Avast WEBforum

Non-English Zone => Nederlands => Topic started by: REDACTED on July 28, 2014, 12:19:44 PM

Title: avast web shield
Post by: REDACTED on July 28, 2014, 12:19:44 PM

Hallo even een vraagje avst web shield slaat hier zo een beetje tilt op het moment met firefox en chrome als ik deze browsers open krijg ik de haverklap een melding dat ze een site met bedreiging of virus hebben geblokkeerd bij internet explorer gebeurd het niet....pc heeft geen virussen is recent gescand vandaag.

Title: Re: avast web shield
Post by: Eddy on July 28, 2014, 03:54:04 PM

What os/sp?
Welke exacte versie van avast en vps?
What is de melding? url:mal ?

Title: Re: avast web shield
Post by: REDACTED on July 28, 2014, 04:05:09 PM

ik heb windows 7 de avasy is de gratis editie de url/mal zijn verschillende ik heb er nu 1 die ik kan melden
    hxxp://getjpijs.info/sync2/?q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwEpj

Title: Re: avast web shield
Post by: REDACTED on July 28, 2014, 04:08:33 PM

dit is ook een link hxxp://getproxy5.info/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwEpj

Title: Re: avast web shield
Post by: REDACTED on July 28, 2014, 04:09:30 PM

dit is nummer 3 hxxp://getsrv.info/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwE

Title: Re: avast web shield
Post by: REDACTED on July 28, 2014, 04:10:21 PM

nummer 4 hxxp://toolkitcard.in/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwE

Title: Re: avast web shield
Post by: REDACTED on July 28, 2014, 04:12:15 PM

nummer 5
    hxxp://storagemagic.eu/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwE

Title: Re: avast web shield
Post by: Eddy on July 28, 2014, 04:16:12 PM

Volg de instructies en attach de logfiles bij je volgende bericht:
https://forum.avast.com/index.php?topic=53253.0

Title: Re: avast web shield
Post by: REDACTED on July 28, 2014, 05:00:40 PM

De logs zijn toegevoegd zoals gevolgd alleen de aswMBR.exe werkt niet die slaat vast in het derde onderdeel dus daar kan ik geen logs van krijgen ik heb gisteren combofix laten draaien daar kan ik eventueel een log van bijzetten

Title: Re: avast web shield
Post by: essexboy on August 08, 2014, 05:22:49 PM

@gunther.seymus

CAUTION :  This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:
 

Quote

SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
BHO: No Name -> {B23287E9-D626-858A-E88F-6822FBC14E55} ->  No File
BHO-x32: No Name -> {B23287E9-D626-858A-E88F-6822FBC14E55} ->  No File
CHR Extension: (NexetCuooup) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjklemlmfkaidjindgbebdplabcfkkgm [2014-07-06]
CHR Extension: (savve oin) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmnljmkjnboacncemcopkijfnbhncpaa [2014-07-04]
CHR Extension: (NeexTCoup) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlhfglfbaceojifphbiipckokaaodnac [2014-07-20]
CHR Extension: (savve oin) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmnljmkjnboacncemcopkijfnbhncpaa\2.14 [2014-07-04]
CHR Extension: (NeexTCoup) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlhfglfbaceojifphbiipckokaaodnac\1.0 [2014-07-20]
2014-07-04 23:09 - 2014-07-20 02:05 - 00000000 ____D () C:\ProgramData\24faa408ba0ad5b3
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gunther\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gunther\AppData\Local\Chromatic Browser
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Google
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Comodo
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Chromatic Browser
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
2014-07-06 03:25 - 2014-07-20 02:10 - 00000000 ____D () C:\ProgramData\NexetCuooup
2014-07-06 03:25 - 2014-07-06 03:25 - 00000000 ____D () C:\Program Files (x86)\NexetCuooup
CMD: bitsadmin /reset /allusers
CMD: DEL %TEMP%\*.* /F /S /Q
CMD: RD /S /Q %TEMP%
REBOOT:

 
Save this as fixlist.txt, in the same location as FRST.exe
Run FRST and press Fix
On completion a log will be generated please post that

THEN

Please download Junkware Removal Tool (http://thisisudax.org/downloads/JRT.exe) to your desktop.

• Right-mouse click JRT.exe and select "Run as Administrator" the tool will open and start scanning your system
• please be patient as this can take a while to complete depending on your system's specifications
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• post the contents of JRT.txt into your next message.