ComboFix 13-08-13.01 - Henny&Mar 13-08-2013  18:47:40.2.4 - x64 NETWORK
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.31.1043.18.7991.6707 [GMT 2:00]
Gestart vanuit: c:\users\Henny&Mar\Desktop\downloads\ComboFix.exe
AV: Kaspersky Internet Security *Enabled/Updated* {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
FW: Kaspersky Internet Security *Disabled* {1691B380-548E-1A7A-BE85-9A42CE15AEFF}
SP: Kaspersky Internet Security *Enabled/Updated* {95CBD341-38DB-14AC-AF6A-08054B41A339}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Nieuw herstelpunt werd aangemaakt
.
[i] ADS - Windows: deleted 0 bytes in 1 streams. [/i]
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
d:\utils\utorrent.exe
.
---- Voorgaande Run -------
.
c:\users\Henny&Mar\AppData\Roaming\Henny&Mar3SQLite3.dll
c:\users\Henny&Mar\AppData\Roaming\Henny&Marlog.dat
c:\windows\.tmp
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\shutdown.dll
c:\windows\SysWow64\muzapp.exe
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\settings.ini
c:\windows\SysWow64\wpcap.dll
c:\windows\wininit.ini
D:\install.exe
d:\utils\utorrent.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2013-07-13 to 2013-08-13  ))))))))))))))))))))))))))))))
.
.
2013-08-13 16:53 . 2013-08-13 16:53	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-08-13 15:57 . 2013-08-13 15:57	--------	d-----w-	c:\users\Henny&Mar\AppData\Roaming\SpeedyPC Software
2013-08-13 15:57 . 2013-08-13 15:57	--------	d-----w-	c:\users\Henny&Mar\AppData\Roaming\DriverCure
2013-08-13 15:57 . 2013-08-13 16:05	--------	d-----w-	c:\programdata\SpeedyPC Software
2013-08-13 09:09 . 2013-08-13 16:04	76232	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{F1C08CE7-2479-41C6-9EF0-C42C44081D0A}\offreg.dll
2013-08-13 09:00 . 2013-08-13 09:00	--------	d-----w-	c:\users\Henny&Mar\AppData\Local\PassMark
2013-08-13 08:59 . 2008-07-12 06:18	540688	----a-w-	c:\windows\system32\d3dx10_39.dll
2013-08-13 08:59 . 2008-07-12 06:18	4992520	----a-w-	c:\windows\system32\D3DX9_39.dll
2013-08-13 08:59 . 2008-07-12 06:18	1942552	----a-w-	c:\windows\system32\D3DCompiler_39.dll
2013-08-13 08:59 . 2013-08-13 08:59	--------	d-----w-	c:\programdata\Passmark
2013-08-13 08:39 . 2013-08-13 08:45	--------	d-----w-	c:\users\Henny&Mar\AppData\Roaming\DVD Flick
2013-08-13 08:39 . 2013-08-13 08:39	--------	d-----w-	c:\program files (x86)\DVD Flick
2013-08-13 08:39 . 2008-08-31 11:27	28672	----a-w-	c:\windows\SysWow64\mousewheel.ocx
2013-08-13 08:39 . 2007-08-31 16:36	36864	----a-w-	c:\windows\SysWow64\trayicon_handler.ocx
2013-08-13 08:39 . 2003-01-26 11:41	40960	----a-w-	c:\windows\SysWow64\ssubtmr6.dll
2013-08-13 08:39 . 1998-06-23 22:00	164144	----a-w-	c:\windows\SysWow64\comct232.ocx
2013-08-13 08:06 . 2013-07-02 08:34	9460976	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{F1C08CE7-2479-41C6-9EF0-C42C44081D0A}\mpengine.dll
2013-08-07 18:08 . 2013-08-07 18:08	31360	----a-w-	c:\windows\system32\drivers\amdkmpfd.sys
2013-08-07 17:47 . 2013-08-07 17:47	--------	d-----w-	c:\program files\Synaptics
2013-08-07 17:47 . 2013-08-07 17:47	1795952	----a-w-	c:\windows\system32\WdfCoInstaller01011.dll
2013-08-07 17:47 . 2013-08-07 17:47	34544	----a-w-	c:\windows\system32\drivers\Smb_driver_Intel.sys
2013-08-07 16:16 . 2013-08-07 16:16	2168416	----a-w-	c:\windows\system32\coin91.dll
2013-08-07 16:14 . 2013-08-07 16:14	872152	----a-w-	c:\windows\system32\drivers\Rt64win7.sys
2013-08-07 16:14 . 2013-08-07 16:14	74456	----a-w-	c:\windows\system32\RtNicProp64.dll
2013-08-06 19:58 . 2013-08-06 19:58	--------	d-----w-	c:\users\Henny&Mar\AppData\Roaming\Uniblue
2013-08-06 19:58 . 2013-08-06 19:58	--------	d-----w-	c:\program files (x86)\Uniblue
2013-07-31 20:03 . 2013-07-31 20:07	--------	d-----w-	c:\programdata\WinTuning
2013-07-31 20:01 . 2013-08-02 16:06	--------	d-----w-	c:\program files (x86)\WinTuning 7
2013-07-27 12:04 . 2013-07-27 12:04	--------	d-----w-	c:\users\Henny&Mar\AppData\Roaming\OpenOffice
2013-07-27 12:03 . 2013-07-27 12:03	--------	d-----w-	c:\program files (x86)\OpenOffice 4
2013-07-26 20:08 . 2013-07-26 20:08	--------	d-----w-	c:\program files\Speccy
