New
#1
Cant run firefox anymore...
I was able to run this fine until today for some reason now every time I try to start it, it gives me this error:
c:\program files (x86)\Mozilla firefox\firefox.exe is not a valid win 32 application
I was able to run this fine until today for some reason now every time I try to start it, it gives me this error:
c:\program files (x86)\Mozilla firefox\firefox.exe is not a valid win 32 application
heirthos
When you right click on the Firefox shortcut on the desktop and choose Properties . On the first tab General what does it say on the Target section ?
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
For now but I have gotten it before on some other programs
Run Malwarebytes
Download Link MalwareBytes
When the installation is done uncheck Enable free trial of Malwarebytes (see image below )
Update the definitions and do a quick scan
On the Scanner tab:
Make sure the "Quick Full Scan" option is selected.
Then click on the Scan button.
If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
Make sure that everything is checked, and click Remove Selected.
When removal is completed, a log report will open in Notepad.
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply and exit MBAM.
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version: v2013.06.15.07
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
Thomas :: H-A-L [administrator]
6/15/2013 11:46:21 PM
mbam-log-2013-06-15 (23-46-21).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 239243
Time elapsed: 3 minute(s), 16 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 13
HKLM\SYSTEM\CurrentControlSet\Services\AdobeARMservice (Trojan.Agent) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\MozillaMaintenance (Trojan.Agent) -> Quarantined and deleted successfully.
HKCR\TypeLib\{9853D245-3E9D-4946-895A-F30D6396DEA6} (Trojan.Agent) -> Quarantined and deleted successfully.
HKCR\Interface\{0B810B0A-AF72-4974-B47C-BFC1C0C4F770} (Trojan.Agent) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\UNS (Trojan.Agent) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\jhi_service (Trojan.Agent) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\LMS (Trojan.Agent) -> Quarantined and deleted successfully.
HKCR\CLSID\{44BBA840-CC51-11CF-AAFA-00AA00B6015C} (Trojan.Agent) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C} (Trojan.Agent) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C} (Trojan.Agent) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8e70e4e1-06d7-470b-9f74-a51bef21088e} (Trojan.Agent) -> Quarantined and deleted successfully.
HKCR\TypeLib\{FA258721-CF24-45D7-A9CB-80047D7FEC35} (Trojan.Agent) -> Quarantined and deleted successfully.
HKCR\Interface\{F826A914-4075-4672-8312-5F91CDF3C69E} (Trojan.Agent) -> Quarantined and deleted successfully.
Registry Values Detected: 4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|IAStorIcon (Trojan.Agent) -> Data: C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\PROGRAM FILES (X86)\RAZER\IMPERATOR\RAZERIMPERATORSYSTRAY.EXE (Trojan.Agent) -> Data: 1 -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Razer Imperator Driver (Trojan.Agent) -> Data: C:\Program Files (x86)\Razer\Imperator\RazerImperatorSysTray.exe -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|PWRISOVM.EXE (Trojan.Agent) -> Data: C:\Users\Thomas\Desktop\MISC\Download tools\PowerISO\PWRISOVM.EXE -startup -> Quarantined and deleted successfully.
Registry Data Items Detected: 1
HKCR\exefile\shell\open\command| (Broken.OpenCommand) -> Bad: (C:\Windows\svchost.com "%1" %*) Good: ("%1" %*) -> Quarantined and repaired successfully.
Folders Detected: 0
(No malicious items detected)
Files Detected: 41
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Razer\Imperator\RazerImperatorSysTray.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\Desktop\MISC\Download tools\PowerISO\PWRISOVM.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Mail\WinMail.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\ProgramData\Package Cache\{8e70e4e1-06d7-470b-9f74-a51bef21088e}\vcredist_x86.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Common Files\microsoft shared\MSInfo\msinfo32.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\nsb8EFB.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\safeguard.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\crashreporter.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\updater.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\webapp-uninstaller.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Media Player\setup_wm.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Media Player\wmlaunch.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Media Player\wmpconfig.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Media Player\WMPDMC.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Media Player\wmprph.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Windows Media Player\wmpshare.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Guest\AppData\Local\Temp\3582-490\CLIStart.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Guest\AppData\Local\Temp\3582-490\MOM.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Guest\AppData\Local\Temp\3582-490\WinMail.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\3582-490\firefox.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\Low\3582-490\AdobeARM.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\n1s\nchsetup.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\Temp1_CopyTransDriversInstallerv1.027.zip\CopyTransDriversInstall er.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\{130DF3E4-229B-4C01-94B9-9722D503A9F3}\ISBEW64.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\AppData\Local\Temp\{E815928B-452A-4DE5-A97D-CF21C7BCFCE0}\ISBEW64.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\Downloads\ChromeSetup (1).exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\Local Settings\Temporary Internet Files\Content.IE5\1BILHP7Y\Install_CopyTrans_Suite.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\Local Settings\Temporary Internet Files\Content.IE5\1BILHP7Y\JavaSetup7u21[1].exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Thomas\Local Settings\Temporary Internet Files\Content.IE5\1BILHP7Y\stable[1].exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\svchost.com (Trojan.Agent) -> Quarantined and deleted successfully.
(end)
I just restarted my computer and now all firefox shortcuts have been deleted as well as the startup for the browser. Seems like most of the other files stayed though should I reinstall firefox?