Mededeling

Collapse
No announcement yet.

Facebook wordt geblokkeerd door Avast

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • Facebook wordt geblokkeerd door Avast

    Doorgestuurd door Dorado: http://www.nucia.eu/forum/threads/72...292#post702292

    Webschild van Avast blokkeert het goede laden van Facebook. HTTPS scans uitgeschakeld en nu laden de pagina's wel goed.

    Toch maar even wat logjes:

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scandatum: 4-11-2014
    Scantijd: 19:35:51
    Logbestand: Malware anti.txt
    Beheerder: Ja

    Versie: 2.00.3.1025
    Malwaredatabase: v2014.11.04.06
    Rootkitdatabase: v2014.11.01.02
    Licentie: Gratis
    Malwarebescherming: Uitgeschakeld
    Kwaadaardige Website Bescherming: Uitgeschakeld
    Zelfbescherming: Uitgeschakeld

    Besturingssysteem: Windows 7 Service Pack 1
    Processor: x64
    Bestandssysteem: NTFS
    Gebruiker: Steven van den Berg

    Scantype: Aangepaste Scan
    Resultaat: Voltooid
    Objecten Gescand: 468151
    Verstreken Tijd: 2 u, 6 m, 15 s

    Geheugen: Ingeschakeld
    Opstarten: Ingeschakeld
    Bestandssysteem: Ingeschakeld
    Archieven: Ingeschakeld
    Rootkits: Ingeschakeld
    Heuristiek: Ingeschakeld
    POP: Ingeschakeld
    POA: Ingeschakeld

    Processen: 0
    (Geen kwaadaardige items gedetecteerd)

    Modules: 0
    (Geen kwaadaardige items gedetecteerd)

    Registersleutels: 0
    (Geen kwaadaardige items gedetecteerd)

    Registerwaardes: 0
    (Geen kwaadaardige items gedetecteerd)

    Registerdata: 0
    (Geen kwaadaardige items gedetecteerd)

    Mappen: 0
    (Geen kwaadaardige items gedetecteerd)

    Bestanden: 2
    Hacktool.Agent, C:\Users\Steven van den Berg\AppData\Local\Alt.Binz\download\Windows 7 all versions 64bits Updated tm December 2013\WRHTHUGT84GGTR98\Losse extra Software\Windows 7 Activator\Windows Loader.exe, In Quarantaine, [c2d92214bebe3402304889d89c65659b],
    PUP.Optional.OpenCandy, C:\Users\Steven van den Berg\Downloads\SetupImgBurn_2.5.8.0.exe, In Quarantaine, [3368b87e2d4f142290fea1bfe91c21df],

    Fysieke Sectoren: 0
    (Geen kwaadaardige items gedetecteerd)


    (end)

    # AdwCleaner v3.311 - Rapport aangemaakt 04/11/2014 op 22:35:55
    # Laatste Update 30/09/2014 door Xplode
    # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Gebruikersnaam : Steven van den Berg - LAPTOPSTEVEN
    # Gestart vanuit : C:\Users\Steven van den Berg\Desktop\adwcleaner_3.311.exe
    # Optie : Verwijderen

    ***** [ Services ] *****


    ***** [ Bestanden / Mappen ] *****


    ***** [ Taken ] *****


    ***** [ Snelkoppelingen ] *****


    ***** [ Register ] *****


    ***** [ Browsers ] *****

    -\\ Internet Explorer v11.0.9600.17344


    -\\ Google Chrome v38.0.2125.111

    [ Bestand : C:\Users\Steven van den Berg\AppData\Local\Google\Chrome\User Data\Default\preferences ]


    *************************

    AdwCleaner[R1].txt - [876 octets] - [04/11/2014 22:33:11]
    AdwCleaner[S1].txt - [801 octets] - [04/11/2014 22:35:55]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [860 octets] ##########

