Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

mediaplayer kan geen verbinding maken

PjotrVII
4 antwoorden
  • Mijn mediaplayer krijgt geen verbinding. Niet als ik gewoon in Mediaplayer naar een site wil, maar ook niet als ik online een film wil kijken.
    Kan geen verbinding maken met de server.
    Heb alle instellingen al gecheckt. Geen resultaat.
    Volledig opnieuw geinstalleerd. Geen resultaat.

    Adaware, spybot, hijackthis en combofix laten draaien. Geen resultaat.
    Het gekke is dat ie het wel heeft gedaan.
    Ook al geprobeerd met firewall en virusscan uit. Geen resultaat.
    Hierbij de log van hijackthis en combofix.

    HJT:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:14:39, on 9-7-2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    C:\WINDOWS\system32\svchost.exe
    C:\PROGRA~1\AVG\AVG8\avgrsx.exe
    C:\PROGRA~1\AVG\AVG8\avgnsx.exe
    C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
    C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\PROGRA~1\AVG\AVG8\avgtray.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\palmOne\Hotsync.exe
    C:\Program Files\Microsoft Office\Office\1043\OLFSNT40.EXE
    C:\WINDOWS\explorer.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
    O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [nlpo_03] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - HKUS\.DEFAULT\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'Default user')
    O4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Poort voor Symantec Fax Starter Edition.lnk = C:\Program Files\Microsoft Office\Office\1043\OLFSNT40.EXE
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1206045367327
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
    O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
    O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe


    End of file - 6990 bytes



    combo fix:

    ComboFix 09-07-09.01 - Fam v. Wijngaarden 09-07-2009 19:32.4.1 - NTFSx86
    Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.495.160 [GMT 2:00]
    Gestart vanuit: c:\documents and settings\Fam v. Wijngaarden\Bureaublad\spiware\ComboFix.exe
    AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
    .

    (((((((((((((((((((( Bestanden Gemaakt van 2009-06-09 to 2009-07-09 ))))))))))))))))))))))))))))))
    .

    2009-07-09 16:50 . 2009-07-09 16:50 ——– d-sh–w- c:\documents and settings\Fam v. Wijngaarden\PrivacIE
    2009-07-09 15:35 . 2009-07-09 15:35 ——– d-sh–w- c:\documents and settings\LocalService.NT AUTHORITY\IETldCache
    2009-07-09 15:34 . 2009-07-09 15:34 ——– d-sh–w- c:\documents and settings\Fam v. Wijngaarden\IETldCache
    2009-07-09 15:26 . 2009-07-09 15:28 ——– dc-h–w- c:\windows\ie8
    2009-07-08 22:00 . 2009-01-18 21:35 15688 —-a-w- c:\windows\system32\lsdelete.exe
    2009-07-08 18:44 . 2009-07-08 18:44 ——– d—–w- c:\documents and settings\LocalService.NT AUTHORITY\Bureaublad
    2009-07-08 17:47 . 2009-01-18 21:30 64160 —-a-w- c:\windows\system32\drivers\Lbd.sys
    2009-07-08 17:41 . 2009-07-08 17:41 314712 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\threatwork.exe
    2009-07-08 17:41 . 2009-07-08 17:41 25440 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\savapibridge.dll
    2009-07-08 17:41 . 2009-07-08 17:41 15688 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\lsdelete.exe
    2009-07-08 17:41 . 2009-07-08 17:41 169312 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\lavamessage.dll
    2009-07-08 17:41 . 2009-07-08 17:41 348496 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\lavalicense.dll
    2009-07-08 17:41 . 2009-07-08 17:41 298336 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\UpdateManager.dll
    2009-07-08 17:41 . 2009-07-08 17:41 84832 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\ShellExt.dll
    2009-07-08 17:37 . 2009-07-08 17:37 1630560 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\Resources.dll
    2009-07-08 17:36 . 2009-07-08 17:36 246128 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\RPAPI.dll
    2009-07-08 17:36 . 2009-07-08 17:36 40288 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\PrivacyClean.dll
    2009-07-08 17:36 . 2009-07-08 17:36 64160 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\Drivers\32\lbd.sys
    2009-07-08 17:36 . 2009-07-08 17:36 85352 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\Drivers\32\AAWDriverTool.exe
    2009-07-08 17:36 . 2009-07-08 17:36 664424 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\CEAPI.dll
    2009-07-08 17:36 . 2009-07-08 17:36 563064 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\Ad-AwareCommand.exe
    2009-07-08 17:35 . 2009-07-08 17:35 566632 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\Ad-AwareAdmin.exe
    2009-07-08 17:35 . 2009-07-08 17:35 2353480 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\Ad-Aware.exe
    2009-07-08 17:35 . 2009-07-08 17:35 629072 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\AAWWSC.exe
    2009-07-08 17:35 . 2009-07-08 17:35 520024 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\AAWTray.exe
    2009-07-08 17:34 . 2009-07-08 17:34 1029456 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft\Ad-Aware\update\AAWService.exe
    2009-07-08 17:13 . 2009-01-18 21:43 2892112 -c–a-w- c:\documents and settings\All Users.WINDOWS\Application Data\{83C91755-2546-441D-AC40-9A6B4B860800}\Ad-AwareAE.exe
    2009-07-08 17:13 . 2009-07-08 17:13 ——– dc-h–w- c:\documents and settings\All Users.WINDOWS\Application Data\{83C91755-2546-441D-AC40-9A6B4B860800}
    2009-06-18 19:34 . 2009-06-18 19:34 390664 —-a-w- c:\documents and settings\Fam v. Wijngaarden\Application Data\Real\RealPlayer\Update\realplayer11gold.exe

    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-07-08 22:09 . 2008-10-07 19:53 ——– d—–w- c:\program files\Spybot - Search & Destroy
    2009-07-08 22:09 . 2008-10-07 19:53 ——– d—–w- c:\documents and settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
    2009-07-08 17:12 . 2007-03-03 09:47 ——– d—–w- c:\program files\Lavasoft
    2009-07-08 15:48 . 2007-03-03 09:42 72600 —-a-w- c:\documents and settings\Fam v. Wijngaarden\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2009-07-07 20:07 . 2001-09-07 10:00 64154 —-a-w- c:\windows\system32\perfc013.dat
    2009-07-07 20:07 . 2001-09-07 10:00 450898 —-a-w- c:\windows\system32\perfh013.dat
    2009-06-25 18:57 . 2009-04-29 20:34 11952 —-a-w- c:\windows\system32\avgrsstx.dll
    2009-06-25 18:57 . 2009-04-29 20:34 327688 —-a-w- c:\windows\system32\drivers\avgldx86.sys
    2009-06-25 18:57 . 2007-09-15 08:21 27784 —-a-w- c:\windows\system32\drivers\avgmfx86.sys
    2009-06-07 19:32 . 2005-03-18 14:58 ——– d–h–w- c:\program files\InstallShield Installation Information
    2009-05-17 06:40 . 2007-03-29 18:16 ——– d—–w- c:\program files\Java
    2009-05-17 06:35 . 2009-05-17 06:35 152576 —-a-w- c:\documents and settings\Fam v. Wijngaarden\Application Data\Sun\Java\jre1.6.0_13\lzma.dll
    2009-05-14 17:23 . 2009-05-14 17:21 ——– d—–w- c:\program files\QuickTime
    2009-05-14 17:21 . 2009-05-14 17:21 ——– d—–w- c:\documents and settings\All Users.WINDOWS\Application Data\Apple Computer
    2009-05-14 17:19 . 2009-05-14 17:19 ——– d—–w- c:\program files\Apple Software Update
    2009-05-14 17:19 . 2009-05-14 17:19 ——– d—–w- c:\documents and settings\All Users.WINDOWS\Application Data\Apple
    2009-05-14 17:12 . 2009-05-14 17:12 ——– d—–w- c:\program files\Common Files\xing shared
    2009-05-14 17:11 . 2007-04-13 18:08 ——– d—–w- c:\program files\Common Files\Real
    2009-05-14 17:11 . 2003-03-18 21:14 499712 —-a-w- c:\windows\system32\msvcp71.dll
    2009-05-14 17:11 . 2003-02-21 03:42 348160 —-a-w- c:\windows\system32\msvcr71.dll
    2009-05-07 15:34 . 2007-06-06 17:36 347136 —-a-w- c:\windows\system32\localspl.dll
    2009-05-04 15:53 . 2009-04-29 20:34 108552 —-a-w- c:\windows\system32\drivers\avgtdix.sys
    2009-04-19 19:51 . 2007-06-06 17:41 1847296 —-a-w- c:\windows\system32\win32k.sys
    2009-04-15 14:55 . 2007-06-06 17:39 585216 —-a-w- c:\windows\system32\rpcrt4.dll
    2009-04-13 15:39 . 2009-04-10 19:59 53319 —-a-w- c:\documents and settings\All Users.WINDOWS\Application Data\TEMP\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\PostBuild.exe
    2009-04-13 14:46 . 2001-03-09 01:30 29480 —-a-w- c:\windows\system32\msxml3a.dll
    2009-04-13 14:20 . 2009-04-13 14:01 138616 —-a-w- c:\documents and settings\LocalService.NT AUTHORITY\Local Settings\Application Data\FontCache3.0.0.0.dat
    2009-04-13 14:18 . 2007-04-23 12:58 2068 —-a-w- c:\windows\system32\d3d9caps.dat
    2007-04-13 18:09 . 2007-04-13 18:09 774144 —-a-w- c:\program files\RngInterstitial.dll
    1999-05-03 16:01 . 1999-05-03 16:01 99840 —-a-w- c:\program files\Common Files\IRAABOUT.DLL
    1998-12-09 01:53 . 1998-12-09 01:53 70144 —-a-w- c:\program files\Common Files\IRAMDMTR.DLL
    1998-12-09 01:53 . 1998-12-09 01:53 48640 —-a-w- c:\program files\Common Files\IRALPTTR.DLL
    1998-12-09 01:53 . 1998-12-09 01:53 31744 —-a-w- c:\program files\Common Files\IRAWEBTR.DLL
    1998-12-09 01:53 . 1998-12-09 01:53 186368 —-a-w- c:\program files\Common Files\IRAREG.DLL
    1998-12-09 01:53 . 1998-12-09 01:53 17920 —-a-w- c:\program files\Common Files\IRASRIAL.DLL
    .

    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
    "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-12-19 196608]
    "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-01-05 413696]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
    "Microsoft Works Update Detection"="c:\program files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe" [2002-07-25 28672]
    "RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-01-08 68640]
    "LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
    "AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-06-25 1948440]
    "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-05-14 198160]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
    "Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-01-18 506712]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "nlpo_01"="md %USERPROFILE%\Local Settings\Temp" [X]
    "nlpo_02"="advpack.dll" - c:\windows\system32\advpack.dll [2009-03-08 128512]
    "nlpo_03"="advpack.dll" - c:\windows\system32\advpack.dll [2009-03-08 128512]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon
    otify\avgrsstarter]
    2009-06-25 18:57 11952 —-a-w- c:\windows\system32\avgrsstx.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
    @="Service"

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Bdienst\\2006\\ib2006.exe"=
    "c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\MSN Messenger\\livecall.exe"=
    "c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
    "c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
    "c:\\Program Files\\AVG\\AVG8\\avgnsx.exe"=

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "6346:TCP"= 6346:TCP:Gnutella
    "1215:TCP"= 1215:TCP:OpenFT
    "1216:TCP"= 1216:TCP:OpenFT
    "59049:TCP"= 59049:TCP:Ares

    R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [8-7-2009 19:47 64160]
    R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [29-4-2009 22:34 327688]
    R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [29-4-2009 22:34 108552]
    R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [29-4-2009 22:33 298776]
    R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [18-1-2009 23:34 921936]
    S3 hitmanpro3;Hitman Pro 3 Support Driver;\??\c:\windows\system32\drivers\hitmanpro3.sys –> c:\windows\system32\drivers\hitmanpro3.sys [?]

    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
    .
    Inhoud van de 'Gedeelde Taken' map

    2009-07-08 c:\windows\Tasks\Ad-Aware Update (Weekly).job
    - c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 21:34]

    2009-05-14 c:\windows\Tasks\AppleSoftwareUpdate.job
    - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

    2008-08-19 c:\windows\Tasks\dfrg.job
    - c:\windows\system32\dfrg.msc [2007-06-06 12:00]
    .
    .
    ——- Bijkomende Scan ——-
    .
    uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
    FF - ProfilePath - c:\documents and settings\Fam v. Wijngaarden\Application Data\Mozilla\Firefox\Profiles\e0vtz5ol.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q=
    FF - prefs.js: browser.search.selectedEngine - BS_Player Customized Web Search
    FF - prefs.js: browser.startup.homepage - hxxp://webmail.telfort.nl
    FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&q=
    FF - component: c:\program files\AVG\AVG8\Firefox\components\avgssff.dll
    FF - component: c:\program files\Real\RealPlayer\browserrecord\components
    prpbrowserrecordplugin.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins
    p-mswmp.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins
    pGoogleGadgetPluginFirefoxWin.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins
    pracplug.dll
    FF - plugin: c:\program files\Picasa2
    pPicasa2.dll
    FF - plugin: c:\program files\Real\RealArcade\Plugins\Mozilla
    pracplug.dll
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
    .

    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-07-09 19:42
    Windows 5.1.2600 Service Pack 3 NTFS

    scannen van verborgen processen …

    scannen van verborgen autostart items …

    scannen van verborgen bestanden …

    Scan succesvol afgerond
    verborgen bestanden: 0

    **************************************************************************
    .
    ——————— DLLs Geladen Onder Lopende Processen ———————

    - - - - - - - > 'winlogon.exe'(516)
    c:\windows\system32\MSVCP60.dll

    - - - - - - - > 'explorer.exe'(2504)
    c:\windows\system32\ieframe.dll
    c:\windows\system32\webcheck.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    Voltooingstijd: 2009-07-09 19:47
    ComboFix-quarantined-files.txt 2009-07-09 17:46
    ComboFix2.txt 2009-07-09 16:11
    ComboFix3.txt 2009-07-08 16:44
    ComboFix4.txt 2008-12-08 19:54

    Pre-Run: 19.328.835.584 bytes beschikbaar
    Post-Run: 19.320.860.672 bytes beschikbaar

    187 — E O F — 2009-07-09 15:30






  • Je kan dit beter bij beveiliging posten misschien kijkt er dan iemand naar het probleem.
  • ok, thanks!
  • Al deze logjes zien er prima uit. Waar de fout dan wel zit - [i:10eb103216]moet haast wel in Mediaplayer zelf zijn[/i:10eb103216] - heb ik echter geen kijk op.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.