Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Ran MWB, No Internet Connection
Message
<blockquote data-quote="BenNeedsHelp" data-source="post: 453370" data-attributes="member: 45756"><p>Here should be everything that came out in the wash last night.</p><p>Malwarebytes Anti-Malware</p><p><a href="http://www.malwarebytes.org" target="_blank">www.malwarebytes.org</a></p><p></p><p>Scan Date: 11/24/2015</p><p>Scan Time: 11:42:41 PM</p><p>Logfile: WhatWasDeletedLastNight.txt</p><p>Administrator: Yes</p><p></p><p>Version: 2.02.0.1024</p><p>Malware Database: v2015.11.24.07</p><p>Rootkit Database: v2015.11.23.01</p><p>License: Free</p><p>Malware Protection: Disabled</p><p>Malicious Website Protection: Disabled</p><p>Self-protection: Disabled</p><p></p><p>OS: Windows 8</p><p>CPU: x64</p><p>File System: NTFS</p><p>User: owner</p><p></p><p>Scan Type: Threat Scan</p><p>Result: Completed</p><p>Objects Scanned: 378699</p><p>Time Elapsed: 44 min, 37 sec</p><p></p><p>Memory: Enabled</p><p>Startup: Enabled</p><p>Filesystem: Enabled</p><p>Archives: Enabled</p><p>Rootkits: Disabled</p><p>Heuristics: Enabled</p><p>PUP: Enabled</p><p>PUM: Enabled</p><p></p><p>Processes: 1</p><p>Trojan.Injector, C:\Windows\wnavga.exe, 2984, Delete-on-Reboot, [c0174e334d3e7db98109315423e18e72]</p><p></p><p>Modules: 0</p><p>(No malicious items detected)</p><p></p><p>Registry Keys: 34</p><p>Trojan.Injector, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinGraph, Quarantined, [c0174e334d3e7db98109315423e18e72],</p><p>PUP.Optional.TaskRNDM, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}, Quarantined, [9146552c4645cc6ab46147ffad55a25e],</p><p>PUP.Optional.TaskRNDM, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\APPDATALOW\SOFTWARE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}, Quarantined, [9146552c4645cc6ab46147ffad55a25e],</p><p>PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\DEALZ, Quarantined, [a136ef92b0db8fa7e892fabbed16f30d],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bghejdcdajlenjngcknlkkoakmmjfanb, Quarantined, [d50259280d7ee353a001a0441fe4fb05],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\eeafbffkmccheohnooflcnppngmobeoe, Quarantined, [6d6a354c305b2115c4de1dc70ef5a45c],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\ellbonkjdmgdghkojcjmomekmjpdffde, Quarantined, [24b3522f32598babb0f343a124df6997],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fllgpcmelbfhcligbphaaplminjpbiad, Quarantined, [10c7d7aa503b81b500a43ca8f01351af],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hpjocjloojeicikiokfiekcdpojgfefc, Quarantined, [9d3af78aa4e735014b5a3ca8c63d17e9],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\jmnkgjdfgnjhmnopgmkcpigenfhgajdj, Quarantined, [06d1027f0487f93d357111d308fb7888],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kfbhfniohjdklgcmbmemnpaimpdaikea, Quarantined, [a631265b86056bcbccdb786c966dae52],</p><p>PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\manaobgbdfpjjjnheogfghmjbikhjnlf, Quarantined, [a82f344d0e7d7db941185b5a897ae818],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\oaobejgaaiojgggjojlcpbembaoajbmc, Quarantined, [c41384fd24677db9cbde2aba3bc846ba],</p><p>PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Dealz1.0.1.7, Quarantined, [b720eb96f59645f18cef5164768d58a8],</p><p>PUP.Optional.Dealz, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\DEALZ, Quarantined, [41963b46deadf83e8eeaf2c3ab58ad53],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\bghejdcdajlenjngcknlkkoakmmjfanb, Quarantined, [0ec9b3cee5a614222b6d8e56b152a060],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\eeafbffkmccheohnooflcnppngmobeoe, Quarantined, [a4335f221c6f989e009991534db6d62a],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ellbonkjdmgdghkojcjmomekmjpdffde, Quarantined, [ffd8f78aeaa182b4b0eab82c39caa060],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\fllgpcmelbfhcligbphaaplminjpbiad, Quarantined, [7562abd6474457df1586cb1906fde11f],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\hpjocjloojeicikiokfiekcdpojgfefc, Quarantined, [01d6fd84127902341f7d0bd99b68e31d],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\jmnkgjdfgnjhmnopgmkcpigenfhgajdj, Quarantined, [578091f0107b1b1bcfce8a5a53b0bb45],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\kfbhfniohjdklgcmbmemnpaimpdaikea, Quarantined, [587f6120bad1a492fca28b59649fd12f],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\manaobgbdfpjjjnheogfghmjbikhjnlf, Quarantined, [8651443d4645a591b0ef786c6f94b848],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\oaobejgaaiojgggjojlcpbembaoajbmc, Quarantined, [c80f255c64272610148c558fad569d63],</p><p>PUP.Optional.Dealz, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Dealz1.0.1.7, Quarantined, [aa2dfb86513a71c5b3c643727c87cd33],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bghejdcdajlenjngcknlkkoakmmjfanb, Quarantined, [09cee0a1d6b562d4bade1ec6f40f28d8],