    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 11.0.9600.17344 BrowserJavaVersion: 11.25.2
    Run by Steven van den Berg at 22:47:22 on 2014-11-04
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4063.1805 [GMT 1:00]
    .
    AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.e xe
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\Hpservice.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
    C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    C:\Program Files\Soluto\SolutoLauncherService.exe
    C:\Program Files\Soluto\SolutoService.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    c:\program files\soluto\soluto.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files (x86)\Wise\Wise Care 365\WiseMemoryOptimzer.exe
    C:\Users\Steven van den Berg\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
    C:\Windows\system32\NOTEPAD.EXE
    C:\Program Files\AVAST Software\Avast\avastui.exe
    C:\Program Files (x86)\iTunes\iTunesHelper.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Program Files\CCleaner\CCleaner64.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files\Soluto\SolutoRemoteService.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.e xe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Windows\system32\svchost.exe -k SDRSVC
    C:\Program Files (x86)\Windows Media Player\wmplayer.exe
    \\?\C:\Windows\system32\wbem\WMIADAP.EXE
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.nl/
    BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
    BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO: Aanmeldhulp voor Microsoft-account: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
    BHO: Adblock Plus for IE Browser Helper Object: {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
    uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
    uRun: [Spotify Web Helper] "C:\Users\Steven van den Berg\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4024.1220\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4024.1220\amd64"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4024.1220] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4024.1220"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64"
    uRunOnce: [Uninstall C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612] C:\Windows\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven van den Berg\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612"
    mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
    mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
    mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    uPolicies-Explorer: NoDrives = dword:0
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
    mPolicies-Explorer: NoDrives = dword:0
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableUIADesktopToggle = dword:0
    mPolicies-System: SoftwareSASGeneration = dword:1
    IE: &Verzenden naar OneNote - C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
    IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
    TCP: NameServer = 192.168.1.254 195.241.77.55 195.241.77.58
    TCP: Interfaces\{40B7D116-F544-4E44-95AA-F9C873A9DD3C} : DHCPNameServer = 192.168.1.254 195.241.77.55 195.241.77.58
    TCP: Interfaces\{8BA78F60-8759-422C-9338-0B9329AE1EC3} : DHCPNameServer = 192.168.1.254 195.241.77.55 195.241.77.58
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    SSODL: WebCheck - <orphaned>
    SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
    x64-mWinlogon: Userinit = C:\Windows\System32\userinit.exe,c:\program files\soluto\soluto.exe /userinit,
    x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
    x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll
    x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
    x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll
    x64-BHO: Adblock Plus for IE Browser Helper Object: {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll
    x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
    x64-Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
    x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-SSODL: WebCheck - <orphaned>
    x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-8 65776]
    R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-8 267632]
    R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2013-2-15 652344]
    R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2013-2-15 28216]
    R0 Soluto;Soluto;C:\Windows\System32\drivers\Soluto.sys [2014-1-21 54728]
    R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-2-21 1050432]
    R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-2-21 436624]
    R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-5-6 29208]
    R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswmonflt.sys [2013-2-21 83280]
    R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2013-12-24 116728]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-10-22 50344]
    R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2011-5-13 30520]
    R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2013-12-17 46904]
    R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technologie;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-2-14 14904]
    R2 SolutoLauncherService;Soluto Launcher Service;C:\Program Files\Soluto\SolutoLauncherService.exe [2013-11-14 182848]
    R2 SolutoService;Soluto PCGenome Core Service;C:\Program Files\Soluto\SolutoService.exe [2013-11-14 856128]
    R3 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AE STSr64.exe [2009-3-2 89600]
    R3 enecir;ENE CIR Receiver;C:\Windows\System32\drivers\enecir.sys [2009-6-28 70656]
    R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2008-10-22 128352]
    R3 johci;JMicron 1394 Filter Driver;C:\Windows\System32\drivers\johci.sys [2012-7-27 26208]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-2-15 805088]
    R3 SolutoRemoteService;Soluto Remote Service;C:\Program Files\Soluto\SolutoRemoteService.exe [2013-11-14 1942016]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
    S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-4-3 315008]
    S2 WiseBootAssistant;Wise Boot Assistant;C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [2014-1-18 580232]
    S3 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-11-16 238080]
    S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-2-23 95760]
    S3 cleanhlp;cleanhlp;C:\EEK\Run\cleanhlp64.sys [2014-1-28 57024]
