Hallo iedereen,

na de nodige updates te moeten doen van alle software start men internet explorer nog wel op maar meer dan dat doet ie niet.Hij blijft maar verbinding maken en als ik in het venstertje ben van explorer maakt de aanwijzer een zandloper.Ik heb al lang gewacht maar der veranderd niks...Heb al geprobeerd om de versie eraf te gooien en opnieuw te installeren maar niks...en ja er is verbinding (hihihi)

Enig voorstellen hier???

bij deze ook een logje voor de zekerheid.

Bedankt al...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:39:40, on 15/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20935)
Boot mode: Normal

Running processes:
G:\WINDOWS\System32\smss.exe
G:\WINDOWS\system32\winlogon.exe
G:\WINDOWS\system32\services.exe
G:\WINDOWS\system32\lsass.exe
G:\WINDOWS\system32\Ati2evxx.exe
G:\WINDOWS\system32\svchost.exe
G:\Program Files\Windows Defender\MsMpEng.exe
G:\WINDOWS\System32\svchost.exe
G:\Ad-Aware\aawservice.exe
G:\WINDOWS\system32\Ati2evxx.exe
G:\WINDOWS\Explorer.EXE
G:\WINDOWS\system32\rundll32.exe
G:\PROGRA~1\Grisoft\AVG7\avgcc.exe
G:\WINDOWS\RTHDCPL.EXE
G:\Program Files\GIGABYTE\GEST\gest.exe
G:\Program Files\ATI Technologies\ATI.ACE\cli.exe
G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIA GE.EXE
G:\Program Files\Windows Defender\MSASCui.exe
G:\WINDOWS\system32\ctfmon.exe
G:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
G:\BlueSoleil\BlueSoleil.exe
G:\Logitech\SetPoint.exe
G:\WINDOWS\system32\spoolsv.exe
G:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
G:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
G:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
G:\PROGRA~1\Grisoft\AVG7\avgemc.exe
G:\WINDOWS\system32\inetsrv\inetinfo.exe
G:\Malwarebytes' Anti-Malware\mbamservice.exe
G:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
G:\WINDOWS\system32\tcpsvcs.exe
G:\WINDOWS\System32\snmp.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\system32\mqsvc.exe
G:\WINDOWS\system32\fxssvc.exe
G:\WINDOWS\system32\mqtgsvc.exe
G:\Program Files\GIGABYTE\GEST\GSvr.exe
G:\Opera\opera.exe
G:\WINDOWS\system32\cisvc.exe
\?\G:\WINDOWS\system32\WBEM\WMIADAP.EXE
G:\WINDOWS\system32\cidaemon.exe
G:\WINDOWS\system32\cidaemon.exe
E:\Windows herinstallatie met de benodigde software\Setup\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://update.microsoft.com/microsoftupdate
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - G:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.d ll
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - G:\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - G:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.d ll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [AVG7_CC] G:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [GEST] G:\Program Files\GIGABYTE\GEST\RUN.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [JMB36X IDE Setup] G:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] G:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [ATIPTA] G:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATICCC] "G:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [Name of App] G:\SAMSUNG\FW LiveUpdate\FWManager.exe r
O4 - HKLM\..\Run: [EPSON Stylus Photo RX520 Series] G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIA GE.EXE /P31 "EPSON Stylus Photo RX520 Series" /O6 "USB001" /M "Stylus Photo RX520"
O4 - HKLM\..\Run: [Windows Defender] "G:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "G:\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "G:\Adobe\Reader\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] G:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')
O4 - Global Startup: ATI CATALYST System Tray.lnk = G:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = G:\Logitech\SetPoint.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://G:\OFFICE~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\OFFICE~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - G:\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - G:\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - G:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - G:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1229259291911
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1229259283395
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - G:\Ad-Aware\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - G:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - G:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - G:\Program Files\GIGABYTE\GEST\GSvr.exe
O23 - Service: MBAMService - Malwarebytes Corporation - G:\Malwarebytes' Anti-Malware\mbamservice.exe

--
End of file - 7985 bytes

Vandaag heb ik ontdekt dat er een nieuwe versie uit is van de explorer.

Explorer 8 beta versie maar deze werkt wel en das het belangrijkst !!!

Een nieuw logje dan terwijl dat alles werkt :-)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:42:21, on 16/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18241)
Boot mode: Normal

Running processes:
G:\WINDOWS\System32\smss.exe
G:\WINDOWS\system32\winlogon.exe
G:\WINDOWS\system32\services.exe
G:\WINDOWS\system32\lsass.exe
G:\WINDOWS\system32\Ati2evxx.exe
G:\WINDOWS\system32\svchost.exe
G:\Program Files\Windows Defender\MsMpEng.exe
G:\WINDOWS\System32\svchost.exe
G:\Ad-Aware\aawservice.exe
G:\WINDOWS\system32\Ati2evxx.exe
G:\WINDOWS\Explorer.EXE
G:\WINDOWS\system32\rundll32.exe
G:\PROGRA~1\Grisoft\AVG7\avgcc.exe
G:\WINDOWS\RTHDCPL.EXE
G:\Program Files\GIGABYTE\GEST\gest.exe
G:\Program Files\ATI Technologies\ATI.ACE\cli.exe
G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIA GE.EXE
G:\Program Files\Windows Defender\MSASCui.exe
G:\WINDOWS\system32\spoolsv.exe
G:\Nero\Nero 9\InCD\InCD.exe
G:\Nero\Nero 9\InCD\NBHGui.exe
G:\Java\jre6\bin\jusched.exe
G:\WINDOWS\system32\ctfmon.exe
G:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
G:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
G:\BlueSoleil\BlueSoleil.exe
G:\Coreldraw 8\programs\MFIndexer.exe
G:\Logitech\SetPoint.exe
G:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
G:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
G:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
G:\PROGRA~1\Grisoft\AVG7\avgemc.exe
G:\WINDOWS\system32\cisvc.exe
G:\WINDOWS\system32\inetsrv\inetinfo.exe
G:\Nero\Nero 9\InCD\InCDSrv.exe
G:\Java\jre6\bin\jqs.exe
G:\Program Files\Common Files\LightScribe\LSSrvc.exe
G:\Malwarebytes' Anti-Malware\mbamservice.exe
G:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
G:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
G:\Nero\Nero 9\InCD\NBHRegInCDSrv.exe
G:\WINDOWS\system32\tcpsvcs.exe
G:\WINDOWS\System32\snmp.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\system32\mqsvc.exe
G:\WINDOWS\system32\mqtgsvc.exe
G:\Program Files\GIGABYTE\GEST\GSvr.exe
G:\WINDOWS\system32\cidaemon.exe
G:\WINDOWS\system32\cidaemon.exe
G:\Opera\opera.exe
E:\Windows herinstallatie met de benodigde software\Setup\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://update.microsoft.com/microsoftupdate
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - G:\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - G:\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - G:\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - G:\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [AVG7_CC] G:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [GEST] G:\Program Files\GIGABYTE\GEST\RUN.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [JMB36X IDE Setup] G:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] G:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [ATIPTA] G:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATICCC] "G:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [Name of App] G:\SAMSUNG\FW LiveUpdate\FWManager.exe r
O4 - HKLM\..\Run: [EPSON Stylus Photo RX520 Series] G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIA GE.EXE /P31 "EPSON Stylus Photo RX520 Series" /O6 "USB001" /M "Stylus Photo RX520"
O4 - HKLM\..\Run: [Windows Defender] "G:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "G:\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "G:\Adobe\Reader\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [InCD] G:\Nero\Nero 9\InCD\InCD.exe
O4 - HKLM\..\Run: [NBHGui] G:\Nero\Nero 9\InCD\NBHGui.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "G:\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] G:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] G:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')
O4 - Global Startup: ATI CATALYST System Tray.lnk = G:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Corel MEDIA FOLDERS INDEXER 8.LNK = G:\Coreldraw 8\programs\MFIndexer.exe
O4 - Global Startup: Logitech SetPoint.lnk = G:\Logitech\SetPoint.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://G:\OFFICE~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\OFFICE~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - G:\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - G:\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - G:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - G:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1229259291911
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1229259283395
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - G:\Ad-Aware\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - G:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - G:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - G:\Program Files\GIGABYTE\GEST\GSvr.exe
O23 - Service: InCD Helper (InCDSrv) - Nero AG - G:\Nero\Nero 9\InCD\InCDSrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - G:\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - G:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - G:\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - G:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - G:\Nero\Nero 9\InCD\NBHRegInCDSrv.exe

--
End of file - 9393 bytes

wat gaf mbam aan ?

niks geen opmerkingen maar nu ik de 8 heb geinstalleerd en deze werkt krijg ik het icoontje van internet niet meer weer,niet in start balk en ook niet op het bureaublad.Waar is deze te vinden aub ?

Download Combofix (http://download.bleepingcomputer.com/sUBs/ComboFix.exe) naar je Bureaublad.

OPMERKING: indien je, tijdens of na het downloaden van Combofix of tijdens het gebruik van Combofix een melding krijgt van je Antivirus- of een andere realtime scanner, schakel dan deze scanner uit en download Combofix opnieuw.
Sommige scanners zien bepaalde componenten die Combofix gebruikt als verdacht en gaan deze blokkeren of verwijderen!



Dubbelklik op Combofix.exe om het te starten.

Indien je Combofix al eerder hebt gebruikt, kan je een waarschuwing krijgen dat een update beschikbaar is. Sta toe dat ComboFix wordt geupdate.

Klik op OK in het "NirCmd" venstertje.

Indien de Recovery Console niet geïnstalleerd is, wordt je gevraagd om dit alsnog te doen door op JA te klikken in het "Query - Recovery Console" venster.

Klik op OK en Ja om automatisch de Recovery Console te laten installeren.

Klik na afloop terug op Ja om het scannen op malware te starten.

Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.

Wanneer de fix voltooid is en na herstart, zal de log Combofix.txt openen.



Post dit logje in je volgende antwoord.

Dit is het resultaat na de combofix =

ComboFix 08-12-17.01 - Tom Verstoot 2008-12-18 21:39:34.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1043.18.3582.2897 [GMT 1:00]
Gestart vanuit: g:\documents and settings\Tom Verstoot\Bureaublad\ComboFix.exe
* Nieuw herstelpunt werd aangemaakt
.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.

g:\documents and settings\Tom Verstoot\Application Data\inst.exe
g:\windows\system32\Cache
g:\windows\system32\Pncrt.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_IPRIP
-------\Service_Iprip
-------\Service_NPF


(((((((((((((((((((( Bestanden Gemaakt van 2008-11-18 to 2008-12-18 ))))))))))))))))))))))))))))))
.

2008-12-18 20:15 . 2004-05-14 16:53 462,848 --a------ g:\windows\system32\ltkrn13n.dll
2008-12-18 20:15 . 2004-05-14 16:53 450,560 --a------ g:\windows\system32\ltimg13n.dll
2008-12-18 20:15 . 2004-05-14 16:53 401,408 --a------ g:\windows\system32\lfcmp13n.dll
2008-12-18 20:15 . 2004-05-14 16:53 299,008 --a------ g:\windows\system32\ltdis13n.dll
2008-12-18 20:15 . 2004-01-12 02:09 206,336 --a------ g:\windows\system32\ltefx13n.dll
2008-12-18 20:15 . 2004-05-14 16:53 163,840 --a------ g:\windows\system32\ltfil13n.dll
2008-12-18 20:15 . 2003-11-04 15:10 69,632 --a------ g:\windows\system32\lfgif13n.dll
2008-12-18 20:15 . 2004-05-14 16:53 57,344 --a------ g:\windows\system32\lfbmp13n.dll
2008-12-17 20:32 . 2008-12-17 20:32 <DIR> d-------- g:\windows\ie8updates
2008-12-16 17:45 . 2008-12-18 20:07 <DIR> dr-h----- g:\documents and settings\Tom Verstoot\Onlangs geopend
2008-12-16 17:22 . 2008-12-16 17:24 <DIR> d--h-c--- g:\windows\ie8
2008-12-16 16:49 . 2008-12-16 16:49 73,728 --a------ g:\windows\system32\javacpl.cpl
2008-12-16 16:42 . 2008-12-16 16:49 <DIR> d-------- G:\Java
2008-12-16 16:42 . 2008-12-16 16:49 410,984 --a------ g:\windows\system32\deploytk.dll
2008-12-16 16:24 . 2008-12-16 16:38 69 --a------ g:\windows\NeroDigital.ini
2008-12-15 22:16 . 2008-12-15 22:16 <DIR> d-------- g:\documents and settings\Tom Verstoot\Application Data\EPSON
2008-12-15 22:16 . 2008-12-15 22:16 <DIR> d-------- g:\documents and settings\Tom Verstoot\Application Data\Corel
2008-12-15 22:13 . 1997-07-30 15:21 553,984 --------- g:\windows\system32\rave.dll
2008-12-15 22:13 . 1997-08-21 12:44 229,376 --------- g:\windows\system32\rpza32.qtc
2008-12-15 22:13 . 1997-08-21 12:44 165,888 --------- g:\windows\system32\smc32.qtc
2008-12-15 22:13 . 1998-08-14 16:45 99,840 --------- g:\windows\system32\evysh7NL.dll
2008-12-15 22:13 . 1997-07-30 15:58 70,656 --------- g:\windows\system32\3dviewer.dll
2008-12-15 22:13 . 1997-08-21 12:44 32,768 --------- g:\windows\system32\cmgr32.dll
2008-12-15 22:12 . 1996-09-06 09:02 960,000 --------- g:\windows\system32\evysh7.dll
2008-12-15 22:12 . 1997-08-21 12:44 345,600 --------- g:\windows\system32\qtim32.dll
2008-12-15 22:12 . 1997-06-03 04:31 108,032 --------- g:\windows\system32\sh33w32.dll
2008-12-15 22:12 . 1997-08-21 12:44 83,456 --------- g:\windows\system32\iv32qt32.qtc
2008-12-15 22:12 . 1997-08-21 12:44 35,840 --------- g:\windows\system32\navg32.qtc
2008-12-15 22:12 . 1997-08-21 12:44 24,064 --------- g:\windows\system32\dci32.qtc
2008-12-15 22:12 . 1997-08-21 12:44 20,480 --------- g:\windows\system32\raw32.qtc
2008-12-15 22:11 . 1997-08-21 12:44 151,040 --------- g:\windows\system32\cvid32.qtc
2008-12-15 22:11 . 1996-12-10 13:21 39,095 --------- g:\windows\iccsigs.dat
2008-12-15 22:11 . 1997-08-21 12:44 34,816 --------- g:\windows\system32\jpeg32.qtc
2008-12-15 22:10 . 1997-07-30 12:59 909,312 --------- g:\windows\system32\qd3d.dll
2008-12-15 22:10 . 1998-08-28 19:22 219,136 --------- g:\windows\system32\scint80.dll
2008-12-15 22:10 . 1997-08-21 12:44 128,000 --------- g:\windows\system32\mc32.qtc
2008-12-15 22:10 . 1997-08-21 12:44 38,912 --------- g:\windows\system32\dhio32.qtc
2008-12-15 22:10 . 1998-09-01 10:16 18,944 --------- g:\windows\system32\verscpl.cpl
2008-12-15 22:09 . 2008-12-15 22:09 <DIR> d-------- g:\windows\Profiles
2008-12-15 22:09 . 2008-12-15 22:09 <DIR> d-------- g:\windows\Favorites
2008-12-15 22:09 . 2008-12-15 22:14 <DIR> d-------- G:\Coreldraw 8
2008-12-15 22:09 . 2008-12-15 22:09 <DIR> d-------- G:\Corel
2008-12-15 22:09 . 1997-08-21 12:44 103,936 --------- g:\windows\system32\rle32.qtc
2008-12-15 22:09 . 2008-12-15 22:14 87 --a------ g:\windows\barcode.ini
2008-12-15 22:07 . 2008-12-15 22:15 <DIR> d-------- g:\windows\Corel
2008-12-15 20:50 . 2008-12-15 20:50 <DIR> d-------- g:\documents and settings\All Users\Application Data\LightScribe
2008-12-15 20:48 . 2008-12-15 20:51 <DIR> d-------- g:\documents and settings\Tom Verstoot\Application Data\Nero
2008-12-15 20:31 . 2008-12-15 20:31 4,767 --a------ g:\windows\Irremote.ini
2008-12-15 20:30 . 2008-12-15 20:30 <DIR> d-------- g:\program files\Windows Sidebar
2008-12-15 20:24 . 2008-12-15 20:24 <DIR> d-------- G:\WinRAR
2008-12-15 20:20 . 2008-09-19 16:53 129,560 --a------ g:\windows\system32\drivers\InCDFs.sys
2008-12-15 20:20 . 2008-09-19 16:53 41,752 --a------ g:\windows\system32\drivers\InCDRm.sys
2008-12-15 20:20 . 2008-09-19 16:53 40,216 --a------ g:\windows\system32\drivers\InCDPass.sys
2008-12-15 20:20 . 2008-09-19 16:53 19,352 --a------ g:\windows\system32\drivers\InCDRec.sys
2008-12-15 20:19 . 2008-12-15 20:25 <DIR> d-------- g:\program files\Common Files\Nero
2008-12-15 20:19 . 2008-12-15 20:19 <DIR> d-------- g:\program files\Common Files\LightScribe
2008-12-15 20:19 . 2008-12-15 20:25 <DIR> d-------- g:\documents and settings\All Users\Application Data\Nero
2008-12-15 20:18 . 2008-12-15 20:31 <DIR> d-------- G:\Nero
2008-12-14 22:43 . 2008-12-14 22:43 <DIR> d-------- G:\Adobe
2008-12-14 21:54 . 2008-12-18 14:58 <DIR> d-------- g:\documents and settings\Tom Verstoot\Contacts
2008-12-14 21:37 . 2008-12-14 21:37 <DIR> d-------- g:\program files\VSO
2008-12-14 21:37 . 2008-12-18 15:11 <DIR> d-------- g:\documents and settings\Tom Verstoot\Application Data\Vso
2008-12-14 21:37 . 2008-12-14 21:37 <DIR> d-------- G:\ConvertX
2008-12-14 21:37 . 2004-05-04 12:53 1,645,320 --a------ g:\windows\gdiplus.dll
2008-12-14 21:37 . 2006-05-20 17:16 1,184,984 --a------ g:\windows\system32\wvc1dmod.dll
2008-12-14 21:37 . 2006-05-11 20:21 626,688 --a------ g:\windows\system32\vp7vfw.dll
2008-12-14 21:37 . 2006-09-29 13:24 217,127 --a------ g:\windows\system32\drv43260.dll
2008-12-14 21:37 . 2006-09-29 13:25 208,935 --a------ g:\windows\system32\drv33260.dll
2008-12-14 21:37 . 2006-09-29 13:26 176,165 --a------ g:\windows\system32\drv23260.dll
2008-12-14 21:37 . 2007-03-18 21:37 65,602 --a------ g:\windows\system32\cook3260.dll
2008-12-14 21:37 . 2008-12-14 21:37 47,360 --a------ g:\windows\system32\drivers\pcouffin.sys
2008-12-14 21:37 . 2008-12-14 21:37 47,360 --a------ g:\documents and settings\Tom Verstoot\Application Data\pcouffin.sys
2008-12-14 21:36 . 2008-12-14 21:53 <DIR> d-------- g:\program files\Windows Live
2008-12-14 21:36 . 2008-12-14 21:53 <DIR> d--hsc--- g:\program files\Common Files\WindowsLiveInstaller
2008-12-14 21:36 . 2008-12-14 21:52 <DIR> d-------- g:\documents and settings\All Users\Application Data\WLInstaller
2008-12-14 21:35 . 2008-12-14 21:35 <DIR> d-------- g:\program files\Windows Defender
2008-12-14 21:35 . 2008-12-14 21:35 <DIR> d-------- g:\documents and settings\Tom Verstoot\Application Data\vlc
2008-12-14 21:33 . 2008-12-14 21:33 <DIR> d-------- g:\documents and settings\Tom Verstoot\Application Data\Winamp
2008-12-14 21:32 . 2008-12-14 21:33 <DIR> d-------- G:\VLC
2008-12-14 21:31 . 2008-12-14 21:32 <DIR> d-------- G:\Revo Uninstaller
2008-12-14 21:25 . 2008-12-14 21:25 <DIR> d-------- G:\IsoBuster
2008-12-14 21:24 . 2008-12-14 21:24 <DIR> d-------- g:\windows\Downloaded Installations
2008-12-14 21:23 . 2008-12-14 21:23 <DIR> d-------- G:\DVD Shrink 3.2
2008-12-14 21:23 . 2008-12-14 21:23 <DIR> d-------- g:\documents and settings\All Users\Application Data\DVD Shrink
2008-12-14 21:19 . 2008-12-14 21:20 <DIR> d-------- G:\Ad-Aware
2008-12-14 21:18 . 2008-12-14 21:18 <DIR> d-------- g:\program files\Common Files\Wise Installation Wizard
2008-12-14 21:17 . 2008-12-14 21:20 <DIR> d-------- g:\documents and settings\All Users\Application Data\Lavasoft
2008-12-14 20:50 . 2007-04-09 13:23 28,040 --a------ g:\windows\system32\mdimon.dll
2008-12-14 20:50 . 2008-12-14 20:50 395 --a------ g:\windows\ODBC.INI
2008-12-14 20:49 . 2008-12-16 19:58 <DIR> d-------- g:\program files\Microsoft Works
2008-12-14 20:48 . 2008-12-14 20:49 <DIR> d-------- g:\windows\SHELLNEW
2008-12-14 20:48 . 2008-12-14 20:48 <DIR> d-------- g:\program files\Microsoft.NET
2008-12-14 20:48 . 2008-12-14 20:49 <DIR> d-------- G:\Office 2003
2008-12-14 20:04 . 2008-04-13 23:24 88,192 --a------ g:\windows\system32\drivers\irda.sys
2008-12-14 20:04 . 2008-04-13 23:24 88,192 --a--c--- g:\windows\system32\dllcache\irda.sys
2008-12-14 20:04 . 2002-02-26 03:34 29,076 -ra------ g:\windows\system32\drivers\MA-620.sys
2008-12-14 20:04 . 2001-08-17 20:51 19,584 --a------ g:\windows\system32\drivers\rasirda.sys
2008-12-14 20:04 . 2001-08-17 20:51 19,584 --a--c--- g:\windows\system32\dllcache\rasirda.sys
2008-12-14 18:18 . 2008-12-14 18:19 <DIR> d-------- g:\documents and settings\All Users\Application Data\UDL
2008-12-14 18:17 . 2003-09-19 15:45 21,248 --a------ g:\windows\system32\drivers\pfc.sys
2008-12-14 18:16 . 2008-12-14 18:16 <DIR> d-------- g:\program files\ArcSoft
2008-12-14 18:16 . 1995-08-01 04:44 212,480 --a------ g:\windows\PCDLIB32.DLL
2008-12-14 18:13 . 2004-11-25 06:07 79,679 --a------ g:\windows\system32\E_FLMAGE.DLL
2008-12-14 18:13 . 2003-05-21 03:27 64,000 --a------ g:\windows\system32\E_FBCBAGE.DLL
2008-12-14 18:13 . 2004-09-10 21:12 49,152 --a------ g:\windows\system32\E_DCINST.DLL
2008-12-14 18:13 . 2000-06-07 02:01 34,304 --a------ g:\windows\system32\E_FBCHAGE.DLL
2008-12-14 18:13 . 2008-04-13 23:15 32,128 --a------ g:\windows\system32\drivers\usbccgp.sys
2008-12-14 18:13 . 2008-04-13 23:15 32,128 --a--c--- g:\windows\system32\dllcache\usbccgp.sys
2008-12-14 18:13 . 2008-04-13 23:17 25,856 --a------ g:\windows\system32\drivers\usbprint.sys
2008-12-14 18:13 . 2008-04-13 23:17 25,856 --a--c--- g:\windows\system32\dllcache\usbprint.sys
2008-12-14 18:13 . 2008-04-13 23:15 15,104 --a------ g:\windows\system32\drivers\usbscan.sys
2008-12-14 18:13 . 2008-04-13 23:15 15,104 --a--c--- g:\windows\system32\dllcache\usbscan.sys
2008-12-14 18:07 . 2008-12-14 18:18 <DIR> d-------- g:\program files\epson
2008-12-14 18:07 . 2005-02-25 00:00 46,080 --a------ g:\windows\system32\escimgd.dll
2008-12-14 18:07 . 2005-02-25 00:00 29,696 --a------ g:\windows\system32\escwiad.dll
2008-12-14 18:07 . 2005-02-25 00:00 22,016 --a------ g:\windows\system32\esccmd.dll
2008-12-14 18:07 . 2008-12-14 18:07 25 --a------ g:\windows\CDE RX520GD.ini
2008-12-14 15:35 . 2008-04-13 23:15 26,368 --a--c--- g:\windows\system32\dllcache\usbstor.sys
2008-12-14 15:22 . 2008-12-14 15:24 1,469,952 --a------ g:\documents and settings\Tom Verstoot\Application Data\tsdnwin.dll
2008-12-14 15:20 . 2008-12-14 15:20 <DIR> d-------- G:\SAMSUNG

.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2008-12-18 20:41 16,608 ----a-w g:\windows\gdrv.sys
2008-12-16 20:50 --------- d-----w g:\documents and settings\Tom Verstoot\Application Data\AVG7
2008-12-16 20:50 --------- d-----w g:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2008-12-14 21:43 --------- d-----w g:\program files\Common Files\Adobe
2008-12-14 17:22 --------- d--h--w g:\program files\InstallShield Installation Information
2008-12-14 17:21 --------- d-----w g:\program files\Common Files\InstallShield
2008-12-14 13:57 --------- d-----w g:\documents and settings\Tom Verstoot\Application Data\ATI
2008-12-14 13:54 --------- d-----w g:\program files\ATI Technologies
2008-12-14 13:36 --------- d-----w g:\documents and settings\Tom Verstoot\Application Data\Logitech
2008-12-14 13:34 --------- d-----w g:\program files\Common Files\Logitech
2008-12-14 13:27 --------- d-----w g:\documents and settings\All Users\Application Data\Bluetooth
2008-12-14 13:17 --------- d-----w g:\program files\Yahoo!
2008-12-14 13:13 315,392 ----a-w g:\windows\HideWin.exe
2008-12-14 13:13 --------- d-----w g:\program files\Realtek
2008-12-14 13:09 --------- d-----w g:\program files\Intel
2008-12-14 13:09 --------- d-----w g:\program files\GIGABYTE
2008-12-14 13:05 --------- d-----w g:\documents and settings\NetworkService\Application Data\AVG7
2008-12-14 12:57 --------- d-----w g:\program files\MSXML 4.0
2008-12-14 12:48 499,712 ----a-w g:\windows\system32\msvcp71.dll
2008-12-14 12:48 348,160 ----a-w g:\windows\system32\msvcr71.dll
2008-12-14 12:48 --------- d-----w g:\documents and settings\LocalService\Application Data\AVG7
2008-12-14 12:48 --------- d-----w g:\documents and settings\All Users\Application Data\Grisoft
2008-12-14 12:48 --------- d-----w g:\documents and settings\All Users\Application Data\avg7
2008-12-14 12:46 --------- d-----w g:\documents and settings\Tom Verstoot\Application Data\InstallShield
2008-12-14 12:38 --------- d-----w g:\documents and settings\Tom Verstoot\Application Data\Malwarebytes
2008-12-14 12:38 --------- d-----w g:\documents and settings\All Users\Application Data\Malwarebytes
2008-12-14 12:24 --------- d-----w g:\program files\microsoft frontpage
2008-12-14 12:23 --------- d-----w g:\program files\Microsoft Silverlight
2008-12-14 12:22 --------- d-----w g:\program files\Reference Assemblies
2008-12-14 12:22 --------- d-----w g:\program files\MSXML 6.0
2008-12-14 12:22 --------- d-----w g:\program files\MSBuild
2008-12-14 12:16 --------- d-----w g:\program files\Windows Media Connect 2
2008-12-03 18:52 38,496 ----a-w g:\windows\system32\drivers\mbamswissarmy.sys
2008-12-03 18:52 15,504 ----a-w g:\windows\system32\drivers\mbam.sys
2008-10-26 15:32 81,768 ----a-w g:\windows\system32\xinput1_3.dll
2008-10-26 15:31 99,840 ----a-w g:\windows\system32\wmpshell.dll
2008-10-26 15:30 991,744 ----a-w g:\windows\system32\drmv2clt.dll
2008-10-24 11:41 455,936 ----a-w g:\windows\system32\drivers\mrxsmb.sys
2008-10-23 12:43 286,720 ----a-w g:\windows\system32\gdi32.dll
2008-10-16 13:13 1,809,944 ----a-w g:\windows\system32\wuaueng.dll
2008-10-16 13:12 561,688 ----a-w g:\windows\system32\wuapi.dll
2008-10-16 13:12 323,608 ----a-w g:\windows\system32\wucltui.dll
2008-10-16 13:12 202,776 ----a-w g:\windows\system32\wuweb.dll
2008-10-16 13:09 92,696 ----a-w g:\windows\system32\cdm.dll
2008-10-16 13:09 51,224 ----a-w g:\windows\system32\wuauclt.exe
2008-10-16 13:09 43,544 ----a-w g:\windows\system32\wups2.dll
2008-10-16 13:08 34,328 ----a-w g:\windows\system32\wups.dll
2008-10-16 13:07 208,744 ----a-w g:\windows\system32\muweb.dll
2008-10-16 13:06 268,648 ----a-w g:\windows\system32\mucltui.dll
2008-10-03 10:05 247,326 ----a-w g:\windows\system32\strmdll.dll
2008-09-30 15:43 1,286,152 ----a-w g:\windows\system32\msxml4.dll
.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\NB HShellExt]
@="{8D2223A2-B3C6-4e32-B096-CDD11F628C60}"
[HKEY_CLASSES_ROOT\CLSID\{8D2223A2-B3C6-4e32-B096-CDD11F628C60}]
2008-09-19 16:53 98328 --a------ g:\nero\Nero 9\InCD\NBHshx.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"CTFMON.EXE"="g:\windows\system32\ctfmon.exe" [2008-04-15 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"AVG7_CC"="g:\progra~1\Grisoft\AVG7\avgcc.exe" [2008-12-14 590848]
"GEST"="g:\program files\GIGABYTE\GEST\RUN.exe" [2007-12-14 236040]
"JMB36X IDE Setup"="g:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
"36X Raid Configurer"="g:\windows\system32\xRaidSetup.exe" [2007-08-29 1966080]
"ATIPTA"="g:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-02-22 339968]
"ATICCC"="g:\program files\ATI Technologies\ATI.ACE\cli.exe" [2005-02-22 32768]
"Name of App"="g:\samsung\FW LiveUpdate\FWManager.exe" [2008-07-07 675935]
"EPSON Stylus Photo RX520 Series"="g:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIA GE.EXE" [2005-04-07 98304]
"Windows Defender"="g:\program files\Windows Defender\MSASCui.exe" [2006-11-03 866584]
"Malwarebytes' Anti-Malware"="g:\malwarebytes' anti-malware\mbamgui.exe" [2008-12-03 399504]
"Adobe Reader Speed Launcher"="g:\adobe\Reader\Reader\Reader_sl.exe" [2008-10-15 39792]
"InCD"="g:\nero\Nero 9\InCD\InCD.exe" [2008-09-19 1111064]
"NBHGui"="g:\nero\Nero 9\InCD\NBHGui.exe" [2008-09-19 2079256]
"SunJavaUpdateSched"="g:\java\jre6\bin\jusched.exe" [2008-12-16 136600]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-15 g:\windows\system32\bthprops.cpl]
"MsmqIntCert"="mqrt.dll" [2008-04-15 g:\windows\system32\mqrt.dll]
"RTHDCPL"="RTHDCPL.EXE" [2007-09-19 g:\windows\RTHDCPL.exe]
"Alcmtr"="ALCMTR.EXE" [2005-05-03 g:\windows\Alcmtr.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"CTFMON.EXE"="g:\windows\system32\CTFMON.EXE" [2008-04-15 15360]
"AVG7_Run"="g:\progra~1\Grisoft\AVG7\avgw.exe" [2008-12-14 219136]
"ATICCC"="g:\program files\ATI Technologies\ATI.ACE\cli.exe" [2005-02-22 32768]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\RunOnce]
"ShowDeskFix"="shell32" [X]

g:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
ATI CATALYST System Tray.lnk - g:\program files\ATI Technologies\ATI.ACE\CLI.exe [2005-02-22 32768]
Corel MEDIA FOLDERS INDEXER 8.LNK - g:\coreldraw 8\programs\MFIndexer.exe [2008-12-15 82944]
Logitech SetPoint.lnk - g:\logitech\SetPoint.exe [2008-12-14 598016]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3codec"= l3codecp.acm

[HKLM\~\startupfolder\G:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^BlueSoleil.lnk]
path=g:\documents and settings\All Users\Menu Start\Programma's\Opstarten\BlueSoleil.lnk
backup=g:\windows\pss\BlueSoleil.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
--a------ 2008-06-09 10:16 2363392 g:\program files\Common Files\LightScribe\LightScribeControlPanel.exe

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"g:\\WINDOWS\\system32\\mqsvc.exe"=
"g:\\Program Files\\Grisoft\\AVG7\\avginet.exe"=
"g:\\Program Files\\Grisoft\\AVG7\\avgamsvr.exe"=
"g:\\Program Files\\Grisoft\\AVG7\\avgcc.exe"=
"g:\\Program Files\\Grisoft\\AVG7\\avgemc.exe"=
"g:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"g:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\GloballyOpenPorts\List]
"3587:TCP"= 3587:TCP:Windows Peer-to-Peer-groepering
"3540:UDP"= 3540:UDP:PNRP (Peer Name Resolution Protocol)
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R2 MBAMService;MBAMService;"g:\malwarebytes' anti-malware\mbamservice.exe" [2008-12-14 170640]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;g:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
R2 NeroRegInCDSrv;Nero Registry InCD Service;"g:\nero\Nero 9\InCD\NBHRegInCDSrv.exe" [2008-09-19 108568]
R2 WinDefend;Windows Defender;"g:\program files\Windows Defender\MsMpEng.exe" [2006-11-03 13592]
R3 GEST Service;GEST Service for program management.;"g:\program files\GIGABYTE\GEST\GSvr.exe" [2008-12-14 47624]
R3 MBAMProtector;MBAMProtector;\??\g:\windows\system3 2\drivers\mbam.sys [2008-12-14 15504]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"g:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Inhoud van de 'Gedeelde Taken' map

2008-12-17 g:\windows\Tasks\Malwarebytes' Scheduled Scan for Tom Verstoot.job
- g:\malwarebytes' anti-malware\mbam.exe [2008-12-03 19:52]

2008-12-17 g:\windows\Tasks\Malwarebytes' Scheduled Update for Tom Verstoot.job
- g:\malwarebytes' anti-malware\mbam.exe [2008-12-03 19:52]

2008-12-18 g:\windows\Tasks\MP Scheduled Scan.job
- g:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]

2008-12-18 g:\windows\Tasks\User_Feed_Synchronization-{411A6EB6-A8CE-4392-A74C-7CB731BA75B8}.job
- g:\windows\system32\msfeedssync.exe [2008-08-22 03:05]
.
- - - - ORPHANS VERWIJDERD - - - -

HKLM-Run-<NO NAME> - (no file)
HKU-Default-Run-<NO NAME> - (no file)


.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.google.be/
IE: E&xporteren naar Microsoft Excel - g:\office~1\OFFICE11\EXCEL.EXE/3000
.

************************************************** ************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-18 21:42:15
Windows 5.1.2600 Service Pack 3 NTFS

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

Scan succesvol afgerond
verborgen bestanden: 0

************************************************** ************************
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------

- - - - - - - > 'winlogon.exe'(948)
g:\windows\system32\Ati2evxx.dll
g:\windows\system32\cscui.dll
.
------------------------ Andere Aktieve Processen ------------------------
.
g:\windows\system32\ati2evxx.exe
g:\ad-aware\aawservice.exe
g:\windows\system32\ati2evxx.exe
g:\windows\system32\rundll32.exe
g:\windows\system32\msdtc.exe
g:\program files\GIGABYTE\GEST\gest.exe
g:\program files\Common Files\Logitech\KHAL\KHALMNPR.EXE
g:\progra~1\Grisoft\AVG7\avgamsvr.exe
g:\progra~1\Grisoft\AVG7\avgupsvc.exe
g:\progra~1\Grisoft\AVG7\avgemc.exe
g:\windows\system32\inetsrv\inetinfo.exe
g:\nero\Nero 9\InCD\InCDSrv.exe
g:\java\jre6\bin\jqs.exe
g:\program files\Common Files\LightScribe\LSSrvc.exe
g:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
g:\windows\system32\tcpsvcs.exe
g:\windows\system32\snmp.exe
g:\windows\system32\mqsvc.exe
g:\windows\system32\mqtgsvc.exe
g:\windows\system32\wbem\wmiapsrv.exe
.
************************************************** ************************
.
Voltooingstijd: 2008-12-18 21:43:30 - machine werd herstart
ComboFix-quarantined-files.txt 2008-12-18 20:43:27

Pre-Run: 69.078.360.064 bytes beschikbaar
Post-Run: 69,114,540,032 bytes beschikbaar

331 --- E O F --- 2008-12-17 15:37:36

groetjes

Verwijder ComboFix via Start > Uitvoeren, kopiëer en plak Combofix /U
Klik op OK of toets Enter.
Dit verwijdert zowel ComboFix, als je oude systeemherstelpunten (met eventuele restanten van malware), en maakt een nieuw systeemherstelpunt aan.

http://i78.photobucket.com/albums/j116/amateur_photos/CFuninstall.png

Combofix is verwijderd.
Hoe ziet men logje eruit?Zijn er opmerkingen?

Bedankt voor de tijd en de moeite.Wat zou ik zonder jullie assistentie toch moeten doen??? ( altijd maar formatteren zekers ) ?!

Prettige feesten en voorzicgtig zijn e

ziet er wel goed uit dacht ik, als u nog klachten heeft ? nieuw HJT logje

Alles werkt bedankt allrn