Has anybody had this on Google Chrome?

[REDACTED]

It appears to be running quickly - we can do an online scan!  HOW do we do that??

[REDACTED]

• Step #5 ESET Online Scanner
  Disable your security programs which includes but not limited to anti-virus, anti-malware, anti-spyware et cetera. Peruse this for additional information.
  
  • Download esetsmartinstaller_enu.exe by clicking here.
  • Right-click on the program and choose Run as administrator.
  • Accept their terms and condition and proceed.
  • Install Add-On/Active X if prompted.
  • From the Computer Scan Setting --
    
    • Enable detection of potentially unwanted application
  • Click on Advanced Setting--
    
    • Uncheck the following box --
    • • Remove Found Threats
    • Check the following boxes --
    • • Scan archives;
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth Technology
  • Click on Start and wait for the virus signature database to update.
  • The online scan will begin automatically and can take several hours.
    
    • Note: Do not touch either the Mouse or keyboard during the scan. Otherwise it may stall.
  • After the Scan finishes --
  • • If no threats were found:
      
      • Put a checkmark in Uninstall application on close.
      • Close the program and report that nothing was found
    • If threats were found:
      
      • Open the file located in C:\Program Files\ESET\ESET Online Scanner\log.txt (32-bit) or C:\Program Files (x86)\ESET\ESET Online Scanner\log.txt (64-bit).
      • Attach the log file in your next reply.
  Note: Enable your security programs afterwards.

• Required Log(s):
  
  • ESET Scan Log

Regards,
Valinorum

[REDACTED]

Hey!
I have the same problem with codegv.ru malware.
I have done the steps according to valinorum and it doesn't seem to disappear... Any suggestions?
Must have accidentally erased adw-cleaner's log.. but i have JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.2.7 (10.03.2014:1)
OS: Windows 8.1 Pro x64
Ran by Tim on 2014-10-03 at 13:10:12,80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2014-10-03 at 13:14:54,12
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Regards Tim

[REDACTED]

If you disable and remove the MS Player extension (associated with Ace Stream) from Firefox and/or Chrome it solves the problem. It is an infection that you get when you instal Ace Stream! I was running virus scans and digging in forums translating from Russian for 10 hours before I found the answer

[REDACTED]

JRT file

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.3 (10.21.2014:1)
OS: Windows 7 Home Premium x64
Ran by andys laptop on 23/10/2014 at  7:34:01.79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AboutURLs\\Tabs



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Toolbar.CT3072253
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3072253
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ApnStub_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ApnStub_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\ApnStub_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\ApnStub_RASMANCS
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\andys laptop\appdata\locallow\conduit"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23/10/2014 at  7:51:13.52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

how do i do a FRST scan?

[Asyn]

Please start your own topic and post your logs there: https://forum.avast.com/index.php?action=post;board=4.0

[REDACTED]

Is there any way to lock the solved topics?

[Asyn]

Is there any way to lock the solved topics?

Unfortunately not.

[REDACTED]

I do think the administrators should consider a discussion regarding this. A general forum regarding malware issue discussion and a child-forum dedicated to Malware Removal assistance with proper moderation should suffice.

[REDACTED]

Hi there,

I'm having the same issue with codegv.ru malware.
I've done all steps from 2 to 4. I'm sending the logs in attachement.
For now it seems to be solved!

Thanks for your tips

[REDACTED]

Well actually it is still showing... Not as much but happens from time to time.

Do you know from the logs what have i done wrong? What else can i do to solve this?

Thanks in advance for any tips you can share!