Author Topic: Advice for a paranoid user?  (Read 2443 times)

0 Members and 1 Guest are viewing this topic.

cromag

  • Guest
Advice for a paranoid user?
« on: December 23, 2009, 03:21:30 AM »
About a month ago I had some very specific Google redirects -- so specific that only one search term was ever redirected.  I tried testing it by running all sorts of Google searches but that one term was was the only one that was ever redirected -- and it was frequently redirected.

On the same day that this started my Firefox's Google Toolbar was updated and its behavior changed, but I don't remember ever being notified that an update was available.

I have always been very good about scanning with MBAM and Avast! -- well, for the last year, at least -- but nothing odd had shown up before this.  I ran several full scans with MBAM, several standard scans with Avast!, a boot-time scan and a thorough scan with Avast.  Aside from some false positive issues with both Avast! and MBAM, I only had one troubling indication -- on Dec 18th MBAM claimed to have found a Trojan in one of my system restore files. I set a new restore point and deleted all previous files.

Meanwhile, an update became available for Firefox.  When I updated it informed me that Google Toolbar was no longer compatible due, I believe, to problems with it being securely updated.  This was especially interesting since I had already uninstalled the Google Toolbar addon.

I detailed my full history with this issue here at Bleeping Computer -- I'm Capn Easy over there.


Yesterday when I turned my computer on, my ZoneAlarm (free) firewall was barraged by attempts from "agent.exe" to get past it.  Usually more than one per minute, usually trying to loopback.  This is the name of a legit program, part of InstallShield, but it never behaved like this before.  I've got it blocked by ZoneAlarm, but it's still trying to get past the firewall more than once a minute.  I have hundreds, if not thousands, of entries in my ZoneAlarm log.

So, first, does anyone have any thoughts?

Second, a thorough scan with Avast! takes a lo-ooo-ong time.  I've been skipping archive files since this gets it done faster and (I assume) anything in an archive is safe until I un-archive it.  (One of my hobbies is restoring old LPs and I have a lot of archive files.)  Is this a valid assumption, or should I have Avast! scan archives?

Thanks for your time!




ardvark

  • Guest
Re: Advice for a paranoid user?
« Reply #1 on: December 23, 2009, 07:19:04 AM »
Hi...

Hmmm...interesting.

What does Blacklight have to say?

May God bless you :)

Omega40

  • Guest
Re: Advice for a paranoid user?
« Reply #2 on: December 23, 2009, 07:44:13 AM »
For what it's worth...I did a whois  on "Webeasysearch.com" and it's based in Kiev, Ukraine.