ComboFix 10-08-04.05 - Eigenaar 05-08-2010  18:37:12.2.1 - x86
Microsoft Windows XP Home Edition  5.1.2600.3.1252.31.1043.18.511.284 [GMT 2:00]
Gestart vanuit: c:\documents and settings\Eigenaar\Bureaublad\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
.

((((((((((((((((((((   Bestanden Gemaakt van 2010-07-05 to 2010-08-05  ))))))))))))))))))))))))))))))
.

2010-08-05 13:26 . 2010-08-05 13:26	--------	d-----w-	c:\windows\LastGood
2010-08-05 10:41 . 2010-08-05 10:41	388096	----a-r-	c:\documents and settings\Eigenaar\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-08-05 10:34 . 2010-08-05 10:34	--------	d-----w-	c:\windows\system32\wbem\Repository
2010-08-05 10:34 . 2010-08-05 10:34	--------	d-----w-	c:\program files\MOV to AVI MPEG WMV Converter
2010-08-02 08:06 . 2010-08-02 08:06	--------	d-----w-	c:\program files\Bonjour
2010-07-26 11:58 . 2010-07-26 11:58	--------	d-----w-	c:\documents and settings\Eigenaar\Local Settings\Application Data\Box Shot 3D
2010-07-26 11:58 . 2010-07-26 11:58	--------	d-----w-	c:\program files\BoxShot3D
2010-07-14 08:08 . 2007-04-04 22:39	442368	----a-r-	c:\windows\system32\vp6vfw.dll
2010-07-14 07:49 . 2010-06-14 14:31	744448	-c----w-	c:\windows\system32\dllcache\helpsvc.exe
2010-07-12 11:36 . 2010-07-12 11:36	--------	d-----w-	c:\program files\Maxis
2010-07-12 11:35 . 1998-01-23 10:20	305152	----a-w-	c:\windows\IsUn0413.exe
2010-07-12 11:35 . 2010-07-12 11:35	--------	d-----w-	c:\documents and settings\Eigenaar\WINDOWS

