Author Topic: JS:Illredir-BP [Trj] virus  (Read 4422 times)

0 Members and 1 Guest are viewing this topic.

wpjones57

  • Guest
JS:Illredir-BP [Trj] virus
« on: May 30, 2010, 08:59:25 PM »
I received the following email from my family's home computer last week while I was away on business.
___________________________________

avast! [HOMEACER]: File "hxxp://www.free-tv-video-online.info/" is infected by "JS:Illredir-BP [Trj]" virus.
"%3" task used
Version of current VPS file is 100522-1, 05/22/2010
___________________________________

When I arrived home yesterday, I found the Avast had been disabled on the PC but I could re-enable it. When I rebooted the PC, Avast restarted but again, was disabled. This time the web security portion was turned off and will not restart. Everything else seems to be working. I ran a full scan overnight which failed to find anything although a number of files were reported as inaccessible. The computer is functional however it is very sluggish. Any suggestions on my next step? Thanks!!
« Last Edit: May 30, 2010, 09:49:26 PM by wpjones57 »

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37614
  • Not a avast user
Re: JS:Illredir-BP [Trj] virus
« Reply #1 on: May 30, 2010, 09:27:24 PM »
Check for Malware with Malwarebytes Anti-Malware 1.46
http://filehippo.com/download_malwarebytes_anti_malware/
after install click update so you are scanning with latest database
run quick scan, click the remove selected button to quarantine any infections found
post the scan log here



VirusTotal - .free-tv-video-online.info.htm  - 8/41
http://www.virustotal.com/analisis/958540c5c11ab7f474eb38c1eafcefa442b1e202242353fc252ed13072f0fe35-1275247907
« Last Edit: May 30, 2010, 09:48:49 PM by Pondus »

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89336
  • No support PMs thanks
Re: JS:Illredir-BP [Trj] virus
« Reply #2 on: May 30, 2010, 09:32:10 PM »
@ wpjones57
- Please 'modify' your post change the URL from http to hXXp or www to wXw, to break the link and avoid accidental exposure to suspect sites, thanks.

Also use the forum search button at the top of the page for free-tv-video-online as this has recently been reported and confirmed there is something suspect about thes site.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.5.6116 (build 24.5.9153.762) UI 1.0.808/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33931
  • malware fighter
Re: JS:Illredir-BP [Trj] virus
« Reply #3 on: May 30, 2010, 10:53:41 PM »
Hi malware fighters,

This site is categorized as dangerous:
    
Report    2010-05-25 23:46:53 (GMT 1)
Website    free-tv-video-online[dot]info
MD5 Hash    95e846664fac8ce289fe46f839ac4688
IP Address    212.179.76.220
IP Hostname    bzq-179-76-220.static.bezeqint[dot]net
IP Country    IL (Israel)
AS Number    8551
AS Name    BEZEQ-INTERNATIONAL-AS Bezeqint Internet Back...
Detections    3 / 12 (25 %)
Status    DANGEROUS
      
Scanning site with:    BrowserDefender    DETECTED
Scanning site with:    Google Diagnostic    CLEAN
Scanning site with:    hpHosts    CLEAN
Scanning site with:    MalwareDomainList    CLEAN
Scanning site with:    McAfee SiteAdvisor    DETECTED
Scanning site with:    McAfee Trusted Source    DETECTED
Scanning site with:    MyWOT    CLEAN
Scanning site with:    Norton SafeWeb    CLEAN
Scanning site with:    PhishTank    CLEAN
Scanning site with:    TrendMicro Web Reputation    CLEAN
Scanning site with:    Web Security Guard    CLEAN
Scanning site with:    ZeuS Tracker    CLEAN

example of threat found: http://www.siteadvisor.com/sites/free-tv-video-online.info
polonus
« Last Edit: May 31, 2010, 12:02:34 AM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

wpjones57

  • Guest
Re: JS:Illredir-BP [Trj] virus
« Reply #4 on: May 31, 2010, 06:30:16 AM »
Anti-Malware found 0 infections as did full Avast scan. Avast still fails to initialize when the system is rebooted although it will startup when I manually launch it from the system tray. Maybe I should just reinstall Avast?