Results 1 to 6 of 6

Thread: Launcher.exe malware

  1. #1
    globalthinker Guest

    Default Launcher.exe malware

    For several days my pc began to behave very slowly. For a day or two Outlook would suddenly stop downloading new messages, saying that another application has locked the .pst file.

    Yesterday I suddenly saw a ZA message (I have ZA Extreme Security installed) saying that it had found a virus during a scan and asked me to close all applications so that it could apply advanced disinfection, after which a reboot would be required. I okayed it, and no reboot resulted. The file seemed to be associated with the Uniblue registry booster.

    I was suspicious, and prepared for a full system scan. I tried to update the signature files, but ZA was unable to do so. I started the full scan anyway. About 17% of the way through it stopped in a very similar manner, but with a different file. In both cases it mentioned Launcher.exe . The error message was "Malware has been detected that requires advanced disinfection to be properly treated. If run, the system will be automatically restarted after completio. Please close any open documents. Do you want to allow this." In the first case (previous paragraph), I clicked "yes". In the second, I clicked "no". In both cases, it proceeded anyway, and then the scan continued after treatment.

    Another notice was common to these two instances: "The application or DLL [path name] is not a valid Windows image. Please check against your installation diskette." In one case the identified path was C:\Documents and Settings\Bill\Application Data\Uniblue\Registry Booster\_temp\ub.exe and the other was C:\WINDOWS\system32\mstm13.dl .

    In one case the identified infection was Trojan-FakeAV.Win32.RegBoster.a . [The misspelling of Booster was in the identified on-screen message.]

    My full system scan is still running (it takes about 15 hours). What's next?

    BTW: I tried to run Malwarebytes, which I have used multiple times in the past. I received an error message: "The application or DLL C:\Program Files\Malwarebytes' Anti-Malware\mbabm.exe is not a valid Win32 application."

  2. #2
    Join Date
    Jun 2006
    Location
    The 3rd Coast - South Central Texas
    Posts
    10,465

    Default Re: Launcher.exe malware

    Hi!

    please follow ALL the steps as suggested here:
    Malware Clean-up Guidance <== click here

    considering you may have been infected by malware you should really have a close look to this:
    xyz was not detected. What I should do? <== Click here
    Last edited by GeorgeV; August 17th, 2011 at 05:25 AM. Reason: typo
    GeorgeV
    ZoneAlarm® Extreme Security


    Click here for ZA Support
    Monday-Saturday__ 6am to 10pm Central time
    Closed Sundays and Holidays

  3. #3
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,291

    Default Re: Launcher.exe malware

    Does not sound very promising. If you are not able to run malwarebytes you may have been infected by a malware that hooked at kernel level and intecept all calls to the system. For some of these malware you may need to reformat to be sure your are clean.

    Try to use a bootable CD (see malware guidance post) and be sure to get your system checked at spywarehammer or bleepingcomputer forums.

    Also ensure you are running the latest ZAX version (build 250)

    Thanks,
    Fax

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  4. #4
    globalthinker Guest

    Default Re: Launcher.exe malware

    I cannot even check the version of ZA I have (installed in June 2011). The error message is
    "The application or DLL C:\program files\checkpoint\lib\zclient.zip.dll is not a valid Windows image. Please check this against your installation diskette."

    What next?

  5. #5
    Join Date
    Nov 2004
    Location
    localhost
    Posts
    17,291

    Default Re: Launcher.exe malware

    As already indicated, you need to get specialised malware help at the spywarehammer or bleepingcomputer. Please see link in the malware guidance post.
    Volunteers there will guide you trough specific steps to recover your PC in a efficient and effective way.

    And for the future never ever beleive any pop-up windows that tells you are infected or your system is damaged. They are fake, close them. Also enable ZA virtualization (off on default installs). This will isolate the browser from the rest of the system. It will however not protect you if you decide to run specific executables anyway.

    Also do not run regsitry cleaners or optimizers they normally mess more than fixing. If you cannot avoid then install the free ccleaner is widely used and overall safe.

    Thanks,
    Fax
    Last edited by fax; August 17th, 2011 at 09:23 AM.

    Click here for ZA Support
    Monday-Saturday 6am to 10pm Central time
    Closed Sundays and Holidays

  6. #6
    Join Date
    Dec 2002
    Location
    San Carlos, California
    Posts
    1,636

    Default Re: Launcher.exe malware

    This was a false positive by Kaspersky AV yesterday.

    Its since been fixed.
    Click here for ZA Support
    Monday-Saturday__ 6am to 10pm Central time
    Closed Sundays and Holidays

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. New World of Warcraft Launcher is not remembered as allowed
    By greygoosecitrus in forum Access Issues
    Replies: 3
    Last Post: April 9th, 2010, 08:58 AM
  2. orz.exe and hpzipm12.exe malware ?
    By darthb in forum Malware Discussion
    Replies: 1
    Last Post: August 29th, 2008, 03:01 PM
  3. Is CNMSM5Y.EXE malware?
    By zoofence in forum ZoneAlarm Anti-virus & Anti-spyware
    Replies: 4
    Last Post: January 28th, 2008, 12:28 PM
  4. Are QdrModule10.exe and QdrPack10.exe Malware?
    By stevekrk in forum Malware Discussion
    Replies: 4
    Last Post: December 17th, 2007, 02:02 AM
  5. Logitech Launcher Appn trying to launch
    By huneee in forum Windows and ZoneAlarm Messages and Alerts
    Replies: 5
    Last Post: July 6th, 2006, 08:28 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •