ComboFix 10-05-16.02 - Danny Van Der Veen 17-05-2010  19:32:50.2.1 - x86
Microsoft® Windows Vista™ Ultimate   6.0.6001.1.1252.31.1043.18.447.100 [GMT 2:00]
Gestart vanuit: c:\users\Danny Van Der Veen\Desktop\ComboFix.exe
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((   Bestanden Gemaakt van 2010-04-17 to 2010-05-17  ))))))))))))))))))))))))))))))
.

2010-05-17 17:53 . 2010-05-17 17:53	--------	d-----w-	c:\users\Vista\AppData\Local\temp
2010-05-17 17:53 . 2010-05-17 17:55	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\temp
2010-05-17 17:53 . 2010-05-17 17:53	--------	d-----w-	c:\users\userpostgres\AppData\Local\temp
2010-05-17 17:53 . 2010-05-17 17:53	--------	d-----w-	c:\users\Public\AppData\Local\temp
2010-05-17 17:53 . 2010-05-17 17:53	--------	d-----w-	c:\users\LogMeInRemoteUser\AppData\Local\temp
2010-05-17 17:53 . 2010-05-17 17:53	--------	d-----w-	c:\users\Default\AppData\Local\temp
2010-05-17 16:58 . 2010-05-17 17:15	--------	d-----w-	C:\32788R22FWJFW
2010-05-16 16:46 . 2010-05-16 16:46	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\ViGlance
2010-05-16 16:46 . 2010-05-16 16:46	--------	d-----w-	c:\program files\ViGlance
2010-05-11 18:27 . 2010-05-11 18:27	--------	d-----w-	c:\programdata\regid.1986-12.com.adobe
2010-05-11 18:13 . 2010-05-11 18:13	--------	d-----w-	c:\program files\Adobe Media Player
2010-05-11 18:07 . 2010-05-11 18:07	--------	d-----w-	c:\program files\Common Files\Adobe AIR
2010-05-09 16:31 . 2010-05-16 18:31	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\PMB Files
2010-05-09 16:31 . 2010-05-16 17:57	--------	d-----w-	c:\programdata\PMB Files
2010-05-09 16:30 . 2010-05-09 16:30	--------	d-----w-	c:\program files\Pando Networks
2010-05-05 15:06 . 2010-05-05 15:07	--------	d-----w-	c:\users\Danny Van Der Veen\53FA9A9F3C194D43AD6BDEF365D469BA.TMP
2010-05-05 13:50 . 2010-05-05 13:51	--------	d-----w-	c:\program files\Safari
2010-05-05 13:37 . 2010-05-16 17:49	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\Flock
2010-05-05 13:37 . 2010-05-05 13:37	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\Flock
2010-05-05 13:31 . 2010-05-16 17:49	--------	d-----w-	c:\program files\Flock
2010-05-04 17:36 . 2010-05-04 17:36	--------	d-----w-	C:\CFLog
2010-05-04 16:50 . 2010-05-04 16:50	--------	d-----w-	c:\program files\Z8Games
2010-05-02 19:49 . 2010-05-02 19:51	35047424	----a-w-	c:\windows\system32\imageres.dll
2010-05-02 19:40 . 2010-05-02 19:40	--------	d-----w-	c:\programdata\Stardock
2010-05-02 17:57 . 2010-05-02 17:57	--------	d-----w-	c:\program files\AquaSnap
2010-05-02 15:40 . 2010-05-02 15:41	--------	d-----w-	c:\program files\WinFlip
2010-05-02 15:29 . 2010-04-12 15:29	411368	----a-w-	c:\windows\system32\deployJava1.dll
2010-05-02 14:12 . 2010-05-16 17:51	--------	d-----w-	c:\program files\Rainmeter
2010-04-29 16:15 . 2010-04-29 17:50	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\FileZilla
2010-04-29 16:13 . 2010-04-29 16:13	--------	d-----w-	c:\program files\FileZilla FTP Client
2010-04-27 15:29 . 2008-01-18 22:36	11580416	----a-w-	c:\windows\system32\shell32_backup_wti.dll
2010-04-27 15:29 . 2008-01-18 22:34	20992	----a-w-	c:\windows\system32\ExplorerFrame_backup_wti.dll
2010-04-27 15:29 . 2008-01-18 22:36	2153472	----a-w-	c:\windows\system32\OobeFldr_backup_wti.dll
2010-04-27 15:29 . 2008-01-18 22:33	2927104	----a-w-	c:\windows\explorer_backup_wti.exe
2010-04-27 15:29 . 2010-04-27 15:29	50536	----a-w-	c:\windows\UTP.exe
2010-04-27 15:18 . 2008-04-17 10:12	107368	----a-w-	c:\windows\system32\GEARAspi.dll
2010-04-27 15:18 . 2009-05-18 11:17	26600	----a-w-	c:\windows\system32\drivers\GEARAspiWDM.sys
2010-04-27 15:12 . 2010-04-27 15:12	--------	d-----w-	c:\program files\iPod
2010-04-27 15:11 . 2010-04-27 15:17	--------	d-----w-	c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-04-27 15:11 . 2010-04-27 15:17	--------	d-----w-	c:\program files\iTunes
2010-04-27 14:39 . 2010-04-27 14:39	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\Apple
2010-04-27 14:38 . 2010-04-27 14:38	--------	d-----w-	c:\program files\Apple Software Update
2010-04-27 14:19 . 2010-04-27 14:19	--------	d-----w-	c:\program files\Bonjour
2010-04-27 14:17 . 2010-04-27 14:17	--------	d-----w-	c:\programdata\Apple
2010-04-26 14:49 . 2010-04-26 14:49	--------	d-----w-	c:\program files\RTVSoftwareNL
2010-04-26 14:24 . 2010-05-11 18:28	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\Adobe
2010-04-23 16:02 . 2010-04-23 16:03	--------	d-----w-	C:\mysql
2010-04-22 18:41 . 2010-04-22 18:41	--------	d-----w-	c:\program files\QS
2010-04-22 18:38 . 2010-04-22 18:38	--------	d-----w-	c:\users\Danny Van Der Veen\temp
2010-04-21 07:39 . 2010-04-21 07:45	--------	d-----w-	c:\program files\ATI Technologies
2010-04-21 07:39 . 2010-04-21 07:39	--------	d-----w-	c:\program files\ATI
2010-04-21 07:35 . 2010-04-21 07:35	--------	d-----w-	C:\AMD
2010-04-20 15:58 . 2010-04-20 16:01	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\Google
2010-04-20 13:18 . 2010-05-05 13:55	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\Apple Computer
2010-04-20 13:18 . 2010-05-05 13:55	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\Apple Computer
2010-04-19 16:42 . 2010-05-12 15:50	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Local\CrashDumps
2010-04-19 16:00 . 2010-04-19 16:00	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\Malwarebytes
2010-04-19 15:19 . 2010-04-19 15:19	--------	d-----w-	c:\program files\TrendMicro

.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-17 17:19 . 2010-04-15 17:22	680	----a-w-	c:\users\Danny Van Der Veen\AppData\Local\d3d9caps.dat
2010-05-16 18:47 . 2009-02-16 13:52	676474	----a-w-	c:\windows\system32\perfh013.dat
2010-05-16 18:47 . 2009-02-16 13:52	131190	----a-w-	c:\windows\system32\perfc013.dat
2010-05-12 14:48 . 2010-04-15 17:25	83704	----a-w-	c:\users\Danny Van Der Veen\AppData\Local\GDIPFONTCACHEV1.DAT
2010-05-12 08:11 . 2008-10-29 14:37	83704	----a-w-	c:\users\Vista\AppData\Local\GDIPFONTCACHEV1.DAT
2010-05-12 08:05 . 2008-10-29 14:36	1356	----a-w-	c:\users\Vista\AppData\Local\d3d9caps.dat
2010-05-11 18:25 . 2008-10-29 16:46	--------	d-----w-	c:\program files\Common Files\Adobe
2010-05-11 16:49 . 2010-04-16 16:00	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\uTorrent
2010-05-03 18:03 . 2009-01-27 15:59	--------	d-----w-	c:\users\Vista\AppData\Roaming\uTorrent
2010-05-02 15:28 . 2008-11-28 15:08	--------	d-----w-	c:\program files\Java
2010-04-27 15:12 . 2009-06-29 17:50	--------	d-----w-	c:\program files\Common Files\Apple
2010-04-27 14:52 . 2009-06-29 17:56	--------	d-----w-	c:\program files\QuickTime
2010-04-23 16:12 . 2009-02-13 15:52	--------	d-----w-	c:\program files\SpacialAudio
2010-04-23 15:09 . 2009-02-07 16:14	--------	d-----w-	c:\program files\CCleaner
2010-04-22 18:44 . 2009-03-11 18:00	--------	d-----w-	c:\program files\TeamViewer
2010-04-19 17:29 . 2009-03-27 17:36	--------	d-----w-	c:\program files\SwiftKit
2010-04-18 18:15 . 2010-04-11 10:06	--------	d-----w-	c:\users\Vista\AppData\Roaming\TweakNow RegCleaner
2010-04-18 18:15 . 2010-04-11 10:06	--------	d-----w-	c:\program files\TweakNow RegCleaner
2010-04-18 17:48 . 2010-04-07 09:48	--------	d-----w-	c:\program files\Opera
2010-04-17 10:50 . 2010-04-17 10:50	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\TortoiseSVN
2010-04-17 10:45 . 2010-04-17 09:59	--------	d-----w-	c:\program files\Free YouTuBe Utility
2010-04-16 18:03 . 2010-04-16 18:03	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\TeamViewer
2010-04-16 16:02 . 2009-01-27 16:00	--------	d-----w-	c:\program files\uTorrent
2010-04-15 18:14 . 2009-03-10 20:16	--------	d-----w-	c:\program files\Messenger Plus! Live
2010-04-15 18:03 . 2010-04-06 10:42	--------	d-----w-	c:\program files\RocketDock
2010-04-15 17:33 . 2010-04-15 17:33	--------	d-----w-	c:\users\Danny Van Der Veen\AppData\Roaming\Subversion
2010-04-10 13:08 . 2010-04-10 13:08	--------	d-----w-	c:\users\Vista\AppData\Roaming\OpenOffice.org
2010-04-10 12:13 . 2010-04-10 12:11	--------	d-----w-	c:\program files\OpenOffice.org 3
2010-04-09 06:14 . 2009-12-09 16:18	--------	d-----w-	c:\programdata\EachDupeBias
2010-04-08 17:03 . 2010-04-08 17:03	--------	d-----w-	c:\users\Vista\AppData\Roaming\Malwarebytes
2010-04-08 17:02 . 2010-04-08 17:02	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2010-04-08 17:02 . 2010-04-08 17:02	--------	d-----w-	c:\programdata\Malwarebytes
2010-04-08 16:07 . 2010-04-08 16:07	--------	d-----w-	c:\program files\Trend Micro
2010-04-07 05:41 . 2010-04-06 19:11	--------	d-----w-	c:\program files\Common Files\Symantec Shared
2010-04-06 19:21 . 2010-04-06 19:01	--------	d-----w-	c:\programdata\Norton
2010-04-06 19:12 . 2010-04-06 19:11	--------	d-----w-	c:\program files\Symantec
2010-04-06 19:11 . 2010-04-06 19:12	805	----a-w-	c:\windows\system32\drivers\SYMEVENT.INF
2010-04-06 19:11 . 2010-04-06 19:12	7443	----a-w-	c:\windows\system32\drivers\SYMEVENT.CAT
2010-04-06 19:11 . 2010-04-06 19:12	124976	----a-w-	c:\windows\system32\drivers\SYMEVENT.SYS
2010-04-06 19:02 . 2010-04-06 19:01	--------	d-----w-	c:\program files\Norton AntiVirus
2010-04-06 19:01 . 2010-04-06 18:59	--------	d-----w-	c:\programdata\NortonInstaller
2010-04-06 18:59 . 2010-04-06 18:59	--------	d-----w-	c:\program files\NortonInstaller
2010-04-06 18:21 . 2008-10-29 16:25	--------	d--h--w-	c:\program files\InstallShield Installation Information
2010-04-06 18:18 . 2009-12-20 10:51	--------	d-----w-	c:\program files\Common Files\Steam
2010-04-06 18:09 . 2009-01-19 13:17	--------	d-----w-	c:\program files\Winamp
2010-04-06 14:49 . 2010-04-06 14:49	--------	d-----w-	c:\users\Vista\AppData\Roaming\Uniblue
2010-04-02 11:58 . 2008-11-02 16:22	38	----a-w-	c:\users\Vista\jagex_runescape_preferences.dat
2010-04-02 09:55 . 2010-04-02 09:55	--------	d-----w-	c:\program files\Microsoft
2010-04-02 09:55 . 2009-12-08 17:13	--------	d-----w-	c:\programdata\WindowsLiveInstaller
2010-04-02 09:54 . 2008-11-02 16:42	--------	d-----w-	c:\program files\Windows Live
2010-03-29 22:46 . 2010-04-08 17:02	38224	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2010-03-29 22:45 . 2010-04-08 17:02	20824	----a-w-	c:\windows\system32\drivers\mbam.sys
2010-03-29 17:36 . 2010-03-22 19:56	--------	d-----w-	c:\programdata\TuneUp Software
2010-03-29 14:39 . 2008-11-16 18:46	--------	d-----w-	c:\program files\Google
2010-03-29 14:33 . 2009-03-03 17:35	--------	d-----w-	c:\program files\DVDVideoSoft
2010-03-29 14:30 . 2009-03-03 17:35	--------	d-----w-	c:\program files\Common Files\DVDVideoSoft
2010-03-26 17:15 . 2010-03-26 17:15	--------	d-----w-	c:\users\Vista\AppData\Roaming\TortoiseSVN
2010-03-26 17:07 . 2010-03-26 17:07	--------	d-----w-	c:\program files\TortoiseSVN
2010-03-26 17:07 . 2010-03-26 17:07	--------	d-----w-	c:\program files\Common Files\TortoiseOverlays
2010-03-22 20:03 . 2010-03-22 20:03	--------	d-----w-	c:\users\Vista\AppData\Roaming\TuneUp Software
2010-03-22 19:55 . 2010-03-22 19:55	--------	d-sh--w-	c:\programdata\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-03-22 17:10 . 2010-01-07 14:03	--------	d-----w-	c:\program files\DNA
2010-03-20 17:01 . 2010-03-20 17:01	--------	d-----w-	c:\program files\Firebird
2010-03-19 20:30 . 2010-01-07 14:03	--------	d-----w-	c:\program files\GamersFirst
2010-03-19 18:26 . 2010-03-18 18:12	56816	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2010-03-05 08:13 . 2010-03-05 08:13	947472	----a-w-	c:\windows\system32\msjava.dll
2006-11-22 14:58 . 2006-11-22 14:58	8192	--sha-w-	c:\windows\Users\Default\NTUSER.DAT
.

------- Sigcheck -------

[-] 2009-09-05 . 5B8AB8E9F38BC52ECD183B099093C2BD . 247296 . . [6.0.6000.16386] . . c:\windows\System32\shsvcs.dll
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2010-01-18 18:12	86280	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Google Update"="c:\users\Danny Van Der Veen\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-04-20 136176]
"ViGlance"="c:\program files\ViGlance\ViGlance.exe" [2009-11-07 438272]
"TrueTransparency"="c:\users\Danny Van Der Veen\Documents\TrueTransparency\TrueTransparency.exe" [2010-03-28 374272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-18 1008184]
"SoundMan"="SOUNDMAN.EXE" [2005-09-21 90112]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"snpstd2"="c:\windows\vsnpstd2.exe" [2007-04-13 307200]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2006-11-02 215552]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-03-29 1086856]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-03-17 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-03-25 142120]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2008-08-08 12:11	490952	----a-w-	c:\program files\DAEMON Tools Lite\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-03-17 19:53	421888	----a-w-	c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3571811162-4242231129-1306086523-1000]
"EnableNotificationsRef"=dword:00000001

R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2009-05-14 721904]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\RaInfo.sys [x]
R2 PostgreSQL;PostgreSQL Database Server;c:\program files\PostgreSQL\8.0-beta2-dev3\bin\pg_ctl.exe [2004-09-10 61625]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 XDva349;XDva349;c:\windows\system32\XDva349.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NAV\1106000.020\SYMDS.SYS [2009-08-30 328752]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NAV\1106000.020\SYMEFA.SYS [2010-02-04 172592]
S1 BHDrvx86;BHDrvx86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100429.001\BHDrvx86.sys [2010-04-29 537136]
S1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NAV\1106000.020\ccHPx86.sys [2010-02-25 501888]
S1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100505.001\IDSvix86.sys [2009-10-28 343088]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NAV\1106000.020\Ironx86.SYS [2010-02-27 116784]
S1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\System32\Drivers\NAV\1106000.020\SYMTDIV.SYS [2010-02-04 340016]
S2 NAV;Norton AntiVirus;c:\program files\Norton AntiVirus\Engine\17.6.0.32\ccSvcHst.exe [2010-02-25 126392]
S2 TeamViewer5;TeamViewer 5;c:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2010-04-16 173352]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-08-29 102448]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile	REG_MULTI_SZ   	wcescomm rapimgr
LocalServiceRestricted	REG_MULTI_SZ   	WcesComm RapiMgr
.
Inhoud van de 'Gedeelde Taken' map

2010-05-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3571811162-4242231129-1306086523-1000Core.job
- c:\users\Vista\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-04 13:05]

2010-05-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3571811162-4242231129-1306086523-1000UA.job
- c:\users\Vista\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-04 13:05]

2010-05-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3571811162-4242231129-1306086523-1007Core.job
- c:\users\Danny Van Der Veen\AppData\Local\Google\Update\GoogleUpdate.exe [2010-04-20 15:58]

2010-05-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3571811162-4242231129-1306086523-1007UA.job
- c:\users\Danny Van Der Veen\AppData\Local\Google\Update\GoogleUpdate.exe [2010-04-20 15:58]
.
.
------- Bijkomende Scan -------
.
mStart Page = hxxp://www.troner.net/
IE: Download Video by Free YouTuBe Utility - c:\program files\Free YouTuBe Utility\IEydown.htm
FF - ProfilePath - c:\users\Danny Van Der Veen\AppData\Roaming\Mozilla\Firefox\Profiles\wkdpkqze.default\
FF - component: c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\IPSFFPlgn\components\IPSFFPl.dll
FF - component: c:\users\Danny Van Der Veen\AppData\Roaming\Mozilla\Firefox\Profiles\wkdpkqze.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\npAFOM.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NpFv522.dll
FF - plugin: c:\program files\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: c:\users\Danny Van Der Veen\AppData\Local\Google\Update\1.2.183.23\npGoogleOneClick8.dll

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation",  false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
.
------- Bestandsassociaties -------
.
.
- - - - ORPHANS VERWIJDERD - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-17 19:55
Windows 6.0.6001 Service Pack 1 NTFS

scannen van verborgen processen ... 

scannen van verborgen autostart items ... 

scannen van verborgen bestanden ... 

Scan succesvol afgerond
verborgen bestanden: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\NAV]
"ImagePath"="\"c:\program files\Norton AntiVirus\Engine\17.6.0.32\ccSvcHst.exe\" /s \"NAV\" /m \"c:\program files\Norton AntiVirus\Engine\17.6.0.32\diMaster.dll\" /prefetch:1"
.
Voltooingstijd: 2010-05-17  20:11:44
ComboFix-quarantined-files.txt  2010-05-17 18:11
ComboFix2.txt  2010-04-09 15:52

Pre-Run: 81.270.149.120 bytes beschikbaar
Post-Run: 82.060.943.360 bytes beschikbaar

- - End Of File - - E0BF8ABF69969F59473CB01AC4FBCB0F