    S3 EyeTV_One;EyeTV One PBDA Service;C:\Windows\System32\drivers\EyeTV_One.sys [2010-12-6 688352]
    S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-10-16 111616]
    S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-2-15 19456]
    S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2014-11-2 31800]
    S3 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-2-23 5087584]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-4-18 56832]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-2-15 30208]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
    S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-2-15 1255736]
    S3 WSDScan;Ondersteuning voor WSD-scan via UMB;C:\Windows\System32\drivers\WSDScan.sys [2009-7-14 25088]
    .
    =============== Created Last 30 ================
    .
    2014-11-04 21:34:26 536576 ----a-w- C:\Windows\SysWow64\sqlite3.dll
    2014-11-04 21:30:45 -------- d-----w- C:\AdwCleaner
    2014-11-04 18:11:22 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{66B819F0-34E4-43A3-8607-AAC03D3469AD}\offreg.dll
    2014-11-04 16:46:54 11627712 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{66B819F0-34E4-43A3-8607-AAC03D3469AD}\mpengine.dll
    2014-11-02 22:07:57 -------- d-----w- C:\Users\Steven van den Berg\AppData\Local\VS Revo Group
    2014-11-02 22:07:49 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys
    2014-11-02 22:07:46 -------- d-----w- C:\Program Files\VS Revo Group
    2014-10-22 22:37:50 43152 ----a-w- C:\Windows\avastSS.scr
    2014-10-16 22:39:59 -------- d-----w- C:\Windows\System32\Soluto
    2014-10-16 16:28:59 3241472 ----a-w- C:\Windows\System32\msi.dll
    2014-10-16 16:27:57 5703168 ----a-w- C:\Windows\SysWow64\mstscax.dll
    2014-10-16 16:27:56 77312 ----a-w- C:\Windows\System32\packager.dll
    2014-10-16 16:27:55 67072 ----a-w- C:\Windows\SysWow64\packager.dll
    .
    ==================== Find3M ====================
    .
    2014-11-04 18:35:51 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
    2014-10-31 22:38:16 83280 ----a-w- C:\Windows\System32\drivers\aswmonflt.sys
    2014-10-31 22:38:16 1050432 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
    2014-10-28 05:34:58 275080 ------w- C:\Windows\System32\MpSigStub.exe
    2014-10-24 20:40:05 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2014-10-24 20:40:05 701104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2014-10-24 20:13:05 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
    2014-10-23 23:34:15 111016 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
    2014-10-22 22:37:51 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
    2014-10-22 22:37:51 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
    2014-10-22 22:37:51 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
    2014-10-22 22:37:51 267632 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
    2014-10-22 22:37:51 116728 ----a-w- C:\Windows\System32\drivers\aswstm.sys
    2014-10-10 02:05:59 276480 ----a-w- C:\Windows\System32\generaltel.dll
    2014-10-10 02:05:42 507392 ----a-w- C:\Windows\System32\aepdu.dll
    2014-10-10 02:00:38 424448 ----a-w- C:\Windows\System32\aeinv.dll
    2014-10-01 10:11:26 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
    2014-10-01 10:11:16 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
    2014-10-01 10:11:12 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2014-09-29 00:58:48 3198976 ----a-w- C:\Windows\System32\win32k.sys
    2014-09-25 22:32:04 2017280 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2014-09-25 22:31:02 2108416 ----a-w- C:\Windows\System32\inetcpl.cpl
    2014-09-25 02:08:38 371712 ----a-w- C:\Windows\System32\qdvd.dll
    2014-09-25 01:40:50 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
    2014-09-19 01:56:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
    2014-09-19 01:55:49 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
    2014-09-19 01:40:43 66048 ----a-w- C:\Windows\System32\iesetup.dll
    2014-09-19 01:40:03 547328 ----a-w- C:\Windows\System32\vbscript.dll
    2014-09-19 01:39:58 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
    2014-09-19 01:38:27 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll
    2014-09-19 01:36:57 5829632 ----a-w- C:\Windows\System32\jscript9.dll
    2014-09-19 01:26:00 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
    2014-09-19 01:25:49 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
    2014-09-19 01:25:12 4201472 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2014-09-19 01:25:09 758272 ----a-w- C:\Windows\System32\jscript9diag.dll
    2014-09-19 01:18:02 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
    2014-09-19 01:14:57 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2014-09-19 01:06:47 72704 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
    2014-09-19 01:02:07 454656 ----a-w- C:\Windows\SysWow64\vbscript.dll
    2014-09-19 01:01:47 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
    2014-09-19 01:01:03 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
    2014-09-19 00:59:40 61952 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
    2014-09-19 00:50:16 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2014-09-19 00:49:31 597504 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
    2014-09-19 00:40:12 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
    2014-09-19 00:36:23 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
    2014-09-19 00:33:18 2309632 ----a-w- C:\Windows\System32\wininet.dll
    2014-09-19 00:18:55 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
    2014-09-18 23:59:11 1810944 ----a-w- C:\Windows\SysWow64\wininet.dll
    2014-09-18 01:32:52 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
    2014-09-09 22:11:04 2048 ----a-w- C:\Windows\System32\tzres.dll
    2014-09-09 21:47:10 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
    2014-09-05 02:11:09 6584320 ----a-w- C:\Windows\System32\mstscax.dll
    2014-09-04 05:23:20 424448 ----a-w- C:\Windows\System32\rastls.dll
    2014-09-04 05:04:15 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
    2014-08-29 02:07:13 3179520 ----a-w- C:\Windows\System32\rdpcorets.dll
    2014-08-23 02:07:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
    2014-08-23 01:45:55 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
    .
    ============= FINISH: 22:48:37,66 ===============

