Jump to content

All Activity

This stream auto-updates     

  1. Past hour
  2. I thought I won an argument with my wife about how to rearrange our furniture, but when I got home, the tables were turned In Jamaica, a slice of pie costs $3.50. In the Bahamas, a slice of pie costs $6.35. These are the pie rates of the Caribbean. It’s a five minute walk from my house to the pub. It’s a thirty five minute walk from the pub to my house. The difference is staggering. My wife crashed the car again today. She told the police the man she hit with was on his phone and drinking a beer. The police said the man can do whatever he wants in his own living room. My wife said she would rather commit suicide than have dementia. She would never want to place that burden on me. I said, honey that’s the tenth time you’ve said that. Genie: What is your final wish? Me: I wish I were you! Genue: Weurd but alrught. Can you believe my neighbor rang my doorbell at 5 am? Luckily I was already up, playing drums. Chemistry teacher: Did you know protons have mass? Student: I didn’t even know protons were Catholic. My grandpa always said, “When one door closes, another opens.” He was a good man, but a lousy cabinet maker. A friend of mine had to go to the hospital today because he ate an entire pizza. My Pizza.
  3. Due to the lack of feedback, this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread. Thanks
  4. Due to the lack of feedback, this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request. This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread. Thanks
  5. Hello @Arma Sorry for the delay. I looks like your topic was overlooked. If you still need help please try the following fix. It may not be able to fix it but it should come back and tell us in the logs. Please download the attached fixlist.txt file and save it to the Desktop. NOTE. It's important that both files, FRST or FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on this particular machine. Running this on another machine may cause damage to your operating system. Run FRST or FRST64 and press the Fix button just once and wait. If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart. The tool will make a log on the Desktop (Fixlog.txt). Please attach or post it to your next reply. Note: If the tool warned you about an outdated version please download and run the updated version. fixlist.txt Thanks Ron
  6. Hello @pragma Please run the following to clean up Google Chrome Once that has completed then restart the computer and go through these 3 steps again in the order provided. Please run the following steps and post back the logs as an attachment when ready. After you've reset Google Chrome above. STEP 01 If you're already running Malwarebytes then open Malwarebytes and check for updates. Then click on the Scan tab and select Threat Scan and click on Start Scan button. If you don't have Malwarebytes installed yet please download it from here and install it. Once installed then open Malwarebytes and select Scan and let it run. Once the scan is completed click on the View Report button, then the Export button and save the file as a Text file to your desktop or other location you can find and attach that log on your next reply. If Malwarebytes won't run then please skip to the next step and let me know in your next reply. STEP 02 Please download AdwCleaner by Malwarebytes and save the file to your Desktop. Right-click on the program and select Run as Administrator to start the tool. Accept the Terms of use. Wait until the database is updated. Click Scan Now. When finished, please click Clean & Repair. Your PC should reboot now if any items were found. After reboot, a log file will be opened. Attach or Copy its content into your next reply. RESTART THE COMPUTER Before running Step 3 STEP 03 Please download the Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens, click Yes to disclaimer. Press the Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). If you've, run the tool before you need to place a checkmark here. Please attach the Additions.txt log to your reply as well. Thanks Ron
  7. Hello @Hef92 If you've scanned with those tools then it's unlikely that there is anything on the system. We can do some other scans though and see if we can find anything Please run the following steps and post back the logs as an attachment when ready. STEP 01 If you're already running Malwarebytes then open Malwarebytes and check for updates. Then click on the Scan tab and select Threat Scan and click on Start Scan button. If you don't have Malwarebytes installed yet please download it from here and install it. Once installed then open Malwarebytes and select Scan and let it run. Once the scan is completed click on the View Report button, then the Export button and save the file as a Text file to your desktop or other location you can find and attach that log on your next reply. If Malwarebytes won't run then please skip to the next step and let me know in your next reply. STEP 02 Please download AdwCleaner by Malwarebytes and save the file to your Desktop. Right-click on the program and select Run as Administrator to start the tool. Accept the Terms of use. Wait until the database is updated. Click Scan Now. When finished, please click Clean & Repair. Your PC should reboot now if any items were found. After reboot, a log file will be opened. Attach or Copy its content into your next reply. RESTART THE COMPUTER Before running Step 3 STEP 03 Please download the Farbar Recovery Scan Tool and save it to your desktop. Note: You need to run the version compatible with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit Double-click to run it. When the tool opens, click Yes to disclaimer. Press the Scan button. It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply. The first time the tool is run, it also makes another log (Addition.txt). If you've, run the tool before you need to place a checkmark here. Please attach the Additions.txt log to your reply as well. Thanks Ron
  8. What is your current DNS set to? Can you temporarily reset it to 8.8.8.8 and retest. I'm wondering if some type of telemetry is having trouble with the Cloud portion of heuristics
  9. What is Quick Audio Converter?The Malwarebytes research team has determined that Quick Audio Converter is a browser NewTab. These so-called "NewTabs" can manipulate your browser(s), for example to change your startpage or searchscopes, so that the affected browser visits their site or one of their choice.This particular one is a newtab and search hijacker and uses web push notifications.How do I know if my computer is affected by Quick Audio Converter?You may see this Chrome extension:these warnings during install:You may see this new startpage:this entry in your list of installed Programs and Features:and these new settings:How did Quick Audio Converter get on my computer?Browser hijackers use different methods for distributing themselves. This particular one was downloaded from their website.How do I remove Quick Audio Converter?Our program Malwarebytes can detect and remove this potentially unwanted program.You can use their own uninstall instructions first, but I would advise to follow the steps below anyway. Please download Malwarebytes for Windows to your desktop. Double-click MBSetup.exe and follow the prompts to install the program. When your Malwarebytes for Windows installation completes, the program opens to the Welcome to Malwarebytes screen. Click on the Get started button. Click Scan to start a Threat Scan. When the scan is finished click Quarantine to remove the found threats. Reboot the system if prompted to complete the removal process. Is there anything else I need to do to get rid of Quick Audio Converter? No, Malwarebytes' Anti-Malware removes Quick Audio Converter completely. If you have allowed the notifications you can read here how to disable them. How would the full version of Malwarebytes help protect me?We hope our application and this guide have helped you eradicate this hijacker.As you can see below the full version of Malwarebytes would have protected you against the Quick Audio Converter hijacker. It would have warned you before the application could install itself, giving you a chance to stop it before it became too late. and it blocks traffic to their domain: Technical details for expertsPossible signs in FRST logs: HKCU\...\Run: [IEXPLORE] => C:\Program Files\Internet Explorer\IEXPLORE.EXE hxxp://search.quickaudioconvertertab.com/?i_id=audioconverter_spt__1.30&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&source=_v2-bb9-iei-msn (the data entry has 3 more characters). <==== ATTENTION HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.quickaudioconvertertab.com/?i_id=audioconverter_spt__1.30&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&source=_v2-bb9-iei-msn SearchScopes: HKCU -> DefaultScope {20126AD1-6B9B-41E9-A3D8-B92F31CCBC31} URL = hxxp://search.quickaudioconvertertab.com/s?i_id=audioconverter_spt__1.30&source=_v2-bb9-iei&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&query={searchTerms} SearchScopes: HKCU -> {20126AD1-6B9B-41E9-A3D8-B92F31CCBC31} URL = hxxp://search.quickaudioconvertertab.com/s?i_id=audioconverter_spt__1.30&source=_v2-bb9-iei&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&query={searchTerms} CHR NewTab: Default -> Active:"chrome-extension://dhefhiblkacpepnjcdbncinodjgjapkk/index.html" CHR Extension: (Quick Audio Converter) - C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk [2019-11-19] C:\Users\{username}\AppData\Roaming\{28e56cfb-e30e-4f66-85d8-339885b726b8} Quick Audio Converter (HKCU\...