ComboFix 14-05-27.02 - Gebruiker 07-06-2014   4:40.1.2 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.31.1043.18.5558.4029 [GMT 2:00]
Gestart vanuit: c:\users\Gebruiker\pc clean\ComboFix.exe
AV: AVG Internet Security 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2014 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\0.bak
C:\00054111_wxpvista7_uiv700_1616_609_2010_drv1006_0_614_2010.exe
C:\install.exe
c:\windows\IsUn0413.exe
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2014-05-07 to 2014-06-07  ))))))))))))))))))))))))))))))
.
.
2014-06-07 02:48 . 2014-06-07 02:48	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-06-07 01:58 . 2014-06-07 01:58	283064	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2014-06-07 01:45 . 2014-06-07 01:58	--------	d-----w-	c:\program files (x86)\DAEMON Tools Lite
2014-06-07 01:45 . 2014-06-07 01:55	--------	d-----w-	c:\programdata\DAEMON Tools Lite
2014-06-07 01:05 . 2014-06-07 01:05	--------	d-----w-	c:\windows\PCHEALTH
2014-06-07 01:02 . 2014-06-07 01:02	--------	d-----r-	C:\MSOCache
2014-06-06 23:59 . 2013-06-06 05:50	41472	----a-w-	c:\windows\system32\lpk.dll
2014-06-06 23:59 . 2013-06-06 05:49	100864	----a-w-	c:\windows\system32\fontsub.dll
2014-06-06 23:59 . 2013-06-06 05:49	14336	----a-w-	c:\windows\system32\dciman32.dll
2014-06-06 23:59 . 2013-06-06 05:47	46080	----a-w-	c:\windows\system32\atmlib.dll
2014-06-06 23:59 . 2013-06-06 04:57	25600	----a-w-	c:\windows\SysWow64\lpk.dll
2014-06-06 23:59 . 2013-06-06 04:51	70656	----a-w-	c:\windows\SysWow64\fontsub.dll
2014-06-06 23:59 . 2013-06-06 04:50	10240	----a-w-	c:\windows\SysWow64\dciman32.dll
2014-06-06 23:59 . 2013-06-06 03:30	368128	----a-w-	c:\windows\system32\atmfd.dll
2014-06-06 23:59 . 2013-06-06 03:01	295424	----a-w-	c:\windows\SysWow64\atmfd.dll
2014-06-06 23:59 . 2013-06-06 03:01	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
2014-06-06 23:57 . 2013-10-12 02:32	150016	----a-w-	c:\windows\system32\wshom.ocx
2014-06-06 23:57 . 2013-10-12 02:31	202752	----a-w-	c:\windows\system32\scrrun.dll
2014-06-06 23:57 . 2013-10-12 02:04	121856	----a-w-	c:\windows\SysWow64\wshom.ocx
2014-06-06 23:57 . 2013-10-12 01:33	156160	----a-w-	c:\windows\system32\cscript.exe
2014-06-06 23:57 . 2013-10-12 02:03	163840	----a-w-	c:\windows\SysWow64\scrrun.dll
2014-06-06 23:57 . 2013-10-12 01:33	168960	----a-w-	c:\windows\system32\wscript.exe
2014-06-06 23:57 . 2013-10-12 01:15	141824	----a-w-	c:\windows\SysWow64\wscript.exe
2014-06-06 23:57 . 2013-10-12 01:15	126976	----a-w-	c:\windows\SysWow64\cscript.exe
2014-06-06 22:38 . 2014-06-06 22:39	--------	d-----w-	c:\programdata\Media Get LLC
2014-06-06 20:56 . 2014-06-06 20:56	--------	d-----w-	c:\program files\Vuze
