PUP.OPTIONAL.QXSEARCH是Mal必威平台APPwareBytes的检测名称,用于镀铬扩展的形式的大型搜索劫持者。
所有主要搜索引擎的搜索结果都被重定向到受威胁行为者控制的站点。
被检测为pup.optional.qxsearch的扩展是搜索劫持者。这些搜索劫持者从他们添加到搜索结果的广告上的点击通知中获取收入。
pup.optional.qxsearch扩展通常由用户自己安装。通过误导普发和网站,它们被重定向到WebStore。
必威平台APPMalwarebytes阻止误导性网站和广告。
必威平台APPMalwarebytes可以检测和删除pup.optional.qxsearch,而无需进一步的用户交互。
删除必威平台APP的Malwarebytes日志将类似于此图片:
必威平台APPMalwarebytes www.malwarebytes.com -log详细信息 - 扫描日期:7/31/19扫描时间:2:11 PM日志文件:634c5ffc-b38c-11e9-8b91-00ffdcc6fdfc.json -software信息 - 版本:3.8.3.2965组件版本:1.0.613更新包版本:1.0.11789许可证:Premium -System信息 - 操作系统:Windows 7 Service Pack 1 CPU:X64文件系统:NTFS用户:{ComputerName} \ {UserName} \ {username} -scan摘要 - 扫描类型:威胁扫描扫描发起:手动结果:已完成的对象扫描:236483检测到的威胁:19威胁隔离:19次经过时间:8分钟,50秒-Scan选项 - 内存:启用启用文件:启用rocives:启用启用启发性:启用启用PUP:检测PUM:检测-Scan详细信息 - 过程:0(未检测到恶意物品)模块:0(未检测到恶意物品)注册表项:0(未检测到恶意物品)注册表值:1 PUP.Optional.QXSearch,HKCU \软件\ google \ chrome \ proferencemacs \ default \ extensions.settings | bjoigjeckcllkadljiceicgimdjnmhmh,隔离,[351],[676735],1.0.11789注册表数据:0(未检测到恶意物品)数据流:0(未检测到恶意物品)文件夹:5 pup.optional.qxsearch,c:\ users \ {username} \ appdata \本地\ google \ chrome \ user data \ default \ sync扩展设置\ bjoigjeckcllkadljiceicgimdjnmhmh,隔离,[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ google\ chrome \ user data \ default \ extensions \ bjoigjeckcllkadljiceicgimdjnmhmh \ 5.7_0 \ _metadata,隔离[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ local \ google\ chrome \ user data \ default \ extensions \ bjoigjeckcllkadljiceicgimdjnmhmh \ 5.7_0 \图标,隔离,[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ google\ chrome \ user data \ default \ extensions \ bjoigjeckcllkadljiceicgimdjnmhmh \ 5.7_0,隔离[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ local \ google \ chrome\ user data \ default \ extensions \ bjoigjeckcllkadljiceicgimdjnmhmh,quArantined [351],[676735],1.0.11789文件:13 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ local \ google \ chrome \ user data \ default \ sync扩展设置\ bjoigjeckcllkadljiceicgimdjnmhmh \000003.log,隔离[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ local \ google \ chrome \ user data \ default \ sync扩展设置\ bjoigjeckcllkadljiceicgimdjnmhmh\当前,隔离[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ local \ google \ chrome \ user data \ default \ sync扩展设置\ bjoigjeckcllkadljiceicgimdjnmhmh \锁定,隔离[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ local \ google \ chrome \ user data \ default \ sync扩展设置\ bjoigjeckcllkadljiceicgimdjnmhmh \ log,被隔离[351],[676735],1.0.11789 pup.optional.qxsearch,c:\ users \ {username} \ appdata \ local \ google \ chrome \ user data \ default \ sync扩展设置\ bjoigjeckcllkadljiceicgimdjnmhmh \ manifest-000001,隔离,[351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Replaced, [351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\USERS\{username}\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\BJOIGJECKCLLKADLJICEICGIMDJNMHMH\5.7_0\MANIFEST.JSON, Quarantined, [351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjoigjeckcllkadljiceicgimdjnmhmh\5.7_0\icons\icon128.png, Quarantined, [351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjoigjeckcllkadljiceicgimdjnmhmh\5.7_0\icons\icon48.png, Quarantined, [351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjoigjeckcllkadljiceicgimdjnmhmh\5.7_0\_metadata\computed_hashes.json, Quarantined, [351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjoigjeckcllkadljiceicgimdjnmhmh\5.7_0\_metadata\verified_contents.json, Quarantined, [351], [676735],1.0.11789 PUP.Optional.QXSearch, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjoigjeckcllkadljiceicgimdjnmhmh\5.7_0\background.js, Quarantined, [351], [676735],1.0.11789 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
如果用户希望保留此程序并将其排除在将来的扫描中被检测到,它们可以将程序添加到排除列表中。这是怎么做的。
域名:
qxsearch.com.
searchprivacyplus.com.
searchDimension.com
qip.party
bigsrch.xyz.
选择你的语言