Jump to content

Baaseguy

Members
  • Posts

    6
  • Joined

  • Last visited

Reputation

0 Neutral
  1. ESET appears to be clean. Thanks for the help MKDB! Appreciate it, will be more careful before opening sketchy script files. eset_scanlog.txt
  2. Here's the log file from running FRST. Running eset as I'm typing this right now Fixlog.txt
  3. Sorry, please disregard the above zip. This onmbst-grab-results.zipe is fresher. Thanks.
  4. Clicked on a sketchy script file and now RegAsm.exe keeps trying to access a malicious domain. Thankfully MB blocks the outbound connection. I did some digging with the blocked IP, created my own Windows Defender outbound and inbound blokcing rules, and here's what I found: https://www.joesandbox.com/analysis/677877/0/html The domain appears to harbour an njrat application. I've run MB scanning, MB anti-rootkit, tdsskiller to be clear - Seems to be clean. Now I'm just wondering how to get RegAsm.exe to stop pinging/accessing the website. Thanks!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.