Author Topic: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal  (Read 45751 times)

0 Members and 1 Guest are viewing this topic.

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #30 on: May 30, 2013, 10:56:57 PM »
yes I just tried it again, google searched, clicked to site,  and get the same message-

Trojan Horse Blocked-

Infection Details
URL:   http://www.stockrants.com/forum/misc.php...
Process:   C:\Program Files\Mozilla Firefox\firefox...
Infection:   HTML:RedirDL-inf [Trj]

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #31 on: May 30, 2013, 11:09:30 PM »
Does this only happen in Firefox now ?

If so could you disable all addons and see if they cease

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #32 on: May 30, 2013, 11:50:15 PM »
No this happens in Firefox and Chrome, and I will test IE too now--

some notes:
It happens only the first time I try to click to the site through google search- After that first time I get teh trojan horse warning I will not get it again until I restart the computer and try again and in that instance I will get the popup message again-

Once I get the message- it doesnt happen in a different browser once it has happened in the other- for example I use chrome first, I open the site and I get the popup, then I open firefox and do the same thing, but not message-

Maybe it is hijacking google search links? 

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #33 on: May 30, 2013, 11:58:48 PM »
I could not replicate the same problem ( trojan horse) in IE--

do you still want me to try and disable addons in firefox?

any suggestions?

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #34 on: May 31, 2013, 02:18:43 PM »
Yes disable the FF addons as some run through to Chrome as well

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #35 on: June 03, 2013, 07:59:51 PM »
I disabled all Firefox extensions AND plugins but I still get the same Trojan Horse warning

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #36 on: June 03, 2013, 08:27:48 PM »
I still get it with firefox and chrome-  but cant replicate in IE-- and I onle get it the first time after a computer restart still---

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #37 on: June 03, 2013, 08:30:53 PM »
Could you run a fresh OTL scan please selecting all users ...  The answer is somewhere within the FF/Chrome addons

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #38 on: June 03, 2013, 08:36:48 PM »
do you need anything in custom scan box etc?

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #39 on: June 03, 2013, 09:15:32 PM »
OtL attached---


Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #40 on: June 03, 2013, 09:58:11 PM »
Could you disable these three plugins/extensions and let me know if the alerts stop

Torch Share
WorldWinner Firefox Launcher Plugin
Catalina Marketing Corporation

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #41 on: June 03, 2013, 11:16:04 PM »
should these all be in firefox?

in firefox i found-
catalina savings printer 2.0.0.2
worldwinner firefox launcher plugin

in chrome I found
torch share-

I turned these off, but the problem persists--- am I looking in the correct place to disable addons? should I be looking anywhere else?

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #42 on: June 03, 2013, 11:36:43 PM »
I uninstalled torch, some web browser that I dont remember getting or ever using-  since you mentioned disabling torch share, however that didnt solve anything either--

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #43 on: June 03, 2013, 11:37:59 PM »
I cant seem to find a plugin/extension anywhere that specifically says catalina marketing corporation

marsd

  • Guest
Re: Please help with Virus / Malware problem - Win32:Malware-gen URL:Mal
« Reply #44 on: June 03, 2013, 11:53:19 PM »
I just tried to disable all addons/plugins/extensions in firefox and chrome, but I still get the same trojan horse warning-