Jump to content

Druugefuel

Members
  • Content Count

    12
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Druugefuel

  • Rank
    New Member
  1. In addition to the post above (and PM I sent) here are the requested FRST logs. Addition.txt FRST.txt
  2. Hello Yoan I just noticed the email notifying me of your reply. FYI, since originally making the OP on Saturday I have since created new local profiles on Windows10 and did a reset+keep everything. Things are a *little* better but there is still an egregious amount of ADS everywhere (including foreign language sites on my PC and other devices like phones and android TV units). I reset my router also. Once I am on the PC in question, I will provide you the FRST logs and go from there. (Just wanted to post here to say I'm still with ya). I've read some of your other threads and am excited
  3. So I've posted before about some odd happenings and never really found a solution but think I got a little closer. In my event logs, I have several power shell events like pshell console starting a server (among other things), Multiple WMI services starting, and browser redirects. Nothing has ever been found by Win defender or MBAM Premium (I really don't feel like they're working - on the surface they seem to working fine but I think it's an illusion). Hitman Pro did find a file Win32.Droma.abdb (first malicious file I've ever found) and that led me to googling that and found this article.
  4. Potential malware or anything else I should be concerned about? Let me know as soon as necessary - feel free to email me if you want. (Will PM you my personal email)
  5. None of the scans were in Safe Mode. I posted this because since it's saying I'm on Windows 8, obviously I have some kind of weird config issue for a new, vanilla install of Win10 (UEFI, GPT). I wanted to confirm that it is indeed protecting the system from the experts. 1PW asked me to do a FRST scan, but I'm not sure he's been able to look at it since telling me to do so. There are some entries in the Addition.txt that seem like the Anti-Exploit feature isn't working with EDGE - although admittedly I'm not trained on how to read those logs. Specifically, there are several of these entries:
  6. If you meant the mb-check utility, here's a new mb-check-results from admin account. I see it reports Win10 on that but the REPORTS tab within the actual MBAM 3.1.2 program reports Windows 8 as my OS (screenshot also attached). It also doesn't feel like it's scanning everything properly and the FRST logs in my second post above suggest the Anti-Exploit protection isn't working with Edge. mb-check-results.zip
  7. Running scan from admin account yields the same thing now - windows 8. How do the logs look, 1PW?
  8. False positives on this program, I guess? Running Scan..will attach EDIT: Logs Attached FRST.txt Addition.txt
  9. Just in case, I'm adding the mb-check-results as well. mb-check-results.zip
  10. When I first installed mbam, it detected the OS fine (Windows 10 Version 1703 - 15063.447). Since then, each scan reports that I'm on Windows 8. I had a malware/hacker scare not long ago and after nuking everything from orbit, I'm hyper-aware of every little nuance happening on my machine so this may just be a bug report. I would like to make sure it's working correctly though so I attached log number 1, which was accurate, along with my most recent log which reports I have Windows 8. Please let me know if you need anything else to ensure I'm fully protected. correct.txt
  11. I have this exact same issue. Since around the same time frame - all devices. I think I got it from using a USB that was unknowingly used by my friend that's infected with the same thing but somewhat oblivious. The win10 VM thing is really annoying. I'm hoping I'm just paranoid and it's a hardware issue. Have you had any luck with this?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.