Author Topic: Harmful Webpage  (Read 19068 times)

0 Members and 1 Guest are viewing this topic.

denebuff

  • Guest
Harmful Webpage
« on: April 08, 2014, 10:13:03 PM »
I was hoping someone could give me some help, Im not a computer tec. just a average guy tired of spending money to people that can't fix a problem.
I had my XP desktop worked on because of a virus. 5 days later and $70.00 for the repair now I get a pop up every 3 to 4 minutes  with the attached picture. I called AVAST Tec Surport but they wanted $170.00 to fix problem. I can't do that.

Offline Secondmineboy

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3645
Re: Harmful Webpage
« Reply #1 on: April 08, 2014, 10:21:32 PM »
Thats some malware that wants to call home :)

Follow this guide and attach the logs from Malwarebytes, OTL and aswMBR: http://forum.avast.com/index.php?topic=53253.0

Windows XP is not getting anymore Updates and is very insecure now, Hackers collected Security leaks over the last months.
Its recommended to switch to Windows 7 or 8 if possible.
Windows 10 1909, 4 GB DDR3 RAM, 500 GB 5400 RPM HDD, 1366 by 768 LCD Screen, Intel Core i3 5010U Dual Core, Intel HD Graphics 5500
HUAWEI P30 Pro. Android 10

denebuff

  • Guest
Re: Harmful Webpage
« Reply #2 on: April 08, 2014, 10:29:59 PM »
Stven can you please explain what attach the logs from Malwarebytes, OTL and aswMBR: means

Offline Secondmineboy

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3645
Re: Harmful Webpage
« Reply #3 on: April 08, 2014, 10:31:59 PM »
Click the Attachments and other options function under the answer Box and select the logs to attach them.
(See screenshot)

Mine is in German but the placement is the same.
Windows 10 1909, 4 GB DDR3 RAM, 500 GB 5400 RPM HDD, 1366 by 768 LCD Screen, Intel Core i3 5010U Dual Core, Intel HD Graphics 5500
HUAWEI P30 Pro. Android 10

Offline Michael (alan1998)

  • Massive Poster
  • ****
  • Posts: 2768
  • Volunteer
Re: Harmful Webpage
« Reply #4 on: April 08, 2014, 10:55:58 PM »
Just a little more in depth to what Steven said.

When you finish running the programs, they'll produce logs. (MBAM=1, OTL=2 on first run and aswMBR=1). Following Stevens pictures, which is in (Dutch?) I believe. When you make your next post, there is a option called Attachments & Other Options. CLick it

The picture is in german, Michael. :)

Sorry, lol, thought that was dutch.
« Last Edit: April 08, 2014, 10:59:42 PM by Michael (alan1998) »
VOLUNTEER

Senior Security Analyst; Sys Admin (Linux); Forensics/Incident Response.

Security is a mindset, not an application. Think BEFORE you click.

Offline Secondmineboy

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3645
Re: Harmful Webpage
« Reply #5 on: April 08, 2014, 10:57:48 PM »
The picture is in german, Michael. :)
Windows 10 1909, 4 GB DDR3 RAM, 500 GB 5400 RPM HDD, 1366 by 768 LCD Screen, Intel Core i3 5010U Dual Core, Intel HD Graphics 5500
HUAWEI P30 Pro. Android 10

denebuff

  • Guest
Re: Harmful Webpage
« Reply #6 on: April 08, 2014, 11:08:36 PM »
Ok Thank you both, I'm running the scan as we speak, I'll keep you posted. so far it has found 3 objects and still running.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Harmful Webpage
« Reply #7 on: April 08, 2014, 11:14:04 PM »
Monitoring, this may be an infected system file

denebuff

  • Guest
Re: Harmful Webpage
« Reply #8 on: April 08, 2014, 11:25:54 PM »
OK it finished put I just got another pop up, also the 3 are quarantined   it did not ask me to do a reboot should I reboot .

Offline Secondmineboy

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3645
Re: Harmful Webpage
« Reply #9 on: April 08, 2014, 11:27:29 PM »
If its not asking for a reboot there is no need to reboot.

Save the log and attach it here later. :)
Windows 10 1909, 4 GB DDR3 RAM, 500 GB 5400 RPM HDD, 1366 by 768 LCD Screen, Intel Core i3 5010U Dual Core, Intel HD Graphics 5500
HUAWEI P30 Pro. Android 10

denebuff

  • Guest
Re: Harmful Webpage
« Reply #10 on: April 08, 2014, 11:58:32 PM »
I'm running the OTL but forgot to past this in.
netsvcs
BASESERVICES
%SYSTEMDRIVE%\*.exe
c:\program files (x86)\Google\Desktop
c:\program files\Google\Desktop
dir "%systemdrive%\*" /S /A:L /C
/md5start
rpcss.dll
/md5stop
CREATERESTOREPOINT

Offline Secondmineboy

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3645
Re: Harmful Webpage
« Reply #11 on: April 09, 2014, 12:01:38 AM »
Just abort the scan and run it from scratch please.

Be sure to attach the correct log.
Windows 10 1909, 4 GB DDR3 RAM, 500 GB 5400 RPM HDD, 1366 by 768 LCD Screen, Intel Core i3 5010U Dual Core, Intel HD Graphics 5500
HUAWEI P30 Pro. Android 10

denebuff

  • Guest
Re: Harmful Webpage
« Reply #12 on: April 09, 2014, 12:06:26 AM »
OK Will do.

denebuff

  • Guest
Re: Harmful Webpage
« Reply #13 on: April 09, 2014, 01:28:22 AM »
OK Here is the log.



Offline Secondmineboy

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3645
Re: Harmful Webpage
« Reply #14 on: April 09, 2014, 01:37:01 AM »
Now please run aswMBR and attach the logs from aswMBR and Malwarebytes. ;)

Then essexboy will check the logs.
Windows 10 1909, 4 GB DDR3 RAM, 500 GB 5400 RPM HDD, 1366 by 768 LCD Screen, Intel Core i3 5010U Dual Core, Intel HD Graphics 5500
HUAWEI P30 Pro. Android 10