ComboFix 09-10-24.01 - Eigenaar 25-10-2009  7:47.1.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.31.1043.18.3038.1954 [GMT 1:00]
Gestart vanuit: c:\users\Eigenaar\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
 * Aanwezig AV is actief

.

((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-2752187757-53148644-3524406003-500
c:\$recycle.bin\S-1-5-21-3047815093-355884313-3645829717-500
C:\install.exe

.
((((((((((((((((((((   Bestanden Gemaakt van 2009-09-25 to 2009-10-25  ))))))))))))))))))))))))))))))
.

2009-10-23 09:10 . 2009-10-23 09:10	--------	d-----w-	c:\program files\Microsoft Visual Studio 8
2009-10-22 22:50 . 2009-10-22 22:50	--------	d-----w-	c:\programdata\ATI
2009-10-22 22:43 . 2009-05-14 23:58	4304384	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2009-10-22 22:43 . 2009-05-14 22:16	11366400	----a-w-	c:\windows\system32\atioglxx.dll
2009-10-22 22:43 . 2009-05-14 20:24	442368	----a-w-	c:\windows\system32\ATIDEMGX.dll
2009-10-22 22:43 . 2009-05-14 20:22	11264	----a-w-	c:\windows\system32\atimuixx.dll
2009-10-22 22:43 . 2009-05-14 20:22	43520	----a-w-	c:\windows\system32\ati2edxx.dll
2009-10-22 22:43 . 2009-05-14 20:21	286720	----a-w-	c:\windows\system32\Ati2evxx.dll
2009-10-22 22:43 . 2009-05-14 20:20	729088	----a-w-	c:\windows\system32\Ati2evxx.exe
2009-10-22 22:43 . 2009-05-14 20:13	2391552	----a-w-	c:\windows\system32\atidxx32.dll
2009-10-22 22:43 . 2009-05-14 19:40	51712	----a-w-	c:\windows\system32\amdpcom32.dll
2009-10-22 22:43 . 2009-05-14 19:39	131072	----a-w-	c:\windows\system32\atiadlxx.dll
2009-10-22 22:43 . 2009-05-14 19:25	53248	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2009-10-22 22:43 . 2008-10-29 15:13	180720	----a-w-	c:\windows\system32\atiicdxx.dat
2009-10-16 23:41 . 2009-10-16 23:41	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\Malwarebytes
2009-10-16 23:41 . 2009-10-16 23:41	--------	d-----w-	c:\programdata\Malwarebytes
2009-10-16 23:03 . 2009-10-16 23:03	--------	d-----w-	c:\program files\Java
2009-10-15 21:08 . 2009-10-15 21:08	--------	d-----w-	c:\program files\Trend Micro
2009-10-14 19:49 . 2009-10-14 19:49	--------	d-----w-	c:\users\Eigenaar\AppData\Local\Microsoft Games
2009-10-14 19:31 . 2009-10-14 19:31	--------	d-sh--w-	c:\windows\system32\%APPDATA%
2009-10-14 19:06 . 2009-10-14 19:06	--------	d-----w-	c:\program files\Microsoft Silverlight
2009-10-14 17:15 . 2009-08-27 05:22	916480	----a-w-	c:\windows\system32\wininet.dll
2009-10-14 17:14 . 2009-08-27 03:42	133632	----a-w-	c:\windows\system32\ieUnatt.exe
2009-10-14 17:14 . 2009-08-27 05:17	109056	----a-w-	c:\windows\system32\iesysprep.dll
2009-10-14 17:14 . 2009-08-27 05:17	71680	----a-w-	c:\windows\system32\iesetup.dll
2009-10-14 16:36 . 2009-08-04 12:34	3548216	----a-w-	c:\windows\system32\ntoskrnl.exe
2009-10-14 16:36 . 2009-08-04 12:34	3600456	----a-w-	c:\windows\system32\ntkrnlpa.exe
2009-10-14 16:23 . 2009-09-04 11:41	60928	----a-w-	c:\windows\system32\msasn1.dll
2009-10-14 16:21 . 2009-09-10 16:48	218624	----a-w-	c:\windows\system32\msv1_0.dll
2009-10-14 16:20 . 2009-05-08 12:53	604672	----a-w-	c:\windows\system32\WMSPDMOD.DLL
2009-10-14 16:15 . 2009-09-14 09:29	144896	----a-w-	c:\windows\system32\drivers\srv2.sys
2009-10-14 16:15 . 2009-10-14 16:15	--------	d-----w-	c:\users\Eigenaar\AppData\Local\Seven Zip
2009-10-12 19:56 . 2007-03-23 02:05	29272	----a-r-	c:\windows\system32\AdobePDF.dll
2009-10-08 18:15 . 2009-06-22 18:01	112128	----a-w-	c:\windows\system32\drivers\ewusbnet.sys
2009-10-08 18:15 . 2009-06-22 17:38	102912	----a-w-	c:\windows\system32\drivers\ewusbmdm.sys
2009-10-08 18:15 . 2009-06-22 17:26	100736	----a-w-	c:\windows\system32\drivers\ewusbdev.sys
2009-10-08 18:15 . 2007-08-09 02:06	23424	----a-w-	c:\windows\system32\drivers\ewdcsc.sys
2009-10-08 18:14 . 2009-10-08 18:17	--------	d-----w-	c:\program files\Mobile Partner
2009-10-06 18:06 . 2009-08-07 02:24	44768	----a-w-	c:\windows\system32\wups2.dll
2009-10-06 18:06 . 2009-08-07 02:24	53472	----a-w-	c:\windows\system32\wuauclt.exe
2009-10-06 18:06 . 2009-08-07 02:23	1929952	----a-w-	c:\windows\system32\wuaueng.dll
2009-10-06 18:06 . 2009-08-07 01:45	2421760	----a-w-	c:\windows\system32\wucltux.dll
2009-10-06 18:05 . 2009-08-07 02:24	35552	----a-w-	c:\windows\system32\wups.dll
2009-10-06 18:05 . 2009-08-07 02:23	575704	----a-w-	c:\windows\system32\wuapi.dll
2009-10-06 18:05 . 2009-08-07 01:44	87552	----a-w-	c:\windows\system32\wudriver.dll
2009-10-06 18:05 . 2009-08-06 17:23	171608	----a-w-	c:\windows\system32\wuwebv.dll
2009-10-06 18:05 . 2009-08-06 16:44	33792	----a-w-	c:\windows\system32\wuapp.exe
2009-10-02 16:17 . 2009-10-01 08:29	195440	------w-	c:\windows\system32\MpSigStub.exe
2009-09-30 20:16 . 2009-09-30 20:16	--------	d-----w-	c:\programdata\Office Genuine Advantage
2009-09-28 11:39 . 2009-09-28 11:39	--------	d-----w-	c:\users\Eigenaar\EurekaLog
2009-09-28 11:37 . 2009-09-28 11:40	--------	d-----w-	c:\users\Eigenaar\AppData\Local\Cimaware
2009-09-28 11:30 . 2009-09-28 11:30	--------	d-----w-	c:\users\Eigenaar\Office Genuine Advantage
2009-09-27 21:43 . 2009-09-27 21:43	--------	d-----w-	c:\users\Eigenaar\AppData\Local\Microsoft Help
2009-09-26 08:21 . 2009-09-26 08:21	--------	d-----w-	c:\program files\BitTorrent
2009-09-25 22:01 . 2009-09-25 22:01	--------	d-----w-	c:\users\Default\AppData\Local\Microsoft Help
2009-09-25 16:55 . 2009-10-25 06:29	--------	d-----w-	c:\users\Eigenaar\Tracing
2009-09-25 16:43 . 2009-10-14 19:31	--------	d-----w-	c:\program files\Microsoft
2009-09-25 16:42 . 2009-09-25 16:42	--------	d-----w-	c:\program files\Windows Live SkyDrive
2009-09-25 16:42 . 2009-10-15 23:27	--------	d-----w-	c:\program files\Windows Live
2009-09-25 16:37 . 2009-09-25 16:37	--------	d-----w-	c:\program files\Common Files\Windows Live

.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-25 06:33 . 2008-01-21 06:47	674480	----a-w-	c:\windows\system32\perfh013.dat
2009-10-25 06:33 . 2008-01-21 06:47	130098	----a-w-	c:\windows\system32\perfc013.dat
2009-10-24 20:46 . 2008-08-13 09:34	2037	----a-w-	c:\windows\bthservsdp.dat
2009-10-24 06:50 . 2009-09-23 08:28	--------	d-----w-	c:\program files\veiligheidspakket
2009-10-23 10:24 . 2009-09-07 07:50	--------	d-----w-	c:\programdata\Microsoft Help
2009-10-23 09:52 . 2009-09-07 08:55	110776	----a-w-	c:\users\Eigenaar\AppData\Local\GDIPFONTCACHEV1.DAT
2009-10-23 09:14 . 2006-11-02 12:37	--------	d-----w-	c:\program files\MSBuild
2009-10-23 06:18 . 2008-08-13 09:28	--------	d--h--w-	c:\program files\InstallShield Installation Information
2009-10-23 06:17 . 2008-08-13 09:28	319456	----a-w-	c:\windows\DIFxAPI.dll
2009-10-22 22:49 . 2009-09-07 08:04	--------	d-----w-	c:\program files\ATI Technologies
2009-10-16 23:00 . 2008-08-13 09:13	--------	d-----w-	c:\program files\Google
2009-10-16 18:58 . 2008-08-13 12:17	--------	d-----w-	c:\programdata\FLEXnet
2009-10-14 19:20 . 2006-11-02 11:18	--------	d-----w-	c:\program files\Windows Mail
2009-10-14 16:17 . 2009-09-07 07:52	--------	d-----w-	c:\program files\Activation Assistant for the 2007 Microsoft Office suites
2009-09-25 22:03 . 2009-09-07 07:51	--------	d-----w-	c:\program files\Microsoft Works
2009-09-24 21:25 . 2009-09-07 08:10	--------	d-----w-	c:\program files\DivX
2009-09-24 21:24 . 2009-09-24 21:24	--------	d-----w-	c:\program files\Common Files\DivX Shared
2009-09-23 13:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Calendar
2009-09-23 13:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Sidebar
2009-09-23 13:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Journal
2009-09-23 13:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Collaboration
2009-09-23 13:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Photo Gallery
2009-09-23 13:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Defender
2009-09-23 10:42 . 2009-09-23 10:42	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\Uniblue
2009-09-23 09:26 . 2009-09-23 09:26	--------	d-----w-	c:\program files\MSXML 4.0
2009-09-23 08:44 . 2009-09-23 08:44	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\F-Secure
2009-09-23 08:39 . 2009-09-23 08:29	33920	----a-w-	c:\windows\system32\drivers\fsbts.sys
2009-09-23 08:38 . 2009-09-07 08:13	--------	d-----w-	c:\programdata\McAfee
2009-09-23 08:31 . 2009-09-07 08:14	--------	d-----w-	c:\program files\McAfee
2009-09-23 08:28 . 2009-09-23 08:25	--------	d-----w-	c:\programdata\f-secure
2009-09-23 08:27 . 2009-09-23 08:26	--------	d-----w-	c:\programdata\fssg
2009-09-23 08:27 . 2009-09-07 08:15	--------	d-----w-	c:\programdata\SiteAdvisor
2009-09-23 07:27 . 2009-09-23 07:27	--------	d-----w-	c:\program files\Cisco
2009-09-23 07:27 . 2009-09-23 07:27	--------	d-----w-	c:\program files\Common Files\Intel
2009-09-23 07:27 . 2009-09-23 07:27	--------	d-----w-	c:\programdata\Intel
2009-09-23 07:26 . 2009-09-23 07:26	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\Intel
2009-09-23 07:23 . 2009-09-23 07:23	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\InstallShield
2009-09-14 09:19 . 2009-09-14 09:19	--------	d-----w-	c:\program files\Sitecom
2009-09-14 06:17 . 2009-09-14 06:17	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\DivX
2009-09-12 17:54 . 2009-09-12 16:46	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\Sony Corporation
2009-09-12 16:49 . 2009-09-12 16:49	--------	d-----w-	c:\users\Eigenaar\AppData\Roaming\ATI
2009-09-12 16:47 . 2009-09-12 16:47	0	---ha-r-	c:\windows\system32\drivers\Sony_VGN-FW21E.mrk
2009-09-07 08:51 . 2009-09-07 08:51	--------	d-sh--we	c:\programdata\Sjablonen
2009-09-07 08:51 . 2009-09-07 08:51	--------	d-sh--we	c:\programdata\Menu Start
2009-09-07 08:51 . 2009-09-07 08:51	--------	d-sh--we	c:\programdata\Favorieten
2009-09-07 08:51 . 2009-09-07 08:51	--------	d-sh--we	c:\programdata\Documenten
2009-09-07 08:51 . 2009-09-07 08:51	--------	d-sh--we	c:\programdata\Bureaublad
2009-09-07 08:37 . 2008-08-13 12:18	--------	d-----w-	c:\programdata\Sony Corporation
2009-09-07 08:30 . 2009-09-07 08:30	--------	d-----w-	c:\programdata\Roaming
2009-09-07 08:29 . 2008-08-13 09:25	--------	d-----w-	c:\program files\Intel
2009-09-07 08:29 . 2009-09-07 08:29	--------	d-----w-	c:\program files\Common Files\ArcSoft
2009-09-07 08:29 . 2009-09-07 08:29	--------	d-----w-	c:\program files\ArcSoft
2009-09-07 08:29 . 2008-08-13 09:28	--------	d-----w-	c:\program files\Common Files\InstallShield
2009-09-07 08:29 . 2008-08-13 12:17	--------	d-----w-	c:\program files\Sony
2009-09-07 08:25 . 2008-08-13 12:13	--------	d-----w-	c:\program files\Common Files\Sony Shared
2009-09-07 08:22 . 2009-09-07 08:22	--------	d-----w-	c:\program files\Skype
2009-09-07 08:22 . 2009-09-07 08:22	--------	d-----w-	c:\program files\Common Files\Skype
2009-09-07 08:22 . 2009-09-07 08:22	--------	d-----w-	c:\programdata\Skype
2009-09-07 08:22 . 2009-09-07 08:22	--------	d-----w-	c:\programdata\Uninstall
2009-09-07 08:22 . 2009-09-07 08:22	--------	d-----w-	c:\programdata\Sonic
2009-09-07 08:22 . 2009-09-07 08:21	--------	d-----w-	c:\program files\Common Files\Roxio Shared
2009-09-07 08:22 . 2009-09-07 08:06	--------	d-----w-	c:\program files\Common Files\PX Storage Engine
2009-09-07 08:22 . 2009-09-07 08:22	--------	d-----w-	c:\program files\Roxio
2009-09-07 08:21 . 2009-09-07 08:21	--------	d-----w-	c:\program files\Common Files\Sonic Shared
2009-09-07 08:05 . 2009-09-07 08:05	--------	d-----w-	c:\program files\Picasa2
2009-09-07 08:05 . 2009-09-07 08:05	--------	d-----w-	c:\program files\Google BAE
2009-09-07 08:04 . 2009-09-07 08:04	--------	d-----w-	c:\program files\ATI
2009-09-07 08:03 . 2009-09-07 08:01	--------	d-----w-	c:\program files\InterVideo
2009-09-07 08:03 . 2009-09-07 08:03	--------	d-----w-	c:\program files\Common Files\InterVideo
2009-09-07 07:58 . 2008-08-13 12:15	--------	d-----w-	c:\program files\Common Files\Adobe
2009-09-07 07:51 . 2009-09-07 07:51	--------	d-----w-	c:\program files\Microsoft.NET
2009-08-29 00:27 . 2009-09-23 08:50	4240384	----a-w-	c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-29 00:14 . 2009-09-23 08:50	28672	----a-w-	c:\windows\system32\Apphlpdm.dll
2009-08-17 21:33 . 2009-08-17 21:33	1193832	----a-w-	c:\windows\system32\FM20.DLL
2009-08-14 16:27 . 2009-09-23 08:55	904776	----a-w-	c:\windows\system32\drivers\tcpip.sys
2009-08-14 15:53 . 2009-09-23 08:55	17920	----a-w-	c:\windows\system32\netevent.dll
2009-08-14 13:49 . 2009-09-23 08:55	9728	----a-w-	c:\windows\system32\TCPSVCS.EXE
2009-08-14 13:49 . 2009-09-23 08:55	17920	----a-w-	c:\windows\system32\ROUTE.EXE
2009-08-14 13:49 . 2009-09-23 08:55	11264	----a-w-	c:\windows\system32\MRINFO.EXE
2009-08-14 13:49 . 2009-09-23 08:55	27136	----a-w-	c:\windows\system32\NETSTAT.EXE
2009-08-14 13:49 . 2009-09-23 08:55	8704	----a-w-	c:\windows\system32\HOSTNAME.EXE
2009-08-14 13:49 . 2009-09-23 08:55	19968	----a-w-	c:\windows\system32\ARP.EXE
2009-08-14 13:49 . 2009-09-23 08:55	10240	----a-w-	c:\windows\system32\finger.exe
2009-08-14 13:48 . 2009-09-23 08:55	30720	----a-w-	c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 13:48 . 2009-09-23 08:55	105984	----a-w-	c:\windows\system32\netiohlp.dll
2009-08-03 13:07 . 2009-08-03 13:07	403816	----a-w-	c:\windows\system32\OGACheckControl.dll
2009-08-03 13:07 . 2009-08-03 13:07	322928	----a-w-	c:\windows\system32\OGAAddin.dll
2009-08-03 13:07 . 2009-08-03 13:07	230768	----a-w-	c:\windows\system32\OGAEXEC.exe
.

(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"Mobile Partner"="c:\program files\Mobile Partner\Mobile Partner.exe" [2009-03-24 114688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2008-01-21 215552]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"F-Secure Manager"="c:\program files\veiligheidspakket\Common\FSM32.EXE" [2008-12-04 182936]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-05-14 61440]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2008-07-15 16:04	98304	----a-w-	c:\windows\System32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Acrobat Speed Launcher.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk
backup=c:\windows\pss\Adobe Acrobat Speed Launcher.lnk.CommonStartup
backupExtension=.CommonStartup

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Acrobat Synchronizer.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Synchronizer.lnk
backup=c:\windows\pss\Adobe Acrobat Synchronizer.lnk.CommonStartup
backupExtension=.CommonStartup

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BTTray.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk
backup=c:\windows\pss\BTTray.lnk.CommonStartup
backupExtension=.CommonStartup

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Sitecom Wireless Utility.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Sitecom Wireless Utility.lnk
backup=c:\windows\pss\Sitecom Wireless Utility.lnk.CommonStartup
backupExtension=.CommonStartup

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):0d,46,ce,75,4f,3c,ca,01

R0 fsbts;fsbts;c:\windows\System32\drivers\fsbts.sys [23-9-2009 9:29 33920]
R1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files\veiligheidspakket\HIPS\drivers\fshs.sys [23-9-2009 9:28 67808]
R1 FSES;F-Secure Email Scanning Driver;c:\windows\System32\drivers\fses.sys [23-9-2009 9:28 35552]
R1 FSFW;F-Secure Firewall Driver;c:\windows\System32\drivers\fsdfw.sys [23-9-2009 9:28 70944]
R1 fsvista;F-Secure Vista Support Driver;c:\program files\veiligheidspakket\Anti-Virus\minifilter\fsvista.sys [23-9-2009 9:28 12384]
R2 regi;regi;c:\windows\System32\drivers\regi.sys [17-4-2007 19:09 11032]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\System32\drivers\btwl2cap.sys [13-8-2008 10:35 29736]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\veiligheidspakket\Anti-Virus\minifilter\fsgk.sys [23-9-2009 9:28 101496]
R3 FSORSPClient;F-Secure ORSP Client;c:\program files\veiligheidspakket\ORSP Client\fsorsp.exe [23-9-2009 9:28 55904]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [28-5-2009 21:41 4233728]
R3 SFEP;Sony Firmware Extension Parser;c:\windows\System32\drivers\SFEP.sys [13-8-2008 19:46 9344]
S2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE [30-3-2009 15:28 1533808]
S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\System32\drivers\ewusbdev.sys [8-10-2009 19:15 100736]
S3 netr28u;RT2870 USB Wireless LAN Card Driver for Vista;c:\windows\System32\drivers\netr28u.sys [14-9-2009 10:19 655872]
S4 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6;c:\program files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [10-9-2007 23:45 124832]
S4 F-Secure Filter;F-Secure File System Filter;c:\program files\veiligheidspakket\Anti-Virus\win2k\fsfilter.sys [23-9-2009 9:28 39776]
S4 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files\veiligheidspakket\Anti-Virus\win2k\fsrec.sys [23-9-2009 9:28 25184]
S4 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [7-9-2009 9:12 29744]
S4 gupdate1ca3d5d66aae769;Google Updateservice (gupdate1ca3d5d66aae769);c:\program files\Google\Update\GoogleUpdate.exe [24-9-2009 22:24 133104]
S4 NSUService;NSUService;c:\program files\Sony\Network Utility\NSUService.exe [7-9-2009 9:29 299008]
S4 RaAutoInstSrv_RT2870;RT2870 AutoInstall Service;c:\program files\Sitecom\RT2870 Flash Install Wireless LAN Card\AutoInstSvc\RaAutoInstSrv.exe [14-9-2009 10:19 20480]
S4 SOHCImp;VAIO Media plus Content Importer;c:\program files\Sony\VAIO Media plus\SOHCImp.exe [7-9-2009 9:26 103712]
S4 SOHDms;VAIO Media plus Digital Media Server;c:\program files\Sony\VAIO Media plus\SOHDms.exe [7-9-2009 9:26 353568]
S4 SOHDs;VAIO Media plus Device Searcher;c:\program files\Sony\VAIO Media plus\SOHDs.exe [7-9-2009 9:26 62752]
S4 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [13-8-2008 13:19 411488]
S4 VCFw;VAIO Content Folder Watcher;c:\program files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [20-6-2008 7:56 415744]
S4 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [7-9-2009 9:23 337184]
S4 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [7-9-2009 9:24 83232]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs	REG_MULTI_SZ   	BthServ
WindowsMobile	REG_MULTI_SZ   	wcescomm rapimgr
LocalServiceRestricted	REG_MULTI_SZ   	WcesComm RapiMgr
.
Inhoud van de 'Gedeelde Taken' map

2009-10-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-09-24 21:24]

2009-10-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-09-24 21:24]

2009-10-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3047815093-355884313-3645829717-1000Core.job
- c:\users\Eigenaar\AppData\Local\Google\Update\GoogleUpdate.exe [2009-10-02 15:37]

2009-10-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3047815093-355884313-3645829717-1000UA.job
- c:\users\Eigenaar\AppData\Local\Google\Update\GoogleUpdate.exe [2009-10-02 15:37]

2009-10-25 c:\windows\Tasks\Scheduled scanning task.job
- c:\progra~1\VEILIG~1\ANTI-V~1\fsav.exe [2009-09-23 13:57]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.nu.nl/
IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
LSP: c:\program files\veiligheidspakket\FSPS\program\FSLSP.DLL
.
- - - - ORPHANS VERWIJDERD - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-25 07:56
Windows 6.0.6002 Service Pack 2 NTFS

scannen van verborgen processen ... 

scannen van verborgen autostart items ... 

scannen van verborgen bestanden ... 

Scan succesvol afgerond
verborgen bestanden: 0

**************************************************************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------

- - - - - - - > 'winlogon.exe'(800)
c:\program files\veiligheidspakket\FWES\Program\fsdc32.dll

- - - - - - - > 'lsass.exe'(712)
c:\program files\veiligheidspakket\FWES\Program\fsdc32.dll

- - - - - - - > 'csrss.exe'(584)
c:\program files\veiligheidspakket\FWES\Program\fsdc32.dll

- - - - - - - > 'csrss.exe'(668)
c:\program files\veiligheidspakket\FWES\Program\fsdc32.dll
.
Voltooingstijd: 2009-10-25  7:58
ComboFix-quarantined-files.txt  2009-10-25 06:58

Pre-Run: 226.983.383.040 bytes beschikbaar
Post-Run: 227.860.844.544 bytes beschikbaar

- - End Of File - - 3F6362608D21BBCFD727E9B9AEB4C7BB