Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Fake Google Chrome and Explorer Virus "Trovi"


  • Please log in to reply
5 replies to this topic

#1 bryan.liu

bryan.liu

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:33 PM

Posted 13 September 2014 - 07:03 PM

Hi,
 
I'm new to this. I believe that my web browser has been infected with "trovi". Every time I open my web browser or open a new tab this "trovi" link would show up in the address bar. I could not copy and paste the link of it here. I can no longer run google chrome because of this. Can someone help?
 
Thanks,
Bryan

Attached Files


Edited by Queen-Evie, 13 September 2014 - 07:44 PM.
moved from Windows 7 to the appropriate forum


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,689 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:05:33 PM

Posted 14 September 2014 - 11:15 AM

Open the Control Panel and then open Programs and Features.  Look for Trovi in the list of programs, if you find it, uninstall it.

 

Please download AdwCleaner and install it.
 
When AdwCleaner opens you will see an image like the one below.
 
adwcleaner11_zps48314883.png
 
Click on Scan to start the scan.
 
Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.  
 
Click on Clean to remove the selected items.  If you have any questions about any items in the list please copy and paste the list in your topic so we can review it.  
 
You will receive a message telling you that all programs will be closed so that the infections can be removed.  Click on OK.
 
When the cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your topic.
 
 

Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
mbamreplace_zps3ead4824.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.
 
Remove Trovi from your browser/s.
 

Remove from Internet Explorer
 
Press Alt+T and click Internet Options.
Open the General tab.
Change the home page and click OK.
Press Alt+T and click Manage Add-ons.
Click Toolbars and Extensions and remove unwanted extension.
Click Search Providers and set a new default search engine.
 
Remove from Google Chrome
 
Press Alt+F and point to Tools.
Click Extensions.
Remove unwanted extensions.
Click Settings.
Under On startup, select the last option and click Set pages.
Set a new startup page.
Under Search, click Manage search engines and click enter the URL of your new default search provider. Click Ok.
 
Remove from Mozilla Firefox
 
Press Alt+T and click Options.
Open the General tab and change the home page.
Click OK.
Press Ctrl+Shift+A and click Extensions.
Remove unwanted extensions.
Close the tab.
Click the search engine icon next to the search box and select a new search provider.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 bryan.liu

bryan.liu
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:33 PM

Posted 14 September 2014 - 02:41 PM

Here is the log from AdwCleaner:

# AdwCleaner v3.310 - Report created 14/09/2014 at 12:19:06
# Updated 12/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Bryan Liu - ASUS
# Running from : C:\Users\Bryan Liu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TNAW1E5G\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : CltMngSvc
Service Deleted : SPPD

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\smdmf
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiDefMedia
Folder Deleted : C:\Program Files (x86)\GetPrivate
Folder Deleted : C:\Program Files (x86)\HiDefMedia
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\Program Files (x86)\Settings Manager
Folder Deleted : C:\Users\Bryan Liu\AppData\Local\Linkey
Folder Deleted : C:\Users\Bryan Liu\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Bryan Liu\AppData\Roaming\GetPrivate
File Deleted : C:\Users\Bryan Liu\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Bryan Liu\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{726E90BE-DC22-4965-B215-E0784DC26F47}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKCU\Software\Linkey
Key Deleted : HKCU\Software\SmdmF
Key Deleted : HKLM\SOFTWARE\SearchProtect
Key Deleted : HKLM\SOFTWARE\SmdmF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\searchprotect\searchprotect\bin\spvc32loader.dll
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\searchprotect\searchprotect\bin\spvc64loader.dll

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v37.0.2062.120

[ File : C:\Users\Bryan Liu\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3326582&octid=EB_ORIGINAL_CTID&ISID=M588E128E-BE3B-46F0-BDE9-55F19AB438EC&SearchSource=58&CUI=&UM=6&UP=SPE8DEB31F-4AE6-47FE-9A9E-F55093B68118&q={searchTerms}&SSPV=
Deleted [Startup_urls] : hxxp://www.trovi.com/?gd=&ctid=CT3326582&octid=EB_ORIGINAL_CTID&ISID=M588E128E-BE3B-46F0-BDE9-55F19AB438EC&SearchSource=55&CUI=&UM=6&UP=SPE8DEB31F-4AE6-47FE-9A9E-F55093B68118&SSPV=
Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb

*************************

AdwCleaner[R0].txt - [4353 octets] - [14/09/2014 12:08:45]
AdwCleaner[S0].txt - [4070 octets] - [14/09/2014 12:19:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4130 octets] ##########

 

Here is the quarantine log from malwarebytes:

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine
0013806016.data                          File Size: 713       BYTES FileVersion:  N/A            MD5: [1cf18789be1f6a79655825b6b09a40e1]
0013806016.quar                          File Size: 224728    BYTES FileVersion:  N/A            MD5: [218794a6781530500302c5247027fbfc]
0110026715.data                          File Size: 783       BYTES FileVersion:  N/A            MD5: [674fa1ec7199d3b23b422d780380b53a]
0110026715.quar                          File Size: 806       BYTES FileVersion:  N/A            MD5: [4fbc2064b1bf18836912de3bc7e9eb10]
0270790558.data                          File Size: 743       BYTES FileVersion:  N/A            MD5: [4413224c4f6776cea662b4d1622dbe39]
0270790558.quar                          File Size: 7074      BYTES FileVersion:  N/A            MD5: [29679a916b3d96244accd604768d5a7d]
0613431422.data                          File Size: 797       BYTES FileVersion:  N/A            MD5: [b4461d3cb4115a13f00054387694fd0e]
0613431422.quar                          File Size: 474       BYTES FileVersion:  N/A            MD5: [8c1fcc0305c2a5625e0a6bbffa87d82b]
0886329878.data                          File Size: 750       BYTES FileVersion:  N/A            MD5: [26c7d649076f4d758d255dbbcef0bd1d]
0886329878.quar                          File Size: 1006      BYTES FileVersion:  N/A            MD5: [a81d7fe234cec7afc45783438eb5e8d8]
1004873114.data                          File Size: 751       BYTES FileVersion:  N/A            MD5: [020a468695398edf62c23c5dece5b99d]
1004873114.quar                          File Size: 821       BYTES FileVersion:  N/A            MD5: [3374be5f77f0e4dfc84df66e0dcf7d71]
1326304751.data                          File Size: 706       BYTES FileVersion:  N/A            MD5: [8e076a83a4144ce3bccd87bbfe82548d]
1346972474.data                          File Size: 721       BYTES FileVersion:  N/A            MD5: [42e60347a21bd21b6b02a29b8818cac3]
1346972474.quar                          File Size: 276064    BYTES FileVersion:  N/A            MD5: [9c27b95deaa30bdc5f446b4e2985f832]
1524553029.data                          File Size: 706       BYTES FileVersion:  N/A            MD5: [4cb457e6e58b32e46a6fbee5d6fc8743]
1524553029.quar                          File Size: 1316      BYTES FileVersion:  N/A            MD5: [29c8b218f966c41b55874a2a228514ee]
1563604771.data                          File Size: 737       BYTES FileVersion:  N/A            MD5: [4d2678396ebfc65559af64e266990f61]
1745955323.data                          File Size: 736       BYTES FileVersion:  N/A            MD5: [ffb1e6e0d25665830fba880d5a07fd19]
1745955323.quar                          File Size: 1866      BYTES FileVersion:  N/A            MD5: [4d9785e43d70a59b9f552c66f267e45b]
1977460293.data                          File Size: 703       BYTES FileVersion:  N/A            MD5: [9f8a412b250c95cffda1aea875426f5d]
2129623964.data                          File Size: 738       BYTES FileVersion:  N/A            MD5: [08c36c4dd3e76ba4b882a713b4252ac5]
2129623964.quar                          File Size: 956       BYTES FileVersion:  N/A            MD5: [e8ff55ffa72d42ae261762f746bc3190]