2013-07-26 16:11 . 2013-07-26 16:12	--------	d-----w-	c:\users\Henny&Mar\AppData\Roaming\InfraRecorder
2013-07-26 16:07 . 2013-07-26 16:10	--------	d-----w-	c:\users\Henny&Mar\AppData\Roaming\SPlayer
2013-07-25 18:37 . 2013-07-25 18:37	--------	d-----w-	C:\RegBackup
2013-07-25 18:36 . 2013-07-25 18:41	181064	----a-w-	c:\windows\PSEXESVC.EXE
2013-07-23 10:44 . 2013-07-23 10:44	--------	d-----w-	c:\program files (x86)\avg
2013-07-22 16:55 . 2013-07-22 16:55	--------	d-----w-	c:\program files\CPUID
2013-07-19 16:02 . 1998-06-17 22:00	89360	----a-w-	c:\windows\SysWow64\VB5DB.DLL
2013-07-18 15:37 . 2013-07-18 15:37	--------	d-----w-	c:\users\Henny&Mar\.Virtualbox.sav
2013-07-18 15:28 . 2013-07-18 15:28	--------	d-----w-	c:\users\Henny&Mar\.calme
2013-07-15 17:03 . 2013-07-15 17:03	--------	d-----w-	c:\users\Henny&Mar\AppData\Local\Diagnostics
.
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-07 17:48 . 2012-08-09 13:21	62464	----a-w-	c:\windows\system32\igfxsrvc.dll
2013-08-07 17:48 . 2011-02-02 21:37	9014784	----a-w-	c:\windows\system32\igfxress.dll
2013-08-07 17:48 . 2011-02-11 17:16	8314368	----a-w-	c:\windows\system32\igdumd64.dll
2013-08-07 17:48 . 2011-02-11 17:12	6324224	----a-w-	c:\windows\SysWow64\igdumd32.dll
2013-08-07 17:48 . 2011-02-11 17:09	581120	----a-w-	c:\windows\SysWow64\igdumdx32.dll
2013-08-07 17:48 . 2011-02-02 21:37	9528832	----a-w-	c:\windows\system32\igd10umd64.dll
2013-08-07 17:48 . 2011-02-02 21:36	110080	----a-w-	c:\windows\system32\hccutils.dll
2013-08-07 16:14 . 2011-02-02 21:49	108760	----a-w-	c:\windows\system32\RTNUninst64.dll
2013-07-11 11:06 . 2011-01-05 11:58	78185248	----a-w-	c:\windows\system32\MRT.exe
2013-06-30 17:28 . 2013-02-26 20:26	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-30 17:28 . 2012-12-28 10:47	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-24 08:07 . 2013-06-24 08:07	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-24 08:07 . 2012-07-02 21:09	867240	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2013-06-24 08:07 . 2011-01-05 13:12	789416	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-06-11 23:43 . 2013-07-11 11:03	1767936	----a-w-	c:\windows\SysWow64\wininet.dll
2013-06-11 23:43 . 2013-07-11 11:03	2877440	----a-w-	c:\windows\SysWow64\jscript9.dll
2013-06-11 23:42 . 2013-07-11 11:03	61440	----a-w-	c:\windows\SysWow64\iesetup.dll
2013-06-11 23:42 . 2013-07-11 11:03	109056	----a-w-	c:\windows\SysWow64\iesysprep.dll
2013-06-11 23:26 . 2013-07-11 11:03	51712	----a-w-	c:\windows\system32\ie4uinit.exe
2013-06-11 23:26 . 2013-07-11 11:03	2241024	----a-w-	c:\windows\system32\wininet.dll
2013-06-11 23:26 . 2013-07-11 11:03	1365504	----a-w-	c:\windows\system32\urlmon.dll
2013-06-11 23:25 . 2013-07-11 11:03	19238912	----a-w-	c:\windows\system32\mshtml.dll
2013-06-11 23:25 . 2013-07-11 11:03	603136	----a-w-	c:\windows\system32\msfeeds.dll
2013-06-11 23:25 . 2013-07-11 11:03	855552	----a-w-	c:\windows\system32\jscript.dll
2013-06-11 23:25 . 2013-07-11 11:03	3958784	----a-w-	c:\windows\system32\jscript9.dll
2013-06-11 23:25 . 2013-07-11 11:03	53248	----a-w-	c:\windows\system32\jsproxy.dll
2013-06-11 23:25 . 2013-07-11 11:03	67072	----a-w-	c:\windows\system32\iesetup.dll
2013-06-11 23:25 . 2013-07-11 11:03	526336	----a-w-	c:\windows\system32\ieui.dll
2013-06-11 23:25 . 2013-07-11 11:03	39936	----a-w-	c:\windows\system32\iernonce.dll
2013-06-11 23:25 . 2013-07-11 11:03	2648576	----a-w-	c:\windows\system32\iertutil.dll
2013-06-11 23:25 . 2013-07-11 11:03	136704	----a-w-	c:\windows\system32\iesysprep.dll
2013-06-11 23:25 . 2013-07-11 11:03	15404032	----a-w-	c:\windows\system32\ieframe.dll
2013-06-11 22:51 . 2013-07-11 11:03	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-06-11 22:50 . 2013-07-11 11:03	89600	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2013-06-07 03:22 . 2013-07-11 11:03	2706432	----a-w-	c:\windows\system32\mshtml.tlb
2013-06-07 02:37 . 2013-07-11 11:03	2706432	----a-w-	c:\windows\SysWow64\mshtml.tlb
2013-06-05 03:34 . 2013-07-11 10:07	3153920	----a-w-	c:\windows\system32\win32k.sys
2013-06-04 06:00 . 2013-07-11 10:07	624128	----a-w-	c:\windows\system32\qedit.dll
