Although hate ordering from amazon for multiple reasons, had to yesterday. I was checking out and it asked me to add-on to my browser (Firefox) an add-on about delivery (since they never deliver as instructed and rarely get my packages I downloaded the add-on but went to Firefox to get it). I scanned with Malwarebyts shortly after and it found a PUP and quarantined it.
I immediately tried to post but every time I attached the FRST additon.txt I would get error message:
Sorry, you have been blocked
You are unable to access techsupportforum.com
Why have I been blocked?
This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.
What can I do to resolve this?
You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.
Cloudflare Ray ID: 57f9755bbd99fdb1 Your IP: 174.21.149.170 Performance & security by Cloudflare
A different number later:
Cloudflare Ray ID: 57fe01a01a10fda5 Your IP: 174.21.149.170 Performance & security by Cloudflare
Then I tried to post without Addition.txt and pasted the FRST.txt and got similar error message without number.
So, I can't seem to post any of the FRST results, without being barred from posting.
I do think I have a thumb drive with windows 10 on it.
No signs of any Malware in your logs. There's a couple of files I'd like to run a scan on at VirusTotal just to make sure, but it is just a precaution, and I don't really expect either of them to test positive. There's also an ADS file running from a temp location that can be deleted. Files of this type are normally deleted by the program that created them, but in this case that doesn't appear to have happened, so we'll remove it with FRST.
So .....
Start FRST in a similar manner to when you ran a scan earlier, but this time when it opens ....
Press Ctrl+y (Ctrl and y keys at the same time)
A blank randomly named .txt Notepad file will open.
Well, as I expected, the two files were clean, so unless you're experiencing any abnormal behaviour from your computer, I think it's reasonable to assume that you do not have an active infection on your machine.
We could run an online scan to double check if you wish, but I would be surprised if it found anything amiss. Please let me know if you want to do that.
If not ....
To uninstall FRST and remove all its files, please do the following ...
Rename FRST64.exe to Uninstall.exe
Double click on Uninstall.exe to launch it.
Your computer will reboot, and on reboot will remove FRST and all its files.
Since malwarebytes quarantined the PUP the computer is a bit buggy. Should I un-quarantine it? Then uninstall it from ad-onns?
Yes, I think I'd like to run an online (maybe after unquarantining the PUP and uninstalling just to be sure) -- I usually do ESET online monthly -- so would you recommend another or just ESET?
Yes, I'd unquarantine it first, and see if that improves your computer's stability. Once you've established that it does, then you can uninstall it from add-ons.
If your computer still acts buggy when you've unquarantined it, don't do anything else, just let me know.
ESET is the online scanner I would have recommended, so if you want to run a scan, and you're comfortable doing it without instruction from me, then by all means go ahead, and when finished post me the scan results.
I unquarantined the file; however, it disappeared, never showed back up as an add-on. I can't remember the correct Amazon add-on name, but only have a translation and security add-ons now, as usual.
I ran ESET online, and as you said the computer is clean.
I'll let you know if it still acts buggy; hoping it's OK.
A forum community dedicated to tech experts and enthusiasts. Come join the discussion about articles, computer security, Mac, Microsoft, Linux, hardware, networking, gaming, reviews, accessories, and more!