ComboFix 09-12-18.03 - marc lentz 19-12-2009 13:57:18.1.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.31.1033.18.2038.1640 [GMT 1:00] Gestart vanuit: c:\documents and settings\marc lentz\My Documents\Downloads\KittyFix.exe AV: ESET NOD32 antivirus systeem 2.70 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} * Aanwezig AV is actief . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\90210.exe C:\apnet.exe C:\ErrLog.txt c:\windows\windows_messenger.exe . (((((((((((((((((((( Bestanden Gemaakt van 2009-11-19 to 2009-12-19 )))))))))))))))))))))))))))))) . 2009-12-18 12:01 . 2009-12-18 12:01 -------- d-----w- c:\documents and settings\marc lentz\Application Data\Malwarebytes 2009-12-18 12:01 . 2009-12-03 15:14 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-18 12:01 . 2009-12-18 12:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-12-18 12:01 . 2009-12-03 15:13 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-12-18 12:01 . 2009-12-18 12:01 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-18 11:57 . 2009-12-18 11:57 388096 ----a-r- c:\documents and settings\marc lentz\Application Data\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe 2009-12-18 11:57 . 2009-12-18 11:57 -------- d-----w- c:\program files\TrendMicro 2009-11-20 15:31 . 2009-11-20 15:31 79488 ----a-w- c:\documents and settings\marc lentz\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-19 12:09 . 2009-05-12 21:28 -------- d-----w- c:\documents and settings\marc lentz\Application Data\Skype 2009-12-18 23:10 . 2008-10-28 22:11 -------- d-----w- c:\program files\Steam 2009-12-18 15:46 . 2009-11-06 14:28 -------- d-----w- c:\documents and settings\marc lentz\Application Data\vlc 2009-12-17 19:43 . 2008-11-13 11:50 -------- d-----w- c:\documents and settings\All Users\Application Data\Google Updater 2009-12-17 19:16 . 2009-05-12 21:29 -------- d-----w- c:\documents and settings\marc lentz\Application Data\skypePM 2009-12-09 02:08 . 2008-11-03 22:23 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2009-11-24 11:35 . 2008-10-10 19:42 -------- d-----w- c:\program files\PokerStars 2009-11-23 11:58 . 2008-12-16 14:47 -------- d-----w- c:\program files\Full Tilt Poker 2009-11-14 12:41 . 2009-05-12 21:28 -------- d-----r- c:\program files\Skype 2009-11-14 12:40 . 2009-11-14 12:40 -------- d-----w- c:\program files\Common Files\Skype 2009-11-14 12:40 . 2009-05-12 21:28 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype 2009-11-08 23:26 . 2008-09-23 22:03 -------- d-----w- c:\program files\DivX 2009-11-08 23:26 . 2009-11-08 23:26 -------- d-----w- c:\program files\Common Files\DivX Shared 2009-11-08 23:02 . 2009-06-28 21:20 -------- d-----w- c:\program files\Messenger Plus! Live 2009-11-03 11:07 . 2009-11-03 11:07 135168 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\c\cashanovagetlucky_temp.b71b6ce6d93f57e6e8d79f64bfda39ca.dll 2009-11-03 11:07 . 2009-11-03 11:07 434448 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\c\cashanovafreerangebonus.c80646018f801b82af1a85ac0f07ba46.dll 2009-11-03 11:07 . 2009-11-03 11:07 159744 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\c\cashanovagetlucky.70edc0ef64acff9d67d53ba965b991b4.dll 2009-11-03 11:07 . 2009-11-03 11:07 217360 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\c\cashanovafreerangebonus_temp.598336f9707e832cab943342026367f4.dll 2009-11-03 11:05 . 2009-11-03 11:05 303376 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\m\mermaidsmillions.9379e4aac1e4731bf7922c8c2544bd7a.dll 2009-11-03 11:05 . 2009-11-03 11:05 295184 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\m\mermaidsmillionsxxx.85e8ee4057b7c3d431514729821caee1.dll 2009-11-03 11:05 . 2009-11-03 11:05 119056 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\m\mermaidsbonus.f520937c2ec436ae80b67d9c967dd3f6.dll 2009-11-03 11:01 . 2009-11-03 11:01 45056 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\w\wheelofwealthbonus.273ed6671a16c67a5d50ecde6a66097a.dll 2009-11-03 11:01 . 2009-11-03 11:01 131344 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\b\bonus_threereel_types_1_2.19c24a05687d90864e9a9de516d92124.dll 2009-11-03 11:00 . 