Dnggt56

Member
  • Content count

    17
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Dnggt56

  • Rank
    Member
  1. I made new farbar logs, could you check these instead? FRST.txt Addition.txt
  2. Today I reinstalled windows, and everything seems to be in order, but there was one thing which got me little worried; when i rebooted pc and the security center lags behind saying something about how threat defence is turned off, which is normal but this time there was text "malwarebytes needs actions", it only appeared for a brief moment and then disappeared and the red warning mark turned to green checkmark. I could not see any protection layers turned off in malwarebytes so maybe it was some windows bug. I scanned with emsisoft antimalware and it didnt find anything suspicious. But cant be too carefull, i would appreciate if you could review my farbar logs: FRST.txt Addition.txt
  3. I scanned with emsisoft anti malware and no suspicious files were found Btw, Emsisoft always gives warning about conflicting antivirus, malwarebytes. Ive always used malwarebytes alongside emsisoft and this warning is pretty recent thing. Is malwarebytes actually conflicting with emsisoft these days?
  4. The suspicious behavior was blocked when I tried saving file on Tiled map editor, behavior blocked "code injection" in tiled.exe. I am fairly sure this is false positive but you never know for 100%, also dont know what those cmd windows were. Ive seen such cmd windows on start up before so they may be just windows thing. Here are farbar logs anyway, i would be glad if you could check them. FRST.txt Addition.txt
  5. I still one one question, do you think the youtube warning is more likely false positive than actual rogue ad? Should i just wipe my ssd even if farbar logs appeared clean? I thought it was false positive because noscript gave that one false positive on adlice site. I have never received XSS warnings before these instances, and i got that youtube warning 5 times; 3 times from one video, and 2 times from another. I am not an expert of course, but getting a malware from youtube seems very unlikely, but if you think this warrants a disk wipe then i will absolutely do that.
  6. Hmm, should I be worried? I though it was false positive because it appeared when browsing youtube. But here are new farbar logs, if you could review these to determine if something came from it or if pc has been infected from elsewhere since i uploaded the previous farbar logs. FRST.txt Addition.txt
  7. Alright. What about that youtube warning? Is that also false positive? Im not an expert on noscript, but it seems to be saying that the attack is coming from youtube to google ads site, not that the threat is coming from google ads? If it indeed means that attack is coming from youtube.com, then its 99,99% false positive as youtube is not distributing malware.
  8. Yeah. What about that cross site script warning? What malwarebytes.com has to do with adlice website? I couldnt recreate that warning, i tried going to same site again after resetting noscript but it did not give that warning again.
  9. Also regardin the "setup" folder, in farbar log i can see other entries at the same exact time: 2018-01-05 03:59 - 2018-01-05 04:08 - 000022352 _____ (RW-Everything) C:\WINDOWS\SysWOW64\Drivers\AsrSetupDrv.sys 2018-01-05 03:59 - 2018-01-05 03:59 - 000000000 ____D C:\Users\Amm\Downloads\Setup 2018-01-05 03:59 - 2018-01-05 03:59 - 000000000 ____D C:\Users\Amm\AppData\Local\Comms AsrSetupDrv.sys could be some Asrock motherboard driver file