Jump to content

Gokussj

Members
  • Content Count

    61
  • Joined

  • Last visited

About Gokussj

  • Rank
    Regular Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Well, you said the folder Fusion_ld may be problematic. It's still here Other than that, there's no problem at all
  2. Btw. sometimes i get notifications from websites i'm not even trying to access. Example: Malwarebytes www.malwarebytes.com -Detalhes do Relatório- Data do evento de proteção: 27/03/2020 Hora do evento de proteção: 11:24 Arquivo de relatório: 9c8d7078-7036-11ea-a595-10c37bc2c9b2.json -Informações do Software- Versão: 4.1.0.56 Versão de componentes: 1.0.859 Versão do pacote de definições: 1.0.21452 Licença: Premium -Informações do Sistema- Sistema operacional: Windows 8.1 CPU: x64 Sistema de arquivos: NTFS Usuário: System -Detalhes do Site da Web Bloqueado- Site da web malicioso: 1 , C:\Users\Victor\AppData\Local\Programs\Opera\67.0.3575.97\opera.exe, Bloqueado, -1, -1, 0.0.0 -Dados do site da Web- Categoria: Site Arriscado Domínio: updateanti-virus.com Endereço IP: 81.17.18.196 Porta: 80 Tipo: Saída Arquivo: C:\Users\Victor\AppData\Local\Programs\Opera\67.0.3575.97\opera.exe (end)
  3. I did install LDplayer but i never downloaded this dll, unless it comes with LDplayer install Here's the log: Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 29-03-2020 Executado por Victor (31-03-2020 15:54:36) Run:1 Executando a partir de C:\Users\Victor\Desktop Perfis Carregados: Victor (Perfis Disponíveis: Victor) Modo da Inicialização: Normal ============================================== fixlist Conteúdo: ***************** CreateRestorePoint: CloseProcesses: FilesInDirectory: D:\ChangZhi\LDPlayer\+.+ EmptyTemp: ***************** Ponto de Restauração criado com sucesso. Processos fechados com sucesso. ========================= FilesInDirectory: D:\ChangZhi\LDPlayer\+.+ ======================== ====== Fim de Filesindirectory ====== =========== EmptyTemp: ========== BITS transfer queue => 8388608 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 44626523 B Java, Flash, Steam htmlcache => 1161 B Windows/system/drivers => 5554321 B Edge => 0 B Chrome => 58488969 B Firefox => 39224135 B Opera => 533503343 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile32 => 0 B LocalService => 40294 B NetworkService => 40294 B Victor => 2782902670 B RecycleBin => 0 B EmptyTemp: => 3.2 GB de dados temporários Removidos. ================================ O sistema precisou ser reiniciado. ==== Fim de Fixlog 16:01:37 ====
  4. You forgot to attach the file Ok, i didn't even understand what he tried to say
  5. I just figured out why it didn't work. The I from "Id" is not the letter "i", it's "L' Here's the log: Farbar Recovery Scan Tool (x64) Versão: 29-03-2020 Executado por Victor (30-03-2020 16:43:42) Executando a partir de C:\Users\Victor\Desktop Modo da Inicialização: Normal ================== Pesquisar Arquivos: "FindFolder: *Fusion_ld*" ============= 2020-01-10 10:25 - 2020-01-10 10:25 _____ C:\Users\Victor\AppData\Roaming\Fusion_ld ====== Fim de Pesquisar ======
  6. I believe so This is the path where that dll is: C:\Users\Victor\AppData\Roaming\Fusion_ld
  7. A virus wouldn't be a malware? So i'm not fully protected by using MBAM? Here's the log: Farbar Recovery Scan Tool (x64) Versão: 29-03-2020 Executado por Victor (30-03-2020 15:42:26) Executando a partir de C:\Users\Victor\Desktop Modo da Inicialização: Normal ================== Pesquisar Arquivos: "FindFolder: *Fusion_Id*" ============= ====== Fim de Pesquisar ======
  8. Ok, so i'll run a scan again and delete it but i still have a question. There's a dll here that MBAM won't detect but it's detected by many AVs from virustotal Here's the scan result: https://www.virustotal.com/gui/file/c5aa2a24607b845bd3fa1f856a072061ef62831a5dc138eba9e8199c3cc10696/detection Should i remove it? This dll is inside a folder name Fusion_Id
  9. Ok, but isn't it a mbam file? Why it's inside a mbam folder? Also, shouldn't i show you the eset scan log?
  10. So, i downloaded an android emulator on my computer (don't know if i can say its name here) and after some time already using it, i read some reports from users who said this emulator will also download a cryptominer but MBAM never detected anything related to it. So i would like to know if there's really a cryptominer on my computer. Ps: i did a full scan with eset online scanner before creating this topic and two files were removed. Tell me if i need to post that log here too Farbar logs are attached. After almost 25 hours, MBAM scan finished and here's the log: I didn't remove that file detected because it's inside MBAM folder and i didn't know if should remove it. Also, i got an alert from MBAM that blocked a website while i was using opera Malwarebytes www.malwarebytes.com -Detalhes do Relatório- Data da análise: 26/03/2020 Hora da análise: 23:34 Arquivo de relatório: 81d6779c-6fd3-11ea-8208-10c37bc2c9b2.json -Informações do Software- Versão: 4.1.0.56 Versão de componentes: 1.0.859 Versão do pacote de definições: 1.0.21424 Licença: Premium -Informações do Sistema- Sistema operacional: Windows 8.1 CPU: x64 Sistema de arquivos: NTFS Usuário: ASUS-PC\Victor -Resumo da Análise- Tipo de análise: Análise Customizada Análise Iniciada Por: Manual Resultado: Concluída Objetos verificados: 731751 Ameaças detectadas: 1 Ameaças em quarentena: 0 Tempo decorrido: 24 hr, 48 min, 57 seg -Opções da Análise- Memória: Habilitado Inicialização: Habilitado Sistema de arquivos: Habilitado Arquivos compactados: Habilitado Rootkits: Habilitado Heurística: Habilitado Programa Potencialmente Indesejado: Detetar PUM: Detetar -Detalhes da Análise- Processo: 0 (Nenhum item malicioso detectado) Módulo: 0 (Nenhum item malicioso detectado) Chave de registro: 0 (Nenhum item malicioso detectado) Valor de registro: 0 (Nenhum item malicioso detectado) Dados de registro: 0 (Nenhum item malicioso detectado) Fluxo de dados: 0 (Nenhum item malicioso detectado) Pasta: 0 (Nenhum item malicioso detectado) Arquivo: 1 Backdoor.Remcos, C:\PROGRAMDATA\MALWAREBYTES\MBAMSERVICE\TMP\CNQMACNF.EXE-U.MBAM, Nenhuma ação pelo usuário, 2106, 796212, 0.0.0, , ame, Setor físico: 0 (Nenhum item malicioso detectado) Instrumentação do Windows (WMI): 0 (Nenhum item malicioso detectado) (end) Addition.txt FRST.txt
  11. Ok, i'm just waiting for a scan to finish and i'll ask for help there. Thanks
  12. So, i download an android emulator on my computer (don't know if i can say its name here) and after some time already using it, i read some reports from users who said this emulator will also download a cryptominer but MBAM never detected anything related to it. What should i do here to find out if there's really a cryptominer on my computer? Thanks
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.