2450624138.data                          File Size: 738       BYTES FileVersion:  N/A            MD5: [a7c006b2188083cfd8b85bc93cb1881e]
2450624138.quar                          File Size: 934       BYTES FileVersion:  N/A            MD5: [910e5124dbc2b4d3a9c56105bcfbca05]
2773955180.data                          File Size: 710       BYTES FileVersion:  N/A            MD5: [50f0f9bb134d707ea53669c32bec57bd]
2773955180.quar                          File Size: 8655880   BYTES FileVersion:  N/A            MD5: [7c7fcc62beca21a1730875f67547199e]
2882300579.data                          File Size: 724       BYTES FileVersion:  N/A            MD5: [23e9c561b6f066ce0dbd05f4811ee84f]
2882300579.quar                          File Size: 24364     BYTES FileVersion:  N/A            MD5: [b6cbb9b1f91cca8c43b3aab004f2f8ce]
3615122860.data                          File Size: 748       BYTES FileVersion:  N/A            MD5: [14fc02d3e93ae67d7ac891d717cfb8e5]
3615122860.quar                          File Size: 2034      BYTES FileVersion:  N/A            MD5: [52e42dfe6c3365d946810ce063a85890]
4080750041.data                          File Size: 725       BYTES FileVersion:  N/A            MD5: [3229126bcd83c2d6a30c17d78c17b5b7]
4080750041.quar                          File Size: 181856    BYTES FileVersion:  N/A            MD5: [039f4b3726d41954ac40b0b8371fb31c]
4105582281.data                          File Size: 731       BYTES FileVersion:  N/A            MD5: [3fe62fbf20dedb04ae25dfc70b1c2f38]
4105582281.quar                          File Size: 149088    BYTES FileVersion:  N/A            MD5: [d6d450ce07e7a840d599ce5172fc3db4]
4196388389.data                          File Size: 708       BYTES FileVersion:  N/A            MD5: [fd59f686787d71442d2ef0a57a5ef72e]
4196388389.quar                          File Size: 931224    BYTES FileVersion:  N/A            MD5: [392ec312c5f8d7b5b5c9ff5252544258]
4204416244.data                          File Size: 743       BYTES FileVersion:  N/A            MD5: [0796661c2dc4e9fe00e8c9a89a91f367]
4204416244.quar                          File Size: 411       BYTES FileVersion:  N/A            MD5: [685587acc6ce8bccc8670a8aadd2172f]
4337831106.data                          File Size: 707       BYTES FileVersion:  N/A            MD5: [432e9518c9bd7966e4ab5a867321b217]
4337831106.quar                          File Size: 931224    BYTES FileVersion:  N/A            MD5: [4ba444a3419c5e04003deaaa0da05700]
4481432544.data                          File Size: 853       BYTES FileVersion:  N/A            MD5: [392802b0bf79bc3692dc97c2d13e4324]
4481432544.quar                          File Size: 444       BYTES FileVersion:  N/A            MD5: [1c9b9e68dd20ff9e5691ed2ecb43c7f9]
4562136625.data                          File Size: 740       BYTES FileVersion:  N/A            MD5: [d1b58bde39c107a5b6138ba8b3eda521]
4562136625.quar                          File Size: 3672352   BYTES FileVersion:  N/A            MD5: [5dfe3cb7ed539a7ed80dc9db90731ffd]
4567045534.data                          File Size: 700       BYTES FileVersion:  N/A            MD5: [587c0ecdbbf782aac637019777f7c896]
4882376371.data                          File Size: 711       BYTES FileVersion:  N/A            MD5: [ac6fe3a4d1d32597edc064a45d306395]
5026221990.data                          File Size: 717       BYTES FileVersion:  N/A            MD5: [eb89fbef547ea760838407f91fba6b3e]
5026221990.quar                          File Size: 307751    BYTES FileVersion:  N/A            MD5: [c54c1f6e5e3e14650c57d450fc5ec42d]
