OK, you computer started acting strangely and you think there may be a virus?
This happened to me today, again. I downloaded a video file conversion tool and then noticed some popups and the process BLAMMI.exe is running and restarts whenever I kill it. Apparently this is an adware tool that also acts as a downloader of other programs. I checked with Malwarebytes and sure enough I was infected after having contact with some seedy software. It remover about 12 entries of adware (adware.gabpath) and some registry keys fro BLAMMI, but was unable to get to the registry entries for BLAMMI.exe or they were rewritten, because I found it after the restart (cleaning registry keys usually requires a restart). I did find an entry for BLAMMI.exe with regedit in:
Computer\HKEY_CURRENT_USER\software\blammi there is also a part of BLAMMI located in
APPDATA is an invisible folder controlled by hidden feature in folder preferences.
%APPDATA%\BLAMMI\BLAMMI.EXE
Related Files:
%Appdata%\Microsoft\Windows\nsl3.exe
%Appdata%\Blammi\Blammi.exe
%Appdata%\Blammi\config.cfg
%Temp%\nsl3.tmp
%Program Files%\Mozilla Firefox\components\bmff.dll
Finally installed AVG free on this computer and it's clean as a whistle, depending on who was using it before...It found another dozen dangerous files, but now every scan is clean, has no traces in the process list and has removed most of the registry entries. One left I will remove manually after making a backup. That's at: Computer\CURRENT_USER\software\blammi
Did that, now the restart.
This is the link to get FREE Malwarebytes Antivirus software, in my opinion one of the best tools for removing problems, the link is here for FREE download from CNET: http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button
Also I use AVG FREE, available at the link, just didn't have it on this computer: http://download.cnet.com/AVG-Anti-Virus-Free-Edition-2012/3000-2239_4-10320142.html?part=dl-avg_free_us&subj=dl&tag=button
I tried The Microsoft Safety Scanner, a FREE downloadable security tool, form Microsoft, but it would not remove BLAMMI in the registry. The downloaded file reportedly works for 10 days, then you have to get it again. Here's the link: http://www.microsoft.com/security/scanner/en-us/default.aspx
You can also get a real time scanner form Microsoft, The Microsoft Safety Scanner is a FREE downloadable security tool at: http://windows.microsoft.com/en-US/windows/products/security-essentials
While we're on Microsoft this is a useful site with their Microsoft Malicious Software Removal Tool also FREE: http://www.microsoft.com/security/pc-security/malware-removal.aspx
Also found this bit of code that you run on a command prompt, they claim will remove BLAMMI.exe:
I am running Vista Ultimate 64, hey it works for me, usually...
