| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 142768 | 2016-09-06 02:38:00 | Malware | pctek (84) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1425690 | 2016-09-06 02:38:00 | Firefox is being weird. While on the Herald I clicked a couple of things - to open in a new tab, and got search.safefinder. I checked with everything - Malware Bytes, SuperAntispyware. Nothing in addons (ditto Chrome), nothing in the exe start. Nothing found with Hijackthis, NOD finds nothing. TDSS found nothing. Searched the registry - nothing. Now I get FF blocked this page from opening......how do I find whats affecting it? |
pctek (84) | ||
| 1425691 | 2016-09-06 03:27:00 | Try Running www.zemana.com in deep scan - 15 day trial, It can find things Malwarebytes misses. Doing a customers scan now, ran Malwarebytes that pulled out a lot ( over 2000), Zemana has been running for less than 2 minutes and located 10 extensions (similar to the one you have). | wainuitech (129) | ||
| 1425692 | 2016-09-06 04:01:00 | Awesome. It found it in all 3 browsers. I bought it. However, I'm still annoyed. Where the hell did it lurk? I checked shortcuts, I checked registry, I scrolled through all the crap under users. This all manually and I couldn't find it!!! So any ideas on where it was specifically, I hoped Zemana would show it but no, just listed it and removed it without telling me. Good it did, but I would have liked a location. |
pctek (84) | ||
| 1425693 | 2016-09-06 04:06:00 | Oh you bought it?,just found it is a givaway here www.giveawayoftheday.com It was just posted here malwaretips.com |
Lawrence (2987) | ||
| 1425694 | 2016-09-06 04:27:00 | Awesome. It found it in all 3 browsers. I bought it. However, I'm still annoyed. Where the hell did it lurk? I checked shortcuts, I checked registry, I scrolled through all the crap under users. This all manually and I couldn't find it!!! So any ideas on where it was specifically, I hoped Zemana would show it but no, just listed it and removed it without telling me. Good it did, but I would have liked a location. Zemana showed the ones It found in User name/app Data/Local/Temp |
wainuitech (129) | ||
| 1425695 | 2016-09-06 05:00:00 | Thought I'd give it a trial...........first thing it did and I couldn't stop it, was to whisk my email client executable away saying it was malware, so that killed Foxmail :) So had to uninstall Zemana in order to restore email. I may give it another go, but I'd like the option to confirm or otherwise before it takes the law into its own hands ! |
Terry Porritt (14) | ||
| 1425696 | 2016-09-06 05:20:00 | Zemana showed the ones It found in User name/app Data/Local/Temp Seriously. I searched everywhere. I scanned, I ccleaned I looked manually. Firefox Shortcut Status : Scanned Object : "tech-connect.biz MD5 : - Publisher : - Size : - Version : - Detection : Suspicious Browser Setting Cleaning Action : Repair Related Objects : Browser Setting - Firefox Shortcut See? Where? I checked the bloody shortcut before too, no additional on it. |
pctek (84) | ||
| 1425697 | 2016-09-06 05:30:00 | Hmm Zemana is quite racist, it doesn't like my Chinese Foxmail at all. It also didn't like a Foxmail fmrsslink.dll file either. Still I found that exclusions and actions and restore point can be set. Considering I've been using Foxmail since the 16 bit version 1.6 for Win 3.1, I'd know by now if there was anything really nasty in it. A deep scan did not throw up any other items. I'll run it every now and then until the trial expires. |
Terry Porritt (14) | ||
| 1425698 | 2016-09-06 06:19:00 | Oh you bought it?,just found it is a givaway here It was a whole $17NZ. It worked well, it has a simple interface and I think software writers like that should be encouraged. |
pctek (84) | ||
| 1425699 | 2016-09-06 06:42:00 | Hmmmmmmmmmm Quite interesting, haven't run that program on This PC before, mainly on Customers computers. Seems Foxmail has some sort of browser add-on it doesn't like. Just downloaded Foxmail and installed Zemana , running a scan, two it detected I know have "extra's" (toolbars that you unselect during install) BUT one :eek: Where the hell did that come ?? no way I downloaded that Malware program on purpose. You can select what it does with what it finds: 7402 |
wainuitech (129) | ||
| 1 2 | |||||