Results 1 to 9 of 9
  1. #1
    2 Star Lounger
    Join Date
    Jul 2010
    Location
    Glasgow, United Kingdom, United Kingdom
    Posts
    106
    Thanks
    18
    Thanked 0 Times in 0 Posts

    Malwarebytes Anti-Malware

    Every time Malwarebytes removes these threats after a short time they reappear.
    How can I stop them reappearing?

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 12/04/2014
    Scan Time: 11:54:24
    Logfile:
    Administrator: No

    Version: 2.00.1.1004
    Malware Database: v2014.04.12.02
    Rootkit Database: v2014.03.27.01
    License: Premium
    Malware Protection: Enabled
    Malicious Website Protection: Enabled
    Chameleon: Disabled

    OS: Windows 8.1
    CPU: x64
    File System: NTFS
    User: Secure

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 200624
    Time Elapsed: 15 min, 23 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Shuriken: Enabled
    PUP: Enabled
    PUM: Enabled

    Processes: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Registry Keys: 7
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\APPID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}, , [a0d2d3563f3c95a1af70c97e20e252ae],
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}, , [a0d2d3563f3c95a1af70c97e20e252ae],
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{219046AE-358F-4CF1-B1FD-2B4DE83642A8}, , [ff73a88193e8e056ad298cbaa959847c],
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\iagcajndpnf ncplednpbnkahadegklfa, , [ec86af7aa3d857df5b9a4123946e956b],
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS \iagcajndpnfncplednpbnkahadegklfa, , [b2c0ea3fd7a45adc14e1560e91711de3],
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLCORE\mysearchdial , , [95dd8c9d5328c96dde9e4943887bed13],
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURREN TVERSION\UNINSTALL\mysearchdial, , [f87acc5d36451323d45d0358ec16e719],

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 2
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://start.mysearchdial.com/?f=1&a...=220895248&ir=, Good: (http://www.google.com), Bad: (http://start.mysearchdial.com/?f=1&a...=220895248&ir=),,[5e1451d8c8b31422cd0a5dc1c0443fc1]
    PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://start.mysearchdial.com/?f=1&a...=220895248&ir=, Good: (http://www.google.com), Bad: (http://start.mysearchdial.com/?f=1&a...=220895248&ir=),,[94de70b9d4a7cf6713c48599e91b36ca]

    Folders: 3
    PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial, , [f87acc5d36451323d45d0358ec16e719],
    PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0, , [f87acc5d36451323d45d0358ec16e719],
    PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\bh, , [f87acc5d36451323d45d0358ec16e719],

    Files: 5
    PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\FavIcon.ico, , [f87acc5d36451323d45d0358ec16e719],
    PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\Sqlite3.dll, , [f87acc5d36451323d45d0358ec16e719],
    PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\uninst.dat, , [f87acc5d36451323d45d0358ec16e719],
    PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\uninstall.exe, , [f87acc5d36451323d45d0358ec16e719],
    PUP.Optional.MySearchDial.A, C:\Users\Secure\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://www.google.com/", "https://mail.google.com/", "http://www.facebook.com/", "http://start.mysearchdial.com/?f=1&a=ir_14_15_ch&cd=2XzuyEtN2Y1L1QzutBzzzytByE0A yDyEtAtByCzy0DyCyDzztN0D0Tzu0SzztAtDtN1L2XzutBtFtB tDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L 1Qzu2StB0BtAtDyEtD0EyEtG0CzytCyDtGtAyEtDzytG0FyEtC 0DtGtCtCyD0A0CtBtB0AtCtDyC0F2QtN1M1F1B2Z1V1N2Y1L1Q zu2StAtD0F0CyD0CtBzytGzztAyB0DtG0E0A0D0DtGtAyByCtC tGtDyEtCyCyCyDzy0FzytA0AtA2Q&cr=220895248&ir=" ],), ,[9fd331f8d0ab6bcba9477dcd05ff728e]

    Physical Sectors: 0
    (No malicious items detected)


    (end)

  2. #2
    3 Star Lounger
    Join Date
    Dec 2009
    Location
    UK
    Posts
    383
    Thanks
    19
    Thanked 78 Times in 66 Posts
    Rubyjim - Have a look at Remove PUP.Optional.MySearchDial.A (Removal Guide) for comprehensive instructions. It shows that you need other tools in addition to Malwarebytes in order to successfully remove MySearchDial.A.

