Sorry, edited
Have a look: http://blogs.mcafee.com/mcafee-labs/zeroaccess-rootkit-launched-by-signed-installers
@FleischmannTV same i wanted to say :-) and Emsis engine has a, i personaly think high detection rate of adware.
How you can know this, in emsisoft dublicate detections are deaktivated, so you see more often bd detections, this does not mean emsi would not be...
What you mean with "injecting code into installers". i see some samples coming with legid adobe installers, but there is no code injection, its...
user is not able to report it. C:\Users\Rene\Downloads\JRT.exe Size . . . . . . . : 1.158.897 bytes Age . . . . . . . : 1.0...
C:\Program Files\RADVideo\radvideo.exe -> Quarantined Size . . . . . . . : 56.832 bytes Age . . . . . . . : 100.4 days (2013-04-29...
Perhaps try also to ask on kernelmode.info
C:\windows\SysWOW64\FlashPlayerUpdateService.exe -> Quarantined Size . . . . . . . : 163.328 bytes Age . . . . . . . : 50.0 days...
fp C:\Users\Ale x\Desktop\JRT.exe Size . . . . . . . : 563.461 bytes Age . . . . . . . : 0.0 days (2013-08-06 19:02:38)...
C:\Users\Klaus\AppData\Local\Apps\2.0\KPRH08T9.LM4\M7ZE2HPO.NN9\game..tion_274b60bfce57d9e6_0001.0000_7f54574cc6d64f29\GamerzHost.de CSGO Config...
C:\Users\Hannes\Desktop\RWTH_OpenVPN_Installer_7.exe Size . . . . . . . : 1.432.016 bytes Age . . . . . . . : 1.2 days (2013-07-09...
@Mops21 why are 2 posts needed? you can put it in one post :-)
Best would be Scanlog, so we can also see checksum, i think its easier to remove fp
C:\Program Files (x86)\Steam\SteamApps\exolord31531\garrysmod\garrysmod\bin\client.dll Size . . . . . . . : 3.408.640 bytes Age . ....
C:\Users\pe130296\Documents\!!!Privat\temp\JabberToOC.exe Size . . . . . . . : 36.864 bytes Age . . . . . . . : 75.8 days...
C:\Users\Henning\Documents\Medizin\Physiologie\Speckmann '05\Examensfragen\GK1neu\Mediscript.exe Size . . . . . . . : 1.824.750 bytes...
you can try hitmanpro, because it has some engines included, or go to an forum like Bleeping Computerwith many proffessional helpers
version 8 is out since 2 days and you asking for version 9? :d
cloud, why, have a look on av-comparatives, results are good enough without. only 1 missed sample from behaviour blocker. webroot's not so......
hmm, i personaly do not think its infecting the bios, as far as i know every vendor could be have different type of bios, so you need for every...
Suspicious files ____________________________________________________________ C:\Windows\system32\hasplms.exe Size . . . . . . . :...
C:\Users\Timm\Desktop\Ordner\Cheategine\Cheat Engine 6.2\xmplayer.exe Size . . . . . . . : 188.928 bytes Age . . . . . . . : 347.0...
could be a fp: C:\Users\Christian\Downloads\installer_Wood_Background_Music_Beat_Wallchan_665381_wallpaper.exe Size . . . . . . . :...
C:\Dokumente und Einstellungen\Steffen\Lokale Einstellungen\Anwendungsdaten\PunkBuster\COD4\pb\PnkBstrK.sys Size . . . . . . . : 139.448...
Separate names with a comma.