2013-06-04 04:53 . 2013-07-11 10:07	509440	----a-w-	c:\windows\SysWow64\qedit.dll
2013-05-22 11:34 . 2013-06-14 08:19	37344	----a-w-	c:\windows\SysWow64\FsUsbExDisk.Sys
2013-05-22 11:34 . 2013-06-14 08:19	233472	----a-w-	c:\windows\SysWow64\FsUsbExService.Exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-08 19:13	222832	----a-w-	c:\users\Henny&Mar\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-08 19:13	222832	----a-w-	c:\users\Henny&Mar\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-08 19:13	222832	----a-w-	c:\users\Henny&Mar\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-03-12 06:39	129272	----a-w-	c:\users\Henny&Mar\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-03-12 06:39	129272	----a-w-	c:\users\Henny&Mar\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-03-12 06:39	129272	----a-w-	c:\users\Henny&Mar\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"ABBYY Screenshot Reader Bonus"="c:\program files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe" [2009-11-25 939272]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe" [2012-10-24 206448]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-10-11 59280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoFavorites"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
R1 A2DDA;A2 Direct Disk Access Support Driver; [x]
R1 SuperMounter;SuperMounter; [x]
R1 VD_FileDisk;VD_FileDisk; [x]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [x]
R2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys;c:\windows\SYSNATIVE\drivers\aksdf.sys [x]
R2 CDMA Device Service;CDMA Device Service;d:\samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe;d:\samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [x]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [x]
R2 Everything;Everything;c:\program files (x86)\Everything\Everything.exe;c:\program files (x86)\Everything\Everything.exe [x]
R2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [x]
R2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files (x86)\Freemake\CaptureLib\CaptureLibService.exe;c:\program files (x86)\Freemake\CaptureLib\CaptureLibService.exe [x]
R2 gupdate;Google Update-service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 NitroDriverReadSpool2;NitroPDFDriverCreatorReadSpool2;c:\program files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe;c:\program files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [x]
R2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [x]
R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\nlssrv32.exe;c:\windows\SysWOW64\nlssrv32.exe [x]
R2 NPVR Recording Service;NPVR Recording Service; [x]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 BTMCOM;Bluetooth Serial Port; [x]
R3 BTMUSB;Motorola Bluetooth Radio Service; [x]
R3 cpuz135;cpuz135;c:\users\HENNY&~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys;c:\users\HENNY&~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x]
R3 dgderdrv;dgderdrv; [x]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\SysWOW64\FsUsbExDisk.SYS;c:\windows\SysWOW64\FsUsbExDisk.SYS [x]
R3 Granola PM Manager;Granola PM Manager; [x]
R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 NLNdisMP;NLNdisMP; [x]
R3 NLNdisPT;NetLimiter Ndis Protocol Service; [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys;c:\windows\SYSNATIVE\Drivers\pcouffin.sys [x]
R3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 reparse;reparse; [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 phmcd;phmcd;c:\windows\system32\DRIVERS\phmcd.sys;c:\windows\SYSNATIVE\DRIVERS\phmcd.sys [x]
S0 vidsflt63;Acronis Disk Storage Filter (63);c:\windows\system32\DRIVERS\vsflt63.sys;c:\windows\SYSNATIVE\DRIVERS\vsflt63.sys [x]
S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys;c:\windows\SYSNATIVE\DRIVERS\kl2.sys [x]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
S3 BazisVirtualCDBus;WinCDEmu Virtual Bus Driver;c:\windows\system32\DRIVERS\BazisVirtualCDBus.sys;c:\windows\SYSNATIVE\DRIVERS\BazisVirtualCDBus.sys [x]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
.
