New Posts  All Forums:Forum Nav:

Potential Malware?

post #1 of 7
Thread Starter 
Hey guys,

I just opened up Firefox today and got a popup called BrowseFox. Apparently, it's some kind of add-on. I've never heard of this and I thought it was a malware/virus, so I did a full scan using Malwarebytes. Turns out it was. I used Malwarebytes to clean it, but I'm afraid there might be some left over folders and the likes on my PC. How can I know for sure and get rid of them if they show up?

Thanks
post #2 of 7
For sure = reinstall windows. MBAM is good though I'd be fairly content if it said you were clean.
Hexacore Whore
(14 items)
 
  
CPUMotherboardGraphicsGraphics
1055t 125w @ 3.5 Gigabyte GA-890GPA UD3-H rev 1.0 F7c MSI R6950 PE OC Unlocked shaders MSI R6950 PE OC Locked shaders :( 
RAMHard DriveOptical DriveOS
G.Skill Ripjaw Blue 1.6v 500gb Sammy EVO 840, 1tbWDCavBlack SIII A Black One! :P Win7 Ultimate 64bit 
MonitorKeyboardPowerCase
LG 37LH3000 37" 1080P Logitech Comfort Laser XFX XXX 650W Cooler Master Storm Scout 
MouseMouse Pad
Logitech Comfort Cordless Mahogany desk 
  hide details  
Reply
Hexacore Whore
(14 items)
 
  
CPUMotherboardGraphicsGraphics
1055t 125w @ 3.5 Gigabyte GA-890GPA UD3-H rev 1.0 F7c MSI R6950 PE OC Unlocked shaders MSI R6950 PE OC Locked shaders :( 
RAMHard DriveOptical DriveOS
G.Skill Ripjaw Blue 1.6v 500gb Sammy EVO 840, 1tbWDCavBlack SIII A Black One! :P Win7 Ultimate 64bit 
MonitorKeyboardPowerCase
LG 37LH3000 37" 1080P Logitech Comfort Laser XFX XXX 650W Cooler Master Storm Scout 
MouseMouse Pad
Logitech Comfort Cordless Mahogany desk 
  hide details  
Reply
post #3 of 7
Thread Starter 
Quote:
Originally Posted by Spacedinvader View Post

For sure = reinstall windows. MBAM is good though I'd be fairly content if it said you were clean.

I didn't want to reinstall frown.gif

Oh well, if all my origin games stay put, might as well do it.
post #4 of 7
Take a memory dump of your machine and scan it with volatility. It will show you anything that's running on your system, hidden or not.

It's not all that easy to use, though.
post #5 of 7
By chance did you just download gta v? hearing that the torrent files are being spammed with malware
post #6 of 7
Thread Starter 
Quote:
Originally Posted by banging34hzs View Post

By chance did you just download gta v? hearing that the torrent files are being spammed with malware

Nope. I haven't pirated for 2 years
Quote:
Originally Posted by The Hundred Gunner View Post

Take a memory dump of your machine and scan it with volatility. It will show you anything that's running on your system, hidden or not.

It's not all that easy to use, though.

How do I do this?
post #7 of 7
Quote:
Originally Posted by TinDaDragon View Post

Nope. I haven't pirated for 2 years
How do I do this?

1. Use a memory dumping tool to take a memory dump. Apparently Mandiant makes such a tool:
https://www.mandiant.com/resources/download/memoryze

2. Use Redline to analyze that file. I'm actually not sure if maybe you can do a system analysis without needing a memory dump. If that is the case, then you shouldn't need to do #1.
https://www.mandiant.com/resources/download/redline

IIRC, Redline is supposed to be able to show you which processes may be malicious by analyzing their behavior (the way the programs were started, when they were started, their open handles, etc.) Like any other scan+report tool, it's not going to be 100% accurate.

Try it out and let us know how it works.
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security