5521728939.data                          File Size: 769       BYTES FileVersion:  N/A            MD5: [1d5fc07088bd9b514f095406225d42e1]
5521728939.quar                          File Size: 336       BYTES FileVersion:  N/A            MD5: [738b813b5dc305baf59b741b163c7583]
5610356497.data                          File Size: 743       BYTES FileVersion:  N/A            MD5: [2e865eaf5342a9a75dc44847c259b7d8]
5610356497.quar                          File Size: 2944      BYTES FileVersion:  N/A            MD5: [6e8e724b7c61fd4f33e6b5e884cb9ec6]
5795686275.data                          File Size: 703       BYTES FileVersion:  N/A            MD5: [3023abf64ea51167e74a47961165f628]
5795686275.quar                          File Size: 58248     BYTES FileVersion:  N/A            MD5: [64d3cdfa3b8622b4d653b6be1ae8d4a8]
5806652950.data                          File Size: 709       BYTES FileVersion:  N/A            MD5: [fb4f9318aaf3e0b3180b9da95b31c3cb]
5806652950.quar                          File Size: 931224    BYTES FileVersion:  N/A            MD5: [392ec312c5f8d7b5b5c9ff5252544258]
5824737599.data                          File Size: 712       BYTES FileVersion:  N/A            MD5: [18e71018b8313b7fdd60062d80dbff44]
5824737599.quar                          File Size: 1452      BYTES FileVersion:  N/A            MD5: [378f57b44219c34c9ecff70cfc4c1614]
6105731535.data                          File Size: 749       BYTES FileVersion:  N/A            MD5: [4e2c31e10fa9159ac8711e19d5e65dac]
6105731535.quar                          File Size: 478       BYTES FileVersion:  N/A            MD5: [582079992bbbb83b6d7d9aefa93c201c]
6548384485.data                          File Size: 722       BYTES FileVersion:  N/A            MD5: [70e2da185fd7b3fb6bdbfe76b9dda9dc]
6765202794.data                          File Size: 745       BYTES FileVersion:  N/A            MD5: [4d91383a02ab0534edc40d40329e5fdb]
6765202794.quar                          File Size: 832       BYTES FileVersion:  N/A            MD5: [84cc92b577b31a535cdc4022d45eb947]
7285310258.data                          File Size: 738       BYTES FileVersion:  N/A            MD5: [2144cc1da917dbd91546813286b4fff9]
7303137085.data                          File Size: 744       BYTES FileVersion:  N/A            MD5: [8f88f7dd2fe8f157ad304506a43af7da]
7303137085.quar                          File Size: 1477      BYTES FileVersion:  N/A            MD5: [29c4e15034a46f45623614565e791cf0]
7442959735.data                          File Size: 710       BYTES FileVersion:  N/A            MD5: [e9330d196e6c8353c7f5e104c61011a1]
7442959735.quar                          File Size: 1238      BYTES FileVersion:  N/A            MD5: [ad39431b570c981b30e7abaff10c8652]
7758474880.data                          File Size: 749       BYTES FileVersion:  N/A            MD5: [8f1ce4ba98bbd58a3c4a130450ba3353]
7758474880.quar                          File Size: 950       BYTES FileVersion:  N/A            MD5: [bd60790137b877c136e779f30824b50d]
7806205105.data                          File Size: 752       BYTES FileVersion:  N/A            MD5: [58100d2c60d793472e784215483c94a3]
7806205105.quar                          File Size: 1760      BYTES FileVersion:  N/A            MD5: [60945f962059e841c421906d1595598f]
7926209101.data                          File Size: 716       BYTES FileVersion:  N/A            MD5: [54f8090dc6ffc4efb91122b1f1d66b93]
