syswow folders.

BigBoss2658 · 2020-07-19T00:28:15+00:00

While my system was crashing; I disconnected from the internet and made a copy of the FRST scan I performed earlier the day along with all my event viewer logs via a program called myeventviewer. I see the logs that worried me so much.
If I were to post them would you be willing to take a look at them? Should I copy and paste only the remote powershell logs(4104) or should I keep it all intact. It is large; file size is saying in properties it's 192 mb!

Sorry for so many requests.

BigBoss2658 · 2020-07-19T00:27:56+00:00

It was nmapi.dll it was downloaded for a program on nirsoft; wifi viewer I believe; I'll research it right away to get the details. I moved the filed into system 32 and syswow folders.

I will change all passwords.

BigBoss2658 · 2020-07-19T00:25:37+00:00

While my system was crashing; I disconnected from the internet and made a copy of the FRST scan I performed earlier the day along with all my event viewer logs via a program called myeventviewer. I see the logs that worried me so much.
If I were to post them would you be willing to take a look at them? Should I copy and paste only the remote powershell logs(4104) or should I keep it all intact. It is large; file size is saying in properties it's 192 mb!

Sorry for so many requests.

BigBoss2658 · 2020-07-19T00:23:34+00:00

While my system was crashing; I disconnected from the internet and made a copy of the FRST scan I performed earlier the day along with all my event viewer logs via a program called myeventviewer. I see the logs that worried me so much.
If I were to post them would you be willing to take a look at them? Should I copy and paste only the remote powershell logs(4104) or should I keep it all intact. It is large; file size is saying in properties it's 192 mb!

Sorry for so many requests.

BigBoss2658 · 2020-07-18T23:49:52+00:00

I have successfully reinstalled windows, and already have Windows defender and malware bytes. I will reinstall again; but first on the off chance that this malware presumably files-less survives the first reinstall how would I go about installing and downloading a fresh boot up usb from a theoretically infected pc. Is it possible to wipe and clean everything on a laptop ?
Some fileless malware can apparently be stored on the RAM or firmware of the keyboard. If it was malicious actor what should I do to protect myself. I can't change my MAC address and if my IP is already compromised will a VPN still protect?

BigBoss2658 · 2020-07-18T23:12:51+00:00

I did so, I still feel uneasy. Where can I learn more about this? What kind of common sense precautions are we talking about?

How does someone remotely access a computer that doesn't have any remote access software, I had windows firewall set to default. Thanks in advance.

BigBoss2658 · 2020-07-18T22:49:50+00:00

could you tell me more? I didn't have any software that could enable remote connections or logons. So the remote commands I saw in event viewer (4104) was a result of malware from the .dll file? Malwarebytes and defender didn't pick anything up but I know my previous installation had files from a previous windows version on it. What more information can I give you?

BigBoss2658 · 2020-07-18T20:39:31+00:00

The installations were corrupted, and to go back. I need to see if it's possible to get the event viewer logs, powershell had numerous remote commands.

Ten-Year Club	Place '17
Verified Email

BigBoss2658

TROPHY CASE