ComboFix 08-06-20.4 - fret en co 2008-06-29 18:12:03.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.1.1252.1.1043.18.125 [GMT 2:00]Gestart vanuit: C:\Documents and Settings\fret en co\Bureaublad\ComboFix.exe * Nieuw herstelpunt werd aangemaakt [color=red][b]WAARSCHUWING - DE RECOVERY CONSOLE IS NIET OP DIT SYSTEEM GEINSTALLEERD !![/b][/color] . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\Eigenaar\Application Data\Zango C:\Documents and Settings\fret en co\Application Data\.# C:\Documents and Settings\fret en co\Application Data\inst.exe C:\Documents and Settings\fret en co\Local Settings\Application Data\qcoieqi.dat c:\documents and settings\fret en co\local settings\application data\qcoieqi.exe c:\Documents and Settings\fret en co\Local Settings\Application Data\qcoieqi_nav.dat c:\Documents and Settings\fret en co\Local Settings\Application Data\qcoieqi_navps.dat C:\WINDOWS\system32\au3305adc.dll . (((((((((((((((((((( Bestanden Gemaakt van 2008-05-28 to 2008-06-29 )))))))))))))))))))))))))))))) . 2008-06-29 11:07 . 2008-06-29 11:07 d-------- C:\Program Files\AVIConverter 2008-06-27 15:45 . 2008-06-27 15:45 d-------- C:\Documents and Settings\fret en co\Application Data\Malwarebytes 2008-06-27 15:44 . 2008-06-27 15:45 d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-27 15:44 . 2008-06-27 15:44 d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes 2008-06-27 15:44 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-06-27 15:44 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-06-26 21:10 . 2008-06-26 21:10 d-------- C:\Program Files\Trend Micro 2008-06-24 23:57 . 2008-06-24 23:57 d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\LogMeIn 2008-06-23 22:51 . 2008-06-23 22:51 d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\EPSON 2008-06-23 22:50 . 2006-12-08 04:04 76,800 --a------ C:\WINDOWS\system32\E_FLBCEE.DLL 2008-06-23 22:50 . 2006-04-19 04:00 62,976 --a------ C:\WINDOWS\system32\E_FD4BCEE.DLL 2008-06-23 22:50 . 2004-09-10 22:12 49,152 --a------ C:\WINDOWS\system32\E_DCINST.DLL 2008-06-23 22:45 . 2008-06-23 22:45 25 --a------ C:\WINDOWS\CDE DX8400DEFGIPS.ini 2008-06-23 13:29 . 2008-06-23 13:29 d-------- C:\Program Files\SpywareBlaster 2008-06-11 21:51 . 2008-06-24 14:00 45 --a------ C:\TEST.XML 2008-06-10 22:19 . 2008-06-10 22:19 33,824 --a------ C:\WINDOWS\system32\drivers\oreans32.sys 2008-06-10 21:37 . 2008-06-10 21:37 d-------- C:\Program Files\B4Playing 2008-06-09 13:26 . 2008-06-09 14:10 d-------- C:\Program Files\Audacity 2008-06-08 18:30 . 2008-06-08 18:30 d-------- C:\Program Files\OpenOffice.org 2.4 2008-06-05 07:41 . 2008-06-05 07:41 21,672 --a------ C:\WINDOWS\system32\drivers\ggsemc.sys 2008-06-05 07:41 . 2008-06-05 07:41 13,352 --a------ C:\WINDOWS\system32\drivers\ggflt.sys 2008-06-03 22:07 . 2008-06-03 22:07 d-------- C:\apollotmp 2008-05-30 16:59 . 2008-05-30 21:56 d-------- C:\Documents and Settings\fret en co\Application Data\FrostWire 2008-05-30 14:59 . 2008-06-10 22:09 d-------- C:\Program Files\FrostWire 2008-05-30 13:40 . 2008-05-30 13:40 d-------- C:\Documents and Settings\fret en co\Application Data\PlayFirst 2008-05-30 13:40 . 2008-05-30 13:40 d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\PlayFirst 2008-05-29 20:21 . 2008-05-29 20:21 d-------- C:\Program Files\Pure Networks 2008-05-29 20:18 . 2008-05-16 06:10 25,272 --a------ C:\WINDOWS\system32\drivers\purendis.sys 2008-05-29 20:18 . 2008-05-16 06:10 23,992 --a------ C:\WINDOWS\system32\drivers\pnarp.sys 2008-05-29 20:17 . 2008-05-29 20:17 d-------- C:\Program Files\Common Files\Pure Networks Shared 2008-05-29 20:15 . 2008-05-29 20:17 d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Pure Networks . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-29 08:51 --------- d-----w C:\Documents and Settings\fret en co\Application Data\AVG7 2008-06-27 21:43 --------- d-----w C:\Program Files\Ashampoo 2008-06-27 13:25 --------- d-----w C:\Program Files\Macrogaming 2008-06-26 05:57 --------- d-----w C:\Program Files\LogMeIn 2008-06-25 19:22 --------- d---a-w C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP 2008-06-25 10:55 --------- d-----w C:\Program Files\EPSON 2008-06-24 12:23 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-06-24 12:20 --------- d-----w C:\Program Files\Canon 2008-06-23 21:00 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\UDL 2008-06-17 20:34 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\DVD Shrink 2008-06-17 05:38 --------- d-----w C:\Documents and Settings\fret en co\Application Data\OpenOffice.org2 2008-06-13 13:01 --------- d-----w C:\Program Files\Java 2008-06-13 12:58 --------- d-----w C:\Program Files\Western Digital 2008-06-13 12:58 --------- d-----w C:\Program Files\BoontyGames 2008-06-13 12:57 --------- d-----w C:\Program Files\Apollo DVD Copy 2008-06-08 16:27 --------- d-----w C:\Program Files\OpenOffice.org 2.3 2008-06-05 12:18 --------- d-----w C:\Program Files\SpeedFan 2008-06-05 05:40 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony Ericsson 2008-05-28 18:57 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\avg7 2008-05-28 18:20 --------- d-----w C:\Program Files\IrfanView 2008-05-28 10:32 87,352 ----a-w C:\WINDOWS\system32\LMIinit.dll 2008-05-28 10:32 24,608 ----a-w C:\WINDOWS\system32\LMIport.dll 2008-05-27 19:15 163,712 ----a-w C:\WINDOWS\system32\drivers\vidstub.sys 2008-05-24 19:32 --------- d-----w C:\Program Files\Stardock 2008-05-24 19:25 --------- d-----w C:\Program Files\TGTSoft 2008-05-24 18:58 --------- d-----w C:\Program Files\Oberon Media 2008-05-20 18:19 --------- d-----w C:\Program Files\EACom 2008-05-20 18:15 --------- d-----w C:\Program Files\Electronic Arts 2008-05-16 20:23 --------- d-----w C:\Documents and Settings\fret en co\Application Data\Teleca 2008-05-16 20:20 --------- d-----w C:\Program Files\Common Files\Teleca Shared 2008-05-16 20:20 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\Teleca 2008-05-16 20:19 --------- d-----w C:\Program Files\Sony Ericsson 2008-05-16 20:12 94,064 ----a-w C:\WINDOWS\system32\drivers\z530mdm.sys 2008-05-16 20:12 85,408 ----a-w C:\WINDOWS\system32\drivers\z530mgmt.sys 2008-05-16 20:12 83,344 ----a-w C:\WINDOWS\system32\drivers\z530obex.sys 2008-05-16 20:12 8,336 ----a-w C:\WINDOWS\system32\drivers\z530mdfl.sys 2008-05-16 20:12 6,176 ----a-w C:\WINDOWS\system32\drivers\z530cmnt.sys 2008-05-16 20:12 6,176 ----a-w C:\WINDOWS\system32\drivers\z530cm.sys 2008-05-16 20:12 58,288 ----a-w C:\WINDOWS\system32\drivers\z530bus.sys 2008-05-16 20:12 5,808 ----a-w C:\WINDOWS\system32\drivers\z530whnt.sys 2008-05-16 20:12 5,808 ----a-w C:\WINDOWS\system32\drivers\z530wh.sys 2008-05-16 18:38 --------- d-----w C:\Program Files\KaraFun 2008-05-16 18:23 --------- d-----w C:\Documents and Settings\fret en co\Application Data\ArcSoft 2008-05-09 17:37 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\BOONTY 2008-05-09 17:34 --------- d-----w C:\Program Files\Boonty 2008-05-03 22:00 --------- d-----w C:\Program Files\DivX 2008-04-26 14:14 42,672 ------w C:\WINDOWS\system32\wbsys.dll 2008-03-31 21:25 831,488 ----a-w C:\WINDOWS\system32\divx_xx0a.dll 2008-03-31 21:25 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll 2008-03-31 21:25 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll 2008-03-31 21:25 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll 2008-03-31 21:25 682,496 ----a-w C:\WINDOWS\system32\DivX.dll 2008-03-31 21:25 161,096 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe 2008-03-06 20:34 774,144 ----a-w C:\Program Files\RngInterstitial.dll 2007-09-28 20:28 47,360 ----a-w C:\Documents and Settings\fret en co\Application Data\pcouffin.sys 2007-02-06 19:09 87,608 ----a-w C:\Documents and Settings\Eigenaar\Application Data\ezpinst.exe 2007-02-06 19:09 47,360 ----a-w C:\Documents and Settings\Eigenaar\Application Data\pcouffin.sys 2006-11-13 21:18 49 ----a-w C:\Documents and Settings\Eigenaar\Application