7926209101.quar                          File Size: 338336    BYTES FileVersion:  N/A            MD5: [644c3bb4db696b2f190a5585c8739a5c]
7955076209.data                          File Size: 709       BYTES FileVersion:  N/A            MD5: [c5d282346a18348a249435b3e5b18da0]
7955076209.quar                          File Size: 9216      BYTES FileVersion:  N/A            MD5: [671c94adb86859f2f08c67a695952ef5]
8083339282.data                          File Size: 697       BYTES FileVersion:  N/A            MD5: [c0fd6f2c94b0057997d1f267ccd29e90]
8406935222.data                          File Size: 746       BYTES FileVersion:  N/A            MD5: [d1b1429fb350fa8cf52e20d7753e97ee]
8406935222.quar                          File Size: 2060      BYTES FileVersion:  N/A            MD5: [2c2bf8f4765f29dd7f898337712d953c]
8474282294.data                          File Size: 904       BYTES FileVersion:  N/A            MD5: [78309eea034b0d5dc20764f4e2cebfa8]
8477828023.data                          File Size: 743       BYTES FileVersion:  N/A            MD5: [c72441c003d18e519c2f377631b7eb1b]
8477828023.quar                          File Size: 5433      BYTES FileVersion:  N/A            MD5: [57f76f7c9098cf14ac810285355161e9]
8725701232.data                          File Size: 741       BYTES FileVersion:  N/A            MD5: [f3ba13ecc0add0af5c26e9c08142d912]
8725701232.quar                          File Size: 809       BYTES FileVersion:  N/A            MD5: [efc16013a196d04fb6598b15b2863d7d]
9026036043.data                          File Size: 850       BYTES FileVersion:  N/A            MD5: [c505304260445c91115d41ec89770bf9]
9026036043.quar                          File Size: 1560      BYTES FileVersion:  N/A            MD5: [eeb50afcf79914f80fa3a5f47c35ebc4]
9286173226.data                          File Size: 873       BYTES FileVersion:  N/A            MD5: [93c06d31ddcc0f81a589e33d4e6678b3]
9286173226.quar                          File Size: 300517    BYTES FileVersion:  N/A            MD5: [0972da5583e4cfda1c6b8700a6d36811]
9402688428.data                          File Size: 734       BYTES FileVersion:  N/A            MD5: [86f46aaa1d19eba1e4aab4868adbb513]
9402688428.quar                          File Size: 1880      BYTES FileVersion:  N/A            MD5: [34657afc2f4d450806f33c0553801985]
9425583814.data                          File Size: 829       BYTES FileVersion:  N/A            MD5: [ab6d5abf9f079ab564635971f8adeca4]
9805292317.data                          File Size: 781       BYTES FileVersion:  N/A            MD5: [bfbb508e304551b68c5c83be2135705d]
9805292317.quar                          File Size: 360       BYTES FileVersion:  N/A            MD5: [3c8f2291df3c351e227773148238b36c]
9817116275.data                          File Size: 785       BYTES FileVersion:  N/A            MD5: [b2464376e653867117417cb0519202c6]
9817116275.quar                          File Size: 450       BYTES FileVersion:  N/A            MD5: [3cf838564d32ff91ef4c8caa30afb452]
9868483657.data                          File Size: 709       BYTES FileVersion:  N/A            MD5: [a880e1d8fe65984bf501b897ef705423]
9868483657.quar                          File Size: 10240     BYTES FileVersion:  N/A            MD5: [542b4244e3f31f167f811bf302051c94]
9989214835.data                          File Size: 783       BYTES FileVersion:  N/A            MD5: [30d1389a9145d2e85db4d27cec2a3f40]
9989214835.quar                          File Size: 782       BYTES FileVersion:  N/A            MD5: [9d9bcc038595aa9f26720a4f0c4d5d4b]

