ComboFix 12-12-20.02 - WillemB 21-12-2012 12:57:57.1.2 - x64 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.31.1043.18.8191.5592 [GMT 1:00] Gestart vanuit: g:\downloads\ComboFix.exe AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\WillemB\AppData\Local\Microsoft\Windows\Temporary Internet Files\{61E0E7A4-8CBA-4D4E-A916-5EA81A6A97CD}.xps . . (((((((((((((((((((( Bestanden Gemaakt van 2012-11-21 to 2012-12-21 )))))))))))))))))))))))))))))) . . 2012-12-21 12:01 . 2012-12-21 12:01 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-12-21 11:21 . 2012-12-21 11:21 -------- d-----w- c:\program files\Speccy 2012-12-20 12:32 . 2012-12-20 12:32 -------- d-----w- c:\windows\CheckSur 2012-12-20 08:09 . 2011-03-25 03:23 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys 2012-12-20 08:09 . 2011-03-25 03:23 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2012-12-20 08:09 . 2011-03-25 03:23 324608 ----a-w- c:\windows\system32\drivers\usbport.sys 2012-12-20 08:09 . 2011-03-25 03:22 52224 ----a-w- c:\windows\system32\drivers\usbehci.sys 2012-12-20 08:09 . 2011-03-25 03:22 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys 2012-12-20 08:09 . 2011-03-25 03:22 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2012-12-20 08:09 . 2011-03-25 03:22 7936 ----a-w- c:\windows\system32\drivers\usbd.sys 2012-12-19 09:32 . 2012-12-19 09:32 -------- d-----w- c:\windows\SysWow64\wbem\en-US 2012-12-19 09:32 . 2012-12-19 09:32 -------- d-----w- c:\windows\system32\wbem\en-US 2012-12-19 09:32 . 2012-12-19 09:32 -------- d-----w- c:\windows\SysWow64\Wat 2012-12-19 09:32 . 2012-12-19 09:32 -------- d-----w- c:\windows\system32\Wat 2012-12-18 13:56 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll 2012-12-18 13:56 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll 2012-12-18 13:34 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll 2012-12-18 13:34 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll 2012-12-18 13:25 . 2012-07-26 07:49 2560 ----a-w- c:\windows\system32\drivers\nl-NL\wdf01000.sys.mui 2012-12-18 13:25 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-12-18 13:25 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-12-18 13:25 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll 2012-12-18 13:17 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe 2012-12-18 13:03 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe 2012-12-18 13:03 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll 2012-12-18 13:03 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll 2012-12-18 13:03 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2012-12-18 13:03 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll 2012-12-18 13:03 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2012-12-18 13:03 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2012-12-18 12:57 . 2012-03-01 06:54 22896 ----a-w- c:\windows\system32\drivers\fs_rec.sys 2012-12-18 12:57 . 2012-03-01 06:40 80896 ----a-w- c:\windows\system32\imagehlp.dll 2012-12-18 12:57 . 2012-03-01 06:35 5120 ----a-w- c:\windows\system32\wmi.dll 2012-12-18 12:57 . 2012-03-01 05:45 158720 ----a-w- c:\windows\SysWow64\imagehlp.dll 2012-12-18 12:57 . 2012-03-01 05:40 5120 ----a-w- c:\windows\SysWow64\wmi.dll 2012-12-18 12:53 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys 2012-12-18 07:46 . 2010-08-26 05:27 148992 ----a-w- c:\windows\system32\t2embed.dll 2012-12-18 07:45 . 2010-03-04 07:57 2080256 ----a-w- c:\program files\Windows Mail\msoe.dll 2012-12-18 07:44 . 2010-12-21 06:16 442880 ----a-w- c:\windows\system32\winhttp.dll 2012-12-18 07:43 . 2009-12-19 09:50 14848 ----a-w- c:\windows\system32\tsbyuv.dll 2012-12-18 07:42 . 2011-08-27 05:40 861184 ----a-w- c:\windows\system32\oleaut32.dll 2012-12-17 12:28 . 2012-08-23 10:31 35192 ----a-w- c:\windows\system32\TURegOpt.exe 2012-12-17 12:28 . 2012-08-23 10:31 26488 ----a-w- c:\windows\system32\authuitu.dll 2012-12-17 12:28 . 2012-08-23 10:31 21880 ----a-w- c:\windows\SysWow64\authuitu.dll 2012-12-17 12:28 . 2012-12-17 12:29 -------- d-----w- c:\programdata\AVG 2012-12-17 12:28 . 2012-12-17 12:28 -------- d-sh--w- c:\programdata\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} 2012-12-16 13:41 . 2012-11-19 00:01 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B4F76EDF-BB74-4735-85B3-2584C40BADCB}\mpengine.dll 2012-12-16 13:41 . 2012-05-31 10:25 279656 ------w- c:\windows\system32\MpSigStub.exe 2012-12-15 17:31 . 2012-12-15 17:31 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller 2012-12-11 16:42 . 2012-12-11 16:42 -------- d-----w- c:\program files (x86)\R.G. Mechanics 2012-12-11 15:41 . 