2009-11-03 11:00 385024 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\b\bonusblackjack.dab6343a296b066bd5fe18d7c7d9940f.dll 2009-11-03 11:00 . 2009-11-03 11:00 483600 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\h\hilowbonus_tggg.10cdcb3e64c301c60db4d11d2d7781a4.dll 2009-11-03 11:00 . 2009-11-03 11:00 446736 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\h\hilowbonus.ecf70c1bd892c000f22ce30d5b0ba784.dll 2009-11-03 11:00 . 2009-11-03 11:00 958464 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\h\hilowbonus_flightzone.1173d08d2670eede892e3adf07022f08.dll 2009-11-03 10:59 . 2009-11-03 10:59 594192 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\s\snakesandladdersbonus.1b7d7437b87cc53b7a00c4efd2db679d.dll 2009-11-03 10:55 . 2009-11-03 10:55 61440 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\tikimaskbonusgame.0dc1c149f619ef0a72aacd3abdeb0dfb.dll 2009-11-03 10:55 . 2009-11-03 10:55 57344 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\v\volcanobonusgame.1f5cd5f4b800bd1a6e740e08a3119e10.dll 2009-11-03 10:55 . 2009-11-03 10:55 213089 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\b\bigkahuna.769fd4a48b95c8614a738f1cad88bcd5.dll 2009-11-03 10:54 . 2009-11-03 10:54 430352 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\s\simplepickxofyskillbonus.8d56aeea91f0d0bbdf41c578fbf38496.dll 2009-11-03 10:48 . 2009-11-03 10:48 376832 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\a\atlanticcityblackjack.9baef784fe666fb9d90dc331d0239eed.dll 2009-11-03 10:45 . 2009-11-03 10:45 233744 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\s\simplepickuntilbonus_temp.b6b7e588aedb05fa062fb8447406bca9.dll 2009-11-03 10:45 . 2009-11-03 10:45 495888 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\s\simplepickuntilbonus.aa7eb4e3b4774e5cad0d4f8562ca860d.dll 2009-11-03 10:45 . 2009-11-03 10:45 561424 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\s\simplepickuntilbonus_tggg.ca9a61a09a35dc0843cc68f532694746.dll 2009-11-03 10:45 . 2009-11-03 10:45 1056768 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\s\simplepickuntilbonus_flightzone.1f65e9ffaab494fa7dea6b149ec7a671.dll 2009-11-03 10:45 . 2009-11-03 10:45 139264 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\l\levelupvideopokerplugin.d3ee60c36507413ca9ab67247eac5288.dll 2009-11-03 10:45 . 2009-11-03 10:45 290941 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\l\levelupvideopokerxxx.0d52d2ac00db83d9b97c99592ee3aa21.dll 2009-11-03 10:45 . 2009-11-03 10:45 114688 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\l\levelupvideopokergambleplugin.d65fe35ffb2e6dc1b9ea46def3db39dc.dll 2009-11-03 10:45 . 2009-11-03 10:45 237840 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\p\powerpokersuite1_nl.cebfe8812d984716506c6d9d096a5f48.dll 2009-11-03 10:44 . 2009-11-03 10:44 217360 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\v\videopokersuite1.03dd648f567bef124a1d270ad208752a.dll 2009-11-03 10:44 . 2009-11-03 10:44 200704 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\3\3cardpoker.8e73a522a397f174eb628d05f72f1f40.dll 2009-11-03 10:32 . 2009-11-03 10:32 262416 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\transition_temp.c6aaf42b66fa6688c8ea18a671984287.dll 2009-11-03 10:32 . 2009-11-03 10:32 655360 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\transition_flightzone.2d8aa10da872f1ac4a34a2122bf3c4b2.dll 2009-11-03 10:32 . 2009-11-03 10:32 266512 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\transition_tggg.399218aff849d2e187d4554dd62a73b6.dll 2009-11-03 10:32 . 2009-11-03 10:32 421888 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\l\lua51host.65f8dee3181dee3bfc68ab23c9f2782b.dll 2009-11-03 10:32 . 2009-11-03 10:32 225280 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\m\myslot.14d73c530d6c095843c7fbfb86364c4e.dll 2009-11-03 10:32 . 2009-11-03 10:32 679936 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\transition_septgao_09.04686bb06cfe59ecb3f271eb95218422.dll 2009-11-03 10:32 . 2009-11-03 10:32 254224 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\transition.26c3e2ce55c7cca8b63e5e8d7b4627e4.dll 2009-11-03 10:32 . 