Hey, I really need help solving this problem. Avast has been going nuts for the last three days screaming about Malicious URLs, even if I don’t have a browser up. Every scan I ran turned up negative - AVAST, MalwareBytes, the works. Whatever this is, it’s deep and I’m getting exceedingly frustrated. Unfortunately, I seem to have no system restores before that point in time.
Infection Details
URL: http://c.t.c.t.c.clickpayz.com/click/?s
Process: C:\Windows\syswow64\svchost.exe
Infection: URL:Mal
That’s from the AVAST page when I get redirection. I’m attaching the requisite logs from the most recent scans now - I haven’t had much time this week to sit down and do them all at once.
ADW cleaner incoming in next post (attachment limit)
Here’s ADW Cleaner’s log.
Hi there could you attach a screen shot of the Avast alert and then run OTL with this scan script. There will be just one log this time
[*]Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
https://dl.dropbox.com/u/73555776/OTL_Main_Tutorial.gif
[*]Select All Users
[*]Under the Custom Scan box paste this in
netsvcs
BASESERVICES
%SYSTEMDRIVE%*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
dir “%systemdrive%*” /S /A:L /C
CREATERESTOREPOINT
[*]Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
[*]When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
[*]Post both logs