.
Inhoud van de 'Gedeelde Taken' map
.
2013-08-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-26 17:28]
.
2013-06-25 c:\windows\Tasks\Google Update MAGIX PCCT.job
- c:\users\Henny&Mar\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-30 19:28]
.
2013-08-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-27 16:44]
.
2013-08-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-27 16:44]
.
2013-08-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3152500780-2593774249-2770213772-1001Core.job
- c:\users\Henny&Mar\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-30 19:28]
.
2013-08-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3152500780-2593774249-2770213772-1001UA.job
- c:\users\Henny&Mar\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-30 19:28]
.
2013-06-26 c:\windows\Tasks\Java(TM) Platform SE Auto Updater 2 0 MAGIX PCCT.job
- c:\program files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 05:32]
.
2013-08-13 c:\windows\Tasks\powersuite_monitor.job
- c:\program files (x86)\Uniblue\Powersuite\powersuite_monitor.exe [2013-08-06 08:36]
.
2013-06-25 c:\windows\Tasks\RealPlayer (32-bit)  MAGIX PCCT.job
- c:\program files (x86)\real\realplayer\Update\realsched.exe [2013-01-23 07:18]
.
2013-08-13 c:\windows\Tasks\simplitec PCLive.job
- c:\program files (x86)\simplitec\PC Live\PCLive.exe [2012-10-11 13:32]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0}]
2010-11-05 01:57	444752	----a-w-	c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-08 19:13	261744	----a-w-	c:\users\Henny&Mar\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-08 19:13	261744	----a-w-	c:\users\Henny&Mar\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-08 19:13	261744	----a-w-	c:\users\Henny&Mar\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-03-12 06:39	162552	----a-w-	c:\users\Henny&Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-03-12 06:39	162552	----a-w-	c:\users\Henny&Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-03-12 06:39	162552	----a-w-	c:\users\Henny&Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-03-12 06:39	162552	----a-w-	c:\users\Henny&Mar\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-06-27 14:11	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-06-27 14:11	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-06-27 14:11	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-06-27 14:11	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-06-27 14:11	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-06-27 14:11	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-08-10 1873256]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-08-07 13626072]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-08-07 168944]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-08-07 394224]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-08-07 418800]
.
------- Bijkomende Scan -------
.
uStart Page = www.hotmail.com
uDefault_Search_URL = hxxp://www.google.com/ie
uLocal Page = c:\windows\system32\blank.htm
mWindow Title = Microsoft Internet Explorer
mLocal Page = www.hotmail.com
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: &Verzenden naar OneNote - c:\progra~2\MICROS~2\Office15\ONBttnIE.dll/105
IE: Doel van koppeling converteren naar Adobe PDF
IE: Doel van koppeling toevoegen aan bestaande PDF
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MIF5BA~1\Office15\EXCEL.EXE/3000
IE: Toevoegen aan Anti-Banner - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm
IE: Toevoegen aan bestaande PDF
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Henny&Mar\AppData\Roaming\Mozilla\Firefox\Profiles\g2a7bxa0.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://www.hotmail.com/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=vmn&type=vmn-toolbarcleaner-1_1-ya-bs-rp&q=
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: network.http.max-connections-per-server - 8
.
- - - - ORPHANS VERWIJDERD - - - -
.
Wow6432Node-HKCU-Run-µTorrent - d:\utils\utorrent.exe
Wow6432Node-HKLM-RunOnce-<NO NAME> - (no file)
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2013-08-13  18:54:53
ComboFix-quarantined-files.txt  2013-08-13 16:54
.
Pre-Run: 63,349,293,056 bytes beschikbaar
Post-Run: 62,795,182,080 bytes beschikbaar
.
- - End Of File - - 10F62337C83952358DB494635DEDFDBC
77443CB5FF3D84F5FF3288A9C441020A