Virus, malware, rootkit, whatever. I have one and Avast is not helping at all.

I have the “Congratulations you have won…” and Google redirect. Every other mouse click I can get redirected to somewhere else. I’ve added every one to my block list to no avail. The Avast scans show nothing as well as the Avast antirootkit scan which shows nothing. If what I have is nothing I’d hate to see what something is like.

Can anyone explain why exactly I paid for this “protection”?

Which avast! version/edition do you have? Free? Pro? Premium?

First of all keep in mind that NO antivirus is 100% effective. Download the following tools. We may also need to reset your internet options.

http://www.downloadcrew.com/article/29166-adwcleaner

http://www.majorgeeks.com/files/details/malwarebytes_anti_malware.html

http://www.majorgeeks.com/files/details/kaspersky_tdsskiller.html

if you have the chance to switch your hdd to a clean computer, try to scan it there. thats how i removed most trojans from uncautionus friends’ computers.

@elocs. we have the necessary tools and removal experts her in this forum

follow this guide and attach the requested logs. http://forum.avast.com/index.php?topic=53253.0

1. AdwcCleaner
2. Malwarebytes
3. OTL
4. aswMBR

when done the removal experts will be notified and help you

As far as I know I have the current Avast version. A perfect example of what I am referring to is when I clicked on the link to this thread I was not taken here, but was redirected to here: http://www.nortonsecurity.org/us/?c=800&campid=buy&s=674&k=72469159, an online ad for Norton.

I have tried Malwarebytes and it shows nothing, I’m clean. TDSSKiller shows nothing as well. I’ve tried SpyBot, SpyHunter, Ccleaner–all no help. I will follow the guide to attach the requested logs and try the other suggestions as well.

Thanks for the help so far. I’m sure it’s far from over.

This type of malware is defined as a PUP

It will need manual removal

That is not even a real Norton website. Check your internet settings. Go to the control panel. Click on “Internet Options” then click on “connections”. Click the LAN settings. Be sure “use proxy” is NOT check off. If it is then uncheck it. Do a full scan with Avast and turn on PUP. Did you try AdwcCleaner? Also which browser are you using? Sometimes you may need to reset your Host file. essexboy can help you or you can download a repair tool.

http://download.cnet.com/Anvi-Browser-Repair-Tool/3000-18512_4-75835298.html

Complete Internet Repair is another nifty little tool.

http://datumza.com/downloads/

I use FireFox. This from AdwCleaner:

AdwCleaner v2.302 - Logfile created 06/10/2013 at 21:16:46

Updated 06/06/2013 by Xplode

Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)

User : Elocs - ELOCS-PC

Boot Mode : Normal

Running from : C:\Users\Elocs\Downloads\adwcleaner(1).exe

Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

Folder Deleted : C:\Users\Elocs\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Folder Deleted : C:\Users\Elocs\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof

***** [Registry] *****

***** [Internet Browsers] *****

-\ Internet Explorer v10.0.9200.16576

[OK] Registry is clean.

-\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Elocs\AppData\Roaming\Mozilla\Firefox\Profiles\urhgq4ff.default\prefs.js

[OK] File is clean.

-\ Google Chrome v27.0.1453.110

File : C:\Users\Elocs\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

-\ Opera v12.15.1748.0

File : C:\Users\Elocs\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] File is clean.


AdwCleaner[R2].txt - [1364 octets] - [10/06/2013 19:01:31]
AdwCleaner[S1].txt - [8833 octets] - [10/06/2013 18:50:28]
AdwCleaner[S2].txt - [1299 octets] - [10/06/2013 21:16:46]

########## EOF - C:\AdwCleaner[S2].txt - [1359 octets] ##########

A download from CNET generally means more toolbars to replace the one you remove. I would never recommend that as a download site. Use either Filehippo, MajorGeeks or Beta news

Download.com/Cnet is a completely legit and reputable site. Just like users who install Avast and complain about getting Google Chrome or Google Drive. We are no better. Just pay attention to the installer and your fine. Anyone who carelessly clicks will always be in trouble. Here

http://www.majorgeeks.com/files/details/complete_internet_repair.html

FYI essexboy…When you go the Avast main web site and download Avast FREE you are redirected to Download.com. So are you telling me that the very own company you work for does not know what they are doing? Thanks.

http://download.cnet.com/Avast-Free-Antivirus/3000-2239_4-10019223.html?part=dl-85737&subj=dl&tag=button

Not everyone is going to be so vigilant, given that the reason they are here could be for that very reason, unintended installation.

That is why we have the information topic on where to get the tools and how to use those tools.

(Not everyone is going to be so vigilant, given that the reason they are here could be for that very reason, unintended installation.

That is why we have the information topic on where to get the tools and how to use those tools.)

HeHe sort of like getting google chrome installed with avast LOL