Windows 10: Google chrome and firefox starting up with a virus website (fanli90)

Discus and support Google chrome and firefox starting up with a virus website (fanli90) in AntiVirus, Firewalls and System Security to solve the problem; cotton ball ive now used zemana and things seem fine, i will keep you posted, here is the log file: Zemana AntiMalware 2.70.179.576 (Installed)... Discussion in 'AntiVirus, Firewalls and System Security' started by rezarawat, Jan 20, 2017.

Page 2 of 2
  1. REZARAWAT
    rezarawat Win User

    Google chrome and firefox starting up with a virus website (fanli90)


    cotton ball ive now used zemana and things seem fine, i will keep you posted, here is the log file:



    Zemana AntiMalware 2.70.179.576 (Installed)


    -------------------------------------------------------
    Scan Result : Completed
    Scan Date : 2017/1/22
    Operating System : Windows 10 64-bit
    Processor : 4X Intel(R) Core(TM) i7-3537U CPU @ 2.00GHz
    BIOS Mode : UEFI
    CUID : 123A7140A7F57224AE4412
    Scan Type : System Scan
    Duration : 15m 39s
    Scanned Objects : 152958
    Detected Objects : 22
    Excluded Objects : 0
    Read Level : Normal
    Auto Upload : Enabled
    Detect All Extensions : Disabled
    Scan Documents : Disabled
    Domain Info : WORKGROUP,0,2


    Detected Objects
    -------------------------------------------------------


    Shell Execute Hooks
    Status : Scanned
    Object : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\EnableShellExecuteHooks
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Potentially Unwanted Modification
    Cleaning Action : Delete
    Related Objects :
    Registry Entry - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\EnableShellExecuteHooks = enabled


    Firefox Shortcut
    Status : Scanned
    Object : Funny collection
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Firefox Shortcut


    Firefox Shortcut
    Status : Scanned
    Object : Funny collection
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Firefox Shortcut


    Firefox Shortcut
    Status : Scanned
    Object : Funny collection
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Firefox Shortcut


    Chrome Shortcut
    Status : Scanned
    Object : Funny collection
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Chrome Shortcut


    Chrome Shortcut
    Status : Scanned
    Object : --load-extension="C:\Users\user\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk"
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Chrome Shortcut


    Chrome Shortcut
    Status : Scanned
    Object : Funny collection
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Chrome Shortcut


    Chrome Shortcut
    Status : Scanned
    Object : --load-extension="C:\Users\user\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk"
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Chrome Shortcut


    Chrome Shortcut
    Status : Scanned
    Object : --profile-directory=ChromeDefaultData
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Chrome Shortcut


    Chrome Shortcut
    Status : Scanned
    Object : Funny collection
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Chrome Shortcut


    Chrome Shortcut
    Status : Scanned
    Object : --load-extension="C:\Users\user\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk"
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Suspicious Browser Setting
    Cleaning Action : Repair
    Related Objects :
    Browser Setting - Chrome Shortcut


    Hosts File
    Status : Scanned
    Object : %systemroot%\system32\drivers\etc\hosts
    MD5 : 548F3A3D304552C73969EA1A0C635626
    Publisher : -
    Size : 3733
    Version : -
    Detection : Hosts Hijack
    Cleaning Action : Repair
    Related Objects :
    Hosts file - Too many empty lines in Hosts file
    File - %systemroot%\system32\drivers\etc\hosts


    WMIMalware
    Status : Scanned
    Object : ASEC
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Trojan:Win32/WMIGhost
    Cleaning Action : Repair
    Related Objects :
    Fileless Malware - WMIMalware : WMI::Root\Subscription\ASEC.mof


    rvsadapter.dll
    Status : Scanned
    Object : %programfiles%\chivaleplecerle\rvsadapter.dll
    MD5 : 91AAF5EFB7342F35DF2DC185443BE0FC
    Publisher : -
    Size : 179712
    Version : -
    Detection : Adware:Win32/BrowserHijack.Gen
    Cleaning Action : Quarantine
    Related Objects :
    File - %programfiles%\chivaleplecerle\rvsadapter.dll
    DLL - 2352 - C:\Windows\SysWOW64\svchost.exe
    Registry Entry - HKLM\System\CurrentControlSet\Services\Coofele\Parameters\ServiceDll = C:\Program Files (x86)\Chivaleplecerle\rvsadapter.dll


