First it was this prompt popping up ("C:Windows\System32\Startupcheck.vbs" failed because of virus or potentially unwanted software.)when i turn on the PC
then I read some threads, it says to download malwarebytes, then I run a scan with it, found some viruses, and I cleaned it, the "C:Windows\System32\Startupcheck.vbs" is gone, but now a Trojan warning report keeps on popping up from malwarebytes that says "website blocked due to Trojan"
here are the details of the warning report:
Domain : api.backend-app.com
IP address : 5.252.161.59
Port : 8880
Type : Outbound
File : C:\Windows\System32\wscript.exe
I tried to delete the wscript.exe file but it said it I cant delete it because it is from "TrustedInstaller"