Author Topic: avast web shield  (Read 7048 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
avast web shield
« on: July 28, 2014, 12:19:44 PM »
Hallo even een vraagje avst web shield slaat hier zo een beetje tilt op het moment met firefox en chrome als ik deze browsers open krijg ik de haverklap een melding dat ze een site met bedreiging of virus hebben geblokkeerd bij internet explorer gebeurd het niet....pc heeft geen virussen is recent gescand vandaag.

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31080
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: avast web shield
« Reply #1 on: July 28, 2014, 03:54:04 PM »
What os/sp?
Welke exacte versie van avast en vps?
What is de melding? url:mal ?

REDACTED

  • Guest
Re: avast web shield
« Reply #2 on: July 28, 2014, 04:05:09 PM »
ik heb windows 7 de avasy is de gratis editie de url/mal zijn verschillende ik heb er nu 1 die ik kan melden
    hxxp://getjpijs.info/sync2/?q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwEpj

REDACTED

  • Guest
Re: avast web shield
« Reply #3 on: July 28, 2014, 04:08:33 PM »
dit is ook een link hxxp://getproxy5.info/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwEpj

REDACTED

  • Guest
Re: avast web shield
« Reply #4 on: July 28, 2014, 04:09:30 PM »
dit is nummer 3 hxxp://getsrv.info/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwE

REDACTED

  • Guest
Re: avast web shield
« Reply #5 on: July 28, 2014, 04:10:21 PM »
nummer 4 hxxp://toolkitcard.in/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwE

REDACTED

  • Guest
Re: avast web shield
« Reply #6 on: July 28, 2014, 04:12:15 PM »
nummer 5
    hxxp://storagemagic.eu/sync2/?rmbs=1&q=hfZ9ofV9CShEAen0rjY8rchTB6lKDzt4oktxtNtVh7n0rjnEqHa9rTwE

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31080
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: avast web shield
« Reply #7 on: July 28, 2014, 04:16:12 PM »
Volg de instructies en attach de logfiles bij je volgende bericht:
https://forum.avast.com/index.php?topic=53253.0

REDACTED

  • Guest
Re: avast web shield
« Reply #8 on: July 28, 2014, 05:00:40 PM »
De logs zijn toegevoegd zoals gevolgd alleen de aswMBR.exe werkt niet die slaat vast in het derde onderdeel dus daar kan ik geen logs van krijgen ik heb gisteren combofix laten draaien daar kan ik eventueel een log van bijzetten

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: avast web shield
« Reply #9 on: August 08, 2014, 05:22:49 PM »
@gunther.seymus

CAUTION :  This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:
 
Quote
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
BHO: No Name -> {B23287E9-D626-858A-E88F-6822FBC14E55} ->  No File
BHO-x32: No Name -> {B23287E9-D626-858A-E88F-6822FBC14E55} ->  No File
CHR Extension: (NexetCuooup) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjklemlmfkaidjindgbebdplabcfkkgm [2014-07-06]
CHR Extension: (savve oin) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmnljmkjnboacncemcopkijfnbhncpaa [2014-07-04]
CHR Extension: (NeexTCoup) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlhfglfbaceojifphbiipckokaaodnac [2014-07-20]
CHR Extension: (savve oin) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmnljmkjnboacncemcopkijfnbhncpaa\2.14 [2014-07-04]
CHR Extension: (NeexTCoup) - C:\Users\Gunther\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlhfglfbaceojifphbiipckokaaodnac\1.0 [2014-07-20]
2014-07-04 23:09 - 2014-07-20 02:05 - 00000000 ____D () C:\ProgramData\24faa408ba0ad5b3
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gunther\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gunther\AppData\Local\Chromatic Browser
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Google
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Comodo
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Gast\AppData\Local\Chromatic Browser
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-04 23:09 - 2014-07-04 23:09 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
2014-07-06 03:25 - 2014-07-20 02:10 - 00000000 ____D () C:\ProgramData\NexetCuooup
2014-07-06 03:25 - 2014-07-06 03:25 - 00000000 ____D () C:\Program Files (x86)\NexetCuooup
CMD: bitsadmin /reset /allusers
CMD: DEL %TEMP%\*.* /F /S /Q
CMD: RD /S /Q %TEMP%
REBOOT:

 
Save this as fixlist.txt, in the same location as FRST.exe
Run FRST and press Fix
On completion a log will be generated please post that

THEN

Please download Junkware Removal Tool to your desktop.
  • Right-mouse click JRT.exe and select "Run as Administrator" the tool will open and start scanning your system
  • please be patient as this can take a while to complete depending on your system's specifications
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • post the contents of JRT.txt into your next message.