2012-12-11 15:41 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2012-12-11 15:41 . 2012-12-11 15:41 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite 2012-12-11 13:15 . 2012-12-21 11:14 -------- d-----w- c:\programdata\boost_interprocess 2012-12-11 13:00 . 2012-12-11 13:00 -------- d-----w- c:\program files\Tracker Software 2012-12-11 12:54 . 2012-12-11 12:54 -------- d-----w- c:\program files (x86)\FARO 2012-12-11 12:54 . 2008-10-15 05:22 5631312 ----a-w- c:\windows\system32\D3DX9_40.dll 2012-12-11 12:54 . 2008-10-15 05:22 519000 ----a-w- c:\windows\system32\d3dx10_40.dll 2012-12-11 12:54 . 2008-10-15 05:22 452440 ----a-w- c:\windows\SysWow64\d3dx10_40.dll 2012-12-11 12:54 . 2008-10-15 05:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll 2012-12-11 12:54 . 2008-10-15 05:22 2605920 ----a-w- c:\windows\system32\D3DCompiler_40.dll 2012-12-11 12:54 . 2008-10-15 05:22 2036576 ----a-w- c:\windows\SysWow64\D3DCompiler_40.dll 2012-12-11 12:42 . 2012-12-11 12:42 -------- d-----w- c:\programdata\FLEXnet 2012-12-11 12:15 . 2012-12-11 12:15 -------- d-----w- c:\program files\Common Files\Macrovision Shared 2012-12-11 12:12 . 2012-12-11 12:56 -------- d-----w- c:\program files\Common Files\Autodesk Shared 2012-12-11 12:12 . 2012-12-11 12:52 -------- d-----w- c:\program files\Autodesk 2012-12-11 12:12 . 2012-12-11 12:12 -------- d-----w- c:\program files (x86)\Autodesk 2012-12-11 12:11 . 2012-12-11 12:55 -------- d-----w- c:\program files (x86)\Common Files\Autodesk Shared 2012-12-11 11:55 . 2012-12-11 11:55 -------- d-----w- c:\program files (x86)\Microsoft Synchronization Services 2012-12-11 11:55 . 2012-12-11 11:55 -------- d-----w- c:\windows\PCHEALTH 2012-12-11 11:55 . 2012-12-11 11:55 -------- d-----w- c:\program files (x86)\Microsoft Sync Framework 2012-12-11 11:55 . 2012-12-11 11:55 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition 2012-12-11 11:54 . 2012-12-11 11:54 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8 2012-12-11 11:54 . 2012-12-11 11:54 -------- d-----w- c:\program files\Microsoft Office 2012-12-11 11:54 . 2012-12-11 11:54 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services 2012-12-11 11:53 . 2012-12-11 11:53 -------- d-----r- C:\MSOCache 2012-12-11 11:37 . 2012-12-18 13:52 -------- d-----w- c:\programdata\Microsoft Help 2012-12-11 11:36 . 2012-12-11 11:55 -------- d-----w- c:\program files (x86)\Microsoft.NET 2012-12-11 11:36 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll 2012-12-11 11:36 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll 2012-12-11 11:36 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll 2012-12-11 11:36 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll 2012-12-11 11:36 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe 2012-12-11 11:36 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll 2012-12-11 11:36 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2012-12-11 11:36 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll 2012-12-11 11:36 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe 2012-12-11 11:36 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll 2012-12-11 11:34 . 2012-12-15 16:13 -------- d-----w- c:\programdata\Autodesk 2012-12-11 11:28 . 2012-12-11 11:28 -------- d-----w- c:\windows\SysWow64\Macromed 2012-12-11 11:28 . 2012-12-11 11:29 -------- d-----w- c:\program files\Common Files\Adobe 2012-12-11 11:23 . 2012-12-11 11:29 -------- d-----w- c:\program files (x86)\Common Files\Adobe 2012-12-11 11:21 . 2012-12-11 11:21 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information 2012-12-11 11:21 . 2009-07-14 01:15 315904 ----a-w- c:\windows\SysWow64\Difx6132.rra 2012-12-11 11:21 . 2000-01-01 00:00 1976920 ----a-w- c:\windows\SysWow64\xRaidSetup.exe 2012-12-11 11:21 . 2000-01-01 00:00 162392 ----a-w- c:\windows\SysWow64\xRaidAPI.dll 2012-12-11 11:21 . 2012-12-11 11:21 -------- d-----w- c:\windows\RaidTool 2012-12-11 11:17 . 2012-12-11 11:17 -------- d-----w- c:\program files (x86)\Common Files\InstallShield 2012-12-11 11:17 . 2000-01-01 00:00 120408 ----a-w- c:\windows\system32\drivers\jraid.sys 2012-12-11 11:12 . 2009-03-16 13:18 24920 ----a-w- c:\windows\system32\X3DAudio1_6.dll 2012-12-11 11:07 . 2012-12-11 11:07 -------- d-----w- c:\program files (x86)\Crazybump 2012-12-11 11:04 . 2012-12-11 11:04 -------- d-----w- c:\program files (x86)\SlimDrivers 2012-12-11 11:04 . 2012-12-11 11:04 -------- d-----w- c:\program files (x86)\Common Files\LogiShrd 2012-12-11 11:02 . 2012-12-11 11:04 -------- d-----w- c:\program files\Common Files\Logishrd 2012-12-11 11:02 . 2012-12-11 11:03 -------- d-----w- c:\program files (x86)\Common Files\Apple 2012-12-11 11:02 . 2012-12-11 11:03 -------- d-----w- c:\programdata\Apple 2012-12-11 11:02 . 2012-12-11 11:02 -------- d-----w- c:\program files (x86)\uTorrent 2012-12-11 11:00 . 2012-12-11 11:00 -------- d-----w- c:\program files\WinRAR 2012-12-11 10:58 . 2012-12-11 15:38 -------- d-----w- c:\programdata\DAEMON Tools Lite 2012-12-11 10:50 . 2012-12-11 10:50 -------- d-----w- c:\windows\SysWow64\drivers\AVG 2012-12-11 10:50 . 2012-12-21 11:19 -------- d-----w- c:\windows\system32\drivers\AVG 2012-12-11 10:50 . 2012-12-11 10:50 -------- d-----w- C:\$AVG 2012-12-11 10:50 . 2012-12-17 12:28 -------- d-----w- c:\program files (x86)\AVG 2012-12-11 10:46 . 2012-12-21 11:19 -------- d-----w- c:\programdata\MFAData 2012-12-11 10:46 . 2012-12-11 10:46 -------- d--h--w- c:\programdata\Common Files 2012-12-11 10:46 . 2012-12-11 10:46 -------- d-----w- c:\program files (x86)\Microsoft Silverlight 2012-12-11 10:45 . 2012-12-11 10:45 -------- d-----w- c:\program files (x86)\Webteh 2012-12-11 10:33 . 2012-12-11 10:33 -------- d-----w- c:\programdata\ATI 2012-12-11 10:33 . 2012-12-11 10:33 0 ----a-w- c:\windows\ativpsrm.bin 2012-12-11 10:30 . 2012-12-11 10:30 -------- d-----w- c:\program files (x86)\AMD APP 2012-12-11 10:30 . 2012-12-11 10:30 -------- d-----w- c:\program files\Common Files\ATI Technologies 2012-12-11 10:30 . 2012-12-11 10:30 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies 2012-12-11 10:29 . 2012-12-11 10:29 -------- d-----w- c:\program files (x86)\ATI Technologies 2012-12-11 10:29 . 2012-12-19 13:01 -------- d-sh--w- c:\windows\Installer 2012-12-11 10:29 . 2012-12-11 10:30 -------- d-----w- c:\program files (x86)\Google 2012-12-11 10:29 . 2012-12-11 10:29 -------- d-----w- c:\program files\ATI Technologies . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-10-16 21:20 . 2012-12-18 07:43 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll 2012-10-16 21:20 . 2012-12-18 07:43 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll 2012-10-16 20:34 . 2012-12-18 07:43 559104 ----a-w- c:\windows\apppatch\AcLayers.dll 2012-10-04 16:45 . 2012-12-18 07:44 44032 ----a-w- c:\windows\apppatch\acwow64.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-12-11 969104] "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-06 642216] "AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-07-31 2596984] "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312] . c:\users\WillemB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dropbox.lnk - c:\users\WillemB\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-12-17 29428448] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-12-11 1432400] R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-18 1255736] S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-07-26 291680] S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696] S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-08-24 384352] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-11 283200] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-07-28 239616] S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232] S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\avgidsagent.exe [2012-08-13 5167736] S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288] S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2012-08-23 2148216] S3 AtcL001;NDIS-minipoortstuurprogramma voor L1 Gigabit Ethernet-controller van Atheros;c:\windows\system32\DRIVERS\l160x64.sys [2009-06-25 58368] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-05-14 96896] S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2011-12-23 124496] S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2012-07-04 11880] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - CPUZ135 *Deregistered* - cpuz135 . Inhoud van de 'Gedeelde Taken' map . 2012-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-11 10:29] . 2012-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-11 10:29] . 2012-12-21 c:\windows\Tasks\SlimDrivers Startup.job - c:\program files (x86)\SlimDrivers\SlimDrivers.exe [2012-10-14 14:29] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2012-02-05 415680] . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.nl/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.1.254 195.241.77.55 195.241.77.58 . - - - - ORPHANS VERWIJDERD - - - - . ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - c:\users\WillemB\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-12-21 13:03:31 ComboFix-quarantined-files.txt 2012-12-21 12:03 . Pre-Run: 10.446.782.464 bytes beschikbaar Post-Run: 10.413.338.624 bytes beschikbaar . - - End Of File - - 7568FC3D30F2BEA5BF45E4A843D5DEB2