Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malwarebytes found PUP.Optional.OpenCandy - Am I infected?


  • Please log in to reply
5 replies to this topic

#1 drews247

drews247

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:07:16 PM

Posted 14 November 2013 - 08:11 PM

Hi,

 

I ran Malwarebytes yesterday and it found PUP.Optional.OpenCandy. It appears that MBAM quarantined and removed it successfully. A subsequent scan did not find anything. I have not noticed anything irregular about my computer, but I would like to know if I am infected or at risk. Please find the MBAM log below.

 

Thank you very much in advance for your help.

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.11.13.13
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
Drew :: DREW-THINKPADX [administrator]
 
11/13/2013 8:25:28 PM
mbam-log-2013-11-13 (20-25-28).txt
 
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 405884
Time elapsed: 1 hour(s), 18 minute(s), 25 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 1
C:\Users\Drew\Downloads\PhotoScape_V3.6.5.exe (PUP.Optional.OpenCandy) -> Quarantined and deleted successfully.
 
(end)
 


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:16 AM

Posted 14 November 2013 - 08:21 PM

Hi Drew -

In the overall scheme of things this Potentially Unwanted ProgramPUP.Optional.OpenCandy is minor

 

Just run your Antivirus and Antimalware programs on a regular basis to remove them -

 

Regards -



#3 drews247

drews247
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:07:16 PM

Posted 14 November 2013 - 08:25 PM

So I have nothing to worry about in this case?



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:16 PM

Posted 14 November 2013 - 08:30 PM

You're OK. see our quietman7's post 12 here that explains Open Candy.

http://www.bleepingcomputer.com/forums/t/467444/infected-by-backdoor/
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 drews247

drews247
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:07:16 PM

Posted 14 November 2013 - 11:39 PM

Great thanks so much. Have a nice weekend.  



#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,117 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:08:16 PM

Posted 15 November 2013 - 09:42 PM


How do I uninstall OpenCandy?
Since OpenCandy does not permanently install anything on your computer, there is nothing to uninstall. Our technology was selected by a developer and runs temporarily in their downloads which you may have selected and run. The plug-in shows an app recommendation and is designed to self-delete from your computer when it has finished operating. If you are concerned that something extraordinary resulted in any remnant traces being left on your computer, you may download and run our small clean-up utility to ensure all OpenCandy traces which are regularly self-deleted, are in fact gone.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users