Ric@rdo

Ok dan close deze maar,bedankt voor de hulp ik werk nu met mozilla op mijn laptop aangezien ie8 lastig blijft doen en ik kijk het dan maar weer even aan.\ grtz Ricardo

Ok hier zoals gevraagd het logje van Dr Web. RegUBP2b-Rico.reg;C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2;Trojan.StartPage.1505;Verwijderd.; CDDBControlNokia.dll;C:\Program Files\Nokia\NSeries PC Suite\Music Manager;Trojan.PWS.Banker.52088;Verwijderd.; A0005282.reg;C:\System Volume Information\_restore{401195B4-87D1-4B47-9684-BE190E307C74}\RP12;Trojan.StartPage.1505;Verwijderd.; A0005283.dll;C:\System Volume Information\_restore{401195B4-87D1-4B47-9684-BE190E307C74}\RP12;Trojan.PWS.Banker.52088;Verwijderd.;

Kaspersky blijft nu weer hangen nu bij 64%,is er geen andere optie want zo schiet het ook niet op?

OK gevonden thx, laat hem nu weer eens opnieuw scannen

Heb naar het bestand gezocht maar is onvindbaar op PC, begrijp er niets van

Ik heb hem 2x laten scannen maar ook 2x loopt ie vast bij 78-79% van de scan bij telkens onderstaand path.wat nu verder?

Nee die instellingen heb ik niet ingesteld dus verwijderen ervan lijkt mij geen goede optie.Verder heb je dus geen opties meer voor mij?Dan zal ik het anders nog maar eens aankijken of het nog beter wordt.

Nee ik heb recent geen instellingen gewijzigd cq programma's gedownload blijft wel irritant zo maar als er verder niets aan te doen is dan laat ik het maar zo,formateren en windows opnieuw erop zetten is dan misschien het laatste redmiddel maar daar trek ik niet zo aan.

ComboFix 10-08-09.03 - Rico 10-08-2010 16:40:45.2.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.446.150 [GMT 2:00] Gestart vanuit: c:\documents and settings\Rico\Bureaublad\ComboFix.exe AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} . (((((((((((((((((((( Bestanden Gemaakt van 2010-07-10 to 2010-08-10 )))))))))))))))))))))))))))))) . 2010-08-07 21:19 . 2010-08-07 21:21 -------- d-----w- c:\documents and settings\Rico\Local Settings\Application Data\Temp 2010-08-07 21:19 . 2010-08-07 21:21 -------- d-----w- c:\documents and settings\Rico\Local Settings\Application Data\Google 2010-08-05 23:19 . 2010-08-05 23:19 -------- d--h--r- c:\documents and settings\Rico\Onlangs geopend 2010-08-03 20:51 . 2010-08-03 20:51 -------- d-----w- c:\program files\Common Files\Java 2010-08-03 00:39 . 2010-08-03 00:39 -------- d-----w- c:\program files\CCleaner 2010-08-02 22:21 . 2010-08-02 22:21 -------- d-----w- c:\documents and settings\Rico\Application Data\Malwarebytes 2010-08-02 22:20 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-08-02 22:20 . 2010-08-02 22:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2010-08-02 22:20 . 2010-08-02 22:22 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-08-02 22:20 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-08-02 21:43 . 2010-08-03 00:41 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2010-08-02 21:43 . 2010-08-02 21:46 -------- d-----w- c:\program files\Spybot - Search & Destroy 2010-08-02 21:38 . 2010-08-02 21:38 388096 ----a-r- c:\documents and settings\Rico\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-08-02 21:38 . 2010-08-02 21:38 -------- d-----w- c:\program files\Trend Micro 2010-08-02 16:27 . 2010-08-02 16:33 -------- d-----w- c:\windows\ServicePackFiles 2010-08-02 14:02 . 2004-08-03 20:29 25471 ------w- c:\windows\system32\drivers\watv10nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 22271 ------w- c:\windows\system32\drivers\watv06nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11935 ------w- c:\windows\system32\drivers\wadv11nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11871 ------w- c:\windows\system32\drivers\wadv09nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11807 ------w- c:\windows\system32\drivers\wadv07nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11295 ------w- c:\windows\system32\drivers\wadv08nt.sys 2010-08-02 13:57 . 2004-08-03 20:29 73216 ------w- c:\windows\system32\drivers\atintuxx.sys 2010-08-02 10:59 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2010-08-02 10:59 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll 2010-08-02 10:55 . 2009-10-15 16:38 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll 2010-08-02 10:55 . 2009-10-15 16:38 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll 2010-08-02 10:49 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe 2010-08-02 10:49 . 2010-02-17 12:09 2194304 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe 2010-08-02 10:49 . 2009-03-06 14:23 285696 -c----w- c:\windows\system32\dllcache\pdh.dll 2010-08-02 10:49 . 2009-02-09 11:27 111104 -c----w- c:\windows\system32\dllcache\services.exe 2010-08-02 10:49 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll 2010-08-02 10:49 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll 2010-08-02 10:49 . 2009-02-09 10:56 684544 -c----w- c:\windows\system32\dllcache\advapi32.dll 2010-08-02 10:48 . 2009-06-25 08:27 735232 -c----w- c:\windows\system32\dllcache\lsasrv.dll 2010-08-02 10:48 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll 2010-08-02 10:48 . 2009-02-09 10:56 735744 -c----w- c:\windows\system32\dllcache\ntdll.dll 2010-08-02 10:48 . 2010-02-16 19:09 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe 2010-08-02 10:48 . 2010-02-16 19:09 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe 2010-07-30 22:24 . 2008-04-21 21:16 218624 -c----w- c:\windows\system32\dllcache\wordpad.exe 2010-07-27 20:26 . 2010-07-27 20:26 -------- d-----w- c:\documents and settings\Rico\Application Data\DVDVideoSoftIEHelpers 2010-07-24 23:03 . 2010-07-24 23:03 -------- d-----w- c:\documents and settings\Rico\Application Data\Serif 2010-07-24 05:56 . 2008-04-13 17:45 26112 ----a-w- c:\windows\system32\drivers\usbser.sys 2010-07-24 05:44 . 2008-11-07 16:55 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll 2010-07-24 05:12 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys 2010-07-24 05:12 . 2009-11-23 12:50 1302600 ----a-w- c:\windows\system32\WUDFUpdate_01007.dll 2010-07-24 05:12 . 2010-07-24 05:12 -------- d-----w- c:\program files\PC Connectivity Solution 2010-07-24 05:09 . 2010-02-26 12:32 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerfltj.sys 2010-07-24 05:09 . 2010-02-26 12:32 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerflt.sys 2010-07-24 05:09 . 2010-02-26 12:32 22528 ----a-w- c:\windows\system32\drivers\ccdcmbo.sys 2010-07-24 05:09 . 2010-02-26 12:32 18176 ----a-w- c:\windows\system32\drivers\ccdcmb.sys 2010-07-24 05:09 . 2010-02-26 12:32 662016 ----a-w- c:\windows\system32\nmwcdcocls.dll 2010-07-24 05:09 . 2010-02-26 12:19 1461992 ----a-w- c:\windows\system32\wdfcoinstaller01009.dll 2010-07-24 05:05 . 2010-07-24 05:01 35633752 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\NokiaSoftwareUpdaterSetup_2.5.2NP.exe 2010-07-24 05:04 . 2010-07-24 05:04 3351812 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\msxml6Exec.exe 2010-07-24 05:04 . 2010-07-24 05:04 36864 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\Sleep.exe 2010-07-24 05:04 . 2010-07-24 05:04 3203453 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\vcredistExec.exe 2010-07-24 04:57 . 2010-07-24 06:03 -------- d-----w- c:\documents and settings\Rico\Application Data\NSeries 2010-07-24 04:52 . 2010-07-24 04:52 -------- d-----w- c:\documents and settings\All Users\Application Data\Nokia 2010-07-24 03:22 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe 2010-07-16 21:28 . 2010-07-16 21:28 12536 ----a-w- c:\windows\system32\avgrsstx.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-08-03 20:50 . 2010-08-03 00:58 423656 ----a-w- c:\windows\system32\deployJava1.dll 2010-08-03 20:50 . 2010-08-03 20:50 -------- d-----w- c:\program files\Java 2010-08-03 04:07 . 2009-07-31 12:11 -------- d-----w- c:\program files\CoreStreet 2010-08-03 02:52 . 2010-08-03 02:52 0 ----a-w- c:\windows\nsreg.dat 2010-08-03 01:39 . 2007-01-13 11:42 -------- d-----w- c:\program files\Washer 2010-08-03 00:59 . 2010-08-03 00:59 503808 ----a-w- c:\documents and settings\Rico\Application Data\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-35bc4e72-n\msvcp71.dll 2010-08-03 00:59 . 2010-08-03 00:59 499712 ----a-w- c:\documents and settings\Rico\Application Data\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-35bc4e72-n\jmc.dll 2010-08-03 00:59 . 2010-08-03 00:59 348160 ----a-w- c:\documents and settings\Rico\Application Data\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-35bc4e72-n\msvcr71.dll 2010-08-03 00:59 . 2010-08-03 00:59 61440 ----a-w- c:\documents and settings\Rico\Application Data\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-176f1f3e-n\decora-sse.dll 2010-08-03 00:59 . 2010-08-03 00:59 12800 ----a-w- c:\documents and settings\Rico\Application Data\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-176f1f3e-n\decora-d3d.dll 2010-08-02 21:16 . 2007-01-13 16:26 56104 -c--a-w- c:\documents and settings\Rico\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2010-08-02 20:33 . 2009-07-04 10:50 -------- d-----w- c:\program files\NCH Software 2010-08-02 19:46 . 2004-08-04 12:00 519452 ----a-w- c:\windows\system32\perfh013.dat 2010-08-02 19:46 . 2004-08-04 12:00 95986 ----a-w- c:\windows\system32\perfc013.dat 2010-08-02 16:36 . 2006-07-05 19:57 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-07-30 22:49 . 2010-06-26 06:05 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar 2010-07-30 20:59 . 2007-03-31 18:44 -------- d-----w- c:\program files\EA GAMES 2010-07-27 20:26 . 2010-03-21 13:57 -------- d-----w- c:\program files\Common Files\DVDVideoSoft 2010-07-24 06:07 . 2008-11-21 20:37 -------- d-----w- c:\documents and settings\Rico\Application Data\PC Suite 2010-07-24 05:44 . 2010-07-24 05:44 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf 2010-07-24 05:44 . 2010-07-24 05:44 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2010-07-24 05:15 . 2008-11-21 20:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations 2010-07-24 05:15 . 2010-07-24 05:15 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf 2010-07-24 05:15 . 2010-07-24 05:15 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_user_01_07_00.Wdf 2010-07-24 05:09 . 2008-11-21 20:36 -------- d-----w- c:\program files\Nokia 2010-07-24 05:07 . 2008-11-21 20:38 -------- d-----w- c:\program files\Common Files\Nokia 2010-07-24 04:54 . 2008-11-21 20:39 -------- d-----w- c:\documents and settings\Rico\Application Data\Nokia 2010-07-24 03:47 . 2010-07-24 03:45 -------- d-----w- c:\program files\FreeCDRipper 2010-07-16 21:28 . 2008-07-11 19:49 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2010-07-16 21:26 . 2008-07-11 19:49 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2010-06-27 12:42 . 2010-06-27 12:42 44032 ----a-w- c:\windows\unwash.exe 2010-06-26 06:34 . 2008-07-11 19:49 29584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2010-06-26 06:01 . 2010-06-26 06:00 -------- d-----w- c:\documents and settings\All Users\Application Data\avg9 2010-06-26 06:01 . 2008-07-11 19:49 -------- d-----w- c:\program files\AVG 2010-06-14 14:31 . 2006-07-05 19:55 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-04-19 2117704] [HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2010-04-19 08:25 2117704 ----a-w- c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-04-19 2117704] [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Google Update"="c:\documents and settings\Rico\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-08-07 136176] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-07-16 2065760] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] "Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Ralink Wireless Utility.lnk - c:\program files\RALINK\Common\RaUI.exe [2006-11-13 593920] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-02-27 15:10 35696 -c--a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC] 2006-01-02 16:41 45056 ----a-w- c:\program files\ATI Technologies\ATI.ACE\CLI.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] 2008-04-14 17:02 15360 ----a-w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher] 2007-08-02 14:30 3096576 ----a-w- c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication] 2007-06-18 14:10 271360 -c--a-w- c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray] 2007-01-13 18:30 26112 ----a-w- c:\program files\Real\RealPlayer\realplay.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL] 2006-06-28 21:54 16248320 ----a-r- c:\windows\RTHDCPL.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel] 2006-05-17 01:04 2879488 ----a-r- c:\windows\SkyTel.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL] 2005-11-10 10:44 557056 ----a-r- c:\windows\sm56hlpr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zesko_McciTrayApp] 2008-04-14 13:32 1455104 -c--a-w- c:\program files\Thuishelp\Zesko\Thuishelp.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [5-1-2006 10:33 34144] R0 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [5-1-2006 10:33 28800] R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [11-7-2008 21:49 216400] R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [11-7-2008 21:49 243024] R2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [16-7-2010 23:27 308136] S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe [26-6-2010 8:05 430152] S3 ECIoCtrl32_001.sys;ECIoCtrl32_001.sys;\??\d:\utility\ICP Step\ECIoCtrl32_001.sys --> d:\utility\ICP Step\ECIoCtrl32_001.sys [?] S3 UDTTUSB;Twinhan - USB2 DVB-T adapter Driver;c:\windows\system32\drivers\UDTT2DRV.sys [24-5-2008 15:25 36092] . Inhoud van de 'Gedeelde Taken' map 2010-08-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1822196802-1635890709-3665551524-1006Core.job - c:\documents and settings\Rico\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-08-07 21:19] 2010-08-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1822196802-1635890709-3665551524-1006UA.job - c:\documents and settings\Rico\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-08-07 21:19] 2010-08-10 c:\windows\Tasks\User_Feed_Synchronization-{FB954110-9B02-411B-B20B-6B57C753F171}.job - c:\windows\system32\msfeedssync.exe [2006-10-17 02:31] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.nl/ uInternet Settings,ProxyServer = proxy:8080 uInternet Settings,ProxyOverride = <local> IE: E&xporteren naar Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 IE: Free YouTube to Mp3 Converter - c:\documents and settings\Rico\Application Data\DVDVideoSoftIEHelpers\youtubetomp3.htm Trusted Zone: ziggo.nl\thuishelp Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game04.zylom.com/activex/zylomgamesplayer.cab FF - ProfilePath - c:\documents and settings\Rico\Application Data\Mozilla\Firefox\Profiles\xd7b2g42.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/ FF - prefs.js: network.proxy.ftp - proxy FF - prefs.js: network.proxy.ftp_port - 8080 FF - prefs.js: network.proxy.gopher - proxy FF - prefs.js: network.proxy.gopher_port - 8080 FF - prefs.js: network.proxy.http - proxy FF - prefs.js: network.proxy.http_port - 8080 FF - prefs.js: network.proxy.socks - proxy FF - prefs.js: network.proxy.socks_port - 8080 FF - prefs.js: network.proxy.ssl - proxy FF - prefs.js: network.proxy.ssl_port - 8080 FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\documents and settings\Rico\Local Settings\Application Data\Google\Update\1.2.183.29\npGoogleOneClick8.dll FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- FIREFOX POLICIES ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096); c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45); c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false); c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", ""); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false); c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . - - - - ORPHANS VERWIJDERD - - - - MSConfigStartUp-SunJavaUpdateSched - c:\program files\Java\jre1.6.0_02\bin\jusched.exe MSConfigStartUp-Washer - c:\program files\Washer\washer.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-08-10 16:47 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–}|ÿÿÿÿÀ•}|ù•9~*] "3140110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(696) c:\windows\system32\Ati2evxx.dll - - - - - - - > 'explorer.exe'(504) c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . Voltooingstijd: 2010-08-10 16:51:35 ComboFix-quarantined-files.txt 2010-08-10 14:51 Pre-Run: 27.107.459.072 bytes beschikbaar Post-Run: 27.090.558.976 bytes beschikbaar - - End Of File - - C820B4BFDC7B3ECEF0B99DE2BE4D82EA Hier het combofix logfile

Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:38:24, on 10-8-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Motive\McciCMService.exe C:\WINDOWS\system32\o2flash.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\PROGRA~1\AVG\AVG9\avgtray.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\RALINK\Common\RaUI.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Rico\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Rico\Application Data\DVDVideoSoftIEHelpers\youtubetomp3.htm O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 7007 bytes at your service

Hello again, ik heb nog altijd problemen met een trage PC vooral als ik de browser opstart,dat geldt voor zowel internet explorer,mozilla of google chrome,ik krijg constant foutmeldingen dat pagina niet reageert en het lijkt ook alsof er op de achtergrond een programma mee draait aangezien de laptop het geluid maakt dat erbij hoort als hij met iets bezig is,heb nu dik 20 minuten moeten proberen om hier dit probleem te posten, ik heb geen supersnelle pc en ook geen supersnel internet maar voorheen had ik deze problemen niet. hopelijk kan iemand mij hier mee verder helpen. grt Ricardo

Ok ik zal deze stappen nog uitvoeren, bedankt voor de goede hulp ;-) Mocht ik verder nog problemen ondervinden dat weet ik dit forum blind te vinden:-) Groet Ricardo

Ok,ik moet zeggen dat hij weer prima opstart dus dat probleem is wat mij betreft prima opgelost,mijn dank hiervoor.Wat de browser betreft zodra ik de browser internet explorer of firefox opstart voor de 1ste keer lijkt hij er lang over te doen om te openen en wil ik nog wel eens een foutmelding krijgen. Maar na een paar keer opnieuw proberen gaat het wel goed,hoewel ik denk dat de firefox beter reageert.dus ik kijk het even aan en mocht ik problemen blijven ondervinden dan meldt ik mij hier wel weer op het forum. thx 4 the help:congrats:

Thx Kape, ik heb nauwgezet je instructies opgevolgd en hierbij het nieuwe hijack log file: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:52:34, on 3-8-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\WINDOWS\system32\o2flash.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\AVG\AVG9\avgtray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\RALINK\Common\RaUI.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Rico\Application Data\DVDVideoSoftIEHelpers\youtubetomp3.htm O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 6777 bytes

Ik heb cc cleaner ook nog de nodige fouten laten verhelpen en de laptop lijkt stukken sneller nu zit ik nog altijd met een 2de probleem dat ik maar niet verholpen krijg namelijk telkens als ik internet explorer start en bv bij google iets typ dan slaat de browser vast en opent telkens een nieuw tablad en dan loopt hij weer opnieuw vast en kan ik dus niet meer op het net surfen en telkens krijg ik dan ook de melding van avg dat er een tracking cookie is gevonden mbt internet explorer. Ik hoop dat jullie mij kunnen helpen met bovenstaande problemen want ik wordt kalm gek van die laptop thx guys

Hoop dat ik niet te hard van stapel loop maar hierbij het combofix log file: ComboFix 10-08-02.01 - Rico 03-08-2010 2:09.1.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.446.223 [GMT 2:00] Gestart vanuit: c:\documents and settings\Rico\Bureaublad\ComboFix.exe AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} . (((((((((((((((((((( Bestanden Gemaakt van 2010-07-03 to 2010-08-03 )))))))))))))))))))))))))))))) . 2010-08-02 22:21 . 2010-08-02 22:21 -------- d-----w- c:\documents and settings\Rico\Application Data\Malwarebytes 2010-08-02 22:20 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-08-02 22:20 . 2010-08-02 22:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2010-08-02 22:20 . 2010-08-02 22:22 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-08-02 22:20 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-08-02 21:43 . 2010-08-02 21:48 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2010-08-02 21:43 . 2010-08-02 21:46 -------- d-----w- c:\program files\Spybot - Search & Destroy 2010-08-02 21:38 . 2010-08-02 21:38 388096 ----a-r- c:\documents and settings\Rico\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-08-02 21:38 . 2010-08-02 21:38 -------- d-----w- c:\program files\Trend Micro 2010-08-02 16:27 . 2010-08-02 16:33 -------- d-----w- c:\windows\ServicePackFiles 2010-08-02 14:02 . 2004-08-03 20:29 25471 ------w- c:\windows\system32\drivers\watv10nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 22271 ------w- c:\windows\system32\drivers\watv06nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11935 ------w- c:\windows\system32\drivers\wadv11nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11871 ------w- c:\windows\system32\drivers\wadv09nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11807 ------w- c:\windows\system32\drivers\wadv07nt.sys 2010-08-02 14:02 . 2004-08-03 20:29 11295 ------w- c:\windows\system32\drivers\wadv08nt.sys 2010-08-02 13:57 . 2004-08-03 20:29 73216 ------w- c:\windows\system32\drivers\atintuxx.sys 2010-08-02 10:59 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2010-08-02 10:59 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll 2010-08-02 10:55 . 2009-10-15 16:38 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll 2010-08-02 10:55 . 2009-10-15 16:38 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll 2010-08-02 10:49 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe 2010-08-02 10:49 . 2010-02-17 12:09 2194304 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe 2010-08-02 10:49 . 2009-03-06 14:23 285696 -c----w- c:\windows\system32\dllcache\pdh.dll 2010-08-02 10:49 . 2009-02-09 11:27 111104 -c----w- c:\windows\system32\dllcache\services.exe 2010-08-02 10:49 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll 2010-08-02 10:49 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll 2010-08-02 10:49 . 2009-02-09 10:56 684544 -c----w- c:\windows\system32\dllcache\advapi32.dll 2010-08-02 10:48 . 2009-06-25 08:27 735232 -c----w- c:\windows\system32\dllcache\lsasrv.dll 2010-08-02 10:48 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll 2010-08-02 10:48 . 2009-02-09 10:56 735744 -c----w- c:\windows\system32\dllcache\ntdll.dll 2010-08-02 10:48 . 2010-02-16 19:09 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe 2010-08-02 10:48 . 2010-02-16 19:09 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe 2010-07-30 22:24 . 2008-04-21 21:16 218624 -c----w- c:\windows\system32\dllcache\wordpad.exe 2010-07-27 20:26 . 2010-07-27 20:26 -------- d-----w- c:\documents and settings\Rico\Application Data\DVDVideoSoftIEHelpers 2010-07-24 23:03 . 2010-07-24 23:03 -------- d-----w- c:\documents and settings\Rico\Application Data\Serif 2010-07-24 05:56 . 2008-04-13 17:45 26112 ----a-w- c:\windows\system32\drivers\usbser.sys 2010-07-24 05:44 . 2008-11-07 16:55 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll 2010-07-24 05:12 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys 2010-07-24 05:12 . 2009-11-23 12:50 1302600 ----a-w- c:\windows\system32\WUDFUpdate_01007.dll 2010-07-24 05:12 . 2010-07-24 05:12 -------- d-----w- c:\program files\PC Connectivity Solution 2010-07-24 05:09 . 2010-02-26 12:32 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerfltj.sys 2010-07-24 05:09 . 2010-02-26 12:32 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerflt.sys 2010-07-24 05:09 . 2010-02-26 12:32 22528 ----a-w- c:\windows\system32\drivers\ccdcmbo.sys 2010-07-24 05:09 . 2010-02-26 12:32 18176 ----a-w- c:\windows\system32\drivers\ccdcmb.sys 2010-07-24 05:09 . 2010-02-26 12:32 662016 ----a-w- c:\windows\system32\nmwcdcocls.dll 2010-07-24 05:09 . 2010-02-26 12:19 1461992 ----a-w- c:\windows\system32\wdfcoinstaller01009.dll 2010-07-24 05:05 . 2010-07-24 05:01 35633752 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\NokiaSoftwareUpdaterSetup_2.5.2NP.exe 2010-07-24 05:04 . 2010-07-24 05:04 3351812 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\msxml6Exec.exe 2010-07-24 05:04 . 2010-07-24 05:04 36864 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\Sleep.exe 2010-07-24 05:04 . 2010-07-24 05:04 3203453 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\vcredistExec.exe 2010-07-24 04:57 . 2010-07-24 06:03 -------- d-----w- c:\documents and settings\Rico\Application Data\NSeries 2010-07-24 04:52 . 2010-07-24 04:52 -------- d-----w- c:\documents and settings\All Users\Application Data\Nokia 2010-07-24 03:22 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe 2010-07-24 03:15 . 2010-07-24 03:15 1615200 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgssie.dll 2010-07-24 03:15 . 2010-07-24 03:15 1107296 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgxpl.dll 2010-07-24 03:15 . 2010-07-24 03:15 4368224 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgcorex.dll 2010-07-16 21:32 . 2010-07-16 21:32 242896 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgtdix.sys 2010-07-16 21:32 . 2010-07-16 21:32 216200 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgldx86.sys 2010-07-16 21:28 . 2010-07-16 21:28 12536 ----a-w- c:\windows\system32\avgrsstx.dll 2010-07-16 21:23 . 2010-07-16 21:23 1038688 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgupd.exe 2010-07-16 21:23 . 2010-07-16 21:23 1690464 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgupd.dll 2010-07-16 21:23 . 2010-07-16 21:23 624920 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgiproxy.exe 2010-07-16 21:23 . 2010-07-16 21:23 813336 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avginet.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-08-02 21:16 . 2007-01-13 16:26 56104 -c--a-w- c:\documents and settings\Rico\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2010-08-02 20:33 . 2009-07-04 10:50 -------- d-----w- c:\program files\NCH Software 2010-08-02 19:46 . 2004-08-04 12:00 519452 ----a-w- c:\windows\system32\perfh013.dat 2010-08-02 19:46 . 2004-08-04 12:00 95986 ----a-w- c:\windows\system32\perfc013.dat 2010-08-02 16:36 . 2006-07-05 19:57 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-07-30 22:49 . 2010-06-26 06:05 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar 2010-07-30 20:59 . 2007-03-31 18:44 -------- d-----w- c:\program files\EA GAMES 2010-07-27 20:26 . 2010-03-21 13:57 -------- d-----w- c:\program files\Common Files\DVDVideoSoft 2010-07-24 06:07 . 2008-11-21 20:37 -------- d-----w- c:\documents and settings\Rico\Application Data\PC Suite 2010-07-24 05:44 . 2010-07-24 05:44 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf 2010-07-24 05:44 . 2010-07-24 05:44 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2010-07-24 05:15 . 2008-11-21 20:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations 2010-07-24 05:15 . 2010-07-24 05:15 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf 2010-07-24 05:15 . 2010-07-24 05:15 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_user_01_07_00.Wdf 2010-07-24 05:09 . 2008-11-21 20:36 -------- d-----w- c:\program files\Nokia 2010-07-24 05:07 . 2008-11-21 20:38 -------- d-----w- c:\program files\Common Files\Nokia 2010-07-24 04:54 . 2008-11-21 20:39 -------- d-----w- c:\documents and settings\Rico\Application Data\Nokia 2010-07-24 03:47 . 2010-07-24 03:45 -------- d-----w- c:\program files\FreeCDRipper 2010-07-24 03:38 . 2009-07-04 10:49 -------- d-----w- c:\program files\NCH Swift Sound 2010-07-16 21:28 . 2008-07-11 19:49 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2010-07-16 21:26 . 2008-07-11 19:49 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2010-06-27 12:42 . 2010-06-27 12:42 44032 ----a-w- c:\windows\unwash.exe 2010-06-26 06:34 . 2008-07-11 19:49 29584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2010-06-26 06:01 . 2010-06-26 06:00 -------- d-----w- c:\documents and settings\All Users\Application Data\avg9 2010-06-26 06:01 . 2008-07-11 19:49 -------- d-----w- c:\program files\AVG 2010-06-14 14:31 . 2006-07-05 19:55 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe 2010-06-05 11:44 . 2009-11-09 15:46 -------- d-----w- c:\program files\Microsoft Silverlight 2010-05-06 10:37 . 2004-08-04 12:00 916480 ----a-w- c:\windows\system32\wininet.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-04-19 2117704] [HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2010-04-19 08:25 2117704 ----a-w- c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-04-19 2117704] [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Shockwave Updater"="c:\windows\system32\Adobe\Shockwave 11\SwHelper_1151601.exe" [2009-07-31 468408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056] "SMSERIAL"="sm56hlpr.exe" [2005-11-10 557056] "AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-07-16 2065760] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] "Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Ralink Wireless Utility.lnk - c:\program files\RALINK\Common\RaUI.exe [2006-11-13 593920] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter] 2010-07-16 21:28 12536 ----a-w- c:\windows\system32\avgrsstx.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-02-27 15:10 35696 -c--a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] 2008-04-14 17:02 15360 ----a-w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher] 2007-08-02 14:30 3096576 ----a-w- c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication] 2007-06-18 14:10 271360 -c--a-w- c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray] 2007-01-13 18:30 26112 ----a-w- c:\program files\Real\RealPlayer\realplay.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL] 2006-06-28 21:54 16248320 ----a-r- c:\windows\RTHDCPL.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel] 2006-05-17 01:04 2879488 ----a-r- c:\windows\SkyTel.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2007-07-12 02:00 132496 -c--a-w- c:\program files\Java\jre1.6.0_02\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Washer] 2002-12-12 16:00 816640 -c--a-w- c:\program files\Washer\washer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zesko_McciTrayApp] 2008-04-14 13:32 1455104 -c--a-w- c:\program files\Thuishelp\Zesko\Thuishelp.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [5-1-2006 10:33 34144] R0 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [5-1-2006 10:33 28800] R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [11-7-2008 21:49 216400] R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [11-7-2008 21:49 243024] R2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [16-7-2010 23:27 308136] S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe [26-6-2010 8:05 430152] S3 ECIoCtrl32_001.sys;ECIoCtrl32_001.sys;\??\d:\utility\ICP Step\ECIoCtrl32_001.sys --> d:\utility\ICP Step\ECIoCtrl32_001.sys [?] S3 UDTTUSB;Twinhan - USB2 DVB-T adapter Driver;c:\windows\system32\drivers\UDTT2DRV.sys [24-5-2008 15:25 36092] . Inhoud van de 'Gedeelde Taken' map 2010-08-03 c:\windows\Tasks\User_Feed_Synchronization-{FB954110-9B02-411B-B20B-6B57C753F171}.job - c:\windows\system32\msfeedssync.exe [2006-10-17 02:31] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.nl/ uInternet Settings,ProxyServer = proxy:8080 uInternet Settings,ProxyOverride = <local> IE: E&xporteren naar Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 IE: Free YouTube to Mp3 Converter - c:\documents and settings\Rico\Application Data\DVDVideoSoftIEHelpers\youtubetomp3.htm Trusted Zone: ziggo.nl\thuishelp Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game04.zylom.com/activex/zylomgamesplayer.cab . - - - - ORPHANS VERWIJDERD - - - - AddRemove-Nokia PC Suite - c:\documents and settings\All Users\Application Data\Installations\{A982E6CC-9F0D-4948-9B18-BDFD55DE4A72}\Nokia_PC_Suite_6_84_10_3_EA.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-08-03 02:19 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–}|ÿÿÿÿÀ•}|ù•9~*] "3140110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(692) c:\windows\system32\Ati2evxx.dll - - - - - - - > 'explorer.exe'(1908) c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\program files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll c:\program files\Nokia\Nokia PC Suite 6\PCSCM.dll c:\program files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_dut.nlr c:\program files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\windows\system32\Ati2evxx.exe c:\program files\AVG\AVG9\avgchsvx.exe c:\program files\AVG\AVG9\avgrsx.exe c:\program files\AVG\AVG9\avgcsrvx.exe c:\program files\Common Files\Motive\McciCMService.exe c:\program files\AVG\AVG9\avgnsx.exe c:\windows\system32\Ati2evxx.exe c:\windows\system32\o2flash.exe c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\windows\system32\wscntfy.exe c:\windows\sm56hlpr.exe . ************************************************************************** . Voltooingstijd: 2010-08-03 02:25:53 - machine werd herstart ComboFix-quarantined-files.txt 2010-08-03 00:25 Pre-Run: 24.795.963.392 bytes beschikbaar Post-Run: 24.831.135.744 bytes beschikbaar WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect - - End Of File - - 8EF618F701723DEB69717F2179B627C3

Heb tevens Spybot SD laten scannen en die heeft 1 tracking cookie verwijderd,tevens hier een mbam logje. Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Databaseversie: 4382 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.11 3-8-2010 1:28:07 mbam-log-2010-08-03 (01-28-07).txt Scantype: Snelle scan Objecten gescand: 131126 Verstreken tijd: 9 minuut/minuten, 42 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) ---------- Post toegevoegd om 23:44 ---------- Vorige post was om 23:32 ---------- En een nieuw hijack log na het scannen van mbam Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 1:42:16, on 3-8-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\o2flash.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\sm56hlpr.exe C:\PROGRA~1\AVG\AVG9\avgtray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\RALINK\Common\RaUI.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Windows Live\Toolbar\wltuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer aangeboden door @Home R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: SpoofStick BHO - {CBA74CDA-DF78-4AD9-954E-3B15D0A993DE} - C:\Program Files\CoreStreet\SpoofStick\SpoofStickBHO.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [sMSERIAL] sm56hlpr.exe O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1151601.exe -Update -1151601 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; AtHome033; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.1)" -"MMORPG in Club Marian- Free Massive Multiplayer Web Game" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Rico\Application Data\DVDVideoSoftIEHelpers\youtubetomp3.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 7974 bytes

AVG op mijn laptop sloeg gelijk alarm, goede tip thx;-)

Hallo hopelijk kan ik hier terecht met het volgende probleem, mijn laptop is zeer traag geworden en start heel lang op en ik kom er maar niet achter wat het probleem kan zijn. Heb schijfopruiming gedaan en de schijf gedefragmenteert. Ook bij msconfig gekeken wat zoal opstarten doet en daar viel mij alleen SKYTEL.EXE op wat ik niet plaatsen kan,deze ook via msconfig uitgeschakeld maar laptop blijft traag. Ik heb windows XP Home en hopelijk kan iemand mij op weg helpen thx hier tevens mijn hijacklogfile: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 0:13:50, on 3-8-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\o2flash.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\sm56hlpr.exe C:\PROGRA~1\AVG\AVG9\avgtray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\RALINK\Common\RaUI.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Windows Live\Toolbar\wltuser.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer aangeboden door @Home R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: SpoofStick BHO - {CBA74CDA-DF78-4AD9-954E-3B15D0A993DE} - C:\Program Files\CoreStreet\SpoofStick\SpoofStickBHO.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [sMSERIAL] sm56hlpr.exe O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1151601.exe -Update -1151601 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; AtHome033; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; InfoPath.1)" -"MMORPG in Club Marian- Free Massive Multiplayer Web Game" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\Rico\Application Data\DVDVideoSoftIEHelpers\youtubetomp3.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game04.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader4.cab O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 7849 bytes