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\eeafbffkmccheohnooflcnppngmobeoe, Quarantined, [f7e0c0c17b10270fbddc994b0af92bd5],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\ellbonkjdmgdghkojcjmomekmjpdffde, Quarantined, [e4f3136ec2c97eb8eeac7b6948bbae52],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fllgpcmelbfhcligbphaaplminjpbiad, Quarantined, [eee94041e5a61422f7a4865e976cae52],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hpjocjloojeicikiokfiekcdpojgfefc, Quarantined, [c215651c642767cfd5c771735ca7c838],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\jmnkgjdfgnjhmnopgmkcpigenfhgajdj, Quarantined, [24b3c5bcf29938fec6d713d1ea19fe02],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kfbhfniohjdklgcmbmemnpaimpdaikea, Quarantined, [cc0b621ff6955ed8811dcc1802010bf5],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\manaobgbdfpjjjnheogfghmjbikhjnlf, Quarantined, [02d56d14dbb068ce66396c78c53eec14],</p><p>PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\oaobejgaaiojgggjojlcpbembaoajbmc, Quarantined, [72658cf596f588ae0f915b8922e1c23e],</p><p></p><p>Registry Values: 2</p><p>PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\DEALZ|Partner, Quarantined, [a136ef92b0db8fa7e892fabbed16f30d],</p><p>PUP.Optional.Dealz, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\DEALZ|Partner, Quarantined, [41963b46deadf83e8eeaf2c3ab58ad53],</p><p></p><p>Registry Data: 0</p><p>(No malicious items detected)</p><p></p><p>Folders: 1</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p></p><p>Files: 13</p><p>Trojan.Injector, C:\Windows\wnavga.exe, Delete-on-Reboot, [c0174e334d3e7db98109315423e18e72],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\cygavb.exe, Quarantined, [9d3aed94c4c7c6702a25ebfebe457b85],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\initcvtr.bat, Quarantined, [fadd225fb4d7de5898b8e9008b7812ee],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\URL Killfile.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\AllowCookies.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Bypass List.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Keyword list.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Kill Images.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\MIME Fix List.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\URL Alias List.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\mstdcvtr.bat, Quarantined, [894e9ee3404b73c3450d81680af9f709],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\plofgye, Quarantined, [dff8afd28a0168ce4e050fda7b8805fb],</p><p>PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\soxe, Quarantined, [ca0db4cdb5d6999d2133608954aff907],</p><p></p><p>Physical Sectors: 0</p><p>(No malicious items detected)</p><p></p><p></p><p>(end)</p></blockquote><p></p>
[QUOTE="BenNeedsHelp, post: 453370, member: 45756"] Here should be everything that came out in the wash last night. Malwarebytes Anti-Malware [URL="http://www.malwarebytes.org"]www.malwarebytes.org[/URL] Scan Date: 11/24/2015 Scan Time: 11:42:41 PM Logfile: WhatWasDeletedLastNight.txt Administrator: Yes Version: 2.02.0.1024 Malware Database: v2015.11.24.07 Rootkit Database: v2015.11.23.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 8 CPU: x64 File System: NTFS User: owner Scan Type: Threat Scan Result: Completed Objects Scanned: 378699 Time Elapsed: 44 min, 37 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 1 Trojan.Injector, C:\Windows\wnavga.exe, 2984, Delete-on-Reboot, [c0174e334d3e7db98109315423e18e72] Modules: 0 (No malicious items detected) Registry Keys: 34 Trojan.Injector, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinGraph, Quarantined, [c0174e334d3e7db98109315423e18e72], PUP.Optional.TaskRNDM, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}, Quarantined, [9146552c4645cc6ab46147ffad55a25e], PUP.Optional.TaskRNDM, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\APPDATALOW\SOFTWARE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}, Quarantined, [9146552c4645cc6ab46147ffad55a25e], PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\DEALZ, Quarantined, [a136ef92b0db8fa7e892fabbed16f30d], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bghejdcdajlenjngcknlkkoakmmjfanb, Quarantined, [d50259280d7ee353a001a0441fe4fb05], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\eeafbffkmccheohnooflcnppngmobeoe, Quarantined, [6d6a354c305b2115c4de1dc70ef5a45c], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\ellbonkjdmgdghkojcjmomekmjpdffde, Quarantined, [24b3522f32598babb0f343a124df6997], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fllgpcmelbfhcligbphaaplminjpbiad, Quarantined, [10c7d7aa503b81b500a43ca8f01351af], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hpjocjloojeicikiokfiekcdpojgfefc, Quarantined, [9d3af78aa4e735014b5a3ca8c63d17e9], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\jmnkgjdfgnjhmnopgmkcpigenfhgajdj, Quarantined, [06d1027f0487f93d357111d308fb7888], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kfbhfniohjdklgcmbmemnpaimpdaikea, Quarantined, [a631265b86056bcbccdb786c966dae52], PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\manaobgbdfpjjjnheogfghmjbikhjnlf, Quarantined, [a82f344d0e7d7db941185b5a897ae818], PUP.Optional.ChromePatcher.