ComboFix 09-07-23.02 - Golf gt 24/07/2009 1:59.1.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.32.1043.18.767.488 [GMT 2:00] Gestart vanuit: c:\documents and settings\Golf gt\Bureaublad\ComboFix.exe AV: Panda Cloud Antivirus *On-access scanning enabled* (Updated) {5AD27692-540A-464E-B625-78275FA38393} . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\Golf gt\Local Settings\Temporary Internet Files\_tm14.tmp c:\documents and settings\Golf gt\Local Settings\Temporary Internet Files\_tm1F.tmp c:\documents and settings\Golf gt\Local Settings\Temporary Internet Files\stb06759.tmp c:\windows\Installer\58b72a.msp c:\windows\Installer\91521.msp . (((((((((((((((((((( Bestanden Gemaakt van 2009-06-23 to 2009-07-23 )))))))))))))))))))))))))))))) . 2009-07-23 23:49 . 2006-04-06 11:15 8192 ----a-w- c:\windows\system32\drivers\rt2661.bin 2009-07-23 23:49 . 2006-04-06 11:15 8192 ----a-w- c:\windows\system32\drivers\rt2561s.bin 2009-07-23 23:49 . 2007-02-15 08:36 395008 ----a-w- c:\windows\system32\drivers\RT619x.sys 2009-07-23 23:49 . 2006-12-01 09:00 395648 ----a-w- c:\windows\system32\drivers\rt61.sys 2009-07-23 23:49 . 2006-06-01 20:38 238080 ----a-w- c:\windows\system32\drivers\rt25009x.sys 2009-07-23 23:49 . 2006-06-01 20:37 236800 ----a-w- c:\windows\system32\drivers\rt2500.sys 2009-07-23 23:49 . 2006-04-06 11:15 8192 ----a-w- c:\windows\system32\drivers\rt2561.bin 2009-07-23 23:49 . 2009-07-23 23:49 -------- d-----w- c:\program files\Hercules 2009-07-23 23:49 . 2009-07-23 23:49 -------- d-----w- c:\documents and settings\Golf gt\Application Data\InstallShield 2009-07-15 23:06 . 2009-07-15 23:06 -------- d-----w- c:\program files\Trend Micro 2009-07-15 19:29 . 2009-07-15 19:29 14072 ----a-w- c:\documents and settings\maxime.PINNE-6FAC16080\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-07-15 19:29 . 2009-07-15 21:55 -------- d-----w- c:\documents and settings\maxime.PINNE-6FAC16080\Application Data\Azureus 2009-07-15 18:42 . 2009-06-16 14:40 81920 ----a-w- c:\windows\system32\dllcache\fontsub.dll 2009-07-15 18:42 . 2009-06-16 14:40 119808 ----a-w- c:\windows\system32\dllcache\t2embed.dll 2009-07-15 18:37 . 2009-07-15 18:37 -------- d-----w- c:\documents and settings\Golf gt\Application Data\Malwarebytes 2009-07-15 18:37 . 2009-07-13 11:36 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-07-15 18:37 . 2009-07-15 18:46 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-07-15 18:37 . 2009-07-15 18:37 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-07-15 18:37 . 2009-07-13 11:36 19096 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-07-14 16:40 . 2009-07-14 16:40 -------- d-----w- c:\documents and settings\maxime.PINNE-6FAC16080\WINDOWS 2009-07-13 21:07 . 2009-07-13 21:07 63488 ----a-w- c:\windows\xobglu16.dll 2009-07-13 21:07 . 2009-07-13 21:07 23552 ----a-w- c:\windows\xobglu32.dll 2009-07-13 21:06 . 2009-07-13 21:06 -------- d-----w- C:\Transpos 2009-07-13 21:06 . 1996-02-08 07:52 284160 ----a-w- c:\windows\unin0413.exe 2009-07-13 21:06 . 2009-07-13 21:06 -------- d-----w- c:\documents and settings\Golf gt\WINDOWS 2009-07-12 22:39 . 2009-07-12 22:39 -------- d-----w- c:\documents and settings\Golf gt\Local Settings\Application Data\Native Instruments 2009-07-12 22:36 . 2009-07-12 22:36 -------- d-----w- c:\program files\VirtualDJ 2009-07-12 21:26 . 2009-07-12 21:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Playrix Entertainment 2009-07-12 21:26 . 2009-07-12 21:26 -------- d-----w- c:\program files\4 Elements 2009-07-12 21:23 . 2009-07-12 21:40 -------- d-----w- c:\documents and settings\Golf gt\AtlantisQuest 2009-07-12 21:23 . 2009-07-12 21:23 -------- d-----w- c:\program files\Atlantis Quest 2009-07-12 21:19 . 2009-07-12 21:19 -------- d-----w- c:\documents and settings\All Users\Application Data\TERMINAL Studio 2009-07-12 21:18 . 2009-07-23 23:52 -------- d-----w- c:\program files\The Rise of Atlantis 2009-07-12 20:57 . 2009-07-12 20:57 -------- d-----w- c:\documents and settings\Golf gt\Application Data\Ashampoo 2009-07-12 20:56 . 2009-07-12 20:56 -------- d-----w- c:\documents and settings\Golf gt\Local Settings\Application Data\ashampoo 2009-07-12 20:56 . 2009-07-12 20:56 -------- d-----w- c:\documents and settings\All Users\Application Data\ashampoo 2009-07-10 21:37 . 2009-07-10 22:34 -------- d-----w- C:\3D Online Snooker 2009-07-05 15:50 . 2009-07-05 15:50 -------- d-----w- c:\documents and settings\maxime.PINNE-6FAC16080\Local Settings\Application Data\Identities 2009-07-05 14:36 . 2009-07-11 11:01 -------- d-----w- c:\documents and settings\maxime.PINNE-6FAC16080\Local Settings\Application Data\Internet Saving Optimizer 2009-07-05 14:36 . 2009-07-05 14:36 -------- d-----w- c:\documents and settings\maxime.PINNE-6FAC16080\Local Settings\Application Data\Media Access Startup 2009-07-03 13:49 . 2009-07-10 15:55 -------- d-----w- c:\documents and settings\Golf gt\Local Settings\Application Data\Internet Saving Optimizer 2009-07-03 13:48 . 2009-07-03 13:48 -------- d-----w- c:\documents and settings\Golf gt\Local Settings\Application Data\Media Access Startup 2009-07-03 13:47 . 2009-07-03 13:47 -------- d-----w- c:\documents and settings\Golf gt\Local Settings\Application Data\DoubleD 2009-07-03 13:41 . 2009-07-03 13:43 -------- d-----w- c:\documents and settings\Golf gt\Application Data\qs 2009-07-03 13:41 . 2009-07-03 13:50 -------- d-----w- c:\program files\QuickSnooker 7 2009-07-01 15:34 . 2009-07-01 15:34 -------- d-----w- c:\documents and settings\maxime.PINNE-6FAC16080\Local Settings\Application Data\Mozilla 2009-07-01 15:19 . 2008-04-13 21:15 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys 2009-07-01 15:19 . 2008-04-13 21:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2009-06-30 22:39 . 2009-06-30 22:40 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-06-30 22:39 . 2009-06-30 22:39 -------- d-----w- c:\documents and settings\Golf gt\Application Data\SpinTop 2009-06-30 22:22 . 2009-06-30 22:22 21419 ----a-w- c:\windows\system32\drivers\AegisP.sys 2009-06-30 22:13 . 2009-06-30 22:13 -------- d-----w- c:\windows\system32\wbem\Repository 2009-06-30 22:10 . 2009-06-30 22:10 -------- d-----w- c:\program files\Microsoft 2009-06-30 22:10 . 2009-06-30 22:10 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition 2009-06-30 22:10 . 2009-06-30 22:10 -------- d-----w- c:\program files\Windows Live 2009-06-30 22:10 . 2009-06-30 22:10 -------- d-----w- c:\program files\Toshiba 2009-06-30 22:10 . 2009-06-30 22:10 -------- d-----w- c:\program files\Codemasters 2009-06-30 22:06 . 2009-07-24 00:03 -------- d-----w- c:\documents and settings\Golf gt\Application Data\DNA 2009-06-30 22:06 . 2009-07-23 23:43 -------- d-----w- c:\program files\DNA 2009-06-30 22:06 . 2009-06-30 22:12 -------- d-----w- c:\documents and settings\Golf gt\Application Data\BitTorrent 2009-06-30 22:06 . 2009-06-30 22:06 -------- d-----w- c:\program files\BitTorrent 2009-06-30 22:06 . 2009-06-30 22:06 -------- d-----w- c:\documents and settings\Golf gt\Local Settings\Application Data\DNA 2009-06-30 22:02 . 2009-06-30 22:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Age of Empires 3 2009-06-30 22:02 . 2009-06-30 22:02 -------- d-sh--w- c:\documents and settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357} 2009-06-30 22:02 . 2009-06-30 22:02 -------- d-----w- c:\documents and settings\Golf gt\Application Data\Panda Security 2009-06-30 22:02 . 2009-06-30 22:02 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters 2009-06-30 22:01 . 2009-06-30 22:01 -------- d-----w- c:\program files\Windows Live SkyDrive 2009-06-30 21:55 . 2009-06-30 22:06 -------- d-----w- c:\windows\system32\KB905474 2009-06-30 21:14 . 2009-06-30 21:14 -------- d-----w- c:\program files\Microsoft Sync Framework 2009-06-30 21:13 . 2009-06-30 22:01 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition(2) 2009-06-30 20:45 . 2009-05-07 15:16 347648 ----a-w- c:\windows\system32\dllcache\localspl.dll 2009-06-30 20:45 . 2009-04-15 14:55 585216 ----a-w- c:\windows\system32\dllcache\rpcrt4.dll 2009-06-30 20:40 . 2009-06-30 22:01 -------- d-----w- c:\program files\Hercules(3) 2009-06-30 20:31 . 2009-06-30 20:31 0 ----a-w- c:\windows\system32\atiicdxx.dat 2009-06-30 20:26 . 2009-06-30 22:04 -------- d-----w- c:\program files\Windows Live(2) 2009-06-30 06:05 . 2009-06-30 06:05 -------- d-----w- c:\documents and settings\NetworkService\IETldCache 2009-06-28 14:56 . 2009-06-28 14:57 -------- d-----w- c:\documents and settings\Maxime\Local Settings\Application Data\Adobe 2009-06-26 07:48 . 2009-06-30 22:08 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS 2009-06-26 07:32 . 2009-06-26 07:32 552 ----a-w- c:\windows\system32\d3d8caps.dat 2009-06-26 07:16 . 2009-06-30 19:46 664 ----a-w- c:\windows\system32\d3d9caps.dat 2009-06-25 21:57 . 2009-06-25 21:57 -------- d-----w- c:\windows\system32\LogFiles 2009-06-25 11:12 . 2009-06-30 22:08 -------- d-----w- c:\program files\Hercules(2) 2009-06-24 13:45 . 2009-06-24 13:45 -------- d-----w- c:\documents and settings\Maxime\PrivacIE . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-07-23 23:49 . 2009-06-02 19:33 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-07-23 23:47 . 2008-04-15 12:00 92516 ----a-w- c:\windows\system32\perfc013.dat 2009-07-23 23:47 . 2008-04-15 12:00 511462 ----a-w- c:\windows\system32\perfh013.dat 2009-07-23 23:44 . 2009-06-01 23:57 -------- d-----w- c:\program files\Microsoft Silverlight 2009-07-14 23:32 . 2009-06-04 09:07 14072 ----a-w- c:\documents and settings\Golf gt\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-06-30 22:12 . 2009-06-04 11:47 -------- d-----w- c:\documents and settings\Golf gt\Application Data\Azureus 2009-06-30 22:12 . 2009-06-05 12:29 -------- d-----w- c:\program files\Microsoft Games 2009-06-30 22:12 . 2009-06-13 12:18 -------- d-----w- c:\program files\NCH Swift Sound 2009-06-30 22:12 . 2009-06-14 11:44 -------- d-----w- c:\documents and settings\LocalService\Application Data\agi 2009-06-30 22:11 . 2009-06-17 16:40 -------- d-----w- c:\program files\3DO 2009-06-30 22:11 . 2009-06-17 16:41 -------- d-----w- c:\program files\Common Files\Adobe 2009-06-30 22:11 . 2009-06-17 20:43 -------- d-----w- c:\program files\Deadliest Catch Alaskan Storm 2009-06-30 22:09 . 2009-06-05 10:53 -------- d-----w- c:\program files\TuneUp Utilities 2009 2009-06-30 22:08 . 2009-06-05 13:44 -------- d-----w- c:\program files\MyPlayCity.com 2009-06-30 22:02 . 2009-06-02 19:32 -------- d-----w- c:\program files\Common Files\InstallShield 2009-06-30 22:02 . 2009-06-04 11:46 -------- d-----w- c:\program files\Vuze 2009-06-30 22:02 . 2009-06-04 11:46 -------- d-----w- c:\program files\Common Files\i4j_jres 2009-06-19 00:11 . 2009-06-19 00:11 -------- d-----w- c:\program files\Secunia 2009-06-17 20:28 . 2009-06-17 20:28 -------- d-----w- c:\program files\Activision Value 2009-06-16 14:40 . 2008-04-15 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll 2009-06-16 14:40 . 2008-04-15 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll 2009-06-15 15:19 . 2009-06-15 15:19 -------- d-----w- c:\program files\City Interactive 2009-06-13 23:01 . 2009-06-13 12:24 -------- d-----w- c:\documents and settings\All Users\Application Data\NCH Swift Sound 2009-06-13 22:36 . 2009-06-13 22:29 -------- d-----w- c:\documents and settings\Golf gt\Application Data\Microgaming 2009-06-13 18:27 . 2009-06-13 18:27 -------- d-----w- c:\documents and settings\Golf gt\Application Data\Auslogics 2009-06-13 18:27 . 2009-06-13 18:27 -------- d-----w- c:\program files\Auslogics 2009-06-05 11:03 . 2009-06-05 11:03 0 ----a-w- c:\windows\nsreg.dat 2009-06-05 10:54 . 2009-06-05 10:54 604416 ----a-w- c:\windows\system32\TUProgSt.exe 2009-06-05 10:54 . 2009-06-05 10:54 361216 ----a-w- c:\windows\system32\TuneUpDefragService.exe 2009-06-05 10:54 . 2009-06-05 10:54 -------- d-----w- c:\documents and settings\Golf gt\Application Data\TuneUp Software 2009-06-05 10:53 . 2009-06-05 10:53 -------- d-----w- c:\documents and settings\All Users\Application Data\TuneUp Software 2009-06-04 11:47 . 2009-06-04 11:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Azureus 2009-06-04 10:16 . 2009-06-04 10:16 -------- d-----w- c:\documents and settings\Golf gt\Application Data\Media Player Classic 2009-06-04 09:07 . 2009-06-04 09:07 -------- d-----w- c:\program files\Common Files\Windows Live 2009-06-03 19:12 . 2009-01-31 08:27 1295360 ----a-w- c:\windows\system32\quartz.dll 2009-06-02 19:35 . 2009-06-01 23:51 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2009-06-02 15:02 . 2009-06-02 15:02 245 ----a-w- c:\windows\system32\PSUNCpl.dat 2009-06-02 15:02 . 2009-06-02 15:02 -------- d-----w- c:\program files\Panda Security 2009-06-02 15:02 . 2009-06-02 15:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Panda Security 2009-06-02 01:43 . 2009-06-02 01:43 0 ----a-w- c:\windows\ativpsrm.bin 2009-06-02 01:42 . 2009-06-02 01:42 -------- d-----w- c:\program files\Synaptics 2009-06-01 23:58 . 2009-06-01 23:58 -------- d-----w- c:\program files\K-Lite Codec Pack 2009-06-01 23:55 . 2009-06-01 23:55 -------- d-----w- c:\program files\MSBuild 2009-06-01 23:55 . 2009-06-01 23:55 -------- d-----w- c:\program files\Reference Assemblies 2009-06-01 23:54 . 2009-06-01 23:54 -------- d-----w- c:\program files\MSXML 6.0 2009-06-01 23:48 . 2009-06-01 23:48 21748 ----a-w- c:\windows\system32\emptyregdb.dat 2009-06-01 23:47 . 2009-06-01 23:47 -------- d-----w- c:\program files\Windows Media Connect 2 2009-05-07 15:16 . 2009-01-31 08:26 347648 ----a-w- c:\windows\system32\localspl.dll 2009-04-30 21:17 . 2009-01-31 08:29 25600 ----a-w- c:\windows\system32\jsproxy(2)(2).dll 2009-04-29 04:40 . 2009-01-31 08:29 828928 ----a-w- c:\windows\system32\wininet.dll 2009-04-29 04:40 . 2009-01-31 08:29 828928 ----a-w- c:\windows\system32\wininet(2).dll 2009-04-29 04:40 . 2009-01-31 08:29 1163264 ----a-w- c:\windows\system32\urlmon(2).dll 2009-04-29 04:40 . 2009-01-31 08:29 78336 ----a-w- c:\windows\system32\ieencode.dll 2009-04-27 12:21 . 2009-06-05 10:54 28928 ----a-w- c:\windows\system32\uxtuneup.dll 2009-07-03 13:44 . 2009-06-05 11:03 134648 ----a-w- c:\program files\mozilla firefox\components\brwsrcmp.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-15 15360] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885408] "MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232] "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-06-04 321344] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-06 1024000] "PSUNMain"="c:\program files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe" [2009-04-23 353536] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885408] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "ShowDeskFix"="shell32" [X] "_nltide_3"="advpack.dll" - c:\windows\system32\advpack.dll [2009-04-29 124928] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe [2004-12-21 45056] WiFi Station.lnk - c:\program files\Hercules\WiFi Station\WifiStation.exe [2009-7-24 654336] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= R1 PSINKNC;PSINKNC;c:\windows\system32\drivers\PSINKNC.sys [23/04/2009 20:15 113928] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [4/06/2009 11:12 55152] R2 NanoServiceMain;NanoServiceMain;c:\program files\Panda Security\Panda Cloud Antivirus\PSANHost.exe [23/04/2009 20:14 95488] R2 PSINAflt;PSINAflt;c:\windows\system32\drivers\PSINAflt.sys [23/04/2009 20:15 136968] R2 PSINFile;PSINFile;c:\windows\system32\drivers\PSINFile.sys [23/04/2009 20:15 92552] R2 PSINProc;PSINProc;c:\windows\system32\drivers\PSINProc.sys [23/04/2009 20:15 98056] R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [5/06/2009 12:54 604416] R3 CONAN;CONAN;c:\windows\system32\drivers\o2mmb.sys [2/06/2009 3:33 196480] S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [6/02/2009 18:08 533360] S3 MbxStby;MbxStby;c:\windows\system32\drivers\MbxStby.sys [2/06/2009 3:33 6844] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Inhoud van de 'Gedeelde Taken' map 2009-07-23 c:\windows\Tasks\1-klik Onderhoud.job - c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2009-04-27 13:51] 2009-07-23 c:\windows\Tasks\User_Feed_Synchronization-{C7CAC500-834D-4035-ADF5-BE413B0CD887}.job - c:\windows\system32\msfeedssync.exe [2009-06-01 15:36] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://home.gamingharbor.com FF - ProfilePath - c:\documents and settings\Golf gt\Application Data\Mozilla\Firefox\Profiles\y9zlukn7.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/search?client=firefox-a&rls=org.mozilla%3Anl%3Aofficial&channel=s&hl=nl&q=spelle&meta=&btnG=Google+zoeken FF - prefs.js: keyword.URL - hxxp://kwtb.search.imgag.com/?c=GNKIW29193&sbs=1&sc=2&f=web&vernum=1.0&uid=&did=f8d4a70c-98e2-4081-901d-01bf93043ede&q= FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- FIREFOX POLICIES ---- FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-07-24 02:04 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(984) c:\windows\system32\Ati2evxx.dll . Voltooingstijd: 2009-07-24 2:05 ComboFix-quarantined-files.txt 2009-07-24 00:05 Pre-Run: 18.161.106.944 bytes beschikbaar Post-Run: 18.522.419.200 bytes beschikbaar WindowsXP-KB310994-SP2-Pro-BootDisk-NLD.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect 251 --- E O F --- 2009-07-23 23:44