PUP.Optional.Trovi

[USHost247]

I have been dealing with this on one of my computers for a little while now and this is the first time I have struggled to correct an issue. It seems MalwareBytes Premium keeps finding PUP.Optional.Trovi on Google Chrome. Each time I have the program quarantine it, it only "replaces" the file and then it is detected once again. Any ideas?

Also, a side note:
I only have the following plugins.
Adblock Plus
Honey
Privacy
Ghostery

 

[Deleted member 25872]

PUP.Optional.Trovi is the detection for a family of search hijackers targeting the most popular browsers. Download https://www.malwarebytes.com/adware/ to remove it or if your skilled, remove it by regedit.exe

 

[Page]

How did you get it in the first place. That's the question to find out

 

[USHost247]

PUP.Optional.Trovi is the detection for a family of search hijackers targeting the most popular browsers. Download https://www.malwarebytes.com/adware/ to remove it or if your skilled, remove it by regedit.exe

I'll look into it.

How did you get it in the first place. That's the question to find out

Not sure to be honest. Multiple people use this computer. First time I have come in contact with this type that I am unable to easily remove.

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 12/20/18
Scan Time: 9:24 AM
Log File: 003ef56a-0463-11e9-8db3-2c4d5452af91.json

-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.508
Update Package Version: 1.0.8407
License: Premium

-System Information-
OS: Windows 10 (Build 17134.472)
CPU: x64
File System: NTFS
User: *******

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 414003
Threats Detected: 1
Threats Quarantined: 1
Time Elapsed: 2 min, 47 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
PUP.Optional.Trovi, C:\USERS\SUPPO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [401], [454808],1.0.8407

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

 

[USHost247]

I got it figured out. This topic down below helped resolve the issue:
https://forums.malwarebytes.com/topic/214325-chrome-secure-preferences-detection-always-comes-back/

 

[Jason76]

I would just get an anti-malware program. Mine just detected something similar and quarantined it.

 

[Bryn]

Or better, don't use Chrome. It's nothing more but a punching bag for cyber criminals these days. At least you got the issue sorted though, @ChrisGrigg.

 

[Page]

Doesn't matter what browser you use they still can get in. Also to mention even paid anti-malware program doesn't always deal with them. Some say that they rather do an clean install of there OS

 

[Bryn]

Doesn't matter what browser you use they still can get in.

As far as I know, these cyber crooks have no interest in targetting Firefox, particularly by its lower than average market share. Also, a clean install would be the only option if such malware is deep-rooted into your system, particularly if ransomware is involved.

 

[USHost247]

I would just get an anti-malware program. Mine just detected something similar and quarantined it.

I have MalwareBytes Premium. 😉