2009-11-03 10:32 679936 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\transition_wealthspa.5a3f4e96415d8b3050681cdd275f3d88.dll 2009-11-03 10:32 . 2009-11-03 10:32 679936 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\transition_octgao_09.7768fe95f9efff3962c913196fe05f6a.dll 2009-11-03 10:30 . 2009-11-03 10:30 114960 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\type_5reelnormal3_4_5.07db0a5618a0565d7bde7a2766c54711.dll 2009-11-03 10:30 . 2009-11-03 10:30 110864 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\t\type_3reelnormal1_2.6d58a1bcaf1d9165fa0b77fa9598b623.dll 2009-11-03 10:27 . 2009-11-03 10:27 327784 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\m\mpvtabletournamentlobby.fea1be7b63b308e9fdb6e8d4bd356052.dll 2009-11-03 10:27 . 2009-11-03 10:27 303204 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\m\mpvblackjackplugin.49e5f42fbdf0e1e2df5232e5ea419897.dll 2009-11-03 10:27 . 2009-11-03 10:27 311398 ----a-w- c:\documents and settings\All Users\Application Data\MGS\cache\m\mpvblackjacktourxxx.e4ccb563efd75763602af7373fbd8cec.dll 2009-11-03 10:27 . 2009-11-03 10:23 -------- d-----w- c:\documents and settings\All Users\Application Data\MGS 2009-10-29 07:45 . 2004-09-29 18:47 916480 ----a-w- c:\windows\system32\wininet.dll 2009-10-21 05:38 . 2004-08-04 12:00 75776 ----a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:38 . 2004-08-04 12:00 25088 ----a-w- c:\windows\system32\httpapi.dll 2009-10-20 16:20 . 2004-08-04 12:00 265728 ----a-w- c:\windows\system32\drivers\http.sys 2009-10-14 10:59 . 2008-09-18 15:57 70000 ----a-w- c:\documents and settings\marc lentz\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-10-13 10:30 . 2004-08-04 12:00 270336 ----a-w- c:\windows\system32\oakley.dll 2009-10-12 13:38 . 2004-08-04 12:00 149504 ----a-w- c:\windows\system32\rastls.dll 2009-10-12 13:38 . 2004-08-04 12:00 79872 ----a-w- c:\windows\system32\raschap.dll 2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll 2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll 2008-11-09 23:25 . 2008-11-09 23:23 24 --sh--w- c:\windows\S1A99C371.tmp . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-08-08 490952] "MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "FlashMute"="c:\program files\FlashMute\FlashMute.exe" [2006-03-11 221184] "Steam"="c:\program files\Steam\Steam.exe" [2009-10-25 1217808] "WhatPulse"="c:\program files\WhatPulse\WhatPulse.exe" [2009-04-04 2812928] "Skype"="c:\program files\Skype\\Phone\Skype.exe" [2009-10-09 25623336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2004-10-27 61952] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-23 136600] "LoadFUJ02E3"="c:\program files\Fujitsu\FUJ02E3\FUJ02E3.exe" [2005-02-25 69632] "RTHDCPL"="RTHDCPL.EXE" [2005-04-21 14291456] "AzMixerSel"="c:\program files\Realtek\InstallShield\AzMixerSel.exe" [2005-02-18 53248] "AGRSMMSG"="AGRSMMSG.exe" [2004-12-20 88358] "LtMoh"="c:\program files\ltmoh\Ltmoh.exe" [2004-08-17 184320] "SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-05-27 98304] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-05-27 532480] "nod32kui"="c:\program files\Eset\nod32kui.exe" [2008-09-18 949376] "CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2006-09-28 57344] "BigDogPath"="c:\windows\VM_STI.EXE" [2004-06-09 40960] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-01-13 131072] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-01-13 163840] "Persistence"="c:\windows\system32\igfxpers.exe" [2007-01-13 135168] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\marc lentz\Start Menu\Programs\Startup\ PSPdisp.lnk - c:\program files\PSPdisp\bin\app\PSPdisp.exe [2009-1-5 617472] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Steam\\steamapps\\marclen\\counter-strike\\hl.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Activision\\Thps3\\Skate3.exe"= "c:\\WINDOWS\\system32\\dplaysvr.exe"= "c:\\Program Files\\Java\\jre6\\bin\\java.exe"= "c:\\Program Files\\SopCast\\SopCast.exe"= "c:\\Program Files\\SopCast\\adv\\SopAdver.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Program Files\\WunderWorks\\TeamPlayer\\TeamPlayer.exe"= "c:\\Program Files\\Sports Interactive\\Football Manager 2009\\fm.exe"= "c:\\Program Files\\Spotify\\spotify.exe"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= "c:\\Program Files\\Blocktrix\\blocktrix.exe"= "c:\\Program Files\\Rockstar Games\\GTA2\\gta2.exe"= "c:\\nt6tunnel\\NT6tunnel.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Blobby Volley 2.0 Alpha 6\\blobby.exe"= "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"= "c:\\Documents and Settings\\marc lentz\\Desktop\\lol\\usbhostfs.exe"= "c:\\Program Files\\VirtualDJ\\virtualdj.exe"= "c:\\Program Files\\VirtualDJ\\virtualdj_trial.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R0 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [18-9-2008 14:50 23200] R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [18-9-2008 16:54 15424] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [3-5-2009 11:36 54752] R3 FUJ02E3;Fujitsu FUJ02E3 Device Driver;c:\windows\system32\drivers\fuj02e3.sys [18-9-2008 14:47 4864] R3 pspdisp;pspdisp;c:\windows\system32\drivers\pspdisp.sys [25-12-2008 15:24 3072] R3 RTL8187B;Wireless Network USB Adapter 54g WL-168v1.004;c:\windows\system32\drivers\RTL8187B.sys [7-10-2008 22:04 264576] S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [21-9-2008 21:32 717296] S2 gw6c;Hexago Gateway6 Client;c:\program files\Hexago\Gateway6 Client\gw6c.exe [24-2-2009 5:30 385024] S2 pgsql-8.3;PostgreSQL Database Server 8.3;c:\program files\PostgreSQL\8.3\bin\pg_ctl.exe [31-10-2008 5:15 65536] S3 ALIENZDRVR;ALIENZDRVR;c:\documents and settings\marc lentz\Desktop\Radical Engine\Radical Engine\Alienz32.sys [7-10-2009 0:10 28544] S3 B-Service;B-Service;c:\documents and settings\marc lentz\Application Data\Mikogo\B-Service.exe [23-12-2008 18:38 185640] S3 fsssvc;De service Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [5-8-2009 21:48 704864] S3 HexTunnelDevice;Hexago Multi-Virtual Tunnel Adapter;c:\windows\system32\drivers\hextun.sys [24-2-2009 5:30 22176] S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1;c:\windows\system32\drivers\libusb0.sys [22-12-2008 1:06 28672] S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?] S3 PEEK5;PEEK5 Protocol Driver;\??\c:\aircra~1.3-w\bin\PEEK5.SYS --> c:\aircra~1.3-w\bin\PEEK5.SYS [?] . ------- Bijkomende Scan ------- . uInternet Connection Wizard,ShellNext = iexplore IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 LSP: c:\windows\system32\imon.dll DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game02.zylom.com/activex/zylomgamesplayer.cab FF - ProfilePath - c:\documents and settings\marc lentz\Application Data\Mozilla\Firefox\Profiles\h0vu228y.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.blogger.com/post-create.g?blogID=3004733033309423264|http://nl.www.mozilla.com/nl/firefox/central/ FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll FF - plugin: c:\program files\Google\Google Updater\2.4.1399.3742\npCIDetect13.dll FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ . - - - - ORPHANS VERWIJDERD - - - - Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) ActiveSetup-{39FCFCCC-E2B1-BA1D-71B9-962AFA07A8EA} - c:\program files\Internet Explorer\intel.exe AddRemove-GameCenter - c:\program files\Cyanide\GameCenter\uninstall.exe AddRemove-Monster Truck Madness - c:\program files\Microsoft Games\Monster Truck Madness\setup\setup.exe AddRemove-Westwood Chat - c:\westwood\WWONLINE\Uninstall.exe AddRemove-WOLAPI - c:\westwood\Internet\UnstllAP.EXE AddRemove-Xtreme Air Racing - c:\xtremeair\Uninst.isu ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-12-19 14:04 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'lsass.exe'(1136) c:\windows\system32\imon.dll c:\program files\Eset\pr_imon.dll . Voltooingstijd: 2009-12-19 14:07:56 ComboFix-quarantined-files.txt 2009-12-19 13:07 Pre-Run: 6.374.731.776 bytes free Post-Run: 8.885.915.648 bytes beschikbaar WindowsXP-KB310994-SP2-Pro-BootDisk-NLD.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect - - End Of File - - ADBADC3F650DCF1B3F7248549AD4A70C