Avast detected www.clickered.com

Viruses and worms
1

So I recently installed Avast and it keeps telling me that it protected me from www.clickered.com from trying to access Google Chrome. This message appears about every 10 minutes or so and in two messages. Also every time I open my Google Chrome I find that the application would be muted and I would receive a random radio signal. Below I’ve attached the Malywarebytes, OTL, AdwCleaner, and aswMBR log files. After I ran the AdwCleaner and hit Clean the messages haven’t popped up anymore, but I’m not so sure if my computer is still completely clean. If someone could help me clean out my computer of these malwares anything suspicious on the logs, I would greatly appreciate it. Thank you

2

Avast! is triggering late for me. Looks like someone is reviewing your logs. If they have repsonded in an hour or so I’ll notify someone for you…

3

Please download zoek.zip or zoek.rar by smeenk (
http://www.mcshield.net/personal/magna86/Images/Zoek_icon.png
) from here or here and save it to your Desktop.
Unpack the archive…

[*]Close any open browsers
[*] Temporarily disable your AntiVirus program. (If necessary)
If you are unsure how to do this please read this or this Instruction.

[*]Double click on zoek.exe to run the tool .
Please wait while the tool does not start…

[*]Copy the text present inside the code box below and paste it into the large window in the zoek tool:

filesrcm;
startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;

[*] Click on
http://www.mcshield.net/personal/magna86/Images/Run%20Script%20by%20zoek.png
button.
Please wait until a logreport will open (this can be after reboot)

[*]Save notepad to your Desktop and attach here zoek-results.log
Note: It will also create a log in the C:\ directory named “zoek-results.log

4

Follow the instructions from the qualified removal specialist to the dot.
Here follows some additional info on the pop-up adware/junkware at hand:
Infection: Trojan.Clicker.CM
This is a java-script code that is usually embedded in web pages in order to show
pop-ups with advertisements when a user visit a certain website.
In order to successfully display the pop-ups containing advertises,
the Trojan has functions to bypass Security Pop-up Blockers.
It has the ability to detect the Google Toolbar.
The Trojan displays pop-ups containing advertising from the following address :
htxp://asd.cl.com/serving/links.php? aka htxp://ads.click{blocked}sor.com/serving/links.php

polonus

5

I have attached the log file below

6

[*]Close any open browsers
[*] Temporarily disable your AntiVirus program. (If necessary)
If you are unsure how to do this please read this or this Instruction.

[*]Double click on zoek.exe to run the tool .
Please wait while the tool does not start…

[*]Copy the text present inside the code box below and paste it into the large window in the zoek tool:

WordOv;ff
emptyalltemp;
autoclean;
emptyclsid;

[*] Click on
http://www.mcshield.net/personal/magna86/Images/Run%20Script%20by%20zoek.png
button.
Please wait until a logreport will open (this can be after reboot)

[*]Save notepad to your Desktop and attach here zoek-results.log
Note: It will also create a log in the C:\ directory named “zoek-results.log

.

Here we should be alright.