Data\internaldb41.dat 2006-11-13 21:17 337 ----a-w C:\Documents and Settings\Eigenaar\Application Data\internaldb1942.dat 2006-11-12 20:09 20,480 ----a-w C:\Documents and Settings\Eigenaar\Application Data\internaldb4827.dat 2006-11-12 20:08 9,216 ----a-w C:\Documents and Settings\Eigenaar\Application Data\internaldb8467.dat 2006-11-12 20:08 0 ----a-w C:\Documents and Settings\Eigenaar\Application Data\internaldb6334.dat 2006-11-12 20:08 0 ----a-w C:\Documents and Settings\Eigenaar\Application Data\internaldb5436.dat 2006-07-15 21:01 6,144 --sha-w C:\Program Files\Thumbs.db 2007-05-22 17:14 8,784 ----a-w C:\Program Files\mozilla firefox\plugins\ractrlkeyhook.dll 2007-05-22 17:17 245,408 ----a-w C:\Program Files\mozilla firefox\plugins\unicows.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WUSB54GPv4"="C:\Program Files\Wireless-G Portable USB Adapter Wireless Network Monitor\InvokeSvc3.exe" [2004-04-19 09:19 24576] "Cmaudio"="cmicnfg.cpl,CMICtrlWnd" [] "IntelliPoint"="C:\Program Files\Microsoft IntelliPoint\point32.exe" [2003-05-16 01:41 163840] "AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2008-04-16 09:42 579584] "NvCplDaemon"="C:\WINDOWS\System32\NvCpl.dll" [2007-12-05 02:41 8523776] "nwiz"="nwiz.exe" [2007-12-05 02:41 1626112 C:\WINDOWS\system32\nwiz.exe] "EPSON Stylus Photo R200 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE" [2003-09-11 05:00 99840] "IgfxTray"="C:\WINDOWS\System32\igfxtray.exe" [2004-02-10 11:55 155648] "HotKeysCmds"="C:\WINDOWS\System32\hkcmd.exe" [2004-02-10 11:51 118784] "type32"="C:\Program Files\Microsoft IntelliType Pro\type32.exe" [2003-05-16 01:45 114688] "SoundMan"="SOUNDMAN.EXE" [2003-06-10 19:12 55296 C:\WINDOWS\SOUNDMAN.EXE] "NvMediaCenter"="C:\WINDOWS\System32\NvMcTray.dll" [2007-12-05 02:41 81920] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16 39792] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-03-20 18:34 213936] "snpstd"="C:\WINDOWS\vsnpstd.exe" [2003-12-31 18:39 40960] "NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 12:50 155648] "Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 16:17 159744] "BootSkin Startup Jobs"="C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\BootSkin.exe" [2004-04-26 16:21 270336] "nmctxth"="C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2008-05-16 06:11 648504] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784] "Ashampoo AntiSpyWare2 Guard"="C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe" [ ] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2002-09-11 07:00 13312] "AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2007-10-27 09:01 219136] C:\Documents and Settings\fret en co\Menu Start\Programma's\Opstarten\ Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 20:16:50 113664] C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\ LocalCooling.lnk - C:\Program Files\Uniblue\LocalCooling\localcooling2.exe [2008-02-29 10:35:35 5054464] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "DisableChangePassword"= 0 (0x0) "DisableLockWorkstation"= 0 (0x0) "HideFastUserSwitching"= 0 (0x0) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoLogoff"= 0 (0x0) [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{93994DE8-8239-4655-B1D1-5F4E91300429}"= C:\PROGRA~1\DVDREG~1\DVDShell.dll [2004-10-09 16:18 49152] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] LMIinit.dll 2008-05-28 12:32 87352 C:\WINDOWS\system32\LMIinit.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "vidc.dvsd"= pdvcodec.dll [HKLM\~\startupfolder\C:^Documents and Settings^fret en co^Menu Start^Programma's^Opstarten^Registration Brothers In Arms.LNK] path=C:\Documents and Settings\fret en co\Menu Start\Programma's\Opstarten\Registration Brothers In Arms.LNK backup=C:\WINDOWS\pss\Registration Brothers In Arms.LNKStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AntiSpyWare2Guard] C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Easy Sync] C:\Program Files\Pocket Wizards\Easy Sync\Easy Sync.