.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-05 13:27 . 2008-11-08 13:29	--------	d-----w-	c:\program files\Common Files\Apple
2010-08-05 13:01 . 2009-01-12 12:42	--------	d-----w-	c:\program files\Common Files\Symantec Shared
2010-08-05 10:51 . 2009-05-09 11:38	--------	d-----w-	c:\program files\Common Files\AVSMedia
2010-08-05 10:51 . 2009-05-09 11:40	--------	d-----w-	c:\program files\AVS4YOU
2010-08-05 10:51 . 2008-11-08 13:04	--------	d-----w-	c:\program files\Tools
2010-08-05 10:50 . 2009-06-14 16:23	--------	d-----w-	c:\program files\Google
2010-08-05 10:34 . 2009-06-12 16:21	--------	d-----w-	c:\program files\QuickTime
2010-08-04 15:44 . 2010-06-15 13:12	--------	d-----w-	c:\documents and settings\Eigenaar\Application Data\Skype
2010-08-04 15:43 . 2010-03-01 21:25	256	----a-w-	c:\documents and settings\Eigenaar\pool.bin
2010-07-14 21:11 . 2009-01-11 16:47	--------	d-----w-	c:\program files\Common Files\Nero
2010-07-14 21:10 . 2009-01-11 16:47	--------	d-----w-	c:\documents and settings\All Users\Application Data\Nero
2010-07-14 20:59 . 2009-01-11 16:49	--------	d-----w-	c:\program files\Nero
2010-07-14 08:09 . 2008-11-07 16:09	--------	d-----w-	c:\documents and settings\All Users\Application Data\Microsoft Help
2010-07-07 08:56 . 2010-07-03 07:54	--------	d-----w-	c:\documents and settings\Eigenaar\Application Data\Microgaming
2010-06-27 07:40 . 2010-06-15 13:14	--------	d-----w-	c:\documents and settings\Eigenaar\Application Data\skypePM
2010-06-23 21:21 . 2003-07-23 21:19	511866	----a-w-	c:\windows\system32\perfh013.dat
2010-06-23 21:21 . 2003-07-23 21:19	91632	----a-w-	c:\windows\system32\perfc013.dat
2010-06-15 13:14 . 2010-06-15 13:14	56	---ha-w-	c:\windows\system32\ezsidmv.dat
2010-06-15 13:12 . 2010-06-15 13:11	--------	d-----r-	c:\program files\Skype
2010-06-15 13:11 . 2010-06-15 13:11	--------	d-----w-	c:\program files\Common Files\Skype
2010-06-15 13:11 . 2010-06-15 13:11	--------	dc----w-	c:\documents and settings\All Users\Application Data\Skype
2010-06-14 14:31 . 2008-11-06 22:02	744448	----a-w-	c:\windows\PCHealth\HelpCtr\Binaries\helpsvc.exe
2010-06-14 14:23 . 2009-02-13 18:24	--------	d-----w-	c:\program files\Windows Live Safety Center
2010-06-06 20:41 . 2009-05-08 18:21	--------	d-----w-	c:\program files\Microsoft Silverlight
2010-05-27 14:25 . 2010-05-27 14:25	63404	-c-ha-w-	c:\windows\system32\mlfcache.dat
2010-05-24 21:00 . 2008-11-07 15:02	87208	-c--a-w-	c:\documents and settings\Eigenaar\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-05-24 20:22 . 2009-09-16 16:52	737280	----a-w-	c:\windows\iun6002.exe
2010-05-23 16:22 . 2010-05-23 16:22	503808	----a-w-	c:\documents and settings\Eigenaar\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-621b24b9-n\msvcp71.dll
2010-05-23 16:22 . 2010-05-23 16:22	12800	----a-w-	c:\documents and settings\Eigenaar\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-21874f37-n\decora-d3d.dll
2010-05-23 16:22 . 2010-05-23 16:22	499712	----a-w-	c:\documents and settings\Eigenaar\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-621b24b9-n\jmc.dll
2010-05-23 16:22 . 2010-05-23 16:22	348160	----a-w-	c:\documents and settings\Eigenaar\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-621b24b9-n\msvcr71.dll
2010-05-23 16:22 . 2010-05-23 16:22	61440	----a-w-	c:\documents and settings\Eigenaar\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-21874f37-n\decora-sse.dll
2010-05-18 14:35 . 2010-05-18 14:35	91424	----a-w-	c:\windows\system32\dnssd.dll
2010-05-18 14:35 . 2010-05-18 14:35	107808	----a-w-	c:\windows\system32\dns-sd.exe
2010-05-12 14:21 . 2010-05-12 14:21	107888	----a-w-	c:\windows\system32\CmdLineExt.dll
2010-05-12 13:29 . 2010-05-12 13:29	380928	-c--a-w-	c:\documents and settings\All Users\Application Data\EA Core\cache\EADM\{ prnorbruis@hotmail.com }\simcity5_na\EASetup.exe
2010-05-12 13:29 . 2010-05-12 13:29	23510720	-c--a-w-	c:\documents and settings\All Users\Application Data\EA Core\cache\EADM\{ prnorbruis@hotmail.com }\simcity5_na\dotnetfx.exe
2010-05-12 13:29 . 2010-05-12 13:29	167936	-c--a-w-	c:\documents and settings\All Users\Application Data\EA Core\cache\EADM\{ prnorbruis@hotmail.com }\simcity5_na\binkw32.dll
2010-05-12 13:29 . 2010-05-12 13:29	393216	-c--a-w-	c:\documents and settings\All Users\Application Data\EA Core\cache\EADM\{ prnorbruis@hotmail.com }\simcity5_na\AutoRun.exe
2010-05-11 09:49 . 2010-04-16 09:07	57344	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.dll
2010-05-11 09:42 . 2010-05-11 09:42	56766	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe
2010-05-11 09:42 . 2010-05-11 09:42	53600	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\Update\Uninstaller.exe
2010-05-11 09:42 . 2010-05-11 09:42	57679	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\Player\Uninstaller.exe
2010-05-11 09:41 . 2010-05-11 09:41	84040	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\TransferWizard\Uninstaller.exe
2010-05-11 09:41 . 2010-05-11 09:41	54166	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\DSAVCDecoder\Uninstaller.exe
2010-05-11 09:41 . 2010-05-11 09:41	57532	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\DSASPDecoder\Uninstaller.exe
2010-05-11 09:41 . 2010-05-11 09:41	54153	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\DFXPlugin\Uninstaller.exe
2010-05-11 09:41 . 2010-05-11 09:41	57409	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\ControlPanel\Uninstaller.exe
2010-05-11 09:02 . 2010-05-11 09:02	144696	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.exe
2010-05-11 09:02 . 2010-04-01 13:40	754984	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\Setup\Resource.dll
2010-05-11 09:02 . 2010-04-01 13:40	1180952	-c--a-w-	c:\documents and settings\All Users\Application Data\DivX\Setup\DivXSetup.exe
.

(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\System32\NvCpl.dll" [2003-10-17 4800512]
"EPSON Stylus Photo RX420 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE" [2004-04-09 98304]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"Adobe Reader Speed Launcher"="c:\program files\Tools\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-03-17 202256]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2008-05-02 00:42	72208	----a-w-	c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Logitech SetPoint.lnk]
path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Logitech SetPoint.lnk
backup=c:\windows\pss\Logitech SetPoint.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2010-04-12 22:46	1135912	----a-w-	c:\program files\DivX\DivX Update\DivXUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer]
2008-02-29 01:12	76304	----a-w-	c:\windows\KHALMNPR.Exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-03-17 19:53	421888	-c--a-w-	c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RIMDeviceManager]
2008-05-12 14:20	1422608	----a-w-	c:\program files\Common Files\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]
2008-06-08 10:24	236016	----a-w-	c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2010-05-13 14:12	26192168	----a-r-	c:\program files\Skype\Phone\Skype.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"RoxWatch9"=2 (0x2)
"RoxMediaDB9"=3 (0x3)
"Roxio Upnp Server 9"=2 (0x2)
"Roxio UPnP Renderer 9"=3 (0x3)
"LightScribeService"=2 (0x2)
"LBTServ"=3 (0x3)
"iPod Service"=3 (0x3)
"gupdate1c9ed0c7d1b2ef6"=2 (0x2)
"Bonjour Service"=2 (0x2)
"Apple Mobile Device"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\rtcshare.exe"=
"c:\\Program Files\\NetMeeting\\conf.exe"=
"c:\\Program Files\\ijji\\ijji REACTOR\\REACTOR.exe"=
"c:\\WINDOWS\\Downloaded Program Files\\ijjiOptimizer.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4242:TCP"= 4242:TCP:eDonkeyServerNo2

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [16-5-2009 9:53 108289]
S3 hitmanpro3;Hitman Pro 3 Support Driver;\??\c:\windows\system32\drivers\hitmanpro3.sys --> c:\windows\system32\drivers\hitmanpro3.sys [?]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S4 gupdate1c9ed0c7d1b2ef6;Google Updateservice (gupdate1c9ed0c7d1b2ef6);c:\program files\Google\Update\GoogleUpdate.exe [14-6-2009 18:23 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-08-20 11:24	451872	----a-w-	c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Inhoud van de 'Gedeelde Taken' map

2010-07-17 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-08-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-06-14 16:23]

2010-08-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-06-14 16:23]

2010-08-05 c:\windows\Tasks\Norton Security Scan for Eigenaar.job
- c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-05-11 07:48]

2010-08-05 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1547161642-515967899-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-24 21:09]

2010-07-17 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1547161642-515967899-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-24 21:09]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.freemov2avi.com/search/
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} - hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
FF - ProfilePath - c:\documents and settings\Eigenaar\Application Data\Mozilla\Firefox\Profiles\55b03ajh.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/ig
FF - component: c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npijjiautoinstallpluginff.dll
FF - plugin: c:\program files\Tools\Adobe\Reader 9.0\Reader\browser\nppdf32.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); 
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); 
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type",                  5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size",  4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation",  false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - ORPHANS VERWIJDERD - - - -

MSConfigStartUp-iTunesHelper - c:\program files\iTunes\iTunesHelper.exe
AddRemove-EA Download Manager - c:\program files\Electronic Arts\EADownloadManager\EADMUninstall.exe
AddRemove-Universal Document Converter_is1 - c:\program files\Universal Document Converter\unins000.exe
AddRemove-{5a0ca3f7-fa93-409f-b062-9f72c01bac01} - c:\program files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe
AddRemove-{7B63B2922B174135AFC0E1377DD81EC2} - c:\program files\DivX\DivXCodecUninstall.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-05 18:42
Windows 5.1.2600 Service Pack 3 NTFS

scannen van verborgen processen ... 

scannen van verborgen autostart items ... 

scannen van verborgen bestanden ... 

Scan succesvol afgerond
verborgen bestanden: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-1547161642-515967899-839522115-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:d5,f2,05,9f,d4,33,dd,0f,c5,bd,a7,0f,7a,27,21,43,d7,fa,41,cc,5b,64,6a,
   70,41,54,68,c9,1a,67,e6,8f,69,a8,a6,4f,da,3a,fe,97,18,d4,8b,35,73,88,6c,41,\
"??"=hex:4b,ad,61,ac,c8,e9,da,fb,e8,a4,99,2c,50,be,93,ac
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------

- - - - - - - > 'winlogon.exe'(636)
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
c:\program files\common files\logishrd\bluetooth\LBTServ.dll

- - - - - - - > 'explorer.exe'(3252)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Voltooingstijd: 2010-08-05  18:46:04
ComboFix-quarantined-files.txt  2010-08-05 16:46
ComboFix2.txt  2009-01-12 16:00

Pre-Run: 69.679.685.632 bytes beschikbaar
Post-Run: 69.892.665.344 bytes beschikbaar

- - End Of File - - 0C42541F68754034BEDD1A2707E98E2C