We help IT Professionals succeed at work.

Website infection on a LAN

Medium Priority
417 Views
Last Modified: 2013-11-22
When a user on a local network visits a infected website can that cause other computers inside the local network without firewalls to start getting unexplained popups? AVG is not catching anything with is scans and realtime protection.. What could I look for to stop this...
Comment
Watch Question

If they are trading URL's or emails that could definitely infect the systems.
Have you tried scanning with Malwarebytes?
It's free, reliable and you can get it from www.malwarebytes.org
Prior to running Malwarebytes (or any other anti-virus/malware suite),
disable System Restore. Directions can be found here:
http://support.microsoft.com/kb/310405
If you are unable to view the above link follow these steps.
Click Start, right-click My Computer, and then click Properties.
In the System Properties dialog box, click the System Restore tab.
Click to select the Turn off System Restore check box. Or, click to select the Turn off System Restore on all drives check box.
Click OK.
When you receive the following message, click Yes to confirm that you want to turn off System Restore:
You have chosen to turn off System Restore. If you continue, all existing restore points will be deleted, and you will not be able to track or undo changes to your computer.
Do you want to turn off System Restore?
After a few moments, the System Properties dialog box closes.

Once updated, reboot into Safe Mode (F8 at startup) and run a scan.
You should do this with your current antivirus product as well.
When you have finished running your scans and the threats have been removed enable System Restore.
Steps to turn on System Restore:
Click Start, right-click My Computer, and then click Properties.
In the System Properties dialog box, click the System Restore tab.
Click to clear the Turn off System Restore check box. Or, click the Turn off System Restore on all drives check box.
Click OK.
After a few moments, the System Properties dialog box closes.
You may also need to download and run HiJackThis from
http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download
Once you run the utility save the log file.
You can post it for free analysis here or at
www.hijackthis.de
You are primarily looking for items marked with red X's.
You can get a brief overview of Hijackthis here:
http://www.merijn.org/htlogtutorial.php

Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.