New Posts  All Forums:Forum Nav:

Potential Malware?

post #1 of 7
Thread Starter 
Hey guys,

I just opened up Firefox today and got a popup called BrowseFox. Apparently, it's some kind of add-on. I've never heard of this and I thought it was a malware/virus, so I did a full scan using Malwarebytes. Turns out it was. I used Malwarebytes to clean it, but I'm afraid there might be some left over folders and the likes on my PC. How can I know for sure and get rid of them if they show up?

Thanks
post #2 of 7
For sure = reinstall windows. MBAM is good though I'd be fairly content if it said you were clean.
Hexacore Whore
(14 items)
 
  
CPUMotherboardGraphicsGraphics
1055t 125w @ 3.5 Gigabyte GA-890GPA UD3-H rev 1.0 F7c MSI R6950 PE OC Unlocked shaders MSI R6950 PE OC Locked shaders :( 
RAMOSMonitorKeyboard
G.Skill Ripjaw Blue 1.6v Win7 Ultimate 64bit LG 37LH3000 37" 1080P Havit Magic Eagle 
PowerCaseMouseMouse Pad
XFX XXX 650W Cooler Master Storm Scout Havit Magic Eagle Havit 
  hide details  
Reply
Hexacore Whore
(14 items)
 
  
CPUMotherboardGraphicsGraphics
1055t 125w @ 3.5 Gigabyte GA-890GPA UD3-H rev 1.0 F7c MSI R6950 PE OC Unlocked shaders MSI R6950 PE OC Locked shaders :( 
RAMOSMonitorKeyboard
G.Skill Ripjaw Blue 1.6v Win7 Ultimate 64bit LG 37LH3000 37" 1080P Havit Magic Eagle 
PowerCaseMouseMouse Pad
XFX XXX 650W Cooler Master Storm Scout Havit Magic Eagle Havit 
  hide details  
Reply
post #3 of 7
Thread Starter 
Quote:
Originally Posted by Spacedinvader View Post

For sure = reinstall windows. MBAM is good though I'd be fairly content if it said you were clean.

I didn't want to reinstall frown.gif

Oh well, if all my origin games stay put, might as well do it.
post #4 of 7
Take a memory dump of your machine and scan it with volatility. It will show you anything that's running on your system, hidden or not.

It's not all that easy to use, though.
post #5 of 7
By chance did you just download gta v? hearing that the torrent files are being spammed with malware
    
CPUMotherboardGraphicsRAM
Ryzen 1600 MSI b350 tomahawk MSI Gaming X 1070 8GB G.SKILL Flare X 16Gb (2x8) 
Hard DriveHard DriveOptical DriveCooling
Barracuda 1TB Sata 6 OCZ Vertex 3 120Gb Samsung Model SH-222AB Nzxt Kraken X61 
OSMonitorKeyboardPower
Windows 10 Pro Asus VG248QE Logitech G710+ Antec TruePower New Blue 750W 
CaseMouseMouse PadAudio
Cooler Master Master case pro 5 G502 Proteus core roccat taito Logitech G430 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Ryzen 1600 MSI b350 tomahawk MSI Gaming X 1070 8GB G.SKILL Flare X 16Gb (2x8) 
Hard DriveHard DriveOptical DriveCooling
Barracuda 1TB Sata 6 OCZ Vertex 3 120Gb Samsung Model SH-222AB Nzxt Kraken X61 
OSMonitorKeyboardPower
Windows 10 Pro Asus VG248QE Logitech G710+ Antec TruePower New Blue 750W 
CaseMouseMouse PadAudio
Cooler Master Master case pro 5 G502 Proteus core roccat taito Logitech G430 
  hide details  
Reply
post #6 of 7
Thread Starter 
Quote:
Originally Posted by banging34hzs View Post

By chance did you just download gta v? hearing that the torrent files are being spammed with malware

Nope. I haven't pirated for 2 years
Quote:
Originally Posted by The Hundred Gunner View Post

Take a memory dump of your machine and scan it with volatility. It will show you anything that's running on your system, hidden or not.

It's not all that easy to use, though.

How do I do this?
post #7 of 7
Quote:
Originally Posted by TinDaDragon View Post

Nope. I haven't pirated for 2 years
How do I do this?

1. Use a memory dumping tool to take a memory dump. Apparently Mandiant makes such a tool:
https://www.mandiant.com/resources/download/memoryze

2. Use Redline to analyze that file. I'm actually not sure if maybe you can do a system analysis without needing a memory dump. If that is the case, then you shouldn't need to do #1.
https://www.mandiant.com/resources/download/redline

IIRC, Redline is supposed to be able to show you which processes may be malicious by analyzing their behavior (the way the programs were started, when they were started, their open handles, etc.) Like any other scan+report tool, it's not going to be 100% accurate.

Try it out and let us know how it works.
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security