Jump to content

PCBungler

Members
  • Content Count

    24
  • Joined

  • Last visited

Community Reputation

0 Neutral

About PCBungler

  • Rank
    New Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. I posted one set for PC and one for laptop. You gave me the fix commands for the laptop which is now sorted (see above log) apart from an orphan sys tray icon. It was my bad for posting about two devices at once. I am going to nuke the PC and rebuild it as it is mainly a gaming box. We can close this now. Thanks for you help!
  2. Hi Other topic done and dusted. I tried the clean option on MBAM support to no avail. I tried the registry hack to reset the sys tray to no avail. Not 100% happy about posting a ton of detailed logs openly on the internet as I have no idea what they contain. I may just nuke the machine and start again.
  3. All done. Log looks ok? Fix result of Farbar Recovery Scan Tool (x64) Version: 26-02-2020 Ran by PCBungler (04-03-2020 14:31:38) Run:1 Running from C:\Users\PCBungler\Downloads Loaded Profiles: PCBungler (Available Profiles: PCBungler) Boot Mode: Normal ============================================== fixlist content: ***************** SystemRestore: On CreateRestorePoint: CloseProcesses: ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File FirewallRules: [{1C1C7FD2-9CA3-44D3-8280-99C2818F589E}] => (Allow) C:\
  4. Cool Those are the laptop ones - will get on it!
  5. Thanks Since I posted logs for my PC and laptop (just to be awkward 😃) can I confirm which log this fix file is from? I think it is the laptop one as that is the only device I installed Zoom web conferencing on? Cheers!
  6. Cheers Am tight for time right now but will get to it as soon as I can.
  7. Cheers. The ghost icon does not appear in the actual tray but only in the control panel screen to edit which icons to show. A reboot has not yet clobbered it.
  8. Following the latest update when I try and edit which icons to show in the tray, I see two options for MWB. One works as per. The other has an orange triangle with a ! in it and is not visible. Any ideas? PCB
  9. Hi nasdaq Could you explain what the commands in the file do please and why they are there (I think I know the first set :))? Can you confirm was this for the PC or laptop FRST versions as I included both? It is mainly that laptop that I am concerned about as that is my office one and the PC is mainly gaming. Start:: SystemRestore: On CreateRestorePoint: CloseProcesses: ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File FirewallRules: [{1C1C7FD2-9CA3-44D3-8280-99C2818F589E}] => (Allow) C:\Users\PCBungler\AppData\R
  10. Also (sorry to be a pain) I assume that the "nothing suspicious" covers both the PC and laptop logs?
  11. Oh, I coild not see a fixlist attachment to download?
  12. Thanks. A relief! I will do so shortly. Regarding the VPN FF plugin, the suspicious website blocks and the fact that they went after I removed the plugin - do you think there is a risk I have had any data compromised whilst the plugin was installed bearing in mind I have Defender, MWB premium and MWB FF Browser plugin running? I really do not want to have to go and reset all the passwords for the sites I have used since I stupidly put in the VPN plugin? Thanks again!
  13. Here are th ye laptop logs. If you could review these as well I would be grateful. Interestingly, I note that both the PC and laptop have a "No Name" extension. Thanks in advance. Addition - laptop.txt FRST - laptop.txt
  14. Edit: Am also curious as to why the Trojan only appeared when I clicked on certain sites? Were these sites that the Trojan used to phone home?
  15. Updated information I realised I had FF sync across my PC and laptop so checked that out (in the middle of the night as I could not sleep). It had the VPN plugin. Oddly with that installed but turned off it did not cause the blocked Trojan pop up like it did on the PC. The version on the laptop had the user information filled in on the plugin page which the PC one did not. When I clicked on the developer link, I got a 404 saying Mozilla had removed it under TOS. Clearly it was dodgy. Being half asleep I deleted it from the lap top which with the sync means it is no longer o
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.