Jump to content
amst3l

Unremovable malware

Recommended Posts

Hello all,

I have recently found out that i have a malware infection, it is the same type over and over. I also have the idea more infected files are being found each day. These 3 types of malware are found:

https://blog.malwarebytes.com/detections/adware-elex/

https://blog.malwarebytes.com/detections/pup-optional-conduit/

https://blog.malwarebytes.com/detections/pup-optional/

 

The malware is always found in an appdata folder of Chrome

/appdata/local/google/chrome/user data/default/sync data

/appdata/local/google/chrome/user data/default/sync data/leveldb

/appdata/local/google/chrome/user data/default/web data

/appdata/local/google/chrome/user data/default/secure preferences

etc

 

When i get the prompt to reboot to remove the malware, it either doesn't get removed or on one occasion i get a blue screen. So any help to remove this infection would be highly appreciated. 

Share this post


Link to post
Share on other sites

Hello, Welcome to Malwarebytes.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

If the problem persists and Chrome is Synced with other Devices reset it.

https://forums.malwarebytes.com/topic/214325-chrome-secure-preferences-detection-always-comes-back/
https://support.google.com/chrome/answer/185277

Execute the suggested fix.

Restart the computer normally.
===========

Download the Farbar Recovery Scan Tool (FRST).
Choose the 32 or 64 bit version for your system.
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

How to attach a file:
In the Reply section in the bottom of the topic Select Click the Choose a File.
Navigate to the location of the File.
Click the file. It will appear in section.
Click the Saving button.

Attach the logs for my review.

Wait for further instructions
====

Share this post


Link to post
Share on other sites

Hi,

Your logs are clean of malware.

Please confirm that you have reset the Sync on Chrome and have restarted the computer normally.

Please run the Malwarebytes and post a fresh the log for my review.

While MBAM is running and still on click the View Report button, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop..

 

 

 

Share this post


Link to post
Share on other sites

Sync is still disabled and have restarted the computer. After the automatic scan i exported the log. Please see the attachment.

mbamlog.txt

Share this post


Link to post
Share on other sites

Small update, in the log i can see i have 0 threats and 0 threats in quarantine. However, when i open mbam i see i have 150 files in quarantine: ITV7M54.png

 

CYtf6OE.png

Share this post


Link to post
Share on other sites

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.