I found a virus as backgroundTaskHost.exe in C:\Windows\System32\backgroundTaskHost.exe on windows 10
This virus seems to download code from internet and modify some windows core files (need a sfc /scannow to remove).
I suspect it to have hacked my internet provider's box.
Removing the backgroundTaskHost.exe file and adding a sfc /scannow command seems to have abort the threat.
What should I do ?
I have a question. Things seems to look better. I don't have some executable listening lot on ports anymore.
But, I still have mcAfee alerting because some external ip are trying to connect to my home networks computers.
There has been an alert of my internet provider box scaning the port of a computer. My box is configured for not letting external port connection on listening ports.
Is-it possible that my intenet provider box (or router) is infected ?
6220 America Center Drive
San Jose, CA 95002 USA
Consumer Support | Enterprise Support | McAfee.com
Legal | Privacy | Copyright © 2020 McAfee, LLC