Vraag & Antwoord
Aantal programma's kunnen geen verbinding met internet maken
41 antwoorden
- Allerlei programma's op mijn computer kunnen geen verbinding maken met internet. Bijvoorbeeld AVG en Avast antivirus (beide apart geprobeerd) kunnen niet updaten, en ook 'GameRanger' en DivX kunnen geen verbinding krijgen met internet waardoor deze programma's niet kunnen worden geïnstalleerd.
Internet Explorer doet het wel prima, dus er is wel degelijk een internetverbinding.
Ik heb geen aparte firewall geïnstalleerd en Windows Firewall heb ik uitgeschakeld. Ook Windows Defender heb ik uitgeschakeld.
Is er een ander programma of een instelling die een verbinding onmogelijk kan maken, die ik over het hoofd zie?
Op de laptop waar ik het over heb, staat een verse installatie van Windows Vista. - lijkt toch verdacht veel op een firewall; misschien in de router?
je vraagt ons wel of je iets over het hoofd ziet, maar dat is natuurlijk verrekte lastig, hiervandaan en zonder lijst van wat er allemaal actief is op die pc van jou…..
zet hier een hijackthislogje, dan krijgen we daar een beeld van. - Hierbij mijn Hijackthis logje. Alvast bedankt voor de moeite.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:01:35, on 4-8-2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18928)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\System Control Manager\MGSysCtrl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\System32\mobsync.exe
D:\Programs\AVG\avgtray.exe
D:\Programs\FireFox\firefox.exe
D:\Programs\FireFox\plugin-container.exe
C:\PROGRA~1\Java\jre6\bin\jp2launcher.exe
C:\Program Files\Java\jre6\bin\java.exe
C:\Users\MSI\Downloads\HijackThis.exe
C:\Windows\system32\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msi.com.tw
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msi.com.tw
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Programs\AVG\avgssie.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [MGSysCtrl] C:\Program Files\System Control Manager\MGSysCtrl.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] D:\Programs\AVG\avgtray.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\MSI\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Programs\AVG\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - D:\Programs\AVG\avgwdsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Micro Star SCM - Unknown owner - C:\Program Files\System Control Manager\MSIService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32
vvsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
–
End of file - 5757 bytes - Aan het rijtje programma's die geen verbinding kunnen maken met internet kan ik nu ook Adobe Reader toevoegen. Ook de update voor Adobe mislukte. Ik kreeg de melding dat ik verbonden moest zijn met internet.
- ik zie dat defender ook nog steeds actief is…..
verder in het log een paar files missing, die kan je laten fixen.
ik kirjg bij 023 amd external events een unheimisch gevoel, maar kom er niet exact achter wat het is.
doe eens: start-uitvoeren-typ: msconfig - geef enter - ga tabblad opstarten.
vink hier alles uit behalve avg.
mocht je draadloos internetten dan ook die toepassing aangevinkt laten.
sluit netjes af via toepassen en ok en herstart de pc.
lukt het nu wel? - Ik heb via msconfig alles uitgevinkt, behalve AVG. Vervolgens heb ik mijn pc opnieuw opgestart en geprobeerd AVG te updaten. Dit lukt nog steeds niet. Ook probeerde ik nog even DivX te downloaden en ook dit lukt nog steeds niet.
- zeker weten dat windows firewall is uitgeschakeld?
al eens pc uitgeschakeld (geen slaapstand) en de router een minuutje stroomloos gemaakt, waarna je de router helemaal laat opstarten en dan pas de pc aanzet?
liefst hieraanvoorafgaand: pak handleiding van je router en reset hem naar fabrieksinstellingen - Veilige mode opstarten met netwerkverbinding: dan wel?
Wat staat er in jou hosts file ergens in een of andere windows map (bij mij alleen 127.0.0.1) - Hallo Derk, de AVG-antivirus in deze Windows is goed beschadigd!
Ga het volgende doen: - Hallo Abraham,
Ik heb alle stappen die je zei volledig uitgevoerd, voor zover dat kon. Ook MBAM kan zich niet updaten. Het probleem waar ik dus bij veel programma's last van heb. Verder heb ik alles zo goed mogelijk uitgevoerd, het ging naar mijn mening probleemloos.
Ik zal hieronder de gewenste logs plaatsen.
[b:cc7e4c1bde]Nieuw hijackthis log[/b:cc7e4c1bde]
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:12:58, on 11-8-2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
D:\Programs\AVG\avgtray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\System Control Manager\MGSysCtrl.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\conime.exe
D:\Programs\FireFox\firefox.exe
D:\Programs\FireFox\plugin-container.exe
c:\Users\MSI\Downloads\HijackThis.exe
C:\Windows\system32\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msi.com.tw
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msi.com.tw
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Programs\AVG\avgssie.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVG9_TRAY] D:\Programs\AVG\avgtray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MGSysCtrl] C:\Program Files\System Control Manager\MGSysCtrl.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\MSI\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Programs\AVG\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - D:\Programs\AVG\avgwdsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Micro Star SCM - Unknown owner - C:\Program Files\System Control Manager\MSIService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32
vvsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
–
End of file - 5147 bytes
[b:cc7e4c1bde]MBAM scanlog[/b:cc7e4c1bde]
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Databaseversie: 4052
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18943
11-8-2010 12:11:22
mbam-log-2010-08-11 (12-11-22).txt
Scantype: Snelle scan
Objecten gescand: 115459
Verstreken tijd: 8 minuut/minuten, 37 seconde(n)
Geheugenprocessen geïnfecteerd: 0
Geheugenmodulen geïnfecteerd: 0
Registersleutels geïnfecteerd: 0
Registerwaarden geïnfecteerd: 0
Registerdata geïnfecteerd: 0
Mappen geïnfecteerd: 0
Bestanden geïnfecteerd: 0
Geheugenprocessen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Registerdata geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Mappen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Bestanden geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
[b:cc7e4c1bde]Uninstall-lijst (hijackthis)[/b:cc7e4c1bde]
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8.1.2
Agere Systems HDA Modem
AVG 9.0
Bluetooth Stack for Windows by Toshiba
BurnRecovery
Free YouTube to MP3 Converter version 3.7
Google Talk (remove only)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Intel PROSet Wireless
Java(TM) 6 Update 20
JMicron JMB38X Flash Media Controller
Last.fm 1.5.4.24567
Malwarebytes' Anti-Malware
Microsoft .NET Framework 3.5 Language Pack SP1 - nld
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Choice Guard
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (Dutch) 2007
Microsoft Office Enterprise 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (Dutch) 2007
Microsoft Office Groove MUI (Dutch) 2007
Microsoft Office InfoPath MUI (Dutch) 2007
Microsoft Office OneNote MUI (Dutch) 2007
Microsoft Office Outlook MUI (Dutch) 2007
Microsoft Office PowerPoint MUI (Dutch) 2007
Microsoft Office Proof (Dutch) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (German) 2007
Microsoft Office Proofing (Dutch) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (Dutch) 2007
Microsoft Office Shared MUI (Dutch) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (Dutch) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Mozilla Firefox (3.6.8)
Mp3tag v2.46a
MSI Software Install
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NVIDIA Drivers
OGA Notifier 2.0.0048.0
Realtek 8169 8168 8101E 8102E Ethernet Driver
Realtek High Definition Audio Driver
Security Update for 2007 Microsoft Office System (KB2277947)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for 2007 Microsoft Office System (KB982312)
Security Update for 2007 Microsoft Office System (KB982331)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB982308)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office Outlook 2007 (KB980376)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office Publisher 2007 (KB982124)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2251419)
Software van Intel(R) PROSet/Wireless WiFi
SymNet
System Control Manager
Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
Ulead Burn.Now 4.5 SE
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Outlook 2007 Junk Email Filter (kb2279264)
Update voor Microsoft Office Excel 2007 Help (KB963678)
Update voor Microsoft Office Powerpoint 2007 Help (KB963669)
Update voor Microsoft Office Word 2007 Help (KB963665)
USB 2.0 Camera
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
VLC media player 1.1.2
Vuze
Windows Live - Hulpprogramma voor uploaden
Windows Live aanmeldhulp
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Essentials
Windows Live Messenger
Windows Live Writer
WinRAR archiver
Ik hoop dat jullie me hiermee verder kunnen helpen. - Hallo Derk, je hebt dus nog steeds een probleem met de internetverbinding.
[b:fece871140]De proxie-instellingen van Internet Explorer herstellen:[/b:fece871140]
[list:fece871140][*:fece871140] Ga via Start naar Configuratiescherm en klik op Internetopties; alternatief klik je inde menubalk van Internet Explorer op "Extra" in da kies je in het uitklapmenu voor Internetopties.
[*:fece871140] Klik vervolgens op de tab "Verbindingen" en klik daar op de knop "Lan-instellingen
[*:fece871140] Verwijder het vinkje bij "Een proxyserver voor het LAN-netwerk gebruiken"
[*:fece871140] Vervolgens zet je een vinkje bij "Instellingen automatisch detecteren"
[*:fece871140] Klik achtereenvolgens tweemaal op de knop "OK"; heb je deze instellingen via Internet Explorer veranderd, dan de browser afsluiten.[/list:u:fece871140]
Laat je weten of het nu wel lukt? - Hallo,
Dat had je bij je vorige post ook beschreven bij [b:25ee500ed3]stap 2[/b:25ee500ed3]. Dat had ik uitgevoerd en heeft blijkbaar ook niet geholpen, helaas. - Flush je de DNS Cache.
Om dit te doen, in Vista typ je in het zoekvak [b:7f3ea91bc8]cmd.exe[/b:7f3ea91bc8]
Bovenaan zal cmd.exe zien in de lijst. Rechtsklik daarop en kies om uit te voeren als administrator.
Daarin typ je: [b:7f3ea91bc8]ipconfig /flushdns[/b:7f3ea91bc8] (denk aan de spatie na ipconfig!)
klik enter.
Herstart daarna je pc. - De DNS-omzettingscache is leeggemaakt.
Het heeft aan mijn probleem niks geholpen. De eerder genoemde programma's kunnen geen verbinding maken met het internet. - Na dit gedaan te hebben werkt mijn internet explorer niet meer. Firefox werkt nog wel, vandaar dat ik dit bericht nog kan posten.
- Heb je de PC wel opnieuw opgestart na het flushen?
Doe het volgende: [b:bb433cf72b]Laat Combofix jouw Windows scannen[/b:bb433cf72b] (klik).
[b:bb433cf72b]N.B.: Firefox zal ComboFix downloaden naar de map downloads.
Verplaats het bestand daarna naar je bureaublad![/b:bb433cf72b]
[b:bb433cf72b]Hoe Combofix goed te gebruiken[/b:bb433cf72b] (klik)
[b:bb433cf72b]Aanvulling: om Combofix te kunnen gebruiken geldt het volgende: - ComboFix heeft zn werk gedaan. Ik plaats hieronder het log. Ik zag bovenaan staan Windows Defender enabled. Ik dacht toch echt dat ik de Defender uitgeschakeld had. Maar daar zal het probleem toch niet liggen?
[b:52c51df597]Hieronder het (erg lange) ComboFix-logje:[/b:52c51df597]
ComboFix 10-08-10.06 - MSI 11-08-2010 17:10:10.1.1 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3070.2242 [GMT 2:00]
Gestart vanuit: c:\users\MSI\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
(((((((((((((((((((( Bestanden Gemaakt van 2010-07-11 to 2010-08-11 ))))))))))))))))))))))))))))))
.
2099-10-24 13:52 . 2099-10-24 13:52 125 —-a-w- c:\windows\xUninstall.bat
2099-10-24 13:52 . 2008-08-07 09:01 97536 —-a-w- c:\windows\system32\drivers\jmcr.sys
2099-10-24 13:52 . 2008-05-14 11:53 110080 —-a-r- c:\windows\system32\JmCrIcon.dll
2099-10-24 13:52 . 2099-10-24 13:52 ——– d—–w- c:\windows\JMCR_DIR
2099-10-24 13:51 . 2008-09-25 19:29 436224 —-a-w- c:\windows\system32\drivers
etr28.sys
2099-10-24 13:51 . 2008-09-25 19:26 221184 —-a-w- c:\windows\system32\RaCoInst.dll
2099-10-24 13:51 . 2008-09-25 19:26 15312 —-a-w- c:\windows\system32\RaCoInst.dat
2099-10-24 13:50 . 2008-08-06 08:26 9728 —-a-w- c:\windows\system32\RtNicProp32.dll
2099-10-24 13:50 . 2008-08-06 08:26 124928 —-a-w- c:\windows\system32\drivers\Rtlh86.sys
2099-10-24 13:47 . 2010-07-26 16:25 319456 —-a-w- c:\windows\DIFxAPI.dll
2099-10-24 13:47 . 2010-07-26 16:23 ——– d—–w- c:\program files\Realtek
2099-10-24 13:47 . 2010-08-02 16:42 ——– d–h–w- c:\program files\InstallShield Installation Information
2099-10-24 13:47 . 2099-10-24 13:47 ——– d—–w- c:\program files\Common Files\InstallShield
2099-10-24 13:40 . 2099-10-24 13:40 ——– d—–w- c:\programdata\NVIDIA
2099-10-24 13:38 . 2008-07-19 19:53 768544 —-a-w- c:\windows\system32
vcplui.exe
2099-10-24 13:38 . 2008-07-19 19:53 313888 —-a-w- c:\windows\system32
vexpbar.dll
2099-10-24 13:38 . 2008-07-19 19:53 1079840 —-a-w- c:\windows\system32
vcpluir.dll
2099-10-24 13:37 . 2008-07-19 19:53 446464 —-a-w- c:\windows\system32
vudisp.exe
2099-10-24 13:37 . 2010-07-23 23:56 ——– d—–w- c:\windows\Panther
2099-10-24 13:37 . 2010-08-02 16:03 ——– d—–w- C:\Boot
2099-10-24 12:47 . 2008-07-15 16:11 446464 —-a-w- c:\windows\system32\NVUNINST.EXE
2099-10-24 12:45 . 2010-08-02 14:13 ——– d—–w- c:\windows\Debug
2010-08-11 15:21 . 2010-08-11 15:22 ——– d—–w- c:\users\MSI\AppData\Local\temp
2010-08-11 15:21 . 2010-08-11 15:21 ——– d—–w- c:\users\Default\AppData\Local\temp
2010-08-11 10:02 . 2010-04-29 13:39 38224 —-a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-08-11 10:02 . 2010-08-11 10:02 ——– d—–w- c:\program files\Malwarebytes' Anti-Malware
2010-08-11 10:02 . 2010-04-29 13:39 20952 —-a-w- c:\windows\system32\drivers\mbam.sys
2010-08-11 09:59 . 2010-08-11 09:59 ——– d—–w- c:\programdata\Malwarebytes
2010-08-10 18:19 . 2010-06-21 13:37 2037760 —-a-w- c:\windows\system32\win32k.sys
2010-08-10 18:19 . 2010-06-18 17:31 36864 —-a-w- c:\windows\system32\rtutils.dll
2010-08-10 18:19 . 2010-06-08 17:35 3600768 —-a-w- c:\windows\system32
tkrnlpa.exe
2010-08-10 18:19 . 2010-06-08 17:35 3548040 —-a-w- c:\windows\system32
toskrnl.exe
2010-08-10 18:19 . 2010-06-11 16:15 1248768 —-a-w- c:\windows\system32\msxml3.dll
2010-08-10 18:19 . 2010-06-18 15:04 302080 —-a-w- c:\windows\system32\drivers\srv.sys
2010-08-10 18:19 . 2010-06-18 15:04 144896 —-a-w- c:\windows\system32\drivers\srv2.sys
2010-08-10 18:19 . 2010-06-16 16:04 905088 —-a-w- c:\windows\system32\drivers\tcpip.sys
2010-08-04 13:31 . 2010-08-04 13:31 ——– d—–w- C:\$AVG
2010-08-04 13:30 . 2010-08-04 13:30 12464 —-a-w- c:\windows\system32\avgrsstx.dll
2010-08-04 13:30 . 2010-08-04 13:30 161672 —-a-w- c:\windows\system32\drivers\avgrkx86.sys
2010-08-04 13:30 . 2010-08-04 13:30 356616 —-a-w- c:\windows\system32\drivers\avgtdix.sys
2010-08-04 13:30 . 2010-08-04 13:30 333192 —-a-w- c:\windows\system32\drivers\avgldx86.sys
2010-08-04 13:30 . 2010-08-04 14:02 ——– d—–w- c:\windows\system32\drivers\Avg
2010-08-04 13:30 . 2010-08-04 13:30 28424 —-a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-08-04 13:30 . 2010-08-04 13:30 ——– d—–w- c:\programdata\avg9
2010-08-04 12:10 . 2010-08-04 12:10 ——– d—–w- c:\users\MSI\AppData\Roaming\GameRanger
2010-08-04 11:20 . 2010-08-04 11:21 ——– d—–w- c:\users\MSI\AppData\Roaming\vlc
2010-08-04 11:10 . 2010-08-04 11:10 ——– d—–w- c:\programdata\DivX
2010-08-03 15:06 . 2010-08-03 15:06 ——– d—–w- c:\program files\AVG
2010-08-03 14:38 . 2010-08-03 14:38 ——– d—–w- c:\users\MSI\AppData\Roaming\Malwarebytes
2010-08-03 11:03 . 2010-08-03 11:37 ——– dc—-w- c:\windows\system32\DRVSTORE
2010-08-03 11:03 . 2010-08-03 11:37 ——– d—–w- c:\programdata\Lavasoft
2010-08-03 10:24 . 2003-03-18 20:20 1060864 —-a-w- c:\windows\system32\MFC71.dll
2010-08-03 00:13 . 2010-08-03 00:13 ——– d—–w- c:\windows\Sun
2010-08-02 17:55 . 2010-08-02 17:55 ——– d—–w- c:\programdata\Office Genuine Advantage
2010-08-02 17:47 . 2009-10-09 21:56 2048 —-a-w- c:\windows\system32\winrsmgr.dll
2010-08-02 17:11 . 2010-08-02 17:11 ——– d—–w- c:\windows\system32\drivers\fr-FR
2010-08-02 17:11 . 2010-08-02 17:11 ——– d—–w- c:\program files\Windows Portable Devices
2010-08-02 17:08 . 2009-09-10 02:00 92672 —-a-w- c:\windows\system32\UIAnimation.dll
2010-08-02 17:08 . 2009-09-10 02:01 3023360 —-a-w- c:\windows\system32\UIRibbon.dll
2010-08-02 17:08 . 2009-09-10 02:00 1164800 —-a-w- c:\windows\system32\UIRibbonRes.dll
2010-08-02 17:07 . 2009-09-25 01:33 369664 —-a-w- c:\windows\system32\WMPhoto.dll
2010-08-02 17:07 . 2009-09-24 22:54 258048 —-a-w- c:\windows\system32\winspool.drv
2010-08-02 17:07 . 2009-09-25 01:27 37888 —-a-w- c:\windows\system32\cdd.dll
2010-08-02 17:05 . 2009-10-01 01:02 30208 —-a-w- c:\windows\system32\WPDShextAutoplay.exe
2010-08-02 17:05 . 2009-10-01 01:02 31232 —-a-w- c:\windows\system32\BthMtpContextHandler.dll
2010-08-02 17:05 . 2009-10-01 01:01 81920 —-a-w- c:\windows\system32\wpdbusenum.dll
2010-08-02 17:05 . 2009-10-01 01:01 60928 —-a-w- c:\windows\system32\PortableDeviceConnectApi.dll
2010-08-02 17:05 . 2009-10-01 01:02 2537472 —-a-w- c:\windows\system32\wpdshext.dll
2010-08-02 17:05 . 2009-10-01 01:02 334848 —-a-w- c:\windows\system32\PortableDeviceApi.dll
2010-08-02 17:05 . 2009-10-01 01:02 87552 —-a-w- c:\windows\system32\WPDShServiceObj.dll
2010-08-02 17:05 . 2009-10-01 01:01 546816 —-a-w- c:\windows\system32\wpd_ci.dll
2010-08-02 17:05 . 2009-10-01 01:01 160256 —-a-w- c:\windows\system32\PortableDeviceTypes.dll
2010-08-02 17:05 . 2009-10-01 01:01 350208 —-a-w- c:\windows\system32\WPDSp.dll
2010-08-02 17:05 . 2009-10-01 01:01 196608 —-a-w- c:\windows\system32\PortableDeviceWMDRM.dll
2010-08-02 17:05 . 2009-10-01 01:01 100864 —-a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2010-08-02 17:04 . 2009-10-08 21:07 4096 —-a-w- c:\windows\system32\oleaccrc.dll
2010-08-02 17:04 . 2009-10-08 21:08 555520 —-a-w- c:\windows\system32\UIAutomationCore.dll
2010-08-02 17:04 . 2009-10-08 21:08 234496 —-a-w- c:\windows\system32\oleacc.dll
2010-08-02 16:59 . 2010-03-05 14:01 420352 —-a-w- c:\windows\system32\vbscript.dll
2010-08-02 16:52 . 2010-08-02 16:52 ——– d—–w- c:\program files\MAGIX
2010-08-02 16:52 . 2010-08-02 16:52 ——– d—–w- c:\windows\system32\MAGIX
2010-08-02 16:52 . 2006-12-22 12:02 663552 —-a-w- c:\windows\system32\mgxoschk.dll
2010-08-02 16:39 . 2010-08-05 16:09 ——– d—–w- c:\users\MSI\AppData\Roaming\Azureus
2010-08-02 16:38 . 2010-08-02 16:38 ——– d—–w- c:\program files\Conduit
2010-08-02 15:51 . 2010-08-02 15:53 ——– d—–w- c:\windows\system32\ca-ES
2010-08-02 15:51 . 2010-08-02 15:53 ——– d—–w- c:\windows\system32\eu-ES
2010-08-02 15:51 . 2010-08-02 15:52 ——– d—–w- c:\windows\system32\vi-VN
2010-08-02 15:05 . 2010-08-02 15:05 ——– d—–w- c:\windows\system32\EventProviders
2010-08-02 10:49 . 2010-08-02 10:49 ——– d—–w- c:\users\MSI\AppData\Roaming\Ulead Systems
2010-08-02 10:40 . 2010-08-02 10:40 ——– d—–w- c:\program files\Microsoft.NET
2010-08-02 10:31 . 2010-08-02 10:33 ——– d—–w- c:\users\MSI\AppData\Roaming\Mp3tag
2010-08-02 10:28 . 2010-08-02 10:28 ——– d—–w- c:\users\MSI\AppData\Local\Microsoft Help
2010-08-02 10:26 . 2010-08-02 10:26 ——– d—–r- C:\MSOCache
2010-08-02 10:19 . 2010-08-02 10:19 0 —-a-w- c:\windows
sreg.dat
2010-08-02 10:19 . 2010-08-02 10:19 ——– d—–w- c:\users\MSI\AppData\Local\Mozilla
2010-08-02 10:08 . 2010-08-02 10:08 717296 —-a-w- c:\windows\system32\drivers\sptd.sys
2010-08-02 10:07 . 2010-08-02 10:07 ——– d—–w- c:\users\MSI\AppData\Roaming\DAEMON Tools
2010-08-02 10:05 . 2010-08-02 10:05 54 —-a-w- c:\programdata\Last.fm\Client\uninst2.bat
2010-08-02 10:05 . 2010-08-02 10:05 ——– d—–w- c:\programdata\Last.fm
2010-08-02 10:05 . 2010-08-02 10:05 683801 —-a-w- c:\programdata\Last.fm\Client\UninstWMP\unins000.exe
2010-08-02 10:05 . 2010-08-11 14:57 ——– d—–w- c:\users\MSI\AppData\Local\Last.fm
2010-08-02 10:03 . 2010-08-02 10:03 ——– d—–w- c:\users\MSI\AppData\Local\Google
2010-08-02 10:03 . 2010-08-02 10:03 ——– d—–w- c:\program files\Google
2010-08-02 09:59 . 2010-08-02 09:59 ——– d—–w- c:\users\MSI\AppData\Roaming\DVDVideoSoftIEHelpers
2010-08-02 09:59 . 2010-08-02 16:46 ——– d—–w- c:\program files\Common Files\DVDVideoSoft
2010-08-02 09:53 . 2010-08-11 12:21 ——– d—–w- c:\users\MSI\Tracing
2010-08-02 09:51 . 2010-08-02 17:12 ——– d—–w- c:\program files\Microsoft Silverlight
2010-08-02 09:50 . 2010-08-02 09:50 ——– d—–w- c:\program files\Microsoft
2010-08-02 09:49 . 2010-08-02 09:49 ——– d—–w- c:\program files\Windows Live SkyDrive
2010-08-02 09:49 . 2010-08-02 09:51 ——– d—–w- c:\program files\Windows Live
2010-08-02 09:49 . 2010-08-02 09:49 ——– d—–w- c:\windows\PCHEALTH
2010-08-02 09:46 . 2010-08-02 09:46 ——– d—–w- c:\users\MSI\AppData\Roaming\Reallusion
2010-08-02 09:43 . 2010-08-02 09:43 ——– d—–w- c:\program files\Common Files\Windows Live
2010-08-02 08:22 . 2010-08-02 08:22 ——– d—–w- c:\program files\Common Files\Java
2010-08-02 08:22 . 2010-08-02 08:22 411368 —-a-w- c:\windows\system32\deployJava1.dll
2010-08-02 08:22 . 2010-08-02 08:22 ——– d—–w- c:\program files\Java
2010-07-31 15:18 . 2009-04-11 05:03 12240896 —-a-w- c:\windows\system32\NlsLexicons0007.dll
2010-07-31 15:18 . 2009-04-11 06:28 1081344 —-a-w- c:\windows\system32\SLCExt.dll
2010-07-31 15:18 . 2009-04-11 06:27 3408896 —-a-w- c:\windows\system32\SLsvc.exe
2010-07-31 15:16 . 2009-04-11 06:28 758784 —-a-w- c:\windows\system32\qmgr.dll
2010-07-31 15:14 . 2009-04-11 06:28 67584 —-a-w- c:\windows\system32\regapi.dll
2010-07-31 15:13 . 2009-04-11 06:28 83968 —-a-w- c:\windows\system32\wbem\wmiutils.dll
2010-07-31 15:13 . 2009-04-11 06:28 744448 —-a-w- c:\windows\system32\wbem\wbemcore.dll
2010-07-31 15:13 . 2009-04-11 06:28 30208 —-a-w- c:\windows\system32\wbem\wbemprox.dll
2010-07-31 15:13 . 2009-04-11 06:28 265728 —-a-w- c:\windows\system32\wbem\repdrvfs.dll
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-10 18:48 . 2008-10-24 22:02 ——– d—–w- c:\programdata\Microsoft Help
2010-08-10 18:44 . 2006-11-02 11:18 ——– d—–w- c:\program files\Windows Mail
2010-08-06 13:37 . 2008-07-17 18:54 667352 —-a-w- c:\windows\system32\perfh013.dat
2010-08-06 13:37 . 2008-07-17 18:54 126854 —-a-w- c:\windows\system32\perfc013.dat
2010-08-03 10:13 . 2008-10-24 20:43 ——– d—–w- c:\program files\Common Files\Symantec Shared
2010-08-03 10:11 . 2008-10-24 20:43 ——– d—–w- c:\programdata\Symantec
2010-08-03 10:03 . 2008-10-24 20:44 ——– d—–w- c:\program files\Symantec
2010-08-02 17:35 . 2008-10-24 22:40 ——– d—–w- c:\program files\Microsoft Works
2010-08-02 17:10 . 2006-11-02 10:25 665600 —-a-w- c:\windows\inf\drvindex.dat
2010-08-02 17:09 . 2010-08-02 17:09 0 —ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Calendar
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Sidebar
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Journal
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Collaboration
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Photo Gallery
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Defender
2010-08-02 07:36 . 2008-10-24 20:45 806 —-a-w- c:\windows\system32\drivers\SYMEVENT.INF
2010-08-02 07:36 . 2008-10-24 20:45 124464 —-a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2010-08-02 07:36 . 2008-10-24 20:45 10635 —-a-w- c:\windows\system32\drivers\SYMEVENT.CAT
2010-07-24 15:40 . 2010-07-23 15:06 680 —-a-w- c:\users\MSI\AppData\Local\d3d9caps.dat
2010-07-24 00:40 . 2010-07-24 00:40 1119 —-a-w- c:\windows\bcdtmp.tmp
2010-07-23 23:55 . 2010-07-23 23:55 0 —ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2010-07-23 15:06 . 2010-07-23 15:06 6 —-a-w- c:\windows\silentOnce.tmp
2010-06-26 06:05 . 2010-08-10 18:20 916480 —-a-w- c:\windows\system32\wininet.dll
2010-06-26 06:02 . 2010-08-10 18:20 71680 —-a-w- c:\windows\system32\iesetup.dll
2010-06-26 06:02 . 2010-08-10 18:20 109056 —-a-w- c:\windows\system32\iesysprep.dll
2010-06-26 04:25 . 2010-08-10 18:20 133632 —-a-w- c:\windows\system32\ieUnatt.exe
2010-06-11 16:16 . 2010-08-10 18:20 274944 —-a-w- c:\windows\system32\schannel.dll
2010-06-02 07:14 . 2010-07-26 16:23 142848 —-a-w- c:\windows\system32\AERTACap.dll
2010-06-02 07:14 . 2010-07-26 16:23 125952 —-a-w- c:\windows\system32\AERTARen.dll
2010-06-02 07:14 . 2010-07-26 16:23 540672 —-a-w- c:\windows\RtlExUpd.dll
2010-06-02 07:14 . 2010-07-26 16:23 965664 —-a-w- c:\windows\system32\RHDMIExt.dll
2010-06-02 07:14 . 2010-07-26 16:23 40992 —-a-w- c:\windows\system32\RHCoInst.dll
2010-06-02 07:14 . 2010-07-26 16:23 2510368 —-a-w- c:\windows\system32\RtkHDMI.dll
2010-06-02 07:14 . 2010-07-26 16:23 155808 —-a-w- c:\windows\system32\drivers\RtHDMIV.sys
2010-05-27 20:08 . 2010-08-10 18:20 81920 —-a-w- c:\windows\system32\iccvid.dll
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"googletalk"="c:\program files\Google\Google Talk\googletalk.exe" [2007-11-21 3293184]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG9_TRAY"="d:\programs\AVG\avgtray.exe" [2010-08-04 2007320]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-06-02 7440928]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-07-19 92704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-07-19 13543968]
