hijacked by piggyback hacker info only

went 2 another forum got piggybacked by explorer.exe which created multiple s 1-5-18/21 users now im stuck beware, blleping computers watch out for the sheep

do not touch the posting by the sheep in network problems in bleeping computors forum. its a backdoor hack

they change all configs and cause system leakage

There is absolutely nothing wrong with the post at Bleeping Computer. The only thing that was posted in that thread was an entry from the Event Log in which S-1-5-18 refers to "A service account that is used by the operating system"

However, I have a suggestion for you. Don't advise people to turn off System Restore prior to cleaning their computer. If something goes wrong during the cleanup process, it is better to have an infected restore point and starting over than no restore point to return to. System Restore can always be cleared after the computer is clean.

Corrine;

The message was a warning i had 3 downloads sent DIRECTLY 2 my desktop,
infections are/were in eventlog files sent 2 me, infected my router/my pc and my partners pc.
regarding system restore i only told her to turn it off before running MWB and then back on

I checked the posts at BC. There was nothing wrong there. The infected downloads weren't from BC.

Although Malwarebytes has had very few false/positives (I can only recall one at the moment), it is still possible. However, f/p's can and do happen at one time or another to all programs. That is why it is better to wait to clear System Restore after removing the infection.