I have been wrestling with this for days....I hear constant clicking in the background of my computer and my volume keeps turning itself off. I've run Microsoft Basic essential,rkill, malbytes,mcafee.even ran thatcyberdefender thing that took two days to get off of my computer. ( it is also malware believe me). Finally Clamwin came up with this:


C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A10EXZLX\in[1].htm: JS.Redirect-4 FOUND


I'm hoping someone here knows what they are looking at before I delete this. I could end up doing more damage than the virus if I delete a false positive. >_<

You are probably okay, no matter what, if you delete something from a temporary file. The Trojan.JS Redirect files are really "popular" now among malware authors. It is related to spam and I don't think it is too bad, but it could be. Malware is malware, and spam is becoming allied with the bad stuff now.

The majority of malware is somewhere in the System32 folder and/or the primary user temporary folder (C:\Users\Bob\AppData\Local\Temp on my Vista). The Rogue AV programs could be in c:\Programs\RogueAVName or in C:\RogueAVName.

Regards,

I'm getting a lot of clicking. pop ups and my volume keeps getting turned off. I'm getting a lot of messages asking me if I want to use Explorer as my main browser even though I am running FireFox...so I believe its opening internet explorere even though I can't see it. I've run Clamwin, Malbytes,Security essentials. Ive used Rkill and have reset my computer back to an earlier date, but nothing has helped.

So you have used system restore to revert back. How far back did you go? Can you go back farther than that? System restore does not restore your programs--just some components of the Windows OS, so if this involves a program, like a media player, it can't help you.

You might try a complete scan with Malwarebytes and ClamWin in safe mode. Hit F8 every second or so after you start or restart until you see the safe mode screen. Then select safe mode with networking and scan. Then go to the Bitdefender web site and do an online scan. As a last resort, try a scan with an antivirus boot rescue disk. They use the Linux OS, which can scan your computer and will not be fooled by hidden Windows viruses. I like the one from F-Secure. You have to download the rescue disk, save it as an ISO file to a CD with your CD burner and then insert it and restart your computer. Take the default when given any choices (let it run itself mostly). You should have a wired connection (not wireless) to the internet when you run it.

If that does not work, I suggest you contact one of the help sources mentioned on the ClamWin antimalware page.

Good luck.

Regards,

thanks bob, i had that same problem with rock and i had fixed it. But i have some problem, i don't know why the antivirus had been update it take my computer so slow, i don't know why but i think my computer so slow because RAM, i have bought this lap for 2 years so RAM just 1gb.I think that was the main cause of trouble on. Is that it?

You might try to uninstall any programs that you do not really need. This could help the computer to run faster. Then run Disk Cleanup and Disk Fragmenter, which are system tools you can access via Start, All Programs, Accessories, System Tools. That might speed things up.

If ClamWin is your only antivirus, you might want to download the free version of Malwarebytes from https://shop.malwarebytes.org/lpa/342/3/7268/index_b.html?_kk=malware%20bytes&_kt=a242b45a-7b38-4f7d-b28e-ea3e0e10b55f&gclid=COfI_8fWjaoCFYgW2godXX8ZzA on the web. The free version download is at the bottom left of the page. Do a daily manual scan with it for extra protection.

You can use the Clam Sentinel program to turn ClamWin into a real-time scanner. Sentinel is a separate project available at https://sourceforge.net/projects/clamsentinel/ on the web. Read the Simple Guide before you install Sentinel. ClamWin must be already installed before you can use Sentinel.

Please send me a private message if you have any problems.

Regards,