Jump to content

Argo

Members
  • Posts

    10
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Yep, threat is gone. Thanks a bunch, it means a lot. If I wasn't on welfare, I'd donate something to show my appreciation but... yeah. Thank you for doing what you do, from one Kevin to another.
  2. Issue remains. Cannot remove threat: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 9/25/18 Scan Time: 1:49 PM Logfile: Administrator: Yes -Software Information- Version: 3.0.6.1469 Components Version: 1.0.103 Update Package Version: 1.0.7009 License: Free -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: PC\Argo -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 238405 Time Elapsed: 2 min, 17 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 PUP.Optional.Reimage, C:\USERS\ARGO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\PREFERENCES, Removal Failed, [1386], [541062],1.0.7009 Physical Sector: 0 (No malicious items detected) (end)
  3. 2018.09.23-15.26.26-i0-t92-d0.txt FRST.txt Addition.txt
  4. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 9/22/18 Scan Time: 10:36 PM Logfile: Administrator: Yes -Software Information- Version: 3.0.6.1469 Components Version: 1.0.103 Update Package Version: 1.0.6965 License: Free -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: PC\Argo -Scan Summary- Scan Type: Threat Scan Result: Completed Objects Scanned: 238058 Time Elapsed: 4 min, 15 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 1 PUP.Optional.Reimage, C:\USERS\ARGO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\PREFERENCES, Removal Failed, [1382], [541062],1.0.6965 Physical Sector: 0 (No malicious items detected) (end)
  5. How do you uninstall java? I'm dumb. Either way, it's pretty freaking spooky how something malicious gets through all anti-malware/anti-viruses... and just keeps coming back. Scary. I read about PhantomJS on wikipedia, apparently it like.. allows stuff to run on your machine without you having any clue about it? I dunno, I'm computer illiterate, but the "Malicious use of PhantomJS" part on Wikipedia made it sound so scary.
  6. Anyone around? This issue keeps coming back. I find a zip file containing the javacripts and fake csrss.exe file every day, deleting it doesn't do anything. Pretty bad infection here.
  7. Recently my computer has been acting up. Two separate things, not sure if related. One, my cpu has 2 instances of reg.exe running at all times, using up 30-50% cpu total, at all times. Two, I noticed csrss.exe using a huge amount of bandwidth. I traced the file to my Temp files, inside a folder called phantomows which contained the fake csrss.exe and PhantomJS which I never downloaded, so I assume it's being used for malicious purposes. Windows defender and MBAM never detected anything, even in safe mode. FRST.txt Addition.txt CheckResults.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.