Adlice forum

General Category => Malware removal help => Topic started by: murrayotl on November 04, 2015, 11:11:32 PM

Title: Antirookit warnings
Post by: murrayotl on November 04, 2015, 11:11:32 PM

 Hello,
When on Google searching a link from Medicare for medical supplies all warnings came up. Something to leave site and call number Infection! Virus! etc. Free AVG software warnings came up also. I then scanned with Rogue Premium and found these file in AntiRootKit.File Attached to this post.

Thank You for any help you can give, John

Title: Re: Antirookit warnings
Post by: Curson on November 04, 2015, 11:45:57 PM

Hi John

Welcome to Adlice.com Forum

Quote from: John

When on Google searching a link from Medicare for medical supplies all warnings came up. Something to leave site and call number Infection! Virus! etc.

This is a scam. Did you install something while on the webpage ?

Quote from: John

Free AVG software warnings came up also.

Could you please attach AVG report in your next reply ?

Please delete the following folder :

Quote

C:\Program Files (x86)\Viewpoint

Regards.

Title: Re: Antirookit warnings
Post by: murrayotl on November 05, 2015, 01:08:05 AM

Hi Curson,
Thank You for the quick response. I was searching the web for handicap products for my bathroom. There was a site that had a list of companies recognized by Medicare. As I was searching those sites, 1 when it tried opened started a host of events. Warning to do nothing and call this number. AVG came up but nothing in history. I didn't open file and started a scan with Rogue which wouldn't start (think AVG had it blocked). I opened  AVG all protections were red and shut off. I closed down Google, restarted all AVG programs and did scan. I open up the firewall and excluded Rogue from being blocked and did a scan and here we way.
Here's history from Google.

Thanks John

12:37 PM
SYSTEM WARNING ERROR
virus-computer-alert.com


12:37 PM
hxxp://where-to-shop-now.info/index4.php?subid=&pubfeed=55942&keyword=*&query=homeaid+products
where-to-shop-now.info


12:37 PM
hxxp://virus-computer-alert.com/warning.dill/errormessage.php
virus-computer-alert.com


12:37 PM
hxxp://park.above.com/jr.php?gz=uRtrNhiIfOLXrpL2xoD2wFzAVtcbhUOyarEaNbGaKljAzVderfAnfUg505eALz2I7uDrc7rJSQJJmGhD%2Ba%2BNgb2XyQUQCgyi8EDc%2BPzzF3wsStPwjr%2B4EhMRNsw3t8E9Hl5m6dl0ZkBpp84cydnFXr6YUkKJfcaNfquaHgt2tTbMzge5cRB8pPKynT70erY0KdPxnddAmOAIlEOhlY4TRCSCNISNQEERWzsx0EDfoRDSvPB89VFVnH0WX9AIZxXhuBfcShcZDO2tVpkwWdog%2FCwkZmGTOhrMmuLgQ6ueIv4h3pte6nC%2FXKN4voxy1btxJZIsRb4tc3GEW5jApnGfEst60FAHkcb6ivAP%2FoAGkL8Zhj%2F2klrD0w1euZTvffjH3L9aXMIxrrqayLChW7g%2BLp6UNmkLyVs43aq%2BGnRa%2B1eEFaDkVyjyJbR7aLl2Q8z9SDTOiqSQtYRgTDDYJEACGTn8KcVFUYDenJv3Zik7O4Q7wWLHUvb7h7XF6D63FifG1zhHxS8POK3z3aflfcjgXM4euCCif9N%2BAdLoH%2FzNWCUsIA0BcIUGhiSSO%2BcJd%2BUgXMwsBDkp0sgZpBBOiH5xrg%3D%3D
park.above.com


12:37 PM
homeaidproducts.com
xxx..homeaidproducts.com


12:37 PM
404 Error | Winco Mfg., LLC
xxx.wincomfg.com


12:36 PM
Interios For Independence : Accessible Bathroom, Bedroom and Outdoor Design
xxx.interiorsforindependence.com


12:36 PM
Accessible Bathroom Design : Handicap Shower Design & Installation
xxx.interiorsforindependence.com


12:36 PM
Interiors for Independence
xxx.interiorsforindependence.com


12:35 PM
Duralife Inc.
duralife-usa.com


12:35 PM
Commodes
duralife-usa.com


12:34 PM

Bathing / Showering / Hygiene Aids - Commodes : USA TechGuide
xxx.usatechguide.org


12:33 PM
Gendron
xxx.usatechguide.org


12:33 PM
Search : USA TechGuide
xxx.usatechguide.org


12:33 PM
Adapted Furniture & Fixtures - Accessible Bathroom Fixtures : USA TechGuide
usatechguide.org


12:33 PM
Assistive Technology Directory : USA TechGuide
usatechguide.org


12:33 PM
Guide To Wheelchairs And Assistive Technology : USA TechGuide
xxx.usatechguide.org


12:32 PM

Assitive Technology & Adaptive Equipment | OT & PT Products
xxx.sci-info-pages.com

EDIT Curson : Disabled links for security reasons.

Title: Re: Antirookit warnings
Post by: Curson on November 05, 2015, 03:57:25 PM

Hi murrayotl,

Please download Farbar Recovery Scan Tool (x64) (http://download.bleepingcomputer.com/farbar/FRST64.exe) and save it to your Desktop.

• Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  
• Press Scan button.
  
• It will produce a log called FRST.txt in the same directory the tool is run from.
  
• Please attach log back here.
• The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST64.exe). Please also attach that along with the FRST.txt into your reply.
  

Regards.

Title: Re: Antirookit warnings
Post by: murrayotl on November 05, 2015, 11:12:07 PM

Here they are Curson Thank You for your help! John
1st is Addition.txt 2nd coming

Title: Re: Antirookit warnings
Post by: Curson on November 06, 2015, 02:09:12 AM

Hi John,

The logs are clean. Your computer is not infected.
Just uninstall the following applications :

Quote

AVSDK5
Viewpoint Media Player

Regards.

Title: Re: Antirookit warnings
Post by: murrayotl on November 06, 2015, 01:01:51 PM

Hi Curson,
I want to Thank You for your help. RogueKiller took care of those files, I did scan yesterday and they are gone.
I will remove them.

           Thanks Again,
            John

Title: Re: Antirookit warnings
Post by: Curson on November 06, 2015, 01:41:34 PM

Hi John,

You are very welcome.

Regards.