Question Is there anything to be done?

[Oscar01]

This is a verbose log file of a malware I stumbled upon when I got suspicious: https://pastebin.com/Z73Ud1rv
(the dates are all fake amongst other things, this happened recently and the log matches what I was doing on the PC at the time).

I eventually shutdown enough processes in task manager that my PC just blackscreened.

It details exactly what it's doing to my PC. I've unplugged all the secondary storage and the ethernet and I'm wondering if anyone that reads over the log file could determine whether I'm completely screwed and need to factory reset or if any of my data is salvagable. There is a fake boot drive in the bios but I haven't gone past there.

Thanks for any help.

 

[Fix_that_Glitch]

I would take it to a highly regarded pc shop.

 

[Ralston18]

More questions than answers here.

What AV software are you using?

Noted in the log:

Contextually from the log:

"InstallFilter64.msi "

And

Line 28: "MSI (s) (00:C4) [13:10:34:838]: SOFTWARE RESTRICTION POLICY: c:\\temp\\InstallFilter64.msi is not digitally signed "

What exactly were you doing or trying to do on the PC at the time? Software install? What software?

Noted errors (Lines 368, 427....)

Line 904

"MSI (s) (00:C4) [13:10:36:104]: Windows Installer installed the product. Product Name: RrFilter. Product Version: 1.0.0.0. Product Language: 1033. Manufacturer: RrFilter. Installation success or error status: 0. "

Software RrFilter?

Appears to be some sort of installer problem(s).

msiexec.exe:

https://docs.revenera.com/installshield25helplib/helplibrary/IHelpCmdLineMSI.htm

= = = =

Do you have any data backups from before the problems began?

 

[Mtop]

saw a web address in the txt for rrsavings.com and found this.
https://www.pcrisk.com/removal-guides/7790-rr-savings-virus