avast! on Twitter |
avast! on Facebook
viruses and worms > viruses and worms
URL/Mal Help
xEPICxACIDx:
avast keeps poping up every few seconds saying it blocked this htp://eu.triplemining.com:8344/ i dont know how to get rid of it. thanks
mikaelrask:
hey and welcome to the forum. please chance the link so i will be non clickable.
second i suggest you follow this guide and post your result here. so a malware expert can have a lock at it, and help you from there.
http://forum.avast.com/index.php?topic=53253.0
good luck.
xEPICxACIDx:
Heres the right logs i think.
Pondus:
also aswMBR and Malwarebytes log please
essexboy:
On completion of this run can you let me know if the alerts cease
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
If you have Malwarebytes 1.6 or better installed please disable it for the duration of this run
To disable MBAM
Open the scanner and select the protection tab
Remove the tick from "Start with Windows"
Reboot and then run OTL
Run OTL
[*]Under the Custom Scans/Fixes box at the bottom, paste in the following
--- Quote ---:OTL
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
IE - HKU\S-1-5-21-1560450101-3058666208-1493999784-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
IE - HKU\S-1-5-21-1560450101-3058666208-1493999784-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
IE - HKU\S-1-5-21-1560450101-3058666208-1493999784-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.linkury.com/newtab.html
IE - HKU\S-1-5-21-1560450101-3058666208-1493999784-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
IE - HKU\S-1-5-21-1560450101-3058666208-1493999784-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
IE - HKU\S-1-5-21-1560450101-3058666208-1493999784-1000\..\SearchScopes,DefaultScope = {91F91330-541D-4d1b-8022-D8A32F158169}
IE - HKU\S-1-5-21-1560450101-3058666208-1493999784-1000\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
FF - prefs.js..browser.search.selectedEngine: "Linkury Smartbar Search"
FF - prefs.js..keyword.URL: "http://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:7317400059&cof=FORID:11&sa=Search&siteurl=search.linkury.com&q="
FF - prefs.js..network.proxy.type: 1
[2012/03/03 17:12:31 | 000,002,412 | ---- | M] () -- C:\Users\Brennan\AppData\Roaming\Mozilla\Firefox\Profiles\vslx1x60.default\searchplugins\Linkury Smartbar Search.xml
O2:64bit: - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
:Files
ipconfig /flushdns /c
:Commands
[purity]
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]
--- End quote ---
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply. [/list]
Navigation
[0] Message Index
[#] Next page