I keep getting virus alert massages in the day

system · December 10, 2010, 2:09am

and I scan the computer with SAS and MAM and it didn’t stop
please help

system · December 10, 2010, 2:33am

What is the virus alert you are getting?
Who/what company is giving you this virus alert?

Can you please update MBAM and run a FULL scan. Make sure you “remove selected” button to quarantine anything found. Copy & Paste the entire report in your next reply. Thank you.

system · December 10, 2010, 7:17am

Malwarebytes’ Anti-Malware 1.50
www.malwarebytes.org

Database version: 5285

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

10/12/2010 09:07:44
mbam-log-2010-12-10 (09-07-44).txt

Scan type: Full scan (C:|D:|F:|G:|)
Objects scanned: 343199
Time elapsed: 56 minute(s), 35 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Asyn · December 10, 2010, 7:56am

Does avast alert you…?
If so, what does it say…?
asyn

system · December 10, 2010, 8:44am

We need you to give us this information so that we can help you.

Have you done any scans with Avast yet? If so, which scans, and is anything in the Virus Chest? If anything is in the Chest, can you give us a screen shot of the Chest with the files in it? Thank you.

system · December 10, 2010, 8:53am

after 5-10 alerts in the last 24 hours alerts it stopped, maybe the MAMB scan I did helped. if it happens again I’ll write to you.
Thank you for the your quick replays.

system · December 10, 2010, 8:56am

MBAM will only help if it quarantined anything. Did it?

system · December 10, 2010, 10:06am

Yes, It did, in the scan I made yesterday and didn’t send you it quarantined 2 threats.
How can I get to the alert log in Avast 5? I knew how to get to it in avast 4, but in avast 5 i can get only the last popout.
thanks

Asyn · December 10, 2010, 10:17am

Search your computer for ‘FileSystemShield.txt’
All other logs are in the same directory…
asyn

system · December 10, 2010, 10:30am

thanks. I have found it and that’s what i get:
nshield
09.12.2010 15:43:07 DCOM Exploit attack, from 85.122.5.58:135
09.12.2010 19:28:03 DCOM Exploit attack, from 85.173.185.71:135
09.12.2010 19:55:53 DCOM Exploit attack, from 85.222.19.175:135
09.12.2010 20:48:27 DCOM Exploit attack, from 85.84.144.114:135
09.12.2010 21:49:10 DCOM Exploit attack, from 85.122.5.58:135
09.12.2010 22:33:26 DCOM Exploit attack, from 85.176.166.85:135
09.12.2010 22:43:45 DCOM Exploit attack, from 85.64.79.144:135
09.12.2010 23:04:22 DCOM Exploit attack, from 89.209.100.13:135
09.12.2010 23:42:10 DCOM Exploit attack, from 89.28.106.71:135
10.12.2010 00:52:44 DCOM Exploit attack, from 89.103.49.36:135
10.12.2010 01:28:47 DCOM Exploit attack, from 89.167.43.99:135
10.12.2010 02:20:55 DCOM Exploit attack, from 89.118.177.83:135
10.12.2010 02:46:00 DCOM Exploit attack, from 89.133.129.89:135
10.12.2010 12:24:22 DCOM Exploit attack, from 89.116.217.5:135

Asyn · December 10, 2010, 10:49am

You don’t have to worry, these are attacks from outside, that avast stopped.
But, usually your firewall should stop them first. Do you run a firewall…??
asyn

system · December 10, 2010, 11:48am

I use the win7 stansart firewall

Asyn · December 10, 2010, 2:26pm

Well, the W7 FW is rather good, it should block these DCOM attacks.
Did you change anything in the settings…?? Is the FW running…?
asyn

system · December 10, 2010, 3:07pm

FW running. I will check if I made changes in setting.
thanks again

Asyn · December 10, 2010, 3:20pm

You’re welcome…!
asyn

system · December 10, 2010, 3:20pm

Do you run your Windows Update regularly?Cause it is important to download the security patches for Windows.

DavidR · December 10, 2010, 3:25pm

@ shai234
DCOM Attacks are speculative, not targeted and tries to exploit a vulnerability in out of date OS, if your OS is up to date then you aren’t vulnerable to the exploit. That doesn’t stop them (usually someone from the same ISP with an infected computer) trying to see if it can infect others.

Your firewall should be the first line of defence in this, but avast also monitors common attack ports using the Network Shield, ideally the firewall should block it and avast wouldn’t know about it, but for whatever reason avast is first in line over your firewall.

So they could disappear as quickly as they appeared.

system · December 10, 2010, 3:26pm

+1 ;D Really learnt from you.

DavidR · December 10, 2010, 3:35pm

You’re welcome.

system · December 11, 2010, 3:58pm

the virus alerts keep coming and I would like to stop it:

11.12.2010 16:56:43 DCOM Exploit attack, from 85.64.204.49:135
11.12.2010 17:19:09 DCOM Exploit attack, from 85.211.24.12:135

I got 22 alerts in the last two days’ and 1 or none the in the month before. I made no changes in win7 firewall in the last month.

thank you

I keep getting virus alert massages in the day

Announcements