Avast keeps blocking malicious URLS that I am not trying to visit REPORT OF THE

Viruses and worms
1

Hi all
this is the problem "Avast keeps blocking malicious URLS that I am not trying to visit "

in attachments the report of the scan,like suggested in the guide

2

you should also attach the logs from aswMBR and Malwarebytes…as suggested in the guide :wink:

can you also attach a screenshot of the avast warning ?

3

Follow the information on this topic, http://forum.avast.com/index.php?topic=53253.0 and include the other logs. There should also be an extras.txt file created the first time you run OTL.

4

Other report

5

and also

6

screenshot

7
C:\users\Gabriele\AppData\Local\Temp\9uE1E99.exe
upload suspicious file(s) to www.virustotal.com and test with 40+ malware scanners when you have the result, copy the url in the address bar and post it here for us to see

alternative
Jotti http://virusscan.jotti.org/en
VirSCAN http://virscan.org/
Metascan http://www.metascan-online.com/

8

O4 - HKU\S-1-5-21-1047438073-2370129650-4229702673-1002…\Run: [4Y3Y0C3AVF7XWDYVDBYAITT] C:\Recycle.Bin\B6232F3A4DC.exe ()

C:\Recycle.Bin\B6232F3A4DC.exe

upload suspicious file(s) to http://www.virustotal.com/

9

https://www.virustotal.com/file/98a24f0caf5b578e230e6f1103a5fba6aecb28a9128cad5520fcde546d643272/analysis/

10

I don’t know why i can’t upload
this
C:\Recycle.Bin\B6232F3A4DC.exe

11

The file you tested has a different name then the one we asked You to test?

12

Send this file as long as the laboratory for analysis, and wait for help from assistants.

Essexboy will help you.

For the archive file and try.

13

How i can send this file (C:\Recycle.Bin\B6232F3A4DC.exe) to the “laboratory”???

On the other hand this is the analysis requested by pondus
(C:\users\Gabriele\AppData\Local\Temp\9uE1E99.exe)

https://www.virustotal.com/file/98a24f0caf5b578e230e6f1103a5fba6aecb28a9128cad5520fcde546d643272/analysis/1332777607/

14

Create a directory, copy the file from the Recycle B6232F3A4DC.exe, put in quarantine and send it to avast for analysis, and check for VT.

15

Yep that is the bad boy - this should stop the alerts

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

If you have Malwarebytes 1.6 or better installed please disable it for the duration of this run

Run OTL

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL O4 - HKU\S-1-5-21-1047438073-2370129650-4229702673-1002..\Run: [4Y3Y0C3AVF7XWDYVDBYAITT] C:\Recycle.Bin\B6232F3A4DC.exe ()

:Files
ipconfig /flushdns /c
C:\Users\Gabriele\AppData\Local\Temp\9uE41DF.exe

:Commands
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]


[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.