i got trojan horse every site i visited....

it happens 10minutes ago…

even at avast forum the avast detect trojan

how do fix this

This needs further analysis by a malware removal specialist:
Go to this topic http://forum.avast.com/index.php?topic=53253.0 for information on Logs to assist in cleaning malware. Use the information about getting and using the tools and attach the logs here, not in the LOGS topic.

What browser are you using and or does it happen on all browsers ?

lol… adwcleaner not work

Why doesn’t it work (error messages, etc.) ?

Work your way through the others (MalwareBytes, OTL) posting the logs so they can be analysed.

logs

The main log is the OTL one could you attach that

If you can proceed with OTL and attach its logs and we will try and find you a malware removal specialist to check the logs.

Ha too slow this time ;D

Same thing happens to me, Avast’s web shield treats every site I go as trojan(including this forum)
I turned off my web shield so I can browse here. Is there something wrong with Avast’s web shield today? :confused:
It wasn’t like this an hour ago…

This looks like a web shield issue on some PC’s even my clients are reporting these.What’s going on?? ::slight_smile:

Avast going paranoid! :o

same here i just disabled the avast

If it was an update problem then I feel I would be getting it as well, however all is quiet apart from piriform

same here…dont know why then we have so many people reporting same crap at the same instance :o

EDIT: even some people on avast FB reporting same issue…and someone from avast team answered that its a bug they are aware of! :wink:

OTL

Let me know the result of this run, also could you screenshot the alert

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

https://dl.dropbox.com/u/73555776/OTL_Fix.GIF


:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\okjke.sys -- (amsint32)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/1.4/jinstall-14_01-windows-i586.cab (Java Plug-in 1.4.1_01)
O16 - DPF: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA} http://java.sun.com/products/plugin/1.4/jinstall-14_01-windows-i586.cab (Java Plug-in 1.4.1_01)

:Commands
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

OTL LOG

Are the alerts still occuring ?

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

https://dl.dropbox.com/u/73555776/OTL_Fix.GIF


:OTL
O4 - HKLM..\Run: [VistaDrive] C:\WINDOWS\VistaDrive\VistaDrive.exe ()

:Files
C:\WINDOWS\VistaDrive

:Commands
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

yup it still pop-op even in this forum…

i disabled it for 10min so i could use chrome and post to this thread

the VistaDrive.exe is for my theme

OK it had no date or author so was suspect

Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

  • IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

[*]Double click on ComboFix.exe & follow the prompts.
[*]Accept the disclaimer and allow to update if it asks

http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png

http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png

[*]When finished, it shall produce a log for you.
[*]Please include the C:\ComboFix.txt in your next reply.

Notes:

  1. Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
  2. Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
  3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

combofix LOG…

keep poping-op… :-X

Does this appear in all browsers or just Chrome ?