Ik heb sinds 2 weken geleden de pc geformateerd en opnieuw geinstalleerd..
En nu sinds een paar dagen geeft hij enkele problemen..waar onder :
Windows firewall die zichzelf uitschakelt en die ik dan niet meer opnieuw kan aanzetten, echter nadat ik de pc opnieuw opgestart heb..doet de firewall t wel weer.
Ook loopt regelmatig mijn internet explorer vast terwijl ik amper wat aan het doen ben.
Dit geldt ook als ik van schijf C naar schijf D of E gaat en andersom...dan slaat alles zomaar vast..zelfs nadat ik pas de pc heb aangezet.
Tevens kan ik geen systeem herstel doen..

Ik heb met ad-aware gescant en met spybot..tevens met windows defender en avg anti-spyware. Geen problemen.
Ook heb ik met Norton gescant..en ook die geeft geen problemen..
Iemand nog ideeen ???

Hijacklog:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:30:24, on 3-10-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.heavens-dream.com/forum
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\sw g.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open Selected URL - D:\Proggies\Bad link proggies\rcgoogle\openselectedurl.htm
O8 - Extra context menu item: Search &Google - D:\Proggies\Bad link proggies\rcgoogle\google.htm
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1190497155828
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
--

Start Hijackthis op en kies voor 'Do a system scan only'
Selecteer alleen de items die hieronder zijn genoemd:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

Sluit alle vensters behalve Hijackthis
Klik op 'Fix checked' om de items te verwijderen.


Download http://download.bleepingcomputer.com/sUBs/Beta/ComboFix.exe (http://[/FONT)
Combofix naar je Bureaublad.

Dubbelklik op Combofix.exe
Volg de instructies, aanvaard de disclaimer door 1 (continue) te typen gevolgd door ENTER.
Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.Wanneer de fix voltooid is en na herstart, zal de log combofix.txt openen.
Plaats dit log in je volgende post tesamen met een nieuw HijackThis log.

Opmerking: Indien je virusscanner reageert met een melding van een scriptuitvoering, mag je dit negeren.

Oke ga ik doen.. :good:

De combofixlogje :

ComboFix 07-10-04.5 - Natazja 2007-10-04 12:58:46.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1043.18.629 [GMT 2:00]
Gestart vanuit: C:\Documents and Settings\Natazja\Bureaublad\ComboFix.exe
* Nieuw herstelpunt werd aangemaakt
.
(((((((((((((((((((( Bestanden Gemaakt van 2007-09-04 to 2007-10-04 ))))))))))))))))))))))))))))))
.
2007-10-04 12:58 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-03 21:30 <DIR> d-------- C:\Program Files\Trend Micro
2007-10-03 18:29 <DIR> dr------- C:\Documents and Settings\Administrator\Menu Start
2007-10-03 18:29 <DIR> d--h----- C:\Documents and Settings\Administrator\Sjablonen
2007-10-03 18:29 <DIR> d--h----- C:\Documents and Settings\Administrator\Onlangs geopend
2007-10-03 18:29 <DIR> d--h----- C:\Documents and Settings\Administrator\Netwerkprinteromgeving
2007-10-03 18:29 <DIR> d-------- C:\Documents and Settings\Administrator\Mijn documenten
2007-10-03 18:29 <DIR> d-------- C:\Documents and Settings\Administrator\Favorieten
2007-10-03 18:29 <DIR> d-------- C:\Documents and Settings\Administrator\Bureaublad
2007-10-03 15:14 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-10-02 20:40 <DIR> d-------- C:\Program Files\Hawaiian Explorer Pearl Harbor
2007-10-02 20:13 <DIR> d-------- C:\Program Files\Season Match
2007-10-01 10:07 <DIR> d-------- C:\Temp\Strato Vani - Vol.4
2007-09-26 23:21 <DIR> d-------- C:\Program Files\MSXML 6.0
2007-09-24 14:00 <DIR> d-------- C:\Program Files\Game
2007-09-24 13:59 <DIR> d-------- C:\Program Files\Happy Melodies
2007-09-24 13:58 <DIR> d-------- C:\Program Files\The Scruffs
2007-09-24 13:58 <DIR> d-------- C:\Program Files\Aquitania
2007-09-23 19:41 215,144 -ra------ C:\WINDOWS\pw32a.dll
2007-09-23 19:41 215,144 -ra------ C:\WINDOWS\patchw32.dll
2007-09-23 19:40 <DIR> d-------- C:\Program Files\SymNetDrv
2007-09-23 18:28 <DIR> d-------- C:\Program Files\Anti-Leech
2007-09-23 17:00 17,920 --a------ C:\WINDOWS\system32\mdimon.dll
2007-09-23 16:58 <DIR> d-------- C:\WINDOWS\SHELLNEW
2007-09-23 16:58 <DIR> d-------- C:\Program Files\Microsoft.NET
2007-09-23 16:40 <DIR> d-------- C:\Documents and Settings\Natazja\Application Data\Skype
2007-09-23 16:39 <DIR> d-------- C:\Program Files\Skype
2007-09-23 16:39 <DIR> d-------- C:\Program Files\Common Files\Skype
2007-09-23 16:39 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Skype
2007-09-23 15:54 <DIR> d--h----- C:\Program Files\MSXML 4.0
2007-09-23 15:22 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-09-23 14:10 <DIR> d-------- C:\Program Files\RegCleaner
2007-09-23 13:03 <DIR> d-------- C:\Program Files\Jasc Software Inc
2007-09-23 13:02 <DIR> d-------- C:\Program Files\Smart Projects
2007-09-23 12:57 <DIR> d-------- C:\Program Files\FlashFXP
2007-09-23 12:56 9,611 --a------ C:\WINDOWS\system32\SpoonUninstall-dMC Power Pack.dat
2007-09-23 12:55 2,427 --a------ C:\WINDOWS\system32\SpoonUninstall-dMC mp3PRO (CLI) Encoder.dat
2007-09-23 12:55 2,181 --a------ C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP WMA V9 Codec.dat
2007-09-23 12:55 2,088 --a------ C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Ogg Vorbis Codec.dat
2007-09-23 12:55 2,074 --a------ C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP mp3PRO Input Codec.dat
2007-09-23 12:54 90,112 --a------ C:\WINDOWS\system32\SpoonUninstall.exe
2007-09-23 12:54 17,871 --a------ C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Music Converter.dat
2007-09-23 12:54 <DIR> d-------- C:\Program Files\Illustrate
2007-09-23 12:51 34,816 --a------ C:\WINDOWS\system32\~bwcrc32.dll
2007-09-23 12:51 <DIR> d-------- C:\Program Files\PostAssistant
2007-09-23 12:50 <DIR> d-------- C:\Program Files\Windows Defender
2007-09-23 12:44 8 -r-hs---- C:\WINDOWS\system32\B26E050E5E.sys
2007-09-23 12:41 <DIR> d-------- C:\Documents and Settings\Natazja\Application Data\InstallShield
2007-09-23 12:39 <DIR> d--h----- C:\Program Files\InstallShield Installation Information
2007-09-23 12:39 <DIR> d-------- C:\Program Files\Samsung
2007-09-23 12:39 <DIR> d-------- C:\Program Files\Common Files\InstallShield
2007-09-23 12:38 32,768 --a------ C:\WINDOWS\system32\Plugin.dll
2007-09-23 12:37 210,944 --a------ C:\WINDOWS\system32\MSVCRT10.DLL
2007-09-23 12:19 4,704 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
2007-09-23 12:19 <DIR> d-------- C:\Documents and Settings\Natazja\Application Data\Corel
2007-09-23 12:18 <DIR> d-------- C:\Program Files\Corel
2007-09-23 12:18 <DIR> d-------- C:\Program Files\Common Files\Corel
2007-09-23 12:18 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Corel
2007-09-23 12:14 <DIR> d-------- C:\Program Files\GetSmile
2007-09-23 12:14 <DIR> d-------- C:\Documents and Settings\Natazja\Application Data\Sofrayt
2007-09-23 11:52 <DIR> d-------- C:\Incomplete
2007-09-23 11:51 <DIR> d-------- C:\Temp
2007-09-23 11:51 <DIR> d-------- C:\Documents and Settings\Natazja\Incomplete
2007-09-23 11:51 <DIR> d-------- C:\Documents and Settings\Natazja\Application Data\LimeWire
2007-09-23 11:49 <DIR> d-------- C:\Program Files\LimeWire
2007-09-23 11:36 <DIR> d-------- C:\Program Files\Foxit Software
2007-09-23 11:32 <DIR> d-------- C:\Program Files\Lavasoft
2007-09-23 11:32 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2007-09-23 02:17 <DIR> d-------- C:\Program Files\Camtech
2007-09-23 02:16 <DIR> d-------- C:\Program Files\Space Plasma 3D Screensaver
2007-09-23 02:13 5,888 --------- C:\WINDOWS\system32\drivers\imagedrv.sys
2007-09-23 02:13 476,320 --------- C:\WINDOWS\system32\ImagXpr7.dll
2007-09-23 02:13 471,040 --------- C:\WINDOWS\system32\ImagXRA7.dll
2007-09-23 02:13 364,544 --------- C:\WINDOWS\system32\TwnLib4.dll
2007-09-23 02:13 262,144 --------- C:\WINDOWS\system32\ImagXR7.dll
2007-09-23 02:13 155,648 --a------ C:\WINDOWS\system32\NeroCheck.exe
2007-09-23 02:13 127,488 --------- C:\WINDOWS\system32\drivers\imagesrv.sys
2007-09-23 02:13 106,496 --a------ C:\WINDOWS\system32\TwnLib20.dll
2007-09-23 02:13 1,568,768 --------- C:\WINDOWS\system32\ImagX7.dll
2007-09-23 02:13 <DIR> d-------- C:\Program Files\Common Files\Ahead
2007-09-23 02:13 <DIR> d-------- C:\Program Files\Ahead
2007-09-23 02:12 <DIR> d-------- C:\Program Files\iColorFolder
2007-09-23 02:11 <DIR> d-------- C:\Program Files\TechSmith
2007-09-23 02:11 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\TechSmith
2007-09-23 02:10 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-09-23 02:03 <DIR> d-------- C:\Program Files\IncrediMail
2007-09-23 00:52 <DIR> d-------- C:\WINDOWS\system32\NtmsData
2007-09-23 00:34 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2007-09-23 00:33 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2007-09-23 00:33 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2007-09-23 00:30 <DIR> d-------- C:\WINDOWS\system32\URTTemp
2007-09-23 00:13 <DIR> d-------- C:\WINDOWS\system32\nl-nl
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2007-10-04 12:04 --------- d-------- C:\Program Files\Symantec AntiVirus
2007-10-03 13:43 --------- d-------- C:\Documents and Settings\All Users\Application Data\Google Updater
2007-09-30 23:28 --------- d-------- C:\Program Files\Common Files\Symantec Shared
2007-09-23 21:14 --------- d-------- C:\Program Files\GrabIt
2007-09-23 19:41 --------- d-------- C:\Program Files\Symantec
2007-09-23 19:34 --------- d-------- C:\Documents and Settings\All Users\Application Data\Symantec
2007-09-23 12:51 34816 --a------ C:\WINDOWS\system32\~bwcrc32.dll
2007-09-23 01:58 --------- d-------- C:\Program Files\QuickPar
2007-09-23 01:46 --------- d-------- C:\Program Files\FTDv3.8
2007-09-23 01:42 --------- d-------- C:\Program Files\MSN Messenger
2007-09-23 01:42 --------- d-------- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2007-09-23 01:35 --------- d-------- C:\Program Files\Windows Live
2007-09-23 01:35 --------- d-------- C:\Program Files\Messenger Plus! Live
2007-09-23 01:20 --------- d-------- C:\Program Files\Google
2007-09-23 01:20 --------- d-------- C:\Documents and Settings\Natazja\Application Data\Google
2007-09-23 01:20 --------- d-------- C:\Documents and Settings\All Users\Application Data\Google
2007-09-22 23:55 --------- d-------- C:\Program Files\Norton CleanSweep
2007-09-22 23:54 --------- d-------- C:\Documents and Settings\Natazja\Application Data\Symantec
2007-09-22 23:34 --------- d-------- C:\Documents and Settings\Natazja\Application Data\WinRAR
2007-09-22 23:20 --------- d-------- C:\Program Files\microsoft frontpage
2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\cdm.dll
2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\wuapi.dll
2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-07-30 19:19 43352 --a------ C:\WINDOWS\system32\wups2.dll
2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\wucltui.dll
2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\wuweb.dll
2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\wups.dll
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"vptray"="C:\PROGRA~1\SYMANT~1\VPTray.exe" [2004-03-12 15:18]
"Cmaudio"="cmicnfg.cpl" []
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2006-11-03 19:20]
"Symantec NetDriver Monitor"="C:\PROGRA~1\SYMNET~1\SNDMon.exe" [2007-09-23 19:40]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:03]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe" [2007-09-23 01:19]

*Newly Created Service* - CATCHME
.
Inhoud van de 'Gedeelde Taken' map
"2007-10-04 10:07:01 C:\WINDOWS\Tasks\MP Scheduled Scan.job"
- C:\Program Files\Windows Defender\MpCmdRun.exe
.
************************************************** ************************
catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-04 13:00:22
Windows 5.1.2600 Service Pack 2 NTFS
scannen van verborgen processen ...
scannen van verborgen autostart items ...
scannen van verborgen bestanden ...
Scan succesvol afgerond
verborgen bestanden: 0
************************************************** ************************
.
Voltooingstijd: 2007-10-04 13:01:07
.
--- E O F ---



En de Hijacklog :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:01:42, on 4-10-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\INCRED~1\bin\ImApp.exe
C:\Program Files\GetSmile\getsmile.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.heavens-dream.com/forum
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\sw g.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open Selected URL - D:\Proggies\Bad link proggies\rcgoogle\openselectedurl.htm
O8 - Extra context menu item: Search &Google - D:\Proggies\Bad link proggies\rcgoogle\google.htm
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1190497155828
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
--
End of file - 7182 bytes

http://users.telenet.be/bluepatchy/miekiemoes/tragecomputer.html

probeer dit eens uit te voeren .

Hij gaf alleen bij Disks minor problem aan...nadat ik die aanklikte kreeg ik deze gegevens te zien :

http://img204.imageshack.us/img204/1736/diskdetailsin8.jpg


Voor de rest had ik overal een vlaggetje staan...dus geen problemen.
Daaruit haal ik dus dat t mss een hardware prob is ???

Ja met dit probleem kan je je melden op onze hardware afdeling, verwijs naar dit topic.

succes

Oke...dank je wel voor je tijd en moeite :good:

geen probleem