    Solution_manual_of_calculus_by_howard_anton_pdf_downloader.exe
    Status : Scanned
    Object : %userprofile%\downloads\programs\solution_manual_of_calculus_by_howard_anton_pdf_downloader.exe
    MD5 : 73D850B7BEEE1AB7BD6619707D948D49
    Publisher : MEGASTYAZHKA OOO
    Size : 524496
    Version : 1.0.0.6
    Detection : Adware:Win32/AutoBulk.51d80e!Ep
    Cleaning Action : Quarantine
    Related Objects :
    File - %userprofile%\downloads\programs\solution_manual_of_calculus_by_howard_anton_pdf_downloader.exe


    maoha
    Status : Scanned
    Object : NE->c:\program files (x86)\maoha
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : PUA:Win32/MaohaWiFi.D!Neng
    Cleaning Action : Quarantine
    Related Objects :
    (null) - (null)


    ucbrowser
    Status : Scanned
    Object : NE->c:\users\user\appdata\local\ucbrowser
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : PUA:Win32/UCBrowser.C!Neng
    Cleaning Action : Quarantine
    Related Objects :
    (null) - (null)


    installationconfiguration.xml
    Status : Scanned
    Object : NE->c:\users\user\appdata\roaming\installationconfiguration.xml
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Adware:Win32/Linkury.A!Neng
    Cleaning Action : Quarantine
    Related Objects :
    (null) - (null)


    kuaizip
    Status : Scanned
    Object : NE->c:\users\user\appdata\roaming\kuaizip
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : PUA:Win32/KuaiZip.B!Neng
    Cleaning Action : Quarantine
    Related Objects :
    (null) - (null)


    main.dat
    Status : Scanned
    Object : NE->c:\users\user\appdata\roaming\main.dat
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Adware:Win32/Linkury.G!Neng
    Cleaning Action : Quarantine
    Related Objects :
    (null) - (null)


    kuaizipdrive.sys
    Status : Scanned
    Object : NE->c:\windows\system32\drivers\kuaizipdrive.sys
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : PUA:Win32/KuaiZip.D!Neng
    Cleaning Action : Quarantine
    Related Objects :
    (null) - (null)


    {343c5224-aa7c-46b4-bebd-b05fe24b94e4}
    Status : Scanned
    Object : NE->c:\windows\system32\tasks\{343c5224-aa7c-46b4-bebd-b05fe24b94e4}
    MD5 : -
    Publisher : -
    Size : -
    Version : -
    Detection : Adware:Win32/CHR.TASKSCHD.GEN.A!Neng
    Cleaning Action : Quarantine
    Related Objects :
    (null) - (null)




    Cleaning Result
    -------------------------------------------------------
    Cleaned : 22
    Reported as safe : 0
    Failed : 0
     
    rezarawat, Jan 21, 2017
    #16
  2. OLDMIKE65
    OldMike65 Win User

    You could try giving SuperAntiSpyware a shot at looking for malware on your harddrive. There is a free version.
    SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!
     
    OldMike65, Jan 21, 2017
    #17
  3. REZARAWAT
    rezarawat Win User
    Hi everyone,

    Thank you.for all the help my problems seems to be solved. Zemana antimalware did the job. It deleted all the fanli.cn viruses and quarantined a few others. Now Firefox and chrome is running normal again.
     
    rezarawat, Jan 21, 2017
    #18
  4. PRIKKER
    prikker Win User

    Google chrome and firefox starting up with a virus website (fanli90)

    Problem solved, I'm happy we could help you. Try to be more careful what you download and install the next time. Before installing check it first with your antivirus *Wink
     
    prikker, Jan 21, 2017
    #19
  5. COTTONBALL
    cottonball Win User
    rezarawat,

    Glad Zemana AntiMalware worked for you. It is a good resource to get rid of problems like the ones on your machine.


