Another constant "Malicious URL blocked" popup: eu1.triplemining.com

Hello.

I was suffering this problem with constant “malicious URL blocked” message popping up too. I followed steps in “Logs to assist in cleaning malware” topic. And after installing Malwarebytes’ Anti-malware, avast! stopped showing this message, but antimalware started showing me following message again and again:

https://lh3.googleusercontent.com/-Rii325as5wI/UIE9joyn1sI/AAAAAAAAIEw/bDavE5KmJSE/h120/antimalware+popup.jpg

Attached I send all logs created during process, described in “Logs to assist in cleaning malware”. I’d be really grateful if you help me. Thank you in advance.

PS. Due to message size limitations I’ll send OTL in next message.

OTL log is more than 200 kb, so I splitted it into two parts. Sorry about that. Here is part one.

Here is part 2.

MBAM does not like the location where you are downloading your torrents from …

Has Avast now ceased alerting ?

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

https://dl.dropbox.com/u/73555776/OTL_Fix.GIF


:OTL
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_12-windows-i586.cab (Java Plug-in 1.5.0_12)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)

:Commands
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

Thank you for the quick reaction.
Firstly, yes – avast! ceased alerting me. But Anti-malware continues alerting me. Even after the script was run.
I run OTL quick scan with All users checked, and None for Extra registry. Here is the log.
Thank you very much.

Could you delete all your current Torrent seeds as one of them may be partially infected

THANK YOU, GREAT PERSON! :slight_smile:

I deleted all my .torrent files, it didn’t help. Then I deinstalled uTorrent with help of Your Uninstaller Pro (it cleans registry too). And now 1 hour after restart there is still no trace of the problem – hope it’s gone. Thank you very much for your help! God bless you! I hope all the Good you do to people one day comes back to you!! :slight_smile: Sorry for my English :slight_smile:

That is the problem with torrents… You do not know where the files are coming from

Subject to no further problems :slight_smile:

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems

Now the best part of the day ----- Your log now appears clean :thumbsup:

A good workman always cleans up after himself so…The following will implement some cleanup procedures as well as reset System Restore points:

Run OTL
[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

:Commands [resethosts] [emptytemp] [Reboot]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done

Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself.

We will now confirm that your hidden files are set to that, as some of the tools I use will change that
[*]Click Start.
[*]Open My Computer.
[*]Select the Tools menu and click Folder Options.
[*]Select the View Tab.
[*]Under the Hidden files and folders heading select Do not show hidden files and folders.
[]Click Yes to confirm.
[
]Click OK.

Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:

http://img233.imageshack.us/img233/7729/mbamicontw5.gif
Malwarebytes.

Update and run weekly to keep your system clean

Download and install FileHippo update checker and run it monthly it will show you which programmes on your system need updating and give a download link

It is critical to have both a firewall and anti virus to protect your system and to keep them updated. To keep your operating system up to date visit
[*]Microsoft Windows Update

To learn more about how to protect yourself while on the internet read our little guide How did I get infected in the first place ?Keep safe :wave: