Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

help java/exploit.agent.pej.trojan


  • Please log in to reply
23 replies to this topic

#16 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 12 August 2013 - 01:46 PM

sas report looks like only tracking cookies so far 

 

SUPERAntiSpyware Scan Log
 
Generated 08/12/2013 at 07:45 PM
 
Application Version : 5.6.1020
 
Core Rules Database Version : 10684
Trace Rules Database Version: 8496
 
Scan type       : Quick Scan
Total Scan Time : 00:14:03
 
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
 
Memory items scanned      : 706
Memory threats detected   : 0
Registry items scanned    : 60557
Registry threats detected : 0
File items scanned        : 10617
File threats detected     : 36
 
Adware.Tracking Cookie
.atdmt.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.kontera.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tribalfusion.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.mlnadvertising.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\LISA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]


BC AdBot (Login to Remove)

 


#17 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 12 August 2013 - 05:32 PM

Emsisoft Emergency Kit - Version 4.0
Last update: 12-Aug-13 8:03:23 PM
User account: lisa-PC\lisa
 
Scan settings:
 
Scan type: Deep Scan
Objects: Rootkits, Memory, Traces, C:\, Q:\
 
Detect Riskware: Off
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off


Scan start: 12-Aug-13 8:04:55 PM
C:\ProgramData\ADDICT-THING\ajopccadgfpdlnlfklnhamaecbhljdhe.crx -> background.html  detected: Gen:Adware.MPlug.1 (B)
C:\ProgramData\ADDICT-THING\background.html  detected: Gen:Adware.MPlug.1 (B)
C:\ProgramData\ADDICT-THING\content.js  detected: Gen:Adware.MPlug.1 (B)
C:\ProgramData\ADDICT-THING\settings.ini  detected: Gen:Adware.MPlug.1 (B)
C:\settings.ini  detected: Gen:Adware.MPlug.1 (B)
C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopccadgfpdlnlfklnhamaecbhljdhe\1.0_0\background.html  detected: Gen:Adware.MPlug.1 (B)
 
Scanned 501679
Found 6
 
Scan end: 12-Aug-13 11:04:22 PM
Scan time: 2:59:27
 
C:\ProgramData\ADDICT-THING\ajopccadgfpdlnlfklnhamaecbhljdhe.crx Quarantined Gen:Adware.MPlug.1 (B)
C:\ProgramData\ADDICT-THING\background.html Quarantined Gen:Adware.MPlug.1 (B)
C:\ProgramData\ADDICT-THING\content.js Quarantined Gen:Adware.MPlug.1 (B)
C:\ProgramData\ADDICT-THING\settings.ini Quarantined Gen:Adware.MPlug.1 (B)
 
 

sorry couldn't post all at once 



#18 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 13 August 2013 - 02:17 AM

Run one more time AdwCleaner. I saw you have run it before, because you posted the log. This time also post the log of AdwCleaner.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#19 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 13 August 2013 - 07:23 AM

Ok will do am at work atm will do it when I get home

#20 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 14 August 2013 - 10:55 AM

sorry its been two days have been busy at work here is the AdwCleaner log 

 

# AdwCleaner v2.306 - Logfile created 08/14/2013 at 16:52:24
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : lisa - LISA-PC
# Boot Mode : Normal
# Running from : C:\Users\lisa\Downloads\AdwCleaner.exe
# Option [Search]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16635
 
[OK] Registry is clean.
 
-\\ Google Chrome v28.0.1500.95
 
File : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [12095 octets] - [11/08/2013 17:31:50]
AdwCleaner[R2].txt - [904 octets] - [12/08/2013 19:21:04]
AdwCleaner[R3].txt - [775 octets] - [14/08/2013 16:52:24]
AdwCleaner[S1].txt - [11109 octets] - [11/08/2013 17:32:52]
 
########## EOF - C:\AdwCleaner[R3].txt - [895 octets] ##########


#21 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 17 August 2013 - 04:02 AM

Any improvement? 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#22 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 17 August 2013 - 04:06 AM

Seams to be running ok but it did when I got rid off the last lot from the computer before I posted this one two days before it had a few more which I got rid off but more installed including the one I asked about with you

#23 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 17 August 2013 - 04:08 AM

:step1: My advice is to keep your computer up to date with Windows Updates, Java and Adobe Reader and Flash Player.

 

:step2: Use WOT to inspect sites if they are safe or not :http://www.mywot.com/

 

:step3: A good working AntiVirus is also important. I personally advice Avast free or Avira. MSE it's detection is not so great.

 

:step4: Let's check how good your security is:

 

Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#24 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:09:59 PM

Posted 17 August 2013 - 01:39 PM

ok thanks very much for your help i will post back in here if any other problems come up thanks 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users