ComboFix 09-11-22.02 - Compaq_Eigenaar 22-11-2009 23:09.2.2 - x86
Microsoft Windows XP Home Edition  5.1.2600.2.1252.31.1043.18.1023.749 [GMT 1:00]
Gestart vanuit: c:\documents and settings\Compaq_Eigenaar\Mijn documenten\Downloads\ComboFix.exe
AV: Norton Internet Security *On-access scanning enabled* (Outdated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
.

((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Voorgaande Run -------
.
c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat
c:\documents and settings\Compaq_Eigenaar.MARK\Local Settings\Temporary Internet Files\tor3D7.tmp
c:\program files\Fast Browser Search\IE\FBStoolbar.exe
c:\windows\system32\drivers\pciide.sys
c:\windows\system32\ps2.bat

-- Voorgaande Run --

Besmet exemplaar van c:\windows\system32\kernel32.dll werd aangetroffen en gedesinfecteerd  
Hersteld exemplaar van - c:\windows\ERDNT\cache\kernel32.dll 

--------

.
((((((((((((((((((((   Bestanden Gemaakt van 2009-10-22 to 2009-11-22  ))))))))))))))))))))))))))))))
.

2009-11-21 01:47 . 2004-08-04 12:00	95360	----a-w-	c:\windows\system32\drivers\atapi.sys
2009-11-21 01:47 . 2004-08-04 12:00	95360	----a-w-	c:\windows\system32\dllcache\atapi.sys
2009-11-16 18:00 . 2009-11-16 18:00	--------	d-----w-	C:\temp
2009-11-16 17:47 . 2009-11-16 17:47	7680	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall\Microsoft Office Professional Edition 2003\30000000bb100002h\WINWORD.EXE
2009-11-11 23:09 . 2009-11-11 23:09	7680	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall\Microsoft Office Professional Edition 2003\4000005f00002h\HPZSTC09.exe
2009-11-11 23:09 . 2009-11-11 23:09	7680	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall\Microsoft Office Professional Edition 2003\300000003400002h\dwwin.exe
2009-11-11 23:09 . 2009-11-11 23:09	7680	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall\Microsoft Office Professional Edition 2003\4000003100002h\navw32.exe
2009-11-11 23:09 . 2009-11-11 23:09	7680	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall\Microsoft Office Professional Edition 2003\1000000b00002h\rundll32.exe
2009-11-11 23:09 . 2009-11-11 23:09	7680	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall\Microsoft Office Professional Edition 2003\4ad000006400003h\cmd.exe
2009-11-11 23:09 . 2009-11-11 23:09	7680	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall\Microsoft Office Professional Edition 2003\300000009a700002h\EXCEL.EXE
2009-11-11 22:58 . 2009-11-11 22:58	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Thinstall
2009-11-09 20:31 . 2009-11-09 20:31	--------	d-----w-	c:\windows\F07AE5AB516C4CEBA0AAAD083B9182C6.TMP
2009-11-09 16:44 . 2004-02-04 09:27	49536	----a-w-	c:\windows\system32\drivers\tiehdusb.sys
2009-11-09 16:44 . 2004-01-28 14:03	21456	----a-w-	c:\windows\system32\drivers\SilvrLnk.sys
2009-11-09 16:44 . 2009-11-09 16:44	--------	d-----w-	c:\program files\TI Education
2009-11-09 16:44 . 2009-11-09 16:44	--------	d-----w-	c:\program files\Common Files\TI Shared
2009-11-09 16:43 . 2009-11-09 20:31	--------	d-----w-	c:\program files\Common Files\Wise Installation Wizard
2009-11-03 22:06 . 2009-11-03 22:06	--------	d--h--w-	c:\windows\PIF
2009-11-03 13:41 . 2009-11-03 13:41	--------	d-----w-	c:\program files\Microsoft Silverlight
2009-11-02 21:25 . 2009-11-02 21:25	--------	d-----r-	C:\AHCache
2009-11-02 21:21 . 2009-11-02 21:21	--------	d-sh--w-	c:\documents and settings\Compaq_Eigenaar\IECompatCache
2009-11-02 21:20 . 2009-11-02 21:20	--------	d-sh--w-	c:\documents and settings\Compaq_Eigenaar\PrivacIE
2009-11-02 21:19 . 2009-11-02 21:19	--------	d-sh--w-	c:\documents and settings\Compaq_Eigenaar\IETldCache
2009-11-02 21:04 . 2009-11-02 21:06	--------	d-----w-	c:\windows\system32\nl-NL
2009-11-02 20:44 . 2009-10-02 04:44	92160	------w-	c:\windows\system32\dllcache\iecompat.dll
