Author Topic: VIRUS: raphidewakener.com  (Read 882 times)

0 Members and 1 Guest are viewing this topic.

Offline clone.kam

  • Newbie
  • *
  • Posts: 1
VIRUS: raphidewakener.com
« on: August 04, 2022, 12:36:50 PM »
Every single time i open the Chrome browser, i get an avast virus warning and the virus is as written above.
 
My antivirus is up to date and i have already done a few deepscans with boot time scans too, but it doesn't go away. I feel that it might be some kind of extension, but am not sure. Kindly assist.

Offline rocksteady

  • Super Poster
  • ***
  • Posts: 1316
Re: VIRUS: raphidewakener.com
« Reply #1 on: August 05, 2022, 04:12:04 PM »
Can you please capture and then post here a screenshot of the Virus Warning you see.

Offline DavidR

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 86921
  • No support PMs thanks
Re: VIRUS: raphidewakener.com
« Reply #2 on: August 05, 2022, 04:15:40 PM »
Commonly these are related to the browser extensions/add-ons, try running chrome without add-ons and see if it stops.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 22.9.6034 (build 22.9.7554.734) UI 1.0.728/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33522
  • malware fighter
Re: VIRUS: raphidewakener.com
« Reply #3 on: August 06, 2022, 01:26:13 PM »
3 other security vendors also flag this website as being malicious:
https://www.virustotal.com/gui/url/a49368d654219b3c3602224ef59207c5b6b42facfa591002a6b585e771c87875?nocache=1

Site is being blacklisted: McAfee
Quote
System info
IP addresses-142.91.159.110, -172.255.6.114, -172.255.6.119, -172.255.6.124, -172.255.6.134, -172.255.6.139, -172.255.6.150, -172.255.6.227, -172.255.6.232, -172.255.6.242, -172.255.6.248
ServerNginx
TLS CertificateIssued by Let's Encrypt
7 files detected on IP: https://www.virustotal.com/gui/ip-address/172.255.6.232/relations
See:
https://ipinfo.io/172.255.6.232  &  https://urlscan.io/result/d352952f-5879-407b-bbec-d54947e37579/#transactions

polonus
« Last Edit: August 06, 2022, 04:08:06 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!