I have a virus or trojan or something....

Toggle sidebar Toggle sidebar
Homerboy

Homerboy

Lifer
Mar 1, 2000
30,890
5,001
126
Intermittently, after I do a google search and click on a subsequent result I'm taken to some 3rd party page. One of those obvious scam type places. I've scanned with spybot, adaware and a few others with no results.

Now I have a FF update that needs to be installed, and even after a clean reboot, and I tell it to install the update it tells me it can't as there may be an open instance of FF already running etc etc. (checked task manager and there is not).

Anyone have suggestions for a scanner or ANYTHING to find this stupid malware that is apparently embedded itself if my system?
 
Homerboy

Homerboy

Lifer
Mar 1, 2000
30,890
5,001
126
Anubis said:
have you tried malwarebytes?

http://www.malwarebytes.org/

best bet is to DL it on a seperate comp, and install it off a thumb drive in safe mode
Click to expand...

Nope, that's a new one to me (been a while since I had an issue).
Ran it.
Found 2 items:

Malwarebytes' Anti-Malware 1.44
Database version: 3908
Windows 6.1.7600
Internet Explorer 8.0.7600.16385

3/24/2010 11:08:59 AM
mbam-log-2010-03-24 (11-08-55).txt

Scan type: Full Scan (C:\|)
Objects scanned: 267177
Time elapsed: 28 minute(s), 48 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\xmlraslibrary (Adware.Agent.N) -> No action taken.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Users\Dad\AppData\Local\xmlraslibrary\xmlraslibrary.dll (Adware.Agent.N) -> No action taken.


Rebooted.
FF installed update so that's a good sign.
No issues with re-directions (yet).

Thanks!
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom