Hello, I am aware that there are other people with this issue on the forum but I have been downloading and using a lot of the recommended software to deal with this problem (perhaps not all) but nothing seems to be killing it.
Every time I load up firefox, Avast tells me it has stopped a threat called Win32:Malware-Gen. Something seems to be creating and trying to execute files in C:/Users/“MyUsername”/AppData/Local/Temp with names made of random letters. The processes involved where firefox and something that sounded registry related (I am posting this in safe mode with networking so I can not recreate it at the moment to give you the name.) Avast Boot Scan does not stop it. TDSSKiller does not stop it (but whatever is causing this tried to stop me downloading TDSSKiller. I had to download and run it in safe mode with networking). Malware Bytes anti Malware has not stopped it. ADWCleaner has not stopped it. I ran all of these in safemode and normal mode. I have also ran Malwarebyte’s Junk Removal tool in normal mode but when I ran it in safe mode it said it could not create a restore point so I dare not run it.
I stopped using Firefox and started using google chrome but firefox started to notice it happening with that after a few days.
I am worried as I bought something last week on steam and I bought something a couple of days ago using paypal and from what I have gathered this Malware could be doing anything. I think that this started to be a problem this week but my memory is not great.
I did these in safe mode. If I needed to do them in normal let me know. Before that I went and did a normal boot to recreate the issue. The other process Avast mentioned was at C:\Windows\sysWOW64\regsVR32.exe.
First, when I tried to download the fixlist and ran the fix nothing happened. Then I looked and found that the fixlist was blank. Then I tried to download it again and the same thing happened. I figured that perhaps the virus was fiddling with it so I booted my computer into safe mode and downloaded it and found it to not be blank this time. I rebooted the computer into normal mode and then ran the fix. FRST asked me to reset so I did. I loaded up firefox and did not get any alerts. I then loaded Google Chrome and did not get any results either. To see if the same shenanigans from earlier where still happening I downloaded the fixlist again and found it not to be blank. Firefox was also running than before. Then I was going to post here and give the all clear but then avast started to giving me warnings again.
[*]First of all, select update.
[*]Once updated, click the Settings tab, in the left panel choose Detection & Protection and tick Scan for rootkits.
[*]In the same tab, under PUP and PUM detections make sure it is set to Treat detections as malware.
[*]Click the Scan tab, choose Threat Scan is checked and click Start Scan.
[*]If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
[*]Upon completion of the scan (or after the reboot), click the History tab.
[*]Click Application Logs and double-click the newest Scan Log.
[*]At the bottom click Export and choose Text file.
Save the file to your desktop and include its content in your next reply.