Spam from a possible zombie network (botnet)

35 pts.
Tags:
Spam
For about a year now I've been getting notifications of different malware trying to infect my computer. I'm using Malwarebytes premium and Avast, also NordVPN for proxy. 

Still somehow my computer keeps getting these malware attacks, ranging from advare to ransomware. These attacks come from different IP's from all around the globe, some being in USA, China, Russia and EU for example(most likely being proxies).

I'm just wondering how these attacks come through my VPN, even when I'm using double proxy. I've done a virus scan like 50 times and even manually tried checking different files and checking if there are any suspicious programs running in Task Manager. 

Using different programs and websites I've found out that most of these attacks include a botnet trying to infect me with Zero-day malware.

I've listed all the IP's of the most recent attackers, I'll list them here:

111.73.46.40
5.152.203.100
213.152.162.104
91.109.13.64
23.249.163.126
185.17.27.104
75.161.71.124
145.249.104.238
190.180.108.38
37.49.225.203
116.68.205.186
185.84.47.123
94.103.80.56
196.52.43.99
213.152.162.165
81.18.134.18


Software/Hardware used:
Is it possible my computer has some backdoor / webshell and that's how I keep getting these notifications of attempted infections from different kinds of malware?
1

Answer Wiki

Thanks. We'll let you know when a new response is added.

Not all anti virus can find a bot if you think you may have one. Here is a link I found on PCWorld a while back I keep referring to 

Discuss This Question: 8  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • TheRealRaven
    Is it possible my computer has some backdoor / webshell...

    Yes, it's possible; but not necessary.

    Much more likely, you experience the various attempts in the same ways that most of the rest of us do every day. The fact that attempts are logged is unimportant. All that matters is that none of the attempts succeed, and that seems to be the case for you so far.
    34,940 pointsBadges:
    report
  • zozowoo
    Thanks for your reply!

    Also forgot to mention that most of the attacks are ones with same IP and they happen even when I change proxies irregularly but quite often. Also the attacks happen even when I have no active programs open, for example: Booted my computer and got a notification of a blocked malware like 2 mins after booting even when I hadn't opened anything.

    That leaves me to believe it's more targeted than random.
    35 pointsBadges:
    report
  • Subhendu Sen
    As you scanned more than 50 times, but how? Were the all scans done in normal boot up/ Safe mode? Are you using same antivirus that is installed on your system or taken help from external antivirus? What OS/ software installed on your system? Are there so many games/ apps or Add-ons ? Please provide more details.
    138,560 pointsBadges:
    report
  • Subhendu Sen
    One more thing you can try MWAV (free to use & an emergency scan). Download/ install and reboot your system in Safe mode then try to run MWAV by double clicking the icon. It is not necessary to install this one. Run for all drives with option Scan & Clean.
    138,560 pointsBadges:
    report
  • zozowoo
    Scanned both of my drives with avast & Malwarebytes, Adwcleaner and nothing was found. Also Malwarebytes does a whole system scan once every 24 hours and it has never found anything.

    My OS is Windows 10 Pro.
    I haven't installed anything even remotely suspicious to my computer.
    All the games I have on my computer are either downloaded through steam or are just extremely well known games.

    Only downloaded apps on my computer are Audacity, paint.net, NordVPN, CCleaner, Discord, Skype and OBS Studio.
    35 pointsBadges:
    report
  • Subhendu Sen

    You said, you have Windows 10 Pro. Windows has a built-in Disk Cleanup tool & it works very well. Microsoft has been improving it, and it works even better in the latest versions of Windows 10.

    It is not recommended a CCleaner, because Windows can already do a great job at freeing up space.

    So why CCleaner is there?

    138,560 pointsBadges:
    report
  • zozowoo
    I've had CCleaner for years because it's easy to use for consistent customized cleans.

    If I just want to clean temp files and past Windows versions after an update I use cleanmgr which I think is the built-in one you are talking about.
    35 pointsBadges:
    report
  • Subhendu Sen

    You can try %tmp% on Search bar and can easily clear temp files/ folders without using extra tools. However this is your decision.

    138,560 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.

Following

Share this item with your network: