Sorry about chiming in on another thread. Desperate people do stupid things.
Having the same issue as so many others it seems. No idea what program dropped this on me. I initially had some fake cleaner and dealz on chrome. Thought I got rid of them then these strange warnings from avast about …
http:\wpad.browserupdatecheck.in/wpad.dat
I went ahead and ran a couple of scans with zoek and frst but would appreciate any help available here. Thanks.
OK I ran it twice to confrm the log but both times the warning in Avast reappeared after opening Chrome and any navigation.
I just want to mention that this laptop is using a powerline adapter running through house wiring and that I have used DNS Bench and DNS Jumper but the DNS used are of my own ISP carrier first then other secondary. Just looking for common setups that may be in play here. Thanks again.
Overall I’m pretty clueless about this stuff but I’m wondering about the possibility it may have something to do with this in my services because Dealz is also mentioned. Maybe you could translate this page better than I can.
WinGraph
[Optimizes performance of applications by caching commonly used font data. Applications will start this service if it is not already running. It can be disabled, though doing so will degrade application performance.]
It’s a little confusing to me that even chrome is not open and I open a cleaner like AdwCleaner Avast gives the wpad.updatecheck warning but names itself as the process instead of the browser or the cleaning application.
Oddly my computer seems to be bringing up webpages fine except for the interruptions by Avast. Was having trouble printing from here but could have been a symptom of diagnostics or Avast kicking in. Dealz and the fake cleaner aren’t showing up in Chrome.
I didn’t mention that SPTool was repeatedly removed on 6/18 by Avast. Don’t know what SPTool or SearchProtect are or if they left damage/traces.
I’m having the same issue and I’m wondering if it’s not a false positive also. It’s linked to my svchost.exe process but when I ran frst like i was told to from my thread it just started popping up from other process’s. Funny thing is when I uninstalled and completely removed avast and had no anti virus on my pc I had no pop up windows at all. When I reinstalled avast it told me it stopped pop up windows from opening immediately.
I’ve uninstalled Avast and Chrome and deleted some DNS registry entries from Rogue Killer. Added back a redundant nameserver from DNS Jumper and after multiple reboots no trace of the offending DNS entries. I think I’ll reinstall Chrome first to check for bad extensions but debating on Avast. Navigation and tools seem fast just have to check printer connection.
Hoping to hear back tomorrow on possible issues or false positives.
Still waiting on whether to reinstall avast. Only Windows Defender running at this point. After reinstalling Chrome no bad extensions trying to reinstall. It took a couple of restarts for Chrome to go online but fine since then. The DNS warnings not there on RogueKiller either.
I think I had some issues but maybe not the exact ones Avast kept warning of. Either that or all the cleaning cleared some exploit or malware along the way. No odd behaviors yet today. I’m convinced we did some good through this process and hope to be able to reinstall Avast safely but still waiting and crossing fingers.
I have heard back from Avast now and they have double checked the detection and it is good…
Are the alerts still coming
Please download AdwCleaner by Xplode onto your desktop.
[*]Close all open programs and internet browsers.
[*]Double click on AdwCleaner.exe to run the tool.
[*]Click on Scan.
[*]After the scan is complete click on “Clean”
[*]Confirm each time with Ok.
[*]Your computer will be rebooted automatically. A text file will open after the restart.
[*]Please post the content of that logfile with your next answer.
[*]You can find the logfile at C:\AdwCleaner[S0].txt as well.