 

 



#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,689 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:05:33 PM

Posted 14 September 2014 - 03:00 PM

The quarantined log should look similar to the one below.

 

------------------------------------------------Save------------------------------------------------------------
 
Quarantined Items:
===================
Vendor: PUP.Optional.AppsInstaller, Date: 2014/05/01 19:02:01, Type: File, Location: C:\Users\Dan\Downloads\Free FreeCell Solitaire.exe
Vendor: PUP.Optional.BundleInstaller.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\AppData\Local\Temp\n4118\s4118.exe
Vendor: PUP.Optional.OpenCandy, Date: 2014/05/12 23:50:18, Type: File, Location: C:\Users\Dan\AppData\Local\Temp\nspAB45.tmp\OCSetupHlp.dll
Vendor: PUP.Optional.Bandoo, Date: 2014/06/21 16:36:54, Type: File, Location: C:\Users\Dan\Downloads\iLividSetup-r514-n-bc.exe
Vendor: PUP.Optional.Conduit, Date: 2014/05/13 14:24:01, Type: File, Location: C:\Users\Dan\Downloads\DVD_Shrink_TSV3916ST.exe
Vendor: PUP.Optional.Spigot.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\Downloads\FreeUltimateFileOpener.exe
Vendor: PUP.Optional.Updater.A, Date: 2014/07/23 16:49:46, Type: File, Location: C:\Users\Dan\AppData\Roaming\UpdaterEX\UpdateProc\config.dat
Vendor: PUP.Optional.Updater.A, Date: 2014/07/23 16:49:46, Type: File, Location: C:\Users\Dan\AppData\Roaming\UpdaterEX\UpdateProc\TTL.DAT
Vendor: PUP.Optional.MindSpark.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamingwonderland.dl.tb.ask.com_0.localstorage-journal
Vendor: PUP.Optional.Spigot.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\AppData\Local\Temp\FreeUltimateFileOpener\PIPAskToolbar\Offercast2802_ADAP_.exe
Vendor: PUP.Optional.OptimumInstaller.A, Date: 2014/05/03 22:46:47, Type: File, Location: C:\Users\Dan\Downloads\Setup.exe
Vendor: PUP.Optional.Updater.A, Date: 2014/07/23 16:49:46, Type: Folder, Location: C:\Users\Dan\AppData\Roaming\UpdaterEX\UpdateProc
Vendor: PUP.Optional.OptimumInstaller.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\Downloads\Express_Installer.exe
Vendor: PUP.Optional.InstallRex, Date: 2014/07/30 15:43:57, Type: File, Location: C:\Users\Dan\Downloads\MiniToolBox (3).exe
Vendor: PUP.Optional.BundleInstaller.A, Date: 2014/05/01 14:55:36, Type: File, Location: C:\Users\Dan\Downloads\freecell-solitaire.exe
Vendor: PUP.Optional.Updater.A, Date: 2014/07/23 16:49:46, Type: File, Location: C:\Users\Dan\AppData\Roaming\UpdaterEX\UpdateProc\STTL.DAT
Vendor: PUP.Optional.Updater.A, Date: 2014/07/23 16:49:46, Type: File, Location: C:\Users\Dan\AppData\Roaming\UpdaterEX\UpdateProc\prod.dat
Vendor: PUP.Optional.MindSpark.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamingwonderland.dl.tb.ask.com_0.localstorage
Vendor: PUP.Optional.Softonic.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\Downloads\SoftonicDownloader_for_dvdfab.exe
Vendor: PUP.Optional.OpenCandy, Date: 2014/05/13 14:06:07, Type: File, Location: C:\Users\Dan\Downloads\SetupImgBurn_2.5.8.0.exe
Vendor: PUP.Optional.Bandoo, Date: 2014/06/21 16:36:54, Type: File, Location: C:\Users\Dan\Downloads\iLividSetup-r1610-n-bc.exe
Vendor: PUP.Optional.WeatherAlerts.A, Date: 2014/05/06 15:50:58, Type: File, Location: C:\Users\Dan\AppData\Local\Temp\07b023ae-bee7-4926-8ee8-cba1e089f529\software\DesktopWeatherAlertsSetup.exe
===============================================================
END OF FILE

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 bryan.liu

bryan.liu
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:33 PM

Posted 14 September 2014 - 10:30 PM

This is what it the malware log says at the bottom:

Malware Exclusions:
===================
Unable to access exclusion information: Error code 20001Web Exclusions:
================
Unable to access exclusion information: Error code 20001Quarantined Items:
===================
Unable to access quarantine information: Error code 20001===============================================================



#6 bryan.liu

bryan.liu
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:33 PM

Posted 14 September 2014 - 10:40 PM

Also I have google chrome, but it is not working. Only internet explorer is working.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users