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\oaobejgaaiojgggjojlcpbembaoajbmc, Quarantined, [c41384fd24677db9cbde2aba3bc846ba], PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Dealz1.0.1.7, Quarantined, [b720eb96f59645f18cef5164768d58a8], PUP.Optional.Dealz, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\DEALZ, Quarantined, [41963b46deadf83e8eeaf2c3ab58ad53], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\bghejdcdajlenjngcknlkkoakmmjfanb, Quarantined, [0ec9b3cee5a614222b6d8e56b152a060], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\eeafbffkmccheohnooflcnppngmobeoe, Quarantined, [a4335f221c6f989e009991534db6d62a], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ellbonkjdmgdghkojcjmomekmjpdffde, Quarantined, [ffd8f78aeaa182b4b0eab82c39caa060], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\fllgpcmelbfhcligbphaaplminjpbiad, Quarantined, [7562abd6474457df1586cb1906fde11f], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\hpjocjloojeicikiokfiekcdpojgfefc, Quarantined, [01d6fd84127902341f7d0bd99b68e31d], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\jmnkgjdfgnjhmnopgmkcpigenfhgajdj, Quarantined, [578091f0107b1b1bcfce8a5a53b0bb45], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\kfbhfniohjdklgcmbmemnpaimpdaikea, Quarantined, [587f6120bad1a492fca28b59649fd12f], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\manaobgbdfpjjjnheogfghmjbikhjnlf, Quarantined, [8651443d4645a591b0ef786c6f94b848], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\oaobejgaaiojgggjojlcpbembaoajbmc, Quarantined, [c80f255c64272610148c558fad569d63], PUP.Optional.Dealz, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Dealz1.0.1.7, Quarantined, [aa2dfb86513a71c5b3c643727c87cd33], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bghejdcdajlenjngcknlkkoakmmjfanb, Quarantined, [09cee0a1d6b562d4bade1ec6f40f28d8], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\eeafbffkmccheohnooflcnppngmobeoe, Quarantined, [f7e0c0c17b10270fbddc994b0af92bd5], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\ellbonkjdmgdghkojcjmomekmjpdffde, Quarantined, [e4f3136ec2c97eb8eeac7b6948bbae52], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fllgpcmelbfhcligbphaaplminjpbiad, Quarantined, [eee94041e5a61422f7a4865e976cae52], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hpjocjloojeicikiokfiekcdpojgfefc, Quarantined, [c215651c642767cfd5c771735ca7c838], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\jmnkgjdfgnjhmnopgmkcpigenfhgajdj, Quarantined, [24b3c5bcf29938fec6d713d1ea19fe02], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kfbhfniohjdklgcmbmemnpaimpdaikea, Quarantined, [cc0b621ff6955ed8811dcc1802010bf5], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\manaobgbdfpjjjnheogfghmjbikhjnlf, Quarantined, [02d56d14dbb068ce66396c78c53eec14], PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\oaobejgaaiojgggjojlcpbembaoajbmc, Quarantined, [72658cf596f588ae0f915b8922e1c23e], Registry Values: 2 PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\DEALZ|Partner, Quarantined, [a136ef92b0db8fa7e892fabbed16f30d], PUP.Optional.Dealz, HKU\S-1-5-21-4053647124-3796825272-3454316862-1001\SOFTWARE\DEALZ|Partner, Quarantined, [41963b46deadf83e8eeaf2c3ab58ad53], Registry Data: 0 (No malicious items detected) Folders: 1 PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], Files: 13 Trojan.Injector, C:\Windows\wnavga.exe, Delete-on-Reboot, [c0174e334d3e7db98109315423e18e72], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\cygavb.exe, Quarantined, [9d3aed94c4c7c6702a25ebfebe457b85], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\initcvtr.bat, Quarantined, [fadd225fb4d7de5898b8e9008b7812ee], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\URL Killfile.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\AllowCookies.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Bypass List.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Keyword list.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Kill Images.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\MIME Fix List.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\URL Alias List.txt, Quarantined, [0fc80e73503b8fa773de4c9d24df48b8], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\mstdcvtr.bat, Quarantined, [894e9ee3404b73c3450d81680af9f709], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\plofgye, Quarantined, [dff8afd28a0168ce4e050fda7b8805fb], PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\soxe, Quarantined, [ca0db4cdb5d6999d2133608954aff907], Physical Sectors: 0 (No malicious items detected) (end) [/QUOTE]
Insert quotes…
Verification
Post reply
Top