    Hope this helps.

  3. The Following 2 Users Say Thank You to Rick Corbett For This Useful Post:

    1PW (2014-04-12),bassfisher6522 (2014-04-12)

  4. #3
    3 Star Lounger bassfisher6522's Avatar
    Join Date
    Jul 2013
    Location
    NC
    Posts
    320
    Thanks
    45
    Thanked 33 Times in 32 Posts
    Also make sure that you're not using any search engine tool bars.

  5. #4
    Star Lounger 1PW's Avatar
    Join Date
    Feb 2011
    Location
    North of the 38th parallel.
    Posts
    64
    Thanks
    12
    Thanked 11 Times in 10 Posts
    While the apropos advice of others here should not go unrecognized, the OP's system likely remains under-served by high quality:

    1. Anti-Virus application
    2. HIPS protection
    3. Browser
    4. Advanced browser protection
    5. Sandbox

    Until the above issues are adequately addressed, PUPs may not be the only discovery in store for the OP's future.

    In conclusion, the possibility that the initial MySearchDial.A (and/or its undefined host malware) eluded the highly regarded MBAM2's heuristics, fingerprints and malicious website/IP protections, should not go un-noticed.

    HTH
    Last edited by 1PW; 2014-04-13 at 06:21.

  6. #5
    New Lounger AlserT's Avatar
    Join Date
    Apr 2014
    Posts
    2
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Hello!
    I had the same problem with pup.mysearchdial
    Adwcleaner (free) realy works + manual browser settings editiing http://soft2secure.com/knowledgebase/mysearchdial OR SYStem restore also

  7. #6
    2 Star Lounger
    Join Date
    Dec 2009
    Location
    Hartford, WI, USA
    Posts
    158
    Thanks
    34
    Thanked 31 Times in 18 Posts
    I just can not stop myself from adding that some time in the past OP must have "allowed" install of MySearchDial or some similar c**p.

    Did OP use ANY sort of so called "download manager"?

    Or any sort of "required video player" that he had to download and install before he could watch that special video?

    Or did he install any kind of program or update where he had to choose between
    • Default (recommended)
    • Custom (for experienced users only)

    The latter is a now all too common trap. More here.
    Eike J Heinze
    What I am about
    SE Wisconsin

  8. #7
    3 Star Lounger
    Join Date
    Jan 2010
    Posts
    291
    Thanks
    2
    Thanked 27 Times in 27 Posts
    Sometimes malware can hide in your Windows "System Restore points". If so, you may need to delete all Restore points, then run Malwarebytes, etc. then reboot. This is a rare occurrence.

  9. #8
    Super Moderator jwitalka's Avatar
    Join Date
    Dec 2009
    Location
    Minnesota
    Posts
    5,012
    Thanks
    71
    Thanked 577 Times in 522 Posts
    Quote Originally Posted by starvinmarvin View Post
    Sometimes malware can hide in your Windows "System Restore points". If so, you may need to delete all Restore points, then run Malwarebytes, etc. then reboot. This is a rare occurrence.
    Malwarebytes will check for Malware in System Restore points but will not catch everything so tis is good advice if you experience and clean up a Malware infection. The only thing I would add is to create a new clean System restore point after the reboot following the Malwarebytes (and AdAware) scans.

    Jerry

  10. #9
    2 Star Lounger
    Join Date
    Jul 2010
    Location
    Glasgow, United Kingdom, United Kingdom
    Posts
    106
    Thanks
    18
    Thanked 0 Times in 0 Posts

    Malwarebytes Anti-Malware

    I done a "Refresh" that fixed it

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •