Jump to content

Myaccount

Members
  • Content Count

    9
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Myaccount

  • Rank
    New Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Hey Kevin, functionally it works flawlessly. Thanks for the assistance. There are definitely concerns through visual inspection, which may be past what you can assist with - but I'll lay a few out for awareness. The start-up screen, which on an HP is normally blue, is black. I'm not sure why, but I assume it has something to do with the bootloader. The registry has various issues, but I'll work through that later. Files like these are troubling, though. C:\Windows\WinSxS\amd64_vmconnect6.3_31bf3856ad364e35_10.0.18362.1_none_78b739d2999f60f7 C:\Windows\WinSxS\amd64_microso
  2. Here you go. Fix result of Farbar Recovery Scan Tool (x64) Version: 11-11-2020 Ran by Lindsay (14-11-2020 23:40:02) Run:2 Running from C:\Users\Lindsay\Desktop Loaded Profiles: Lindsay Boot Mode: Normal ============================================== fixlist content: ***************** SystemRestore: On CreateRestorePoint: CloseProcesses: cmd: sfc /scannow cmd: DISM.exe /Online /Cleanup-image /Restorehealth cmd: sfc /scannow cmd: "%WINDIR%\SYSTEM32\lodctr.exe" /R cmd: "%WINDIR%\SysWOW64\lodctr.exe" /R cmd: "%WINDIR%\SYSTEM32\lodctr.exe" /R cmd: "
  3. Not sure why the first file was embedded into the post, and the others are attached. They should all be unformatted .txt files, but if preferred I can upload these to a pasteit site to ensure they have no hidden formatting.
  4. Nothing found. However, a few things that might be of interest. I've attached a few logs. First few are from Defender offline scans, and the rest are from installation files. The MBAMservicelog file may be of interest for the MWB team. prior_offline_scan-20201103-180215.txt Recent_offline_scan-20201103-180215.log mbam.txt MBAMSERVICE.LOG upload_mbsetup.txt
  5. I have a thought that I wanted to run by you - since there's definitely been some escalation, could whatever's going on be at the SYSTEM level, and not scanned because I'm scanning at the Admin level? Thanks Kevin. <Report> <Metadata Version="1" PCID="{D49FC70B-3F1B-E04E-89D2-7164EFBB2AA4}" LastModification="2020.11.14 18:14:39.407" /> <EventBlocks> <Block0 Type="Scan" Processed="412758" Found="0" Neutralized="0"> <Event0 Action="Scan" Time="132498680876667951" Object="" Info="Started" /> &
  6. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-11-2020 Ran by Lindsay (administrator) on DESKTOP-A4GIAUI (HP HP Laptop 15-dy1xxx) (14-11-2020 16:00:10) Running from C:\Users\Lindsay\Desktop Loaded Profiles: Lindsay Platform: Windows 10 Home Version 1909 18363.1198 (X64) Language: English (United States) Default browser: Edge Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry
  7. Malwarebytes didn't save any logs from the scan. It did, however, produce a log file called - AppCrash_mbamtray.exe_b3fba37671ccf40c0497de8785f77afa1b79f_98ea7fc5_a5da6989-6e5f-4d10-b90d-5124dd6fac44. Unfortunately it has privileges set that I cannot overwrite, and I cannot access the folder to read its contents. ADWCleaner didn't open a log file when I restarted. However, in the C:\AdwCleaner\Logs folder it saved this file - # ------------------------------- # Malwarebytes AdwCleaner 8.0.8.0 # ------------------------------- # Build: 10-08-2020 # Database:
  8. I posted a topic along this line on another public forum, and shortly afterward there was one or two people following the thread, and always one or two guests viewing the thread as it progressed. FWIW
  9. My computer appears to have been affected by a horrible case of fileless malware, enabling RDP services which may have installed a Clover Bootloader, android emulation Hyper driver, as well as phpmailer. Those are just what I saw from the browsing history. I cannot enable IPV4 DNS to communicate directly with the router. Each time I install any kind of software it spawns more processes and embeds itself further into the OS. I believe there a reverse proxy that’s routing it somewhere, I just can’t figure out what rules are causing it. The issue is very persistent, and whatever malicious to
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.