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI] --a------ 2007-04-17 14:03 63048 C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MRC] --a------ 2007-09-20 11:16 2419200 C:\Program Files\PC Tune-Up\PCTuneUp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] -ra------ 2001-07-09 12:50 155648 C:\WINDOWS\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SeekmoSA] C:\Program Files\Seekmo\bin\10.0.406.0\SeekmoSA.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "wuauserv"=2 (0x2) "usnjsvc"=3 (0x3) "Messenger"=2 (0x2) "LogMeIn"=2 (0x2) "LMIMaint"=2 (0x2) "Boonty Games"=3 (0x3) "wscsvc"=2 (0x2) "SharedAccess"=2 (0x2) "mnmsrvc"=3 (0x3) "Avg7UpdSvc"=2 (0x2) "AASW2_Service"=2 (0x2) R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);C:\WINDOWS\System32\drivers\sfdrv01a.sys [2006-07-05 14:46] R1 oreans32;oreans32;C:\WINDOWS\system32\drivers\oreans32.sys [2008-06-10 22:19] R2 LMIInfo;LogMeIn Kernel Information Provider;C:\Program Files\LogMeIn\x86\RaInfo.sys [2008-02-28 15:31] R2 MarxDev1;MarxDev1;C:\WINDOWS\System32\drivers\MarxDev1.sys [2001-05-28 16:30] R2 MarxDev2;MarxDev2;C:\WINDOWS\System32\drivers\MarxDev2.sys [2001-05-28 16:30] R2 MarxDev3;MarxDev3;C:\WINDOWS\System32\drivers\MarxDev3.sys [2001-05-28 16:30] R2 WUSB54GPv4SVC;WUSB54GPv4SVC;"C:\Program Files\Wireless-G Portable USB Adapter Wireless Network Monitor\WLService.exe" "WUSB54GPv4.exe" [] S2 eyu342u3aku;Print Spooler Service;C:\WINDOWS\system32\hbxyvwklfde.exe [] S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\System32\DRIVERS\ggflt.sys [2008-06-05 07:41] S3 kaspersky1;kaspersky1;C:\jaja\kaspersky\kaspersky.sys [] S3 ovt530;Webcam Classic;C:\WINDOWS\System32\Drivers\ov530vid.sys [] S3 z530bus;Sony Ericsson Z530 Driver driver (WDM);C:\WINDOWS\System32\DRIVERS\z530bus.sys [2008-05-16 22:12] S3 z530mdfl;Sony Ericsson Z530 USB WMC Modem Filter;C:\WINDOWS\System32\DRIVERS\z530mdfl.sys [2008-05-16 22:12] S3 z530mdm;Sony Ericsson Z530 USB WMC Modem Driver;C:\WINDOWS\System32\DRIVERS\z530mdm.sys [2008-05-16 22:12] S3 z530mgmt;Sony Ericsson Z530 USB WMC Device Management Drivers (WDM);C:\WINDOWS\System32\DRIVERS\z530mgmt.sys [2008-05-16 22:12] S3 z530obex;Sony Ericsson Z530 USB WMC OBEX Interface;C:\WINDOWS\System32\DRIVERS\z530obex.sys [2008-05-16 22:12] S4 AutoSyncService;Memeo AutoSync ;"C:\Program Files\Memeo\AutoSync\MemeoService.exe" [2007-07-06 18:28] S4 Boonty Games;Boonty Games;"C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe" [2007-07-25 13:16] S4 LMIRfsDriver;LogMeIn Remote File System Driver;C:\WINDOWS\System32\drivers\LMIRfsDriver.sys [2007-04-05 11:55] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6eff87f1-cc25-11dc-a0ad-0012177deaa4}] \Shell\AutoRun\command -  .exe \Shell\explore\Command -  .exe \Shell\open\Command -  .exe *Newly Created Service* - GTNDIS5 . Inhoud van de 'Gedeelde Taken' map "2007-11-02 12:37:08 C:\WINDOWS\Tasks\XoftSpy.job" - C:\Program Files\XoftSpy\XoftSpy.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-29 18:23:43 Windows 5.1.2600 Service Pack 1 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- PROCESS: C:\WINDOWS\explorer.exe -> C:\WINDOWS\System32\nview.dll . ------------------------ Other Running Processes ------------------------ . C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~1\Grisoft\AVG7\avgemc.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\wdfmgr.exe C:\Program Files\Wireless-G Portable USB Adapter Wireless Network Monitor\WUSB54GPv4.exe C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe C:\Program Files\Wireless-G Portable USB Adapter Wireless Network Monitor\InfoMyCa.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe . ************************************************************************** . Voltooingstijd: 2008-06-29 18:36:16 - machine was rebooted ComboFix-quarantined-files.txt 2008-06-29 16:36:07 Pre-Run: 25,785,446,400 bytes beschikbaar Post-Run: 29,384,261,632 bytes beschikbaar 263