Jump to content

Website Blocked due to Trojan when Running Microsoft Edge


Go to solution Solved by AdvancedSetup,

Recommended Posts

4 minutes ago, AdvancedSetup said:

Hello @Zxya

Do you have a backup of your system from before you ran TRON ?

Having run Tron - you have not done any favors for your computer security.

 

Ahhh, I don't, it seems.. Is tron no good? I hope I haven't messed anything up,,

Link to post
Share on other sites

  • Root Admin

It alters all the security settings so that they're no longer the default and there is no way to undue it.

We can clean up your computer but to be honest, even though it's annoying it would be best to do a CLEAN install of Windows. That takes less than 30 minutes. Then spend the next few days reinstalling the applications you want and configuring things how you like them.

But, as said if you're not really wanting to do that we can try to clean up the computer so that it does run better.

Let me know what you'd like to do

 

Link to post
Share on other sites

As much as I would be perfectly fine with a clean install, I simply don't have the storage space on my external drive to back everything up. I suppose I should have come here first but I hate asking for help if I haven't done anything to try and fix it myself, I should have looked into the usecase for tron a little more it seems,, Can we try and clean up the computer? I'll probably end up doing a fresh install when I have the space but I'd still be nervous using it in the meantime. Sorry for the frustrating situation :[

Link to post
Share on other sites

  • Root Admin

We're going to remove the run lines that start all the game and other background items. We are not deleting the programs, just the auto start. Once we're done you can re-enable any auto start items you want.

Please run through the following steps

[ 1 ]

Please go to Control Panel, Programs, Programs and Features, Uninstall a program

Then right-click and uninstall the following

  • Bonjour
  • Java 8 Update 333 (64-bit)
  • Java 8 Update 333
  • Java(TM) SE Development Kit 15.0.1 (64-bit)
  • Java(TM) SE Development Kit 17.0.6 (64-bit)
     

[ 2 ]

Your current DNS Servers: 192.168.4.1

Please consider changing your default DNS server settings. Please choose one provider only

DNS is what lets users connect to websites using domain names instead of IP addresses

Pick just one of these 4 providers. And be aware that you need to modify 1 time for IPv4 & a 2nd pass for IPv6

  • Google Public DNSIPv4   8.8.8.8 and 8.8.4.4   IPv6   2001:4860:4860::8888 and 2001:4860:4860::8844
  • CloudflareIPv4   1.1.1.1 and 1.0.0.1   IPv6   2606:4700:4700::1111 and 2606:4700:4700::1001
  • OpenDNSIPv4   208.67.222.222 and 208.67.220.220  IPv6  2620:119:35::35 and 2620:119:53::53
  • DNSWATCHIPv4   84.200.69.80 and 84.200.70.40   IPv6  2001:1608:10:25::1c04:b12f and 2001:1608:10:25::9249:d69b


The Ultimate Guide to Changing Your DNS Server
https://www.howtogeek.com/167533/the-ultimate-guide-to-changing-your-dns-server/

Here is a YouTube video on Changing DNS settings if needed

 

[ 3 ]

Please run the following fix

NOTE: Please read all of the information below before running this fix.

  • NOTICE: This script was written specifically for this user, for use on this particular machine.
  • Running this on another machine may cause damage to your operating system that cannot be undone.

Once the fix has been completed, please attach the file FIXLOG.TXT to your next reply

Farbar program:   FRST64.exe

Save the attached file:  FIXLIST.TXT to this folder C:\Users\Hellh\Downloads\

NOTE. It's important that both files, FRST64.exe, and fixlist.txt are in the same location or the fix will not work.

Please make sure you disable any real-time antivirus or security software before running this script. Once completed, make sure you re-enable it.

 

Run the Farbar program with Admin rights and press the Fix button just once and wait.

The fix may possibly take up to 60 minutes to complete

If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart.
The tool will make a log named Fixlog.txt in the same folder you ran the Farbar program from. Please attach that log on your next reply.

 

  1. NOTE:  This fix will run a scan to check that all Microsoft operating system files are valid and not corrupt and attempt to correct any invalid files. It will also run a disk check on the restart to ensure disk integrity.
  2. NOTE: As part of this fix all temporary files will be removed. If you have any open web pages that have not been bookmarked please make sure you bookmark them now as all open applications may be automatically closed. Also, make sure you know the passwords for all websites as cookies will also be removed in most, but not all cases.
  3. NOTE: As part of this fix, it will also reset the network to default settings including the firewall. If you have custom firewall rules you need to save please export or save them first before running this fix.

The following directories are emptied:

  • Windows Temp
  • Users Temp folders
  • Edge, IE, FF, Chrome, and Opera caches, HTML5 storages, Cookies and History
  • Recently opened files cache
  • Discord cache
  • Java cache
  • Steam HTML cache
  • Explorer thumbnail and icon cache
  • BITS transfer queue (qmgr*.dat files)
  • Recycle Bin

Important: items are permanently deleted. They are not moved to quarantine. If you have any questions or concerns please ask before running this fix.

The system will be rebooted after the fix has run.

fixlist.txt

Thanks

 

Link to post
Share on other sites

Thank you! I uninstalled the programs listed but was unable to change my DNS address as the router I use is connected to an account I don't have access to, I'm hoping that won't have too much impact on this.. I ran the fix and the log is included, I still seem to have the same pop up when launching edge though! Thank you so much for your time <:]

Fixlog.txt

Link to post
Share on other sites

  • Root Admin

Thank you for the log. Looks good.


Please follow the directions from the following topic and let me know if that corrects the issue with Microsoft Edge

How to Completely Reset Microsoft Edge Chromium to Default in Windows
https://www.tenforums.com/tutorials/159010-how-completely-reset-microsoft-edge-chromium-default-windows.html

 

 

Link to post
Share on other sites

  • Root Admin

It simply confirms this is a MS Edge setting issue or extension issue.

Please go ahead and open MS Edge and set it as your Default browser again.

Then go to Extensions:   You can paste the following into the address bar

edge://extensions/

 

Then uninstall ALL extensions

Then go to Settings

edge://settings/profiles

And one by one go through ALL settings and remove or change anything not wanted.

That setting may be a home page, a search page, a cookie, an extension, etc.

You need to find it and remove it

 

Then go to Reset

edge://settings/reset

Then RESET MS Edge and restart the computer and see if that fixes it or not

 

Edited by AdvancedSetup
Updated information
Link to post
Share on other sites

I uninstalled all extensions and then went to my sync settings since those were first, and I noticed that I had only unchecked a few of them and the message showed up again, and by checking and unchecking them, it seems that the issue is the collections sync as the issue does not appear when running edge with all other syncs besides collection sync enabled. Should I go ahead and reset edge and restart my computer, and additionally, should I be worried about my laptop that shares sync settings? 

Link to post
Share on other sites

  • Root Admin
  • Solution

Sync has pros and cons. It helps to keep different computers looking and working the same. But as I think you're seeing here that includes the BAD too.

I don't use any type of Sync so I don't know the granularity of it for MS Edge. But if you can clear it or disable it for just that one feature I would do so on ALL computer you share the Sync with.

Let me know and I'll check back on you again sometime tomorrow.

 

Link to post
Share on other sites

  • 1 month later...

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread.

Please review the following to help you better protect your computer and privacy Tips to help protect from infection

Thank you

 

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.