    Google chrome and firefox starting up with a virus website (fanli90) [​IMG]
     
    cottonball, Apr 5, 2018
    #20
Page 2 of 2
Thema:

Google chrome and firefox starting up with a virus website (fanli90)

Loading...

  1. Google chrome and firefox starting up with a virus website (fanli90) - Similar Threads - Google chrome firefox

  2. Virus Notifications On Google Chrome

    in Windows 10 Gaming
    Virus Notifications On Google Chrome: I kept receiving VIRUS notification from a site "rqstz.titaniumveinshaper.com" and it says i have to buy a plan to make a scan and for remove the viruses,,,I opened any website which show redirect like something and ask for allow and i mistakenly allowed it and after that I...

  3. Virus Notifications On Google Chrome

    in Windows 10 Software and Apps
    Virus Notifications On Google Chrome: I kept receiving VIRUS notification from a site "rqstz.titaniumveinshaper.com" and it says i have to buy a plan to make a scan and for remove the viruses,,,I opened any website which show redirect like something and ask for allow and i mistakenly allowed it and after that I...

  4. Virus Notifications On Google Chrome

    in AntiVirus, Firewalls and System Security
    Virus Notifications On Google Chrome: I kept receiving VIRUS notification from a site "rqstz.titaniumveinshaper.com" and it says i have to buy a plan to make a scan and for remove the viruses,,,I opened any website which show redirect like something and ask for allow and i mistakenly allowed it and after that I...

  5. Virus Notifications on Google Chrome

    in AntiVirus, Firewalls and System Security
    Virus Notifications on Google Chrome: I kept receiving virus notifications from a site called, "beta-news.org". I clicked on some Captcha, which allowed the site to send me notifications. The notifications contained misspellings, and clearly seemed like a scam, trying to gain information about me. I disabled the...

  6. Firefox and chrome close on start-up.

    in Windows 10 Ask Insider
    Firefox and chrome close on start-up.: Hi, on my PC which has run fine for years, chrome has started refusing to work. A quick shit flash where the tab would be appears for less than a second, but disappears after. Chrome has no crash reports so I tried on Firefox. Exactly the same. Does anyone have any clue what...

  7. Google Chrome website logout issues

    in Browsers and Email
    Google Chrome website logout issues: Hey guys, I am using Windscribe on Chrome and Firefox. From past 2 weeks on Chrome on each website where I login I get logout within 2 minutes rather than gmail. Whenever I close Chrome I clean history, cookies, caches and everything but facing same issue. Where Firefox is...

  8. Google Chrome vs Firefox

    in Browsers and Email
    Google Chrome vs Firefox: I use to use Google Chrome but switched over to Firefox in the last year or two (since they re-vamped it) i didn't like the old Firefox but the new one is very nice...and i don't care much for Edge at all... After reading about Microsoft's plans to re-do Edge into a Chrome...

  9. Using Google Chrome Extensions in firefox?

    in Browsers and Email
    Using Google Chrome Extensions in firefox?: Firefox says they're working on webextension support for their addons, potentially letting users install google chrome extensions on firefox for cross-compatibility or something, which is why I would really like to use the improvedtube chrome extension in firefox (its stupid...

  10. BSoD on Start-Up and Google Chrome?

    in Windows 10 BSOD Crashes and Debugging
    BSoD on Start-Up and Google Chrome?: Bare with me if my description on this isn't great, but this problem has recently just happened. Basically, I'm getting BSoD's when I'm sometimes booting up my computer, using Google Chrome (it's happened a couple of times there), and so far...that's it as far as I know....

Users found this page by searching for:

  1. Trojan: Win32/WMIGhost