Avast reports blocking outgoing URL attempts Win 8.1

I have a laptop that was infested with quite a few PUPs, torjans, viruses, adware and just about everything else.

I have removed most of the problem programs and infections using a combination of adwcleaner, JRT, Malwarebytes and Avast and Trend Micro’s House Call. Anything left over was removed using Revo uninstaller.

I also performed a scan booting from an AVG rescue disk.

The problem is that, even though the computer works perfectly, Avast keeps reporting that it has blocked malware. It seems to be outgoing attempts to contact assorted websites. I thought I had everything cleaned up until this started happening.

For example:

hxxp://bestdriverstar.net/4242/segmentsustainer_142667093542149.dll (Process svchost.exe)

hxxp://anythicago.com/4242/seekerinstance_142666919466027.dll (missed the process on this one)

hxxp://simplesitescan.net/4242/softwareForce_142669433532350.dll (Process c:\windows\system32\svchost.exe

They all follow the same pattern of Avast going “ding-ding-ding” Threat has been detected, and then a window will pop up showing it blocked an attempt at outside communication (URL:Mal).

I have done the full Avast scan that reboots the computer and scans everything, and it did find some infected files, which were quarantined or removed. I’m still getting this problem though.

In Programs and Features, I have looked through the entire list and all the remaining programs are from Microsoft, ASUS, Adobe, Alcor Micro Corp (USB card reader), Atheros (network driver, bluetooth driver, client installation program), IvoSoft (Classic Shell), or Intel. Nothing unusual that I can find.

I have run FRST and aswMBR and attached the logs. I did not attach the Malware Bytes long because it was the first piece of software I scanned with and I didn’t save the long. It has since been uninstalled. I can reinstall and rescan with it if needed.

Hello,

https://sites.google.com/site/cannedfixes/home/hosted-images-tools/51a612a8b27e2-Zoek.png
Scan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

[*]Right-click on
https://sites.google.com/site/cannedfixes/home/hosted-images-tools/51a612a8b27e2-Zoek.png
icon and select
https://sites.google.com/site/cannedfixes/home/hosted-images-tools/RunAsAdmin.jpg
Run as Administrator to start the tool.
[]Wait patiently until the main console will appear, it may take a minute or two.
[
]In the main box please paste in the following script:

createsrpoint;
autoclean;
emptyalltemp;
ipconfig /flushdns;b

[*]Make sure that Scan All Users option is checked.
[*]Push Run Script and wait patiently. The scan may take a couple of minutes.
[*]When the scan completes, a zoek-results logfile should open in notepad.
[*]If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Post its content into your next reply.

I have attached the file you requested.

Please note, I have to go to work and may not be able to reply again until Sunday night or Monday morning.

Please note. Since we started working on this today, I have not heard the warning from Avast on the computer. Yesterday it was showing up every few minutes, and sometimes as soon as the computer booted, but I haven’t heard it once today.

How is your PC behaving now?

To be honest, I haven’t seen those popups since just before we started doing all this.

I just turned the laptop back on again, and I will let it run until tomorrow and let you know how it is running.

Okay.

I still have not gotten any of those popups fro Avast. I think it might be fixed. They used to show up completely randomly, but several times while the computer was just sitting idle, and sometimes multiple times in a row.

Thanks for your help. I think this is solved.

The following will implement some post-cleanup procedures:

=> Please download DelFix by Xplode to your Desktop.

Run the tool and check the following boxes below;
[i]
http://www.mcshield.net/personal/magna86/Images/checkmark.png
Remove disinfection tools

http://www.mcshield.net/personal/magna86/Images/checkmark.png
Create registry backup

http://www.mcshield.net/personal/magna86/Images/checkmark.png
Purge System Restore [/i]
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:[b]DelFix.txt[/b])

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.