While in my university today It happened that a friend surfed the web on my laptop using IE, and I usually use firefox. I'm not sure what exactly happened (before that the browser was okay), minutes after I got back to my laptop, opened firefox and got a sum of firefox browsers open, each with almost 20 tabs; one of the tabs had some thing like a directory with many files listed... That was like crazy
Never mind, I rebooted, installed AVG in safe mode, then booted back into normal mode. Scan resulted in a Trojan horse and few tracking cookies (theoretically AVG cleaned those for me).
Still the problem resumed...when ever I open ff many browsers open !
My next step was to uninstall ff then install it again... still had the same problem.
Finally I decided to resort to process explorer, it is a powerful diagnostic tool, but I'm still discovering all the information that it shows. I managed to locate a process that I suspected its presence in the list "svchost.exe" which is located in system32 folder. To my surprise this was the first time I see all these in there, and the files where the same that I saw in one of the tabs
My first reaction was to delete the whole file, but keeping in mind system32 folder is a windows system folder, I don't want to screw things up on my device. So I deleted an empty folder in the list having the name "DRVSTORE" actually the color of the name (blue) attracted my attention and the fact that its empty.
Right now the issue resolved... but my question is:
What happened ?
Should I do a clean up for system32 ? What files do I delete ?
Do you think AVG free edition is sufficient to block such "thing" ?
Does any one recommend a better free antivirus ?
Sorry for the loooong post
and thanks for your replies ^^
But if you don't like to do it manually or don't have time for it or whatever, try system restore it might work.