\{28e56cfb-e30e-4f66-85d8-339885b726b8}) (Version: 5.4.0.2 - SpringTech (Cayman) Ltd.) Alterations made by the installer: File system details [View: All details] (Selection) --------------------------------------------------- Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0 Adds the file about.html"="9/26/2019 4:26 PM, 6806 bytes, A Adds the file icon.png"="11/19/2019 9:19 AM, 10358 bytes, A Adds the file index.html"="9/26/2019 4:26 PM, 625 bytes, A Adds the file main.js"="9/26/2019 4:26 PM, 8060 bytes, A Adds the file main.js.map"="9/26/2019 4:26 PM, 4605 bytes, A Adds the file manifest.json"="11/19/2019 9:19 AM, 1378 bytes, A Adds the file polyfills.js"="9/26/2019 4:26 PM, 276518 bytes, A Adds the file polyfills.js.map"="9/26/2019 4:26 PM, 271850 bytes, A Adds the file polyfills-es5.js"="9/26/2019 4:26 PM, 401061 bytes, A Adds the file polyfills-es5.js.map"="9/26/2019 4:26 PM, 299080 bytes, A Adds the file popup.html"="9/26/2019 4:26 PM, 573 bytes, A Adds the file runtime.js"="9/26/2019 4:26 PM, 6233 bytes, A Adds the file runtime.js.map"="9/26/2019 4:26 PM, 6206 bytes, A Adds the file styles.css"="9/26/2019 4:26 PM, 249 bytes, A Adds the file styles.js"="9/26/2019 4:26 PM, 17351 bytes, A Adds the file styles.js.map"="9/26/2019 4:26 PM, 20279 bytes, A Adds the file vendor.js"="9/26/2019 4:26 PM, 3734558 bytes, A Adds the file vendor.js.map"="9/26/2019 4:26 PM, 3886759 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\_metadata Adds the file computed_hashes.json"="11/19/2019 9:19 AM, 104353 bytes, A Adds the file verified_contents.json"="9/26/2019 4:26 PM, 3380 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\app Adds the file background.js"="9/26/2019 4:26 PM, 12471 bytes, A Adds the file index.js"="9/26/2019 4:26 PM, 5575 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_quickaudioconvertertab.com_0.indexeddb.leveldb Adds the file 000003.log"="11/19/2019 9:20 AM, 1047 bytes, A Adds the file CURRENT"="11/19/2019 9:19 AM, 16 bytes, A Adds the file LOCK"="11/19/2019 9:19 AM, 0 bytes, A Adds the file LOG"="11/19/2019 9:20 AM, 190 bytes, A Adds the file MANIFEST-000001"="11/19/2019 9:19 AM, 23 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dhefhiblkacpepnjcdbncinodjgjapkk Adds the file 000003.log"="11/19/2019 9:20 AM, 67 bytes, A Adds the file CURRENT"="11/19/2019 9:19 AM, 16 bytes, A Adds the file LOCK"="11/19/2019 9:19 AM, 0 bytes, A Adds the file LOG"="11/19/2019 9:20 AM, 184 bytes, A Adds the file MANIFEST-000001"="11/19/2019 9:19 AM, 41 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\{28e56cfb-e30e-4f66-85d8-339885b726b8} Adds the file Uninstall.exe"="11/19/2019 9:15 AM, 347416 bytes, A In the existing folder C:\Users\{username}\Downloads Adds the file QuickAudioConverter-27273412.exe"="11/19/2019 9:15 AM, 1117464 bytes, A Registry details [View: All details] (Selection) ------------------------------------------------ [HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings] "dhefhiblkacpepnjcdbncinodjgjapkk"="REG_SZ", "7BE027341D4A35EECDB258C8E18102CFA2C2B0A708BF55FE07690A15332A996B" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page" ==> REG_SZ, "http://search.quickaudioconvertertab.com/?i_id=audioconverter_spt__1.30&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&source=_v2-bb9-iei-msn" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes] "DefaultScope" ==> REG_SZ, "{20126AD1-6B9B-41E9-A3D8-B92F31CCBC31}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{20126AD1-6B9B-41E9-A3D8-B92F31CCBC31}] "DisplayName"="REG_SZ", "Quick Audio Converter - Powered by Yahoo!" "SuggestionsURL"="REG_SZ", "https://ie.search.yahoo.com/os?appid=ie8&command={searchTerms}" "URL"="REG_SZ", "http://search.quickaudioconvertertab.com/s?i_id=audioconverter_spt__1.30&source=_v2-bb9-iei&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&query={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "IEXPLORE"="REG_SZ", "C:\Program Files\Internet Explorer\IEXPLORE.EXE http://search.quickaudioconvertertab.com/?i_id=audioconverter_spt__1.30&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&source=_v2-bb9-iei-msn-su" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\{28e56cfb-e30e-4f66-85d8-339885b726b8}] "DisplayName"="REG_SZ", "Quick Audio Converter" "DisplayVersion"="REG_SZ", "5.4.0.2" "InstallLocation"="REG_SZ", "C:\Users\{username}\AppData\Roaming\{28e56cfb-e30e-4f66-85d8-339885b726b8}\" "Publisher"="REG_SZ", "SpringTech (Cayman) Ltd." "UninstallDialog"="REG_DWORD", 2 "UninstallEngineID"="REG_SZ", "{20126AD1-6B9B-41E9-A3D8-B92F31CCBC31}" "UninstallHomepage"="REG_SZ", "http://search.quickaudioconvertertab.com/?i_id=audioconverter_spt__1.30&uid=054012ce-cd8e-4406-96da-9159c3da02a9&uc=20191119&ap=0&source=_v2-bb9-iei-msn" "UninstallImpression"="REG_SZ", "http://www.typeyoursearch.com/impression.do?domain=quickaudioconvertertab.com&implementation_id=audioconverter_spt__1.30&offer_id=_iei_&source=_v2-bb9-iei&sub_id=20191119&traffic_source=0&user_id=054012ce-cd8e-4406-96da-9159c3da02a9&useragent=Mozilla%2F5.0+(Windows+NT+6.1%3B+WOW64%3B+Trident%2F7.0%3B+rv%3A11.0)+like+Gecko&ts=1574151299&sgn=907100ef78bf95073d45546b162f5a833901fdc0&subid2=11.0.9600.19540&event={exEvent}" "UninstallString"="REG_SZ", ""C:\Users\{username}\AppData\Roaming\{28e56cfb-e30e-4f66-85d8-339885b726b8}\Uninstall.exe" /uninstall" Malwarebytes log: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 11/19/19 Scan Time: 9:32 AM Log File: 294d1220-0aa7-11ea-94ae-00ffdcc6fdfc.json -Software Information- Version: 4.0.4.49 Components Version: 1.0.718 Update Package Version: 1.0.15128 License: Premium -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: {computername}\{username} -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 233776 Threats Detected: 42 Threats Quarantined: 42 Time Elapsed: 3 min, 25 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 2 PUP.Optional.Spigot, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{28e56cfb-e30e-4f66-85d8-339885b726b8}, Quarantined, 157, 373879, 1.0.15128, , ame, PUP.Optional.Spigot.Generic, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{20126AD1-6B9B-41E9-A3D8-B92F31CCBC31}, Quarantined, 207, 368913, 1.0.15128, , ame, Registry Value: 2 PUP.Optional.Spigot.Generic, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{20126AD1-6B9B-41E9-A3D8-B92F31CCBC31}|URL, Quarantined, 207, 368913, 1.0.15128, , ame, PUP.Optional.Spigot.Generic, HKCU\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|dhefhiblkacpepnjcdbncinodjgjapkk, Quarantined, 207, 757812, , , , Registry Data: 1 PUP.Optional.Spigot.Generic, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Replaced, 207, 662623, 1.0.15128, , ame, Data Stream: 0 (No malicious items detected) Folder: 6 PUP.Optional.Spigot, C:\USERS\{username}\APPDATA\ROAMING\{28E56CFB-E30E-4F66-85D8-339885B726B8}, Quarantined, 157, 373878, 1.0.15128, , ame, PUP.Optional.Spigot.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Extension Settings\dhefhiblkacpepnjcdbncinodjgjapkk, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\_metadata, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\app, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\DHEFHIBLKACPEPNJCDBNCINODJGJAPKK\1.1_0, Quarantined, 207, 757812, 1.0.15128, , ame, File: 31 PUP.Optional.Spigot, C:\Users\{username}\AppData\Roaming\{28e56cfb-e30e-4f66-85d8-339885b726b8}\Uninstall.exe, Quarantined, 157, 373878, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dhefhiblkacpepnjcdbncinodjgjapkk\000003.log, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dhefhiblkacpepnjcdbncinodjgjapkk\CURRENT, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dhefhiblkacpepnjcdbncinodjgjapkk\LOCK, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dhefhiblkacpepnjcdbncinodjgjapkk\LOG, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dhefhiblkacpepnjcdbncinodjgjapkk\MANIFEST-000001, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Replaced, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\DHEFHIBLKACPEPNJCDBNCINODJGJAPKK\1.1_0\APP\BACKGROUND.JS, Quarantined, 207, 757812, 1.0.15128, , ame, PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\app\index.js, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\_metadata\computed_hashes.json, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\_metadata\verified_contents.json, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\about.html, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\icon.png, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\index.html, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\main.js, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\main.js.map, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\manifest.json, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\polyfills-es5.js, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\polyfills-es5.js.map, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\polyfills.js, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\polyfills.js.map, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\popup.html, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\runtime.js, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\runtime.js.map, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\styles.css, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\styles.js, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\styles.js.map, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\vendor.js, Quarantined, 207, 757812, , , , PUP.Optional.Spigot.Generic, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhefhiblkacpepnjcdbncinodjgjapkk\1.1_0\vendor.js.map, Quarantined, 207, 757812, , , , PUP.Optional.Spigot, C:\USERS\{username}\DOWNLOADS\QUICKAUDIOCONVERTER-27273412.EXE, Quarantined, 157, 756784, 1.0.15128, D7795909B8C4DB37C7A293AB, dds, 00464144 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) As mentioned before the full version of Malwarebytes could have protected your computer against this threat.We use different ways of protecting your computer(s): Dynamically Blocks Malware Sites & Servers Malware Execution Prevention Save yourself the hassle and get protected.
  10. I still have the same two problems from the start. the analyzes begin but do not end. When they reach the section of analyzing the Windows registry, it suddenly jumps to analyze files at a large amount, it advances a little more and then stops. It is as if analyzing the registry ignores it and there it seems the error. And I keep the anti-malware protection disabled because if not the computer slows down
  11. This will be reviewed and a decision given shortly.
  12. Let me have you run the following please @JFLOCK Post back the log and we'll go on from there. Thanks Ron
  13. That's good news then. Finding, detecting a bad, bogus DNS server can be difficult to track down as you don't see it too often and thus look for malware that may be redirecting. The fix log looks good. I was able to correct some issues including fixing some core operating system files. "Windows Resource Protection found corrupt files and successfully repaired them." How is the computer running now? Are there still any issues?
  14. Today
  15. Hello. My own website has been blocked due to Trojan. I've run multiple scans and wasn't able to find any. Can you help me on removing it from the blacklist? https://woimortal.com
  16. I tried what @velvet did and changed my DNS to google's and the problem is gone now.
  17. Thanks for saying that, I tried what you did and changed my DNS to google and the problem is gone now.
  18. Kaspersky Total Security 2018 - 19.0.0.1088 (i) works perfectly fine with Malwarebytes 3.83 (Premium) Now here's a problem... I would have to look at the versions of Kaspersky and Malwarebytes on my other computer because those two are not getting along at all. That one has the regular Kaspersky antivirus on it and it's the latest version. To fix that issue I did have to disable the ransomware protection in Malwarebytes. I had Bitdefender installed on another computer 2 years ago and it dragged the computer down more than Kaspersky has. I have a unused full year Bitdefender code that I'm not using. While Bitdefender gets a high rating like Kaspersky does I just didn't like it and I have played with it off and on over the years. I keep going back to Kaspersky. I did like Avira at one time, but when they changed things I got away from it. I've been using Kaspersky since 1996 when it was "AVP" (Antiviral Toolkit Pro) ever since the Win CIH aka Chernobyl virus hit.
  19. Hi Matt, any thoughts? Thanks
  20. When you say nothing. The application does not install? The application will not open? The application will not complete a search for updates? The application will not start a scan? The application will not complete a scan? Something else? Thanks
  21. By the way, I thought I'd mention that I only ever changed the owner on the WindowsApps folder, and not any permissions, as you keep implying! Regards.
  22. The Windows Repair All-In-One tool you suggest to use from bleepingcomputers.com is a very technical application, do you not think it would be ill advised to use a tool as complicated as this, just to change the ownership on just "one single" Windows folder?? (WindowsApps folder), I already know how to change the ownership of the WindowsApps folder back to "System", and have done already! I think that to use the Windows Repair All-In-One tool, just to change the WindowsApps folder's ownership back to default (System), just to get Malwarebytes to respond properly when I add a app (.exe) to Play Mode, is maybe a bit on the extreme side, and may do more harm than good!? Again, it's a very technical program, not designed for novices.
  23. Have had same issue, sometimes a program wont start, and if so, trying another ends up same, won't start, like PC comes to a crawl, have to wait awhile. When finally able to open task manager I do see multiple instances of MBAMWsc running with this issue. This has happened on more than one occasion since updating to 4.x, never had the issue before then.
  24. The block will be removed on the next update
  25. But that’s not in dispute. The issue is with the redirect. A trusted site should not be doing things like that and probably should be blocked for that behavior, regardless of whether it also allows the download of a genuine YouTube video.
  26. ***This is an automated reply*** Hi, Thanks for posting in the Malwarebytes for Windows Help forum. If you are having technical issues with our Windows product, please do the following: If you are having licensing issues, please do the following: Thanks in advance for your patience. -The Malwarebytes Forum Team
  1. Load more activity
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.