fatfett

Thank you Maurice Naggar for your response and thank you for the online resources. Virus total does not come up with any indication of an infection. Virscan comes up with an infection of Trojan: JS/Medfos.B under Microsoft only and nothing else. While I am no expert, and while ChromeUpdateManager may be a legitimate extension, I feel it is not. Considering the only results for a search of "ChromeUpdateManager" comes up with threads about viruses and the logo of the extension appears very inconsistant compared to Google's other products, I believe this is something to be concerned about. And to give you a little background, I have been dealing with this for a few days now. I did not switch out Microsoft SE for Nod32 on a whim, I did it after considerable research and various basic procedures in dealing with viruses. In my research I came up with this thread: http://social.technet.microsoft.com/Forums/en-US/FCSNext/thread/c28665c4-8786-4549-9b51-3d513474b3e0, which is the exact same issue I have been having. It appears that some solutions have been to reinstall Java and to update the virus definitions. I do not have Java installed and I have updated virus definitions beyond the version stated in this thread and I still have the problem. So, in summary, a Google search gives me no indication that chromeupdate.crx and ChromeUpdateManager extension are legitimate. And, there IS an indication that they may be ILLEGITIMATE from the results of a Google search, Microsoft SE, and Virscan.org (however Microsoft is the only source that claims this is a trojan). I am not incredibly concerned with this, it is mostly annoying. But it makes me wonder how this file appeared out of no where, why the extension appeared out of no where and why it looks out of place (again neither the extension or the file are on other computers with Chrome installed), and why Microsoft seems to claim this as a trojan while no other AV does.

I am not exactly sure where to put this since it could be a legitimate infection or a false positive. Microsoft security essentials active protection has been flagging chromeupdate.crx as a variant of the Medfos.B trojan. When I scan that file with SE, MalwareBytes, and ESET, nothing comes up, only in SE active protection. I have done a full system scan using all three AV's listed above, nothing. I have since uninstalled Microsoft SE and installed a trial of Nod32. Nod32 active protection does not flag this file as an issue, nor does a system scan come up with anything. Here is a list of suspcious files: C:\Users\Chris\AppData\Local\Google\Chrome\Application\22.0.1229.79\Extensions\chromeupdate.crx *\cdjbnddbclciabnckgeahmneohjlahdm.json C:\Users\Chris\AppData\Local\chromeupdate.crx The .json file was never flagged, but its registry key points to chromeupdate.crx None of these files are on my other computers that have Chrome installed. Uninstalling and reinstalling Google Chrome does not change anything. No other symptoms of an infection other than the flagged file. Lastly, in the Google Chrome browser extensions list there is an extension that is called GoogleChromeUpdater that I am 99% certain is not legitimate. This last bit is what convinced me that this is not a false positive, but in fact an infection that is evading major AV programs. Attached is a screen shot of the Google Chrome Extensions. Any help is apprectiated. Thank you.