gstrelzoff
-
Posts
4 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by gstrelzoff
-
-
Its back...
Malwarebytes
www.malwarebytes.com-Log Details-
Scan Date: 10/30/20
Scan Time: 3:32 AM
Log File: 2a7f8bb4-1a9b-11eb-b2e6-4ccc6a925b0f.json-Software Information-
Version: 4.2.1.89
Components Version: 1.0.1070
Update Package Version: 1.0.32240
License: Premium-System Information-
OS: Windows 10 (Build 19041.508)
CPU: x64
File System: NTFS
User: System-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 355078
Threats Detected: 15
Threats Quarantined: 15
Time Elapsed: 4 min, 22 sec-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect-Scan Details-
Process: 0
(No malicious items detected)Module: 0
(No malicious items detected)Registry Key: 0
(No malicious items detected)Registry Value: 0
(No malicious items detected)Registry Data: 0
(No malicious items detected)Data Stream: 0
(No malicious items detected)Folder: 3
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Quarantined, 337, 455240, , , , , ,
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Quarantined, 337, 455240, , , , , ,
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, Quarantined, 337, 455240, , , , , ,File: 12
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, Quarantined, 337, 455240, , , , , B3701F02C1E864BDE74D3D8C9D69B5EA, 643ACFF7CD7AE9268C2C2D4B96A3EDCACB17F11CDCA1DAA052D06F1793D3008E
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000656.ldb, Quarantined, 337, 455240, , , , , 9A50EBA67603A62B1F2DD7A410FCF622, A5B0BC69C2B409001AC1108E440FC930FDB8D3361EAEFC4A0CBCCABEEB003F21
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000657.log, Quarantined, 337, 455240, , , , , E26CE9A978F25EE52BFD3FB763EF132A, AB6F824516562FC2D09E7F2DA8629C1E222A969A981CFCFCFDF6E6D94633F336
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000658.ldb, Quarantined, 337, 455240, , , , , 0E003A690AC12E0AB0462059E469EE25, 0AD0FFA72BDAD0F670A771B1E41A319D62BF33454E2C04F4979460E9F47EED7D
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, Quarantined, 337, 455240, , , , , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, Quarantined, 337, 455240, , , , , ,
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, Quarantined, 337, 455240, , , , , 6DE70098D313D3D4DBA59CEB5F143EB6, A89B9FE4F61F7EA00A67ECF0207D306CBFC0F2CE73C88FAAF8209F9CE414ED37
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, Quarantined, 337, 455240, , , , , B7A5B10D535B6088E95DA05F95EBA96D, D377752F1959D89717832FF9A55DBD5D3F3E794D9A189FE4461CB11D8FB523A2
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, Quarantined, 337, 455240, , , , , BEFAAB7DED82515AFC719E8E0DA9621A, 58F94F2001DA9F95053D9DCC8FAB6C6768E21D1864ED66EFED65FF4654CD281B
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, 337, 455240, 1.0.32240, , ame, , 603C834F1BECE24890D33AAA694E5A96, F6C96266B0FD769E9853F5AE0B7D53F412D71B93259DB687CAA413C6C2D447F9
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, 337, 455240, 1.0.32240, , ame, , 603C834F1BECE24890D33AAA694E5A96, F6C96266B0FD769E9853F5AE0B7D53F412D71B93259DB687CAA413C6C2D447F9
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, 337, 455240, 1.0.32240, , ame, , 603C834F1BECE24890D33AAA694E5A96, F6C96266B0FD769E9853F5AE0B7D53F412D71B93259DB687CAA413C6C2D447F9Physical Sector: 0
(No malicious items detected)WMI: 0
(No malicious items detected)
(end) -
so far so good.
-
Hello,
I have MWB and adware removal tools but neither can remove this PUP, see log below.
I have run and cleaned this many times via both tools and it just keeps coming back.
Malwarebytes
www.malwarebytes.com-Log Details-
Scan Date: 10/9/20
Scan Time: 3:32 AM
Log File: afd15dec-0a1a-11eb-a20f-4ccc6a925b0f.json-Software Information-
Version: 4.2.1.89
Components Version: 1.0.1061
Update Package Version: 1.0.31036
License: Premium-System Information-
OS: Windows 10 (Build 19041.508)
CPU: x64
File System: NTFS
User: System-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 353193
Threats Detected: 15
Threats Quarantined: 0
Time Elapsed: 4 min, 7 sec-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect-Scan Details-
Process: 0
(No malicious items detected)Module: 0
(No malicious items detected)Registry Key: 0
(No malicious items detected)Registry Value: 0
(No malicious items detected)Registry Data: 0
(No malicious items detected)Data Stream: 0
(No malicious items detected)Folder: 3
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, No Action By User, 337, 455240, , , , , ,
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, No Action By User, 337, 455240, , , , , ,
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, No Action By User, 337, 455240, , , , , ,File: 12
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, No Action By User, 337, 455240, , , , , 443E73C5D20AACFB094160DC42EEE70F, 33A35060559ADF50E49E045DFC6E6C22BD4E93D4CC080B19B361F43A0AB4D9F5
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000043.ldb, No Action By User, 337, 455240, , , , , B227D958BD726A4497332CC4D67B168B, 88CF44229E56638236F9B13C92DFD5DCFAA95D6EB7FF65498D0DE4F00AE8323D
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000045.ldb, No Action By User, 337, 455240, , , , , 0100E2CD72452AE09FE6537B89F02A26, 86F3EA0D2949C98B0B078EBDF4151FBDCFB0A826865402303ECD8E6A1FC5FE8E
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000046.log, No Action By User, 337, 455240, , , , , C0484F624028A655FCE11222063B9906, CF4B4E9305AE8007C065A46B88ACE1D39F4EB16A2CC78171F8D9147F2305790C
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000047.ldb, No Action By User, 337, 455240, , , , , 7ABDE18535FB66DC47A079F2BEA0431F, BEBD42AC1CAD40105EE5298A2C074C555AD6E9992B78629D3529BFC4EC8C277C
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, No Action By User, 337, 455240, , , , , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, No Action By User, 337, 455240, , , , , ,
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, No Action By User, 337, 455240, , , , , A8CF2ECDF124AF55C3BB01F9BE6A1A12, 4FBBD37B2B579AA2DE90F80D44868F65787D1BAC9E55B9B07136B18DCE8D0C11
PUP.Optional.Funmoods, C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, No Action By User, 337, 455240, , , , , 2BF2E96A05BEECAECA559400F13AB80C, FC6247FFD5C7190D0EFF467CB4F851FDD4DFAD542CEE0BEA72DBEF626F2E51B8
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User, 337, 455240, 1.0.31036, , ame, , 21142E7568BB2A6DF8F77467322666EF, EB3BB5D51426D5EE86718765BFBE91474823346088BBB671435B64F84619D6CE
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User, 337, 455240, 1.0.31036, , ame, , 21142E7568BB2A6DF8F77467322666EF, EB3BB5D51426D5EE86718765BFBE91474823346088BBB671435B64F84619D6CE
PUP.Optional.Funmoods, C:\USERS\GREG\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User, 337, 455240, 1.0.31036, , ame, , 21142E7568BB2A6DF8F77467322666EF, EB3BB5D51426D5EE86718765BFBE91474823346088BBB671435B64F84619D6CEPhysical Sector: 0
(No malicious items detected)WMI: 0
(No malicious items detected)
(end)
I cannot remove this PUP
in Resolved Malware Removal Logs
Posted
looks good but it came back before - how do i stop it from coming back again?