Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DDS log


  • This topic is locked This topic is locked
58 replies to this topic

#31 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 03 May 2011 - 11:29 AM

Wouldn't let me do any of it, every version I tried to install Avast detected as a potentially dangerous application & it is also blocking me from installing them. Is it necessary?

BC AdBot (Login to Remove)

 


#32 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,772 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:11 AM

Posted 03 May 2011 - 11:34 AM

Hi,

that sounds odd. Avast shouldn't be doing that. Can you give me the exact message you got for Java and Adobe?

reagrds myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#33 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 03 May 2011 - 12:08 PM

Downloads won't load now

#34 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,772 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:11 AM

Posted 03 May 2011 - 04:36 PM

Hi,

I really can't do anything if you don't give me the message that Avast is showing you.. there are a few possible situations here, incluiding that Avast and AVG are fighting each other.. so information is essential.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#35 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 03 May 2011 - 07:46 PM

AVG was uninstalled yesterday. Avast gives me a message something like:

You are opening a potentially dangerous application, Avast! will open this program in Sandbox mode to prevent any damage to your PC.

#36 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,772 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:11 AM

Posted 04 May 2011 - 02:41 AM

Hi,

ok, this is a feature of Avast: Basically it will determine if a program is legit or suspicious and if it is suspicious it will run it in a Sandbox.
A Sandbox is a program in which you can execute and run other programs, however once you close the program none of the changes made by the program will stick. This is very powerful if you accidentally install malware: The malware gets run in the sandbox, it installs itself in the sandbox and once you close the program, the malware gets killed with the program and none of the changes made by the malware actually reach your system. It however also means that all other changes don't stick: If you change preferences for your browser in a sandbox for example, those preferences will be reset the moment you close your sandbox.

You can completely disable the sandbox, if that is what you wish. You can also disable the notification. Just for your information: It is letting you download the files, however once you are done and close the browser, the sandbox is closed and all that was downloaded is deleted with the sandbox.

There are options to add utilities to a list of exception that get never run in Sandbox. Which browser are you using? Could you try an alternative browser and let me know if the downloads also disappear.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#37 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 06 May 2011 - 07:05 PM

Will try that again. But Malwarebytes found something! Yesterday the log was clean


Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6523

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

5/6/2011 8:03:15 PM
mbam-log-2011-05-06 (20-03-15).txt

Scan type: Quick scan
Objects scanned: 141508
Time elapsed: 14 minute(s), 22 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Windows\Temp\jndl\setup.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.

#38 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 06 May 2011 - 07:23 PM

Java installed, there were no other versions to uninstall. Abode doesn't even load.

#39 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,772 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:11 AM

Posted 07 May 2011 - 04:26 AM

Hi,

the webpage doesn't load or the program doesn't load? Do you remember getting a warning on that page earlier? Is it possibly getting blocked by Avast without informing you?

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#40 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 07 May 2011 - 02:23 PM

The page loads and I go to the download but the download does not commence *doesn't even begin* - also, could you tell me why Malwarebytes would find that? I just updated it and am running another quick scan to see if it came back

#41 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 08 May 2011 - 02:38 PM

Abode Reader is updating now as my PC prompted me to update it.

#42 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 09 May 2011 - 09:12 PM

Myrti? Are you still here? My computer prompted me to update Abode Flash Player & Adobe reader, both are done and I got the newest version of java

#43 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,772 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:11 AM

Posted 11 May 2011 - 11:16 AM

Hi,

I'm sorry, I was very busy since the week-end. I'm back for good now though.

Are you still having issues with Avast or have most things sorted out?

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#44 Computerproblem101

Computerproblem101
  • Topic Starter

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Local time:12:11 AM

Posted 13 May 2011 - 10:35 PM

Everything sorted, I think everything is updated. Curious about that Malwarebytes detection though - doesn't find anything anymore. All clean :)

#45 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,772 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:11 AM

Posted 14 May 2011 - 03:45 PM

Hi,

this may have been what got you infect originally. The temporary files are the files that get downloaded by your browser and executed immediately instead of saved somewhere.

Read those last few lines, in order to keep your pc safe and clean:
Please do the following to clean up your PC:
  • Delete the tools used during the disinfection:
    • Download OTC from the following mirrors and save it to your desktop:
    • Double click on Posted Image
    • Push the large "Cleanup" button.
    • Allow your system to reboot.
  • If OTC faild to remove all programs from your Desktop, please delete the rest manually.
  • Disable and Enable System Restore.
    You can find instructions on how to disable and reenable system restore here:
    Windows ME System Restore Guide
    Windows XP System Restore Guide
    Windows Vista System Restore Guide

    Note: You should only do this once, not on a regular basis!
    You will not be able to restore computer to any earlier than today!

Please read these advices, in order to prevent reinfecting your PC:

  • Install and update the following programs regularly:
    • an outbound firewall
      A comprehensive tutorial and a list of possible firewalls can be found here.
    • an AntiVirus Software
      It is imperative that you update your AntiVirus Software on regular basis.If you do not update your AntiVirus Software then it will not be able to catch the latest threats.
    • an Anti-Spyware program
      Malware Byte's Anti Malware is an excellent Anti-Spyware scanner. It's scan times are usually under ten minutes, and has excellent detection and removal rates.
      SUPERAntiSpyware is another good scanner with high detection and removal rates.
      Both programs are free for non commercial home use but provide a resident and do not nag if you purchase the paid versions.
    • Spyware Blaster
      A tutorial for Spywareblaster can be found here. If you wish, the commercial version provides automatic updating.
    • MVPs hosts file
      A tutorial for MVPs hosts file can be found here. If you would like automatic updates you might want to take a look at HostMan host file manager. For more information on thehosts file, and what it can do for you,please consult the Tutorial on the Hosts file
  • Keep Windows (and your other Microsoft software) up to date!
    I cannot stress how important this is enough. Often holes are found in Internet Explorer or Windows itself that require patching. Sometimes these holeswill allow an attacker unrestricted access to your computer.
    Therefore, please, visit the Microsoft Update Website and follow the on screen instructions to setup Microsoft Update. Also follow the instructions to update your system. Please REBOOT and repeat this process until there are no more updates to install!!
  • Keep your other software up to date as well
    Software does not need to be made by Microsoft to be insecure. You can use the Secunia Online Software occasionally to help you check for out of date software on yourmachine.
  • Stay up to date!
    The MOST IMPORTANT part of any security setup is keeping the software up to date. Malware writers release new variantsevery single day. If your software updates don't keep up, then the malware will always be one step ahead. Not a good thing :(.
Some more links you might find of interest:
Have a nice day
myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users