2009-11-02 20:44 . 2009-08-29 08:00	12800	------w-	c:\windows\system32\dllcache\xpshims.dll
2009-11-02 20:44 . 2009-08-29 08:00	1985536	------w-	c:\windows\system32\dllcache\iertutil.dll
2009-11-02 20:44 . 2009-08-29 08:00	594432	------w-	c:\windows\system32\dllcache\msfeeds.dll
2009-11-02 20:44 . 2009-08-29 08:00	246272	------w-	c:\windows\system32\dllcache\ieproxy.dll
2009-11-02 20:44 . 2009-08-29 08:00	55296	------w-	c:\windows\system32\dllcache\msfeedsbs.dll
2009-11-02 20:44 . 2009-08-29 08:00	11069440	------w-	c:\windows\system32\dllcache\ieframe.dll
2009-11-01 22:22 . 2009-11-01 22:23	--------	d-----w-	C:\7a7aa964ead3be53b93e75
2009-11-01 22:22 . 2009-11-02 12:01	--------	d-----w-	c:\windows\system32\drivers\UMDF
2009-11-01 22:15 . 2009-11-01 22:21	--------	d-----w-	C:\d394b09028660ede243f01cd
2009-11-01 20:44 . 2009-11-01 20:45	--------	d-----w-	c:\documents and settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-11-01 20:43 . 2009-11-01 20:43	--------	d-----w-	c:\program files\Bonjour
2009-11-01 19:42 . 2009-11-01 19:42	0	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\FrostWire\.NetworkShare\Incomplete\T-4506256-LimeWireWin4.16.6.exe
2009-11-01 19:29 . 2009-11-18 18:13	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\FrostWire
2009-11-01 19:28 . 2009-11-22 18:45	--------	d-----w-	c:\program files\Mozilla Firefox 3.6 Beta 1
2009-11-01 19:28 . 2009-11-01 19:29	--------	d-----w-	c:\program files\FrostWire
2009-11-01 18:55 . 2009-11-01 18:55	--------	d-----w-	c:\windows\system32\wbem\Repository
2009-11-01 18:11 . 2009-11-01 18:54	--------	d-----w-	c:\program files\Vista Drive Icon
2009-11-01 18:03 . 2009-11-01 18:54	--------	d-----w-	c:\program files\Taskbar Shuffle
2009-11-01 17:55 . 2009-11-01 17:55	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\TuneUp Software
2009-11-01 17:55 . 2009-11-01 18:54	--------	d-----w-	c:\program files\TuneUp Utilities 2010
2009-11-01 17:54 . 2009-11-01 17:55	--------	d-----w-	c:\documents and settings\All Users\Application Data\TuneUp Software
2009-11-01 17:50 . 2009-11-01 18:54	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\IconTweaker
2009-11-01 17:50 . 2009-11-01 17:50	--------	d-----w-	c:\documents and settings\All Users\Application Data\IconTweaker
2009-11-01 17:50 . 2009-11-01 18:54	--------	d-----w-	c:\program files\IconTweaker
2009-10-29 17:21 . 2004-10-27 14:47	40960	------w-	c:\windows\system32\ChCfg.exe
2009-10-29 17:21 . 2009-10-29 17:21	--------	d-----w-	c:\program files\Realtek
2009-10-29 17:21 . 2005-04-16 21:20	487424	------w-	c:\windows\RtlExUpd.dll
2009-10-28 22:49 . 2009-10-28 22:49	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Local Settings\Application Data\Unity
2009-10-28 19:58 . 2009-10-28 19:58	79144	----a-w-	c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.2.25\SetupAdmin.exe
2009-10-27 21:00 . 2009-10-27 21:00	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Malwarebytes
2009-10-27 21:00 . 2009-09-10 13:54	38224	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-27 20:59 . 2009-09-10 13:53	19160	----a-w-	c:\windows\system32\drivers\mbam.sys
2009-10-27 19:31 . 2009-11-22 19:17	--------	d--h--r-	c:\documents and settings\Compaq_Eigenaar\Onlangs geopend
2009-10-27 16:52 . 2009-11-01 22:22	--------	d-----w-	c:\windows\system32\LogFiles
2009-10-25 19:18 . 2009-10-25 19:18	411368	----a-w-	c:\windows\system32\deploytk.dll
2009-10-25 19:17 . 2009-10-25 19:17	152576	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Sun\Java\jre1.6.0_16\lzma.dll
2009-10-24 22:23 . 2009-11-11 17:14	1	----a-w-	c:\documents and settings\Compaq_Eigenaar\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-10-24 22:17 . 2009-10-24 22:17	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\OpenOffice.org

.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-22 22:04 . 2008-12-23 18:53	--------	d-----w-	c:\program files\BitComet
2009-11-19 12:06 . 2005-01-02 00:10	--------	d-----w-	c:\program files\Common Files\Symantec Shared
2009-11-15 18:27 . 2008-12-23 23:16	--------	d-----w-	c:\program files\PokerStars
2009-11-13 14:06 . 2008-12-22 11:26	72496	----a-w-	c:\documents and settings\Compaq_Eigenaar\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-11-13 10:06 . 2009-04-13 19:44	--------	d-----w-	c:\documents and settings\All Users\Application Data\Microsoft Help
2009-11-09 19:38 . 2000-08-12 15:13	16560	----a-w-	C:\CalcText.exe
2009-11-09 17:51 . 2004-12-03 17:15	54584	----a-w-	c:\windows\system32\perfc013.dat
2009-11-09 17:51 . 2004-12-03 17:15	366162	----a-w-	c:\windows\system32\perfh013.dat
2009-11-02 12:02 . 2009-11-02 12:02	0	---ha-w-	c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
2009-11-02 12:02 . 2009-11-02 12:02	0	---ha-w-	c:\windows\system32\drivers\MsftWdf_user_01_07_00.Wdf
2009-11-01 22:41 . 2009-10-21 19:26	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Apple Computer
2009-11-01 22:30 . 2009-01-13 19:22	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Nokia
2009-11-01 20:45 . 2005-01-01 23:54	--------	d-----w-	c:\program files\iTunes
2009-11-01 20:44 . 2005-01-01 23:54	--------	d-----w-	c:\program files\iPod
2009-11-01 20:42 . 2005-01-01 23:54	--------	d-----w-	c:\program files\QuickTime
2009-11-01 20:39 . 2009-01-12 15:09	--------	d-----w-	c:\program files\Common Files\Apple
2009-11-01 19:39 . 2008-12-29 22:13	--------	d-----w-	c:\program files\Common Files\Adobe
2009-10-29 17:21 . 2005-01-01 23:54	--------	d--h--w-	c:\program files\InstallShield Installation Information
2009-10-28 16:05 . 2008-12-24 16:32	--------	d-----w-	c:\program files\Hewlett-Packard
2009-10-27 21:00 . 2009-05-04 22:29	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2009-10-23 16:46 . 2009-01-28 18:29	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\DAEMON Tools Lite
2009-10-23 16:45 . 2009-01-29 09:11	--------	d-----w-	c:\program files\DAEMON Tools Lite
2009-10-23 16:45 . 2009-10-23 16:45	--------	d-----w-	c:\program files\DAEMON Tools Toolbar
2009-10-23 16:40 . 2009-10-23 16:40	691696	----a-w-	c:\windows\system32\drivers\sptd.sys
2009-10-23 11:28 . 2005-01-02 00:11	--------	d-----w-	c:\program files\Norton Internet Security
2009-10-23 11:00 . 2005-01-02 00:10	--------	d-----w-	c:\program files\Symantec
2009-10-23 11:00 . 2009-10-23 11:00	--------	d-----w-	c:\program files\SymNetDrv
2009-10-22 20:47 . 2009-10-22 20:47	0	---ha-w-	c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-10-22 20:47 . 2009-10-22 20:47	0	---ha-w-	c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-10-22 20:34 . 2009-01-13 19:19	--------	d-----w-	c:\documents and settings\All Users\Application Data\Installations
2009-10-22 20:25 . 2009-10-22 20:34	33700216	----a-w-	c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_dut_web.exe
2009-10-21 19:27 . 2009-10-21 19:26	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar\Application Data\Symantec
2009-10-21 19:27 . 2009-10-21 19:27	1961	--sha-r-	c:\windows\system32\drivers\103C_HP_CPC_PX711AA-ABH SR1449NL NL520_YC_0Pres_QCZB524_E52NLheRET2_47_IPuffer2_SASUSTeK Computer INC._V1.xx_B3.21_T050429_WXH2_L413_M1024_J250_7Intel_8Pentium 4_93.2_#050730_N10EC8139_Z11C1048C_G10DE0141.MRK
2009-10-21 12:13 . 2009-09-08 13:03	1	----a-w-	c:\documents and settings\Compaq_Eigenaar.MARK\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-10-20 14:44 . 2009-05-04 22:47	--------	d-----w-	c:\program files\Google
2009-10-19 14:37 . 2009-05-14 20:09	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar.MARK\Application Data\AdobeUM
2009-10-19 14:05 . 2009-06-21 20:18	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar.MARK\Application Data\Nokia
2009-10-18 23:23 . 2009-10-18 09:30	168432	----a-w-	c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2009-10-18 16:58 . 2009-10-18 16:57	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar.MARK\Application Data\Multi File Downloader
2009-10-18 14:54 . 2009-03-31 13:39	--------	d-----w-	c:\program files\Windows Live Safety Center
2009-10-18 12:25 . 2009-08-10 15:39	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar.MARK\Application Data\vlc
2009-10-16 21:17 . 2009-05-04 22:09	72736	----a-w-	c:\documents and settings\Compaq_Eigenaar.MARK\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-10-16 21:12 . 2009-01-13 19:21	--------	d-----w-	c:\program files\Common Files\Nokia
2009-10-16 21:12 . 2009-01-13 19:20	--------	d-----w-	c:\program files\Nokia
2009-10-16 21:12 . 2009-10-16 21:12	--------	d-----w-	c:\documents and settings\All Users\Application Data\NokiaMusic
2009-10-10 21:54 . 2009-10-04 22:57	--------	d-----w-	c:\program files\Animation GIF Wizard
2009-10-10 21:54 . 2009-10-06 13:42	--------	d-----w-	c:\program files\Eusing Free Registry Cleaner
2009-10-06 21:44 . 2009-10-06 21:44	95232	----a-w-	c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\pcswpcsi.exe
2009-10-06 21:44 . 2009-10-06 21:44	8192	----a-w-	c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstCCD.exe
2009-10-06 21:44 . 2009-10-06 21:44	61440	----a-w-	c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2009-10-06 21:44 . 2009-10-06 21:44	10240	----a-w-	c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCS.exe
2009-10-06 21:44 . 2009-10-06 21:45	33700216	----a-w-	c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_dut.exe
2009-10-06 13:54 . 2009-09-15 19:45	--------	d-----w-	c:\program files\MSN Games
2009-10-06 12:32 . 2009-04-13 20:30	--------	d-----w-	c:\program files\Microsoft Works
2009-10-01 18:48 . 2009-10-01 18:48	--------	d-----w-	c:\documents and settings\All Users\Application Data\Nokia
2009-10-01 18:47 . 2009-10-01 18:47	--------	d-----w-	c:\program files\MSXML 6.0
2009-09-30 16:58 . 2009-05-24 09:31	--------	d-----w-	c:\documents and settings\Compaq_Eigenaar.MARK\Application Data\LimeWirePlus
2009-09-16 10:30 . 2009-01-27 13:29	737280	----a-w-	c:\windows\iun6002.exe
2009-09-11 14:37 . 2004-08-04 12:00	133632	----a-w-	c:\windows\system32\msv1_0.dll
2009-09-04 20:47 . 2004-08-04 12:00	58880	----a-w-	c:\windows\system32\msasn1.dll
2009-08-29 08:00 . 2004-08-04 12:00	916480	----a-w-	c:\windows\system32\wininet.dll
2009-08-26 08:16 . 2004-08-04 12:00	247326	----a-w-	c:\windows\system32\strmdll.dll
2008-06-30 12:44 . 2009-01-29 09:09	324976	----a-w-	c:\program files\mozilla firefox\components\coFFPlgn.dll
.

(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-08-04 1667584]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-25 149280]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2004-09-29 4603904]
"KBD"="c:\hp\KBD\KBD.EXE" [2003-02-11 61440]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2007-02-21 58984]
"URLLSTCK.exe"="c:\program files\Norton Internet Security\UrlLstCk.exe" [2004-08-31 33936]
"PS2"="c:\windows\system32\ps2.exe" [2003-09-12 98304]
"LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-14 253952]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2004-12-14 663552]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-23 198160]
"Symantec NetDriver Monitor"="c:\progra~1\SYMNET~1\SNDMon.exe" [2009-10-23 100056]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-05 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-28 141600]
"Snelkoppeling naar eigenschappenvenster voor High Definition Audio"="HDAudPropShortcut.exe" - c:\windows\system32\Hdaudpropshortcut.exe [2004-03-17 61952]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2004-09-29 921600]
"AGRSMMSG"="AGRSMMSG.exe" - c:\windows\AGRSMMSG.exe [2004-06-29 88363]

c:\documents and settings\Compaq_Eigenaar\Menu Start\Programma's\Opstarten\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^Compaq_Eigenaar^Menu Start^Programma's^Opstarten^OpenOffice.org 3.1 .lnk]
path=c:\documents and settings\Compaq_Eigenaar\Menu Start\Programma's\Opstarten\OpenOffice.org 3.1 .lnk
backup=c:\windows\pss\OpenOffice.org 3.1 .lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"iPodService"=3 (0x3)

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\BitComet\\BitComet.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\FrostWire\\FrostWire.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23-10-2009 17:40 691696]
S3 PRISM_A00;Wireless PCI 802.11b/g adapter WN4201B Driver;c:\windows\system32\drivers\PCTELSAP.SYS [2-1-2005 0:46 306560]
.
Inhoud van de 'Gedeelde Taken' map

2009-11-01 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2005-01-02 c:\windows\Tasks\Symantec NetDetect.job
- c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2005-01-02 17:27]

2009-11-22 c:\windows\Tasks\User_Feed_Synchronization-{FBFE7C7D-E07C-4E46-B666-BC77D31D33E9}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 03:31]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.ask.com?o=14200&l=dis=dis
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=Q105&bd=presario&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=Q105&bd=presario&pf=desktop
uInternet Settings,ProxyOverride = *.local
IE: &D&ownload &with BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload all video with BitComet - c:\program files\BitComet\BitComet.exe/AddVideo.htm
IE: &D&ownload all with BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Compaq_Eigenaar\Application Data\Mozilla\Firefox\Profiles\5ggp16yj.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=19&q=
FF - prefs.js: browser.search.selectedEngine - Fast Browser Search
FF - prefs.js: browser.startup.homepage - hxxp://www.44tips.com/bookmarks/?na=1&session={%22session_key%22%3A%223.JUE6H_fDxS_VAT_Kx5c5_Q__.86400.1258470000-1660121135%22%2C%22uid%22%3A1660121135%2C%22expires%22%3A1258470000%2C%22secret%22%3A%22ylxDDn_Lc1hgq9Dwk8ZGYQ__%22%2C%22base_domain%22%3A%2244tips.com%22%2C%22sig%22%3A%223fb8dcd64fef9494e16eaf634c57cf43%22}#
FF - prefs.js: keyword.URL - hxxp://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=19&tid={164B302A-5D73-2001-CBDA-ED489EAFD718}&q=
FF - component: c:\documents and settings\Compaq_Eigenaar\Application Data\Mozilla\Firefox\Profiles\5ggp16yj.default\extensions\{9e1d7c80-43d1-11db-b0de-0800200c9a66}\components\TSHelper.dll
FF - plugin: c:\documents and settings\Compaq_Eigenaar\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("javascript.options.mem.gc_frequency",   1600);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.formfill.debug",            false);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.formfill.agedWeight",       2);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.formfill.bucketSize",       1);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.formfill.boundaryWeight",   25);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("browser.formfill.prefixWeight",     5);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox 3.6 Beta 1\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - ORPHANS VERWIJDERD - - - -

AddRemove-UnityWebPlayer - c:\documents and settings\Compaq_Eigenaar\Local Settings\Application Data\Unity\WebPlayer\Uninstall.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-22 23:21
Windows 5.1.2600 Service Pack 2 NTFS

scannen van verborgen processen ... 

scannen van verborgen autostart items ... 

scannen van verborgen bestanden ... 

Scan succesvol afgerond
verborgen bestanden: 0

**************************************************************************
.
Voltooingstijd: 2009-11-22 23:24
ComboFix-quarantined-files.txt  2009-11-22 22:23
ComboFix2.txt  2009-09-13 10:37
ComboFix3.txt  2009-05-05 11:01

Pre-Run: 102.401.585.152 bytes beschikbaar
Post-Run: 102.371.864.576 bytes beschikbaar

- - End Of File - - 63755D58C0F34C6DD54C953151A510E4