Hello all,
i keep getting notifications from avast shield that it has blocked JS:Downloader-ZY [Trj] on almost every page i try to open. I did everything i know that includes:
making avast do a full and a boot scan
Malwarebytes Anti-malware scan
ESET Online Scanner scan
Here are some logs i collected during all the scanning unfortunately i forgot to export the ESET log.
I would be really grateful if someone can help me. Btw i am using windows 8.1.
Regards Valentin
Hi nothing jumps out at me in that log, so I will use a different analysis tool
Could you post a screenshot of the Avast alert as that will provide more data
Please download Farbar Recovery Scan Tool and save it to your Desktop.
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
[*]Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
[*]Select both shortcut and additions at the bottom
[*]Press Scan button.
https://dl.dropboxusercontent.com/u/73555776/frst.JPG
[*]It will produce a log called FRST.txt in the same directory the tool is run from.
[*]Please attach all 3 logs generated.
Here is the ss and the 3 logs
Could you right click the Avast icon and select “show last popup message” then screenshot that one 
Meanwhile I will look at the logs
done.
Ta as that narrowed it down to Firefox
On completion of this let me know if the alerts still occur
Download the attached Fixlist.txt to the same location as FRST
Run FRST and press Fix
On completion a log will be generated please post that
now it showed this alert
OK could you run a very quick test for me and use Internet explorer and see if you get the alert there
as far as i can tell not on IE everything seems ok
OK thanks that would rule out a much deeper infection
Could you now run Firefox in safe mode and let me know if that stops it
https://support.mozilla.org/en-US/kb/troubleshoot-firefox-issues-using-safe-mode
Well it seems that is has stopped and everything seem ok while is safe mode
OK what you need to do now is run Firefox normally and disable all add ons
Thenenable them one at a time until the alerts occur.
Let me know which add on that is
Seems like non of the add ons pops the alert if i did not know better i would say it is scared i have to go now but i will keep testing and will inform if there is any change but for now it seems like the problem solved itself.
It may have been the removal of the xml files and starting ion safe mode. Or I just scared it 8)
Well i am not sure how but the alert i gone for good and the problem is solved so this tread can be considered closed. Thank you essexboy for the immediate response and time devoted to my problem.
In that case methinks I will send you on your merry way
Subject to no further problems
I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean 
A good workman always cleans up after himself so…The following will implement some cleanup procedures as well as reset System Restore points:
Download and run Delfix
https://dl.dropboxusercontent.com/u/73555776/delfix.JPG
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
CryptoPrevent install this programme to lock down and prevent crypto ransome ware
https://dl.dropboxusercontent.com/u/73555776/CryptoPrevent.JPG
Update and run weekly to keep your system clean
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe 