Dear forum members,
3 days ago avast! Free antivirus reportet that it had blocked the malware “nationaldownload.com/update.php”. This repeatedly happens every 3-4 hours. Avast said there would’nt be a reason to panik. Should I stay calm and trust in Avast or is there any need to take immediate action. The system works just fine.
Thank you for your appreciated input.
Franz

Since avast has blocked it, there is no reason to panic.

Suspicious is however that the pop-up keeps showing up.
So lets see if your system is infected or has something suspicious on it.
Please follow these instructions: http://forum.avast.com/index.php?topic=53253.0

Thank you Eddy! Attached the Adw Cleaner Log!
Franz

AdwCleaner v3.011 - Bericht erstellt am 05/11/2013 um 21:34:43

Updated 03/11/2013 von Xplode

Betriebssystem : Windows 8 Pro (64 bits)

Benutzername : XYZ - GENERATIONXYZ

Gestartet von : C:\Users\XYZ\Desktop\adwcleaner.exe

Option : Suchen

***** [ Dienste ] *****

***** [ Dateien / Ordner ] *****

Datei Gefunden : C:\END
Datei Gefunden : C:\Windows\System32\Tasks\AmiUpdXp
Datei Gefunden : C:\Windows\Tasks\AmiUpdXp.job
Ordner Gefunden C:\Program Files (x86)\Conduit
Ordner Gefunden C:\ProgramData\Premium
Ordner Gefunden C:\Users\XYZ\AppData\Local\Conduit
Ordner Gefunden C:\Users\XYZ\AppData\Local\Smartbar
Ordner Gefunden C:\Users\XYZ\AppData\Local\SwvUpdater
Ordner Gefunden C:\Users\XYZ\AppData\LocalLow\Conduit
Ordner Gefunden C:\Users\XYZ\AppData\LocalLow\PriceGong
Ordner Gefunden C:\Users\XYZ\AppData\Roaming\OpenCandy

***** [ Verknüpfungen ] *****

***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\smartbar
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKCU\Software\smartbar
Schlüssel Gefunden : HKCU\Software\smartbarbackup
Schlüssel Gefunden : HKCU\Software\smartbarlog
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : [x64] HKCU\Software\smartbar
Schlüssel Gefunden : [x64] HKCU\Software\smartbarbackup
Schlüssel Gefunden : [x64] HKCU\Software\smartbarlog
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{67BD9EEB-AA06-4329-A940-D250019300C9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{A717364F-69F3-3A24-ADD5-3901A57F880E}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{CCB08265-B35D-30B2-A6AF-6986CA957358}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{CD92622E-49B9-33B7-98D1-EC51049457D7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID{E041E037-FA4B-364A-B440-7A1051EA0301}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iesmartbar.bandobjectattribute
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iesmartbar.bho
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbar
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbarbandobject
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar.CT3244149
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID{A717364F-69F3-3A24-ADD5-3901A57F880E}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID{CCB08265-B35D-30B2-A6AF-6986CA957358}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID{CD92622E-49B9-33B7-98D1-EC51049457D7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID{E041E037-FA4B-364A-B440-7A1051EA0301}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Infrastructure Helper]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Wert Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [ Browser ] *****

-\ Internet Explorer v10.0.9200.16537

Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=AT&userid=bd88f959-2371-4127-8793-731acfb908f9&searchtype=ds&q={searchTerms}
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=AT&userid=bd88f959-2371-4127-8793-731acfb908f9&searchtype=ds&q={searchTerms}
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=AT&userid=bd88f959-2371-4127-8793-731acfb908f9&searchtype=ds&q={searchTerms}
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=AT&userid=bd88f959-2371-4127-8793-731acfb908f9&searchtype=ds&q={searchTerms}
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=AT&userid=bd88f959-2371-4127-8793-731acfb908f9&searchtype=ds&q={searchTerms}
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=AT&userid=bd88f959-2371-4127-8793-731acfb908f9&searchtype=ds&q={searchTerms}

-\ Google Chrome v

[ Datei : C:\Users\XYZ\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gefunden : urls_to_restore_on_startup
Gefunden : urls_to_restore_on_startup
Gefunden : urls_to_restore_on_startup
Gefunden : urls_to_restore_on_startup
Gefunden : urls_to_restore_on_startup


AdwCleaner[R0].txt - [7209 octets] - [05/11/2013 21:34:43]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [7269 octets] ##########

Eh, no. That was copy/paste. Not attaching it.
But eh… http://urlquery.net/report.php?id=7441404