Hi. I'm a little paranoid that my computer might be infected after coming across some sort of drive-by-download site today. It happened through a redirect after clicking what looked like a legitimate link in a blog.
Upon doing a DNS lookup on the site's address through VirusTotal, I found this:
Yikes. Not good.
My computer isn't showing any signs of infection. When I opened the page (which looked like one of those "Your comp is infected, do this to fix it!" scam prompts), I immediately closed out Firefox, rebooted my system, verified that everything seemed to function okay, and went to town with scanning tools.
MalwareBytes Anti-Malware 12.17.2016 : shows clean.
MalwareBytes Anti-Rootkit, latest version(today): clean.
Panda Antivirus full system scan: clean.
ESET Online Scanner tool: also clean. I disabled Panda before scanning.
I also did a systemwide search for modified files from the time of the 'infection' to a bit after the reboot (about an hour and a half), and I didn't notice anything that looked weird or out of place. Still, I'm paranoid.
I'm on Windows 10, Panda Antivirus, MBAM, MBAE, Comodo Firewall.
(Also: It's that expressionsrealia site in the listings -- I have no idea if you can sandbox or VM a site like that to see what the infection might be, but if you can, there you go. It's definitely malicious though).
Edited by RachelLil, 17 December 2016 - 06:10 AM.