"MGSysCtrl"="c:\program files\System Control Manager\MGSysCtrl.exe" [2008-08-27 708608]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-12 05:16 39792 —-a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2008-08-08 12:11 490952 —-a-w- d:\programs\DAEMON Tools Lite\daemon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ITSecMng]
2007-09-28 23:03 75136 —-a-w- c:\program files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-21 02:23 1008184 —-a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):50,97,30,35,5c,32,cb,01
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-4001456226-395614177-561971636-1000]
"EnableNotificationsRef"=dword:00000003
R2 Micro Star SCM;Micro Star SCM;c:\program files\System Control Manager\MSIService.exe [2008-08-26 159744]
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-08-07 97536]
R3 netr28;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS
etr28.sys [2008-09-25 436224]
R3 WPRO_40_1340;WinPcap Packet Driver (WPRO_40_1340);c:\windows\system32\drivers\WPRO_40_1340.sys [x]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-08-02 717296]
S0 AvgRkx86;avgrkx86.sys;c:\windows\System32\Drivers\avgrkx86.sys [2010-08-04 161672]
S1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\System32\Drivers\avgldx86.sys [2010-08-04 333192]
S1 AvgTdiX;AVG Network Redirector;c:\windows\System32\Drivers\avgtdix.sys [2010-08-04 356616]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-06-25 172032]
S2 avg9wd;AVG WatchDog;d:\programs\AVG\avgwdsvc.exe [2010-08-04 285392]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-06-25 5550592]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-06-25 176128]
S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2009-03-04 4232704]
S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Inhoud van de 'Gedeelde Taken' map
.
.
——- Bijkomende Scan ——-
.
uStart Page = hxxp://www.google.nl/
IE: Free YouTube to Mp3 Converter - c:\users\MSI\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
FF - ProfilePath - c:\users\MSI\AppData\Roaming\Mozilla\Firefox\Profiles\4n8lthom.default\
FF - plugin: c:\program files\Java\jre6\bin
ew_plugin
pdeployJava1.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
—- FIREFOX POLICIES —-
d:\programs\FireFox\greprefs\all.js - pref("ui.use_native_colors", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–mgbaam7a8h", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–mgberp4a5d4ar", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–p1ai", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–mgbayh7gpa", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
d:\programs\FireFox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
d:\programs\FireFox\greprefs\all.js - pref("network.proxy.type", 5);
d:\programs\FireFox\greprefs\all.js - pref("network.buffer.cache.count", 24);
d:\programs\FireFox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
d:\programs\FireFox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
d:\programs\FireFox\greprefs\all.js - pref("svg.smil.enabled", false);
d:\programs\FireFox\greprefs\all.js - pref("accelerometer.enabled", true);
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "";
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
d:\programs\FireFox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties";
d:\programs\FireFox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties";
d:\programs\FireFox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - ORPHANS VERWIJDERD - - - -
AddRemove-{26604C7E-A313-4D12-867F-7C6E7820BE4C} - c:\program files\InstallShield Installation Information\{26604C7E-A313-4D12-867F-7C6E7820BE4C}\setup.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-11 17:22
Windows 6.0.6002 Service Pack 2 NTFS
scannen van verborgen processen …
scannen van verborgen autostart items …
scannen van verborgen bestanden …
Scan succesvol afgerond
verborgen bestanden: 0
**************************************************************************
.
Voltooingstijd: 2010-08-11 17:27:15
ComboFix-quarantined-files.txt 2010-08-11 15:27
Pre-Run: 16.686.129.152 bytes beschikbaar
Post-Run: 17.716.719.616 bytes beschikbaar
- - End Of File - - 14F3F72CD37CA4D358684A44C98E94EA
Ik hoop dat dit uitkomst kan bieden. - Hallo Derk, open een nieuw kladblok bestand. (Start>Alle programma’s>Bureau-accessoires>Kladblok),
kopieer en plak de volgende (vetgedrukte, blauwe tekst) in een leeg venster.
[b:114d697381] - Orders opgevolgd!
Hier komt het log(je):
ComboFix 10-08-10.06 - MSI 12-08-2010 12:00:31.2.1 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3070.1974 [GMT 2:00]
Gestart vanuit: c:\users\MSI\Desktop\ComboFix.exe
gebruikte Opdracht switches :: c:\users\MSI\Desktop\CFScript.txt
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Nieuw herstelpunt werd aangemaakt
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\$avg
c:\$avg\$CHJW\028266c0-0fba-4610-b3d0-99515e494448
c:\$avg\$CHJW\0b88088e-16a1-4c5a-b115-e3fc57bfcdc3
c:\$avg\$CHJW\6bb8037f-2266-4516-8ae8-ce875186dde8
c:\$avg\$CHJW\aa0c532d-c302-4207-8681-9cd6b9c92076
c:\$avg\$CHJW\avgcchff.dat
c:\$avg\$CHJW\avgcchfi.dat
c:\$avg\$CHJW\avgcchmf.dat
c:\$avg\$CHJW\avgcchmi.dat
c:\$avg\$CHJW\c2af2cd8-9784-4b1b-8f9b-ee8441fca318
c:\$avg\$CHJW\ca370028-1936-406e-af7d-5246013db288
c:\$avg\$CHJW\d0301872-a309-4797-8b07-39a1dd7f8eaf
c:\$avg\$CHJW\ec05fb08-04d5-46bc-acd3-6d9efb48aa56
.
(((((((((((((((((((( Bestanden Gemaakt van 2010-07-12 to 2010-08-12 ))))))))))))))))))))))))))))))
.
