Jump to content
AnneFlavelle

Malware quarantined but returns

Recommended Posts

Hi,

 

My PC has been affected with a number of PUPs - Malwarebytes detects and quarantines them during a scan but they keep returning. I've read on the forum that your first port of call is generally to run FRST, so I've done that already and attached the log file generated.

 

Thanks in advance for your help.

 

Anne

Addition.txt FRST.txt

Share this post


Link to post
Share on other sites

Hello, Welcome to Malwarebytes.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Please download the attached Fixlist.txt file to  the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

If the problem persists please post the Malwarebytes's log for my review.

Please post the Fixlog.txt and let me know what problem persists.
 

fixlist.txt

Share this post


Link to post
Share on other sites

Could I also ask a question? I became aware of this issue because a number of emails purporting to be from me were received by clients of two of my companies that use the same accounting system (its called Xero).

Any ideas where the breach could be? It could be that hackers have gained access to my desktop, but I'd have thought that they'd be trying the same thing with other clients. We've heard that emails can be intercepted (say invoices going from Xero to the clients), but not sure if this is possible?

Lastly, do you think a complete wipe of the hard drive, including the MBR, is advisable? 

Thanks

Anne

Share this post


Link to post
Share on other sites

Please post the Malwarebytes' report for my review.

Would like to see what we are dealing with.

p.s.

Let me know if you are Syncing your browsers with other devices.

Name the browser(s)

 

Share this post


Link to post
Share on other sites

Hi,

Reset EDGE from Microsoft.

Reset, Repair or Reinstall Edge browser in Windows 10
http://www.thewindowsclub.com/reset-microsoft-edge-browser-to-default-settings-in-windows-10
<<<>>>

Microsoft Edge: How to Clear Browser History and Cache
http://acer--uk.custhelp.com/app/answers/detail/a_id/38047/~/microsoft-edge%3A-how-to-clear-browser-history-and-cache

Edge Syncing.
If the problem persists and you are Syncing Edge with other devices reset it.

https://www.tenforums.com/tutorials/36286-turn-off-sync-favorites-reading-list-microsoft-edge.html
===

As for the email problem this is an other issues than PUPs - Malwarebytes

You can check your paswords
https://haveibeenpwned.com/Passwords
I requited I would change my passwords for inportant communications.

Check if you have an account that has been compromised in a data breach
https://haveibeenpwned.com/
<<<>>>
.
How to Create a Strong Password (and Remember It)
https://www.howtogeek.com/195430/how-to-create-a-strong-password-and-remember-it/

Let me know what problem persists.

Share this post


Link to post
Share on other sites

Hi,

Execute these instructions if having problems with the browsers.

Reset Chrome

Open Google Chrome, click on menu icon google-chrome-setting-icon.png or the 3 vertical dots located right side top of the google chrome.
 
Click "Settings" then "Show advanced settings" at the bottom of the screen.
 
Click "Reset and clean up" > "Restore settings to their original defaults"
 
Restart Chrome.
<<<>>>

Chrome Secure Preferences detection always comes back.
If the problem persists in Chrome check this out.

https://forums.malwarebytes.com/topic/214325-chrome-secure-preferences-detection-always-comes-back/

Execute the suggested fix.
===========

INTERNET EXPLORER - Microsoft

Reset Internet Explorer:
Menu > Tools > Internet Options > Advanced Tab.
Click the Reset button on the bottom of the pane.
Click the Apply button.
Close IE.
===

If the problem persists in IE and you are using the Sync with other devices, disable the Sync.
https://www.thewindowsclub.com/sync-internet-explorer-settings-windows-8-1-devices

close IE.

Restart the computer and re-sync you devices if you need them.
<<<>>>

Hope this will help.

Share this post


Link to post
Share on other sites

Hi,

Remove and re-install Chrome

Your copy of Chrome may have been compromised

step1.gif Remove Chrome from your Computer and reinstall a fresh copy later.

step2.gifIf you remove the syncing of your account you must remove it before you save your bookmarks etc...
Delete Your Google Chrome Browser Sync Data if you sync with other devices. <- Important ...
https://forums.malwarebytes.com/topic/214325-chrome-secure-preferences-detection-always-comes-back/

step3.gif Before you remove Chrome Export your Bookmarks
Chrome will export your bookmarks as a HTML file, which you can then import into another browser.
How To: http://ccm.net/faq/31791-how-to-backup-your-google-chrome-bookmarks

step4.gif Before you remove Chrome Export your Passwords
How to export your saved passwords from Chrome
https://betanews.com/2018/03/09/export-chrome-passwords/

step5.gif Clear your Chrome cache and cookies
https://support.google.com/chromebook/answer/183083?hl=en

step6.gif Remove Chrome using the the instructions on this page.
https://support.google.com/chrome/answer/95319?hl=en

step7.gif Re-install Chrome and the Bookmarks.
<<<>>

Share this post


Link to post
Share on other sites

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.