    logje gmer.txt
    Je moet goed drinken want eten is ook duur.

  • #2
    Hoi steven92,

    De webschield functie van vast is niet zo denderend en gebruik ikzelf ook niet.
    Buiten dat het zorgt voor het vertragen van je browser, is hij ook niet echt betrouwbaar (zoals bleek).

    Mijn advies is daarom dat je deze het best kan uitschakelen via je Avast configuratiescherm.



    Download of Update Ccleaner

    Start CCleaner op.
    • Run Ccleaner en klik in de linkse kolom op Opties
    • Selecteer het tabblad Geavanceerd
    • Haal het vinkje weg voor Verwijder alleen bestanden in Windows Temp-systeemmap die ouder zijn dan 24 uur
    • Selecteer het tabblad Instellingen
    • Haal het vinkje weg bij "Computer automatisch schoonmaken...."
    • Klik in de linkse kolom op Cleaner.
    • Klik dan achtereenvolgens op Analyseer en Schoonmaken.
    • Klik vervolgens in de linkse kolom op Register
    • Klik op Scan naar problemen.
    • Op de vraag of je een backup wil maken van het register, klik je "Ja".
    • Als er fouten gevonden worden klik je op de middelste knop: Herstel alle geselecteerde fouten en OK

    .
    Zijn er nog problemen?
    Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
    E Dev * McAfee verwijderen. * Ccleaner * E-Peek

    Comment


    • #3
      Heb het schild nu definitief uitgeschakeld. Verder zijn er geen problemen

      Bedankt!
      Je moet goed drinken want eten is ook duur.

      Comment


      • #4
        Graag gedaan

        1) Je mag alle losse bestanden en tools die we hebben gebruikt verwijderen.

        2) Om herbesmetting te vermijden, kan je deze tips eens nalezen:

        Het voorkomen van spyware-infecties en browserhijacking en Hoe voorkom ik een nieuwe infectie?

        3) Om je PC een snelle onderhoudbeurt te geven, kan je deze tips eens lezen: Handleiding voor een schone PC

        4) Allerlei tips en hints kan je hier raadplegen.


        Ik zet het topic op opgelost.

        Indien er niet meer gereageerd wordt, zal binnen een 5-tal dagen deze thread automatisch verplaatst worden
        naar de sectie Opgeloste hijackthislogs en is een reactie niet meer mogelijk
        Dit is gedaan om het forum netjes en overzichtelijk te houden.

        Blijkt dat er toch nog problemen zijn, en je wil weer reageren in dit topic, dan stuur je me een privé bericht met verzoek om heropening.



        Hebben we je goed geholpen? Overweeg eens een (vrijblijvende) donatie aan Nucia

        Emphyrio
        Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
        E Dev * McAfee verwijderen. * Ccleaner * E-Peek

        Comment

        Sorry, you are not authorized to view this page
        Working...
        X