query323
Members-
Posts
17 -
Joined
-
Last visited
Reputation
0 Neutral-
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
So far nothing has come back, will still keep an eye on it. -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
Just ran a Hyperscan with MalwareBytes and it found the binkiland stuff. Attached the scan log. I didn`t take any action on it until I hear from you just incase. scanlog.txt -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
I just did a windows update and after restarting the PC, I see it's back again. -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
Ok will do, thank you very much so far I really appreciate it! -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
Seems to be working fine so far. I noticed when I load firefox, it goes to the mozilla firefox google search page first then redirects to whatever page I had before it. Before we ran the fix sometimes firefox would crash and I'd restart firefox and bikiniland didn't get detected and sometimes it did. Should we give it some time or? -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
Hi, before I ran the tool I did see malwarebytes blocking it again when I ran firefox a couple times. Now I just ran the FRST and attached Fixlog.txt . Thanks. Fixlog.txt -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
Hi TwinHeadedEagle, I've attached the FRST scan logs. Addition.txt FRST.txt -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
Hi again, I just noticed in Firefox that the homepage was set to "http://binkiland.com........etc"so malwarebytes always blocked it when I open firefox. I just removed it, also I previously uninstalled it from add remove and ran ccleaner registry cleaner before posting this thread. Do you think if I run malwarebytes and the scan is clean, and I don't get that message anymore. I'm clean and good to go? Can save us both time and hassle. -
Binkiland.com is blocked each time I turn on firefox
query323 replied to query323's topic in Resolved Malware Removal Logs
Hi, sorry for the delay. I have a lot of work tabs open, I mean a lot that I need and I just don't know how to back it up incase it all goes away through the process. Any idea how I can backup all my tabs open? I have them in firefox groups. -
Trojan.Agent.ED detected in Metatrader4 executable file
query323 replied to Effluvium's topic in File Detections
Thanks for the confirmation. -
Trojan.Agent.ED detected in Metatrader4 executable file
query323 replied to Effluvium's topic in File Detections
How has this been confirmed as a false positive and not a real virus? Thanks. -
Yes, I guess we are done?
-
Yes I have and it works. Do you know what this malware is even? I have the log of the scan when it detected it. If you don't mind I'll post it below. Malwarebytes' Anti-Malware 1.51.2.1300 www.malwarebytes.org Database version: 911122404 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 12/24/2011 4:03:24 PM mbam-log-2011-12-24 (16-03-24).txt Scan type: Full scan (C:\|D:\|E:\|F:\|) Objects scanned: 340951 Time elapsed: 54 minute(s), 56 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 15 Registry Values Infected: 4 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CLASSES_ROOT\CLSID\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\TypeLib\{BB7256DD-EBA9-480B-8441-A00388C2BEC3} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncherBHO.1 (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncherBHO (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncher.1 (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncher (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully. Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: c:\program files\vshare.tv plugin\BarLcher.dll (PUP.VShareRedir) -> Quarantined and deleted successfully.
-
My computer has been working fine, I just noticed one or two passwords not working correctly for some other logins (about two). This is why I want to be sure I'm clean and nothing is hiding or not being picked up. Malwarebytes Anti-Malware (PRO) 1.60.0.1800 www.malwarebytes.org Database version: v2011.12.30.02 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Main :: HOME [administrator] Protection: Enabled 12/30/2011 10:26:51 AM mbam-log-2011-12-30 (10-26-51).txt Scan type: Full scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 341184 Time elapsed: 1 hour(s), 35 minute(s), 11 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)