2099-10-24 13:52 . 2099-10-24 13:52 125 —-a-w- c:\windows\xUninstall.bat
2099-10-24 13:52 . 2008-08-07 09:01 97536 —-a-w- c:\windows\system32\drivers\jmcr.sys
2099-10-24 13:52 . 2008-05-14 11:53 110080 —-a-r- c:\windows\system32\JmCrIcon.dll
2099-10-24 13:52 . 2099-10-24 13:52 ——– d—–w- c:\windows\JMCR_DIR
2099-10-24 13:51 . 2008-09-25 19:29 436224 —-a-w- c:\windows\system32\drivers
etr28.sys
2099-10-24 13:51 . 2008-09-25 19:26 221184 —-a-w- c:\windows\system32\RaCoInst.dll
2099-10-24 13:51 . 2008-09-25 19:26 15312 —-a-w- c:\windows\system32\RaCoInst.dat
2099-10-24 13:50 . 2008-08-06 08:26 9728 —-a-w- c:\windows\system32\RtNicProp32.dll
2099-10-24 13:50 . 2008-08-06 08:26 124928 —-a-w- c:\windows\system32\drivers\Rtlh86.sys
2099-10-24 13:47 . 2010-07-26 16:25 319456 —-a-w- c:\windows\DIFxAPI.dll
2099-10-24 13:47 . 2010-07-26 16:23 ——– d—–w- c:\program files\Realtek
2099-10-24 13:47 . 2010-08-02 16:42 ——– d–h–w- c:\program files\InstallShield Installation Information
2099-10-24 13:47 . 2099-10-24 13:47 ——– d—–w- c:\program files\Common Files\InstallShield
2099-10-24 13:40 . 2099-10-24 13:40 ——– d—–w- c:\programdata\NVIDIA
2099-10-24 13:38 . 2008-07-19 19:53 768544 —-a-w- c:\windows\system32
vcplui.exe
2099-10-24 13:38 . 2008-07-19 19:53 313888 —-a-w- c:\windows\system32
vexpbar.dll
2099-10-24 13:38 . 2008-07-19 19:53 1079840 —-a-w- c:\windows\system32
vcpluir.dll
2099-10-24 13:37 . 2008-07-19 19:53 446464 —-a-w- c:\windows\system32
vudisp.exe
2099-10-24 13:37 . 2010-07-23 23:56 ——– d—–w- c:\windows\Panther
2099-10-24 13:37 . 2010-08-02 16:03 ——– d—–w- C:\Boot
2099-10-24 12:47 . 2008-07-15 16:11 446464 —-a-w- c:\windows\system32\NVUNINST.EXE
2099-10-24 12:45 . 2010-08-02 14:13 ——– d—–w- c:\windows\Debug
2010-08-12 10:09 . 2010-08-12 10:09 ——– d—–w- c:\users\Public\AppData\Local\temp
2010-08-12 10:09 . 2010-08-12 10:09 ——– d—–w- c:\users\Default\AppData\Local\temp
2010-08-11 15:27 . 2010-08-12 10:11 ——– d—–w- c:\users\MSI\AppData\Local\temp
2010-08-11 10:02 . 2010-04-29 13:39 38224 —-a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-08-11 10:02 . 2010-08-11 10:02 ——– d—–w- c:\program files\Malwarebytes' Anti-Malware
2010-08-11 10:02 . 2010-04-29 13:39 20952 —-a-w- c:\windows\system32\drivers\mbam.sys
2010-08-11 09:59 . 2010-08-11 09:59 ——– d—–w- c:\programdata\Malwarebytes
2010-08-10 18:19 . 2010-06-21 13:37 2037760 —-a-w- c:\windows\system32\win32k.sys
2010-08-10 18:19 . 2010-06-18 17:31 36864 —-a-w- c:\windows\system32\rtutils.dll
2010-08-10 18:19 . 2010-06-08 17:35 3600768 —-a-w- c:\windows\system32
tkrnlpa.exe
2010-08-10 18:19 . 2010-06-08 17:35 3548040 —-a-w- c:\windows\system32
toskrnl.exe
2010-08-10 18:19 . 2010-06-11 16:15 1248768 —-a-w- c:\windows\system32\msxml3.dll
2010-08-10 18:19 . 2010-06-18 15:04 302080 —-a-w- c:\windows\system32\drivers\srv.sys
2010-08-10 18:19 . 2010-06-18 15:04 144896 —-a-w- c:\windows\system32\drivers\srv2.sys
2010-08-10 18:19 . 2010-06-16 16:04 905088 —-a-w- c:\windows\system32\drivers\tcpip.sys
2010-08-04 13:30 . 2010-08-04 13:30 12464 —-a-w- c:\windows\system32\avgrsstx.dll
2010-08-04 13:30 . 2010-08-04 13:30 161672 —-a-w- c:\windows\system32\drivers\avgrkx86.sys
2010-08-04 13:30 . 2010-08-04 13:30 356616 —-a-w- c:\windows\system32\drivers\avgtdix.sys
2010-08-04 13:30 . 2010-08-04 13:30 333192 —-a-w- c:\windows\system32\drivers\avgldx86.sys
2010-08-04 13:30 . 2010-08-12 09:38 ——– d—–w- c:\windows\system32\drivers\Avg
2010-08-04 13:30 . 2010-08-04 13:30 28424 —-a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-08-04 13:30 . 2010-08-04 13:30 ——– d—–w- c:\programdata\avg9
2010-08-04 12:10 . 2010-08-04 12:10 ——– d—–w- c:\users\MSI\AppData\Roaming\GameRanger
2010-08-04 11:20 . 2010-08-04 11:21 ——– d—–w- c:\users\MSI\AppData\Roaming\vlc
2010-08-04 11:10 . 2010-08-04 11:10 ——– d—–w- c:\programdata\DivX
2010-08-03 15:06 . 2010-08-03 15:06 ——– d—–w- c:\program files\AVG
2010-08-03 14:38 . 2010-08-03 14:38 ——– d—–w- c:\users\MSI\AppData\Roaming\Malwarebytes
2010-08-03 11:03 . 2010-08-03 11:37 ——– dc—-w- c:\windows\system32\DRVSTORE
2010-08-03 11:03 . 2010-08-03 11:37 ——– d—–w- c:\programdata\Lavasoft
2010-08-03 10:24 . 2003-03-18 20:20 1060864 —-a-w- c:\windows\system32\MFC71.dll
2010-08-03 00:13 . 2010-08-03 00:13 ——– d—–w- c:\windows\Sun
2010-08-02 17:55 . 2010-08-02 17:55 ——– d—–w- c:\programdata\Office Genuine Advantage
2010-08-02 17:47 . 2009-10-09 21:56 2048 —-a-w- c:\windows\system32\winrsmgr.dll
2010-08-02 17:11 . 2010-08-02 17:11 ——– d—–w- c:\windows\system32\drivers\fr-FR
2010-08-02 17:11 . 2010-08-02 17:11 ——– d—–w- c:\program files\Windows Portable Devices
2010-08-02 17:08 . 2009-09-10 02:00 92672 —-a-w- c:\windows\system32\UIAnimation.dll
2010-08-02 17:08 . 2009-09-10 02:01 3023360 —-a-w- c:\windows\system32\UIRibbon.dll
2010-08-02 17:08 . 2009-09-10 02:00 1164800 —-a-w- c:\windows\system32\UIRibbonRes.dll
2010-08-02 17:07 . 2009-09-25 01:33 369664 —-a-w- c:\windows\system32\WMPhoto.dll
2010-08-02 17:07 . 2009-09-24 22:54 258048 —-a-w- c:\windows\system32\winspool.drv
2010-08-02 17:07 . 2009-09-25 01:27 37888 —-a-w- c:\windows\system32\cdd.dll
2010-08-02 17:05 . 2009-10-01 01:02 30208 —-a-w- c:\windows\system32\WPDShextAutoplay.exe
2010-08-02 17:05 . 2009-10-01 01:02 31232 —-a-w- c:\windows\system32\BthMtpContextHandler.dll
2010-08-02 17:05 . 2009-10-01 01:01 81920 —-a-w- c:\windows\system32\wpdbusenum.dll
2010-08-02 17:05 . 2009-10-01 01:01 60928 —-a-w- c:\windows\system32\PortableDeviceConnectApi.dll
2010-08-02 17:05 . 2009-10-01 01:02 2537472 —-a-w- c:\windows\system32\wpdshext.dll
2010-08-02 17:05 . 2009-10-01 01:02 334848 —-a-w- c:\windows\system32\PortableDeviceApi.dll
2010-08-02 17:05 . 2009-10-01 01:02 87552 —-a-w- c:\windows\system32\WPDShServiceObj.dll
2010-08-02 17:05 . 2009-10-01 01:01 546816 —-a-w- c:\windows\system32\wpd_ci.dll
2010-08-02 17:05 . 2009-10-01 01:01 160256 —-a-w- c:\windows\system32\PortableDeviceTypes.dll
2010-08-02 17:05 . 2009-10-01 01:01 350208 —-a-w- c:\windows\system32\WPDSp.dll
2010-08-02 17:05 . 2009-10-01 01:01 196608 —-a-w- c:\windows\system32\PortableDeviceWMDRM.dll
2010-08-02 17:05 . 2009-10-01 01:01 100864 —-a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2010-08-02 17:04 . 2009-10-08 21:07 4096 —-a-w- c:\windows\system32\oleaccrc.dll
2010-08-02 17:04 . 2009-10-08 21:08 555520 —-a-w- c:\windows\system32\UIAutomationCore.dll
2010-08-02 17:04 . 2009-10-08 21:08 234496 —-a-w- c:\windows\system32\oleacc.dll
2010-08-02 16:59 . 2010-03-05 14:01 420352 —-a-w- c:\windows\system32\vbscript.dll
2010-08-02 16:52 . 2010-08-02 16:52 ——– d—–w- c:\program files\MAGIX
2010-08-02 16:52 . 2010-08-02 16:52 ——– d—–w- c:\windows\system32\MAGIX
2010-08-02 16:52 . 2006-12-22 12:02 663552 —-a-w- c:\windows\system32\mgxoschk.dll
2010-08-02 16:39 . 2010-08-05 16:09 ——– d—–w- c:\users\MSI\AppData\Roaming\Azureus
2010-08-02 16:38 . 2010-08-02 16:38 ——– d—–w- c:\program files\Conduit
2010-08-02 15:51 . 2010-08-02 15:53 ——– d—–w- c:\windows\system32\ca-ES
2010-08-02 15:51 . 2010-08-02 15:53 ——– d—–w- c:\windows\system32\eu-ES
2010-08-02 15:51 . 2010-08-02 15:52 ——– d—–w- c:\windows\system32\vi-VN
2010-08-02 15:05 . 2010-08-02 15:05 ——– d—–w- c:\windows\system32\EventProviders
2010-08-02 10:49 . 2010-08-02 10:49 ——– d—–w- c:\users\MSI\AppData\Roaming\Ulead Systems
2010-08-02 10:40 . 2010-08-02 10:40 ——– d—–w- c:\program files\Microsoft.NET
2010-08-02 10:31 . 2010-08-02 10:33 ——– d—–w- c:\users\MSI\AppData\Roaming\Mp3tag
2010-08-02 10:28 . 2010-08-02 10:28 ——– d—–w- c:\users\MSI\AppData\Local\Microsoft Help
2010-08-02 10:26 . 2010-08-02 10:26 ——– d—–r- C:\MSOCache
2010-08-02 10:19 . 2010-08-02 10:19 0 —-a-w- c:\windows
sreg.dat
2010-08-02 10:19 . 2010-08-02 10:19 ——– d—–w- c:\users\MSI\AppData\Local\Mozilla
2010-08-02 10:08 . 2010-08-02 10:08 717296 —-a-w- c:\windows\system32\drivers\sptd.sys
2010-08-02 10:07 . 2010-08-02 10:07 ——– d—–w- c:\users\MSI\AppData\Roaming\DAEMON Tools
2010-08-02 10:05 . 2010-08-02 10:05 ——– d—–w- c:\programdata\Last.fm
2010-08-02 10:05 . 2010-08-12 01:34 ——– d—–w- c:\users\MSI\AppData\Local\Last.fm
2010-08-02 10:03 . 2010-08-02 10:03 ——– d—–w- c:\users\MSI\AppData\Local\Google
2010-08-02 10:03 . 2010-08-02 10:03 ——– d—–w- c:\program files\Google
2010-08-02 09:59 . 2010-08-02 09:59 ——– d—–w- c:\users\MSI\AppData\Roaming\DVDVideoSoftIEHelpers
2010-08-02 09:59 . 2010-08-02 16:46 ——– d—–w- c:\program files\Common Files\DVDVideoSoft
2010-08-02 09:53 . 2010-08-11 21:41 ——– d—–w- c:\users\MSI\Tracing
2010-08-02 09:51 . 2010-08-02 17:12 ——– d—–w- c:\program files\Microsoft Silverlight
2010-08-02 09:50 . 2010-08-02 09:50 ——– d—–w- c:\program files\Microsoft
2010-08-02 09:49 . 2010-08-02 09:49 ——– d—–w- c:\program files\Windows Live SkyDrive
2010-08-02 09:49 . 2010-08-02 09:51 ——– d—–w- c:\program files\Windows Live
2010-08-02 09:49 . 2010-08-02 09:49 ——– d—–w- c:\windows\PCHEALTH
2010-08-02 09:46 . 2010-08-02 09:46 ——– d—–w- c:\users\MSI\AppData\Roaming\Reallusion
2010-08-02 09:43 . 2010-08-02 09:43 ——– d—–w- c:\program files\Common Files\Windows Live
2010-08-02 08:22 . 2010-08-02 08:22 ——– d—–w- c:\program files\Common Files\Java
2010-08-02 08:22 . 2010-08-02 08:22 411368 —-a-w- c:\windows\system32\deployJava1.dll
2010-08-02 08:22 . 2010-08-02 08:22 ——– d—–w- c:\program files\Java
2010-07-31 15:18 . 2009-04-11 05:03 12240896 —-a-w- c:\windows\system32\NlsLexicons0007.dll
2010-07-31 15:18 . 2009-04-11 06:28 1081344 —-a-w- c:\windows\system32\SLCExt.dll
2010-07-31 15:18 . 2009-04-11 06:27 3408896 —-a-w- c:\windows\system32\SLsvc.exe
2010-07-31 15:16 . 2009-04-11 06:28 758784 —-a-w- c:\windows\system32\qmgr.dll
2010-07-31 15:14 . 2009-04-11 06:28 67584 —-a-w- c:\windows\system32\regapi.dll
2010-07-31 15:13 . 2009-04-11 06:28 83968 —-a-w- c:\windows\system32\wbem\wmiutils.dll
2010-07-31 15:13 . 2009-04-11 06:28 744448 —-a-w- c:\windows\system32\wbem\wbemcore.dll
2010-07-31 15:13 . 2009-04-11 06:28 30208 —-a-w- c:\windows\system32\wbem\wbemprox.dll
2010-07-31 15:13 . 2009-04-11 06:28 265728 —-a-w- c:\windows\system32\wbem\repdrvfs.dll
2010-07-31 15:13 . 2009-04-11 06:28 189440 —-a-w- c:\windows\system32\wbem\mofd.dll
2010-07-31 15:13 . 2009-04-11 06:28 614912 —-a-w- c:\windows\system32\wbem\fastprox.dll
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-10 18:48 . 2008-10-24 22:02 ——– d—–w- c:\programdata\Microsoft Help
2010-08-10 18:44 . 2006-11-02 11:18 ——– d—–w- c:\program files\Windows Mail
2010-08-06 13:37 . 2008-07-17 18:54 667352 —-a-w- c:\windows\system32\perfh013.dat
2010-08-06 13:37 . 2008-07-17 18:54 126854 —-a-w- c:\windows\system32\perfc013.dat
2010-08-03 10:13 . 2008-10-24 20:43 ——– d—–w- c:\program files\Common Files\Symantec Shared
2010-08-03 10:11 . 2008-10-24 20:43 ——– d—–w- c:\programdata\Symantec
2010-08-03 10:03 . 2008-10-24 20:44 ——– d—–w- c:\program files\Symantec
2010-08-02 17:35 . 2008-10-24 22:40 ——– d—–w- c:\program files\Microsoft Works
2010-08-02 17:10 . 2006-11-02 10:25 665600 —-a-w- c:\windows\inf\drvindex.dat
2010-08-02 17:09 . 2010-08-02 17:09 0 —ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Calendar
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Sidebar
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Journal
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Collaboration
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Photo Gallery
2010-08-02 15:53 . 2006-11-02 12:37 ——– d—–w- c:\program files\Windows Defender
2010-08-02 10:05 . 2010-08-02 10:05 54 —-a-w- c:\programdata\Last.fm\Client\uninst2.bat
2010-08-02 10:05 . 2010-08-02 10:05 683801 —-a-w- c:\programdata\Last.fm\Client\UninstWMP\unins000.exe
2010-08-02 07:36 . 2008-10-24 20:45 806 —-a-w- c:\windows\system32\drivers\SYMEVENT.INF
2010-08-02 07:36 . 2008-10-24 20:45 124464 —-a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2010-08-02 07:36 . 2008-10-24 20:45 10635 —-a-w- c:\windows\system32\drivers\SYMEVENT.CAT
2010-07-24 15:40 . 2010-07-23 15:06 680 —-a-w- c:\users\MSI\AppData\Local\d3d9caps.dat
2010-07-24 00:40 . 2010-07-24 00:40 1119 —-a-w- c:\windows\bcdtmp.tmp
2010-07-23 23:55 . 2010-07-23 23:55 0 —ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2010-07-23 15:06 . 2010-07-23 15:06 6 —-a-w- c:\windows\silentOnce.tmp
2010-06-26 06:05 . 2010-08-10 18:20 916480 —-a-w- c:\windows\system32\wininet.dll
2010-06-26 06:02 . 2010-08-10 18:20 71680 —-a-w- c:\windows\system32\iesetup.dll
2010-06-26 06:02 . 2010-08-10 18:20 109056 —-a-w- c:\windows\system32\iesysprep.dll
2010-06-26 04:25 . 2010-08-10 18:20 133632 —-a-w- c:\windows\system32\ieUnatt.exe
2010-06-11 16:16 . 2010-08-10 18:20 274944 —-a-w- c:\windows\system32\schannel.dll
2010-06-02 07:14 . 2010-07-26 16:23 142848 —-a-w- c:\windows\system32\AERTACap.dll
2010-06-02 07:14 . 2010-07-26 16:23 125952 —-a-w- c:\windows\system32\AERTARen.dll
2010-06-02 07:14 . 2010-07-26 16:23 540672 —-a-w- c:\windows\RtlExUpd.dll
2010-06-02 07:14 . 2010-07-26 16:23 965664 —-a-w- c:\windows\system32\RHDMIExt.dll
2010-06-02 07:14 . 2010-07-26 16:23 40992 —-a-w- c:\windows\system32\RHCoInst.dll
2010-06-02 07:14 . 2010-07-26 16:23 2510368 —-a-w- c:\windows\system32\RtkHDMI.dll
2010-06-02 07:14 . 2010-07-26 16:23 155808 —-a-w- c:\windows\system32\drivers\RtHDMIV.sys
2010-05-27 20:08 . 2010-08-10 18:20 81920 —-a-w- c:\windows\system32\iccvid.dll
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"googletalk"="c:\program files\Google\Google Talk\googletalk.exe" [2007-11-21 3293184]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG9_TRAY"="d:\programs\AVG\avgtray.exe" [2010-08-04 2007320]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-06-02 7440928]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-07-19 92704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-07-19 13543968]
"MGSysCtrl"="c:\program files\System Control Manager\MGSysCtrl.exe" [2008-08-27 708608]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-12 05:16 39792 —-a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2008-08-08 12:11 490952 —-a-w- d:\programs\DAEMON Tools Lite\daemon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ITSecMng]
2007-09-28 23:03 75136 —-a-w- c:\program files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-21 02:23 1008184 —-a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):50,97,30,35,5c,32,cb,01
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-4001456226-395614177-561971636-1000]
"EnableNotificationsRef"=dword:00000003
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-08-07 97536]
R3 netr28;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS
etr28.sys [2008-09-25 436224]
R3 WPRO_40_1340;WinPcap Packet Driver (WPRO_40_1340);c:\windows\system32\drivers\WPRO_40_1340.sys [x]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-08-02 717296]
S0 AvgRkx86;avgrkx86.sys;c:\windows\System32\Drivers\avgrkx86.sys [2010-08-04 161672]
S1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\System32\Drivers\avgldx86.sys [2010-08-04 333192]
S1 AvgTdiX;AVG Network Redirector;c:\windows\System32\Drivers\avgtdix.sys [2010-08-04 356616]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-06-25 172032]
S2 avg9wd;AVG WatchDog;d:\programs\AVG\avgwdsvc.exe [2010-08-04 285392]
S2 Micro Star SCM;Micro Star SCM;c:\program files\System Control Manager\MSIService.exe [2008-08-26 159744]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-06-25 5550592]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-06-25 176128]
S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2009-03-04 4232704]
S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
——- Bijkomende Scan ——-
.
uStart Page = hxxp://www.google.nl/
IE: Free YouTube to Mp3 Converter - c:\users\MSI\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
FF - ProfilePath - c:\users\MSI\AppData\Roaming\Mozilla\Firefox\Profiles\4n8lthom.default\
FF - plugin: c:\program files\Java\jre6\bin
ew_plugin
pdeployJava1.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
—- FIREFOX POLICIES —-
d:\programs\FireFox\greprefs\all.js - pref("ui.use_native_colors", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–mgbaam7a8h", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–mgberp4a5d4ar", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–p1ai", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.xn–mgbayh7gpa", true);
d:\programs\FireFox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
d:\programs\FireFox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
d:\programs\FireFox\greprefs\all.js - pref("network.proxy.type", 5);
d:\programs\FireFox\greprefs\all.js - pref("network.buffer.cache.count", 24);
d:\programs\FireFox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
d:\programs\FireFox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
d:\programs\FireFox\greprefs\all.js - pref("svg.smil.enabled", false);
d:\programs\FireFox\greprefs\all.js - pref("accelerometer.enabled", true);
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "";
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
d:\programs\FireFox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
d:\programs\FireFox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties";
d:\programs\FireFox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties";
d:\programs\FireFox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
d:\programs\FireFox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-12 12:11
Windows 6.0.6002 Service Pack 2 NTFS
scannen van verborgen processen …
scannen van verborgen autostart items …
scannen van verborgen bestanden …
Scan succesvol afgerond
verborgen bestanden: 0
**************************************************************************
.
———————— Andere Aktieve Processen ————————
.
c:\windows\system32\atieclxx.exe
c:\windows\system32\WLANExt.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\WUDFHost.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conime.exe
c:\windows\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Voltooingstijd: 2010-08-12 12:19:27 - machine werd herstart
ComboFix-quarantined-files.txt 2010-08-12 10:19
ComboFix2.txt 2010-08-11 15:27
Pre-Run: 17.731.698.688 bytes beschikbaar
Post-Run: 18.975.735.808 bytes beschikbaar
- - End Of File - - 903AC4E6B80D12387A8796B76B9FBE40 - Hoi Cockeledokes, hoe gaat het nu met je computer.
Heb je nog problemen?
Beantwoord deze vraag
Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.