2014-06-06 18:04 . 2014-06-06 22:57	--------	d-----w-	c:\program files (x86)\Common Files\ParetoLogic
2014-06-06 18:04 . 2014-06-06 22:57	--------	d-----w-	c:\program files (x86)\ParetoLogic
2014-06-06 17:44 . 2014-06-06 17:44	--------	d-----w-	c:\programdata\CDB
2014-06-06 12:39 . 2014-06-06 12:39	--------	d-----w-	c:\programdata\VS Revo Group
2014-06-06 12:39 . 2009-12-30 09:21	31800	----a-w-	c:\windows\system32\drivers\revoflt.sys
2014-06-06 12:39 . 2014-06-06 12:39	--------	d-----w-	c:\program files\VS Revo Group
2014-06-06 12:20 . 2014-06-06 12:20	--------	d-----w-	c:\program files (x86)\PrivaZer
2014-06-06 12:20 . 2014-06-06 12:20	--------	d-----w-	c:\programdata\privazer
2014-06-06 12:19 . 2014-06-06 22:57	--------	d-----w-	c:\program files (x86)\SlimComputer
2014-06-06 12:13 . 2014-06-06 12:21	--------	d-----w-	c:\programdata\ProductData
2014-06-06 12:13 . 2014-06-06 12:13	--------	d-----w-	c:\programdata\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-06-06 12:13 . 2014-06-06 12:21	--------	d-----w-	c:\programdata\IObit
2014-06-06 12:13 . 2014-06-06 12:13	--------	d-----w-	c:\program files (x86)\IObit
2014-06-06 11:57 . 2014-06-06 11:57	--------	d-----w-	c:\programdata\HitmanPro
2014-06-06 11:20 . 2014-06-06 11:51	1676	----a-w-	c:\windows\system32\ASOROSet.bin
2014-06-06 11:04 . 2012-10-15 15:02	19888	----a-w-	c:\windows\system32\roboot64.exe
2014-06-06 10:36 . 2014-06-06 10:37	--------	d-----w-	c:\program files (x86)\PhotoScape
2014-06-06 10:35 . 2014-06-06 10:35	--------	d-----w-	c:\program files (x86)\Photo Effects Studio
2014-06-05 21:00 . 2014-06-05 21:00	--------	d-----w-	c:\program files (x86)\Pirate
2014-06-05 20:57 . 2014-06-05 20:57	--------	d-----w-	c:\program files (x86)\Common Files\xing shared
2014-06-05 20:55 . 2014-06-05 20:55	505416	----a-w-	c:\windows\SysWow64\msvcp71.dll
2014-06-05 20:55 . 2014-06-05 20:58	--------	d-----w-	c:\program files (x86)\Real
2014-06-05 20:51 . 2014-06-05 20:51	--------	d-----w-	c:\program files (x86)\Flash Movie Player
2014-06-03 22:52 . 2014-06-03 22:52	--------	d-----w-	c:\program files (x86)\PDF Architect
2014-06-03 22:51 . 2014-06-03 22:55	--------	d-----w-	c:\program files (x86)\Common Files\PDF Architect
2014-06-03 22:47 . 2014-06-03 22:47	--------	d-----w-	c:\program files (x86)\FreeFileViewer
2014-06-03 22:38 . 2014-06-03 22:39	--------	d-----w-	c:\program files (x86)\OpenOffice 4
2014-06-03 22:35 . 2014-06-06 22:57	--------	d-----w-	c:\program files\pdfforge
2014-06-03 22:32 . 2014-04-25 15:44	110264	----a-w-	c:\windows\system32\pdfcmon.dll
2014-06-03 22:32 . 2014-04-25 15:44	662288	----a-w-	c:\windows\SysWow64\MSCOMCT2.OCX
2014-06-03 22:32 . 2014-04-25 15:44	137000	----a-w-	c:\windows\SysWow64\MSMAPI32.OCX
2014-06-03 22:32 . 2014-06-06 12:35	--------	d-----w-	c:\program files (x86)\PDFCreator
2014-06-03 22:32 . 2014-04-25 15:44	23552	----a-w-	c:\windows\SysWow64\MSMPIDE.DLL
2014-06-03 22:31 . 2014-06-03 22:31	--------	d-----w-	c:\program files (x86)\VeryPDF PDF2Word v2.0
2014-06-03 22:14 . 2014-06-03 22:14	--------	d-----w-	c:\programdata\PDF Architect 2
2014-06-03 22:09 . 2014-06-03 22:09	--------	d-----w-	c:\program files (x86)\MSECache
2014-06-03 21:51 . 2014-06-03 21:51	--------	d-----w-	C:\sh4ldr
2014-06-03 16:46 . 2013-05-10 04:30	167424	----a-w-	c:\program files\Windows Media Player\wmplayer.exe
2014-06-03 16:46 . 2013-05-10 03:48	164864	----a-w-	c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-06-03 16:46 . 2013-05-10 05:56	12625920	----a-w-	c:\windows\system32\wmploc.DLL
2014-06-03 16:46 . 2013-05-10 04:56	12625408	----a-w-	c:\windows\SysWow64\wmploc.DLL
2014-06-03 16:46 . 2013-05-10 05:56	14631424	----a-w-	c:\windows\system32\wmp.dll
2014-06-03 16:35 . 2012-10-03 17:44	70656	----a-w-	c:\windows\system32\nlaapi.dll
2014-06-03 16:35 . 2012-10-03 17:44	303104	----a-w-	c:\windows\system32\nlasvc.dll
2014-06-03 16:35 . 2012-10-03 17:44	246272	----a-w-	c:\windows\system32\netcorehc.dll
2014-06-03 16:35 . 2012-10-03 17:44	216576	----a-w-	c:\windows\system32\ncsi.dll
2014-06-03 16:35 . 2012-10-03 17:42	569344	----a-w-	c:\windows\system32\iphlpsvc.dll
2014-06-03 16:35 . 2012-10-03 16:42	175104	----a-w-	c:\windows\SysWow64\netcorehc.dll
2014-06-03 16:35 . 2012-10-03 16:42	156672	----a-w-	c:\windows\SysWow64\ncsi.dll
2014-06-03 16:35 . 2012-10-03 16:07	45568	----a-w-	c:\windows\system32\drivers\tcpipreg.sys
2014-06-03 16:35 . 2012-01-13 07:12	52224	----a-w-	c:\windows\SysWow64\nlaapi.dll
2014-06-03 16:35 . 2012-10-03 17:44	18944	----a-w-	c:\windows\system32\netevent.dll
2014-06-03 16:35 . 2012-10-03 16:42	18944	----a-w-	c:\windows\SysWow64\netevent.dll
2014-06-03 16:31 . 2014-06-03 16:32	--------	d-----r-	c:\program files (x86)\Skype
2014-06-03 16:31 . 2014-06-03 16:31	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2014-06-03 16:31 . 2014-06-03 16:32	--------	d-----w-	c:\programdata\Skype
2014-06-03 16:30 . 2012-02-11 06:36	559104	----a-w-	c:\windows\system32\spoolsv.exe
2014-06-03 16:30 . 2012-02-11 06:36	67072	----a-w-	c:\windows\splwow64.exe
2014-06-03 15:50 . 2014-06-03 15:50	--------	d-s---w-	c:\windows\system32\CompatTel
2014-06-03 15:29 . 2014-06-03 15:29	--------	d-----w-	c:\windows\Migration
2014-06-03 15:18 . 2014-01-28 02:32	228864	----a-w-	c:\windows\system32\wwansvc.dll
2014-06-03 15:17 . 2013-12-04 02:16	658432	----a-w-	c:\windows\system32\RMActivate_isv.exe
2014-06-03 15:16 . 2013-10-05 20:25	1474048	----a-w-	c:\windows\system32\crypt32.dll
2014-06-03 15:16 . 2013-10-05 19:57	1168384	----a-w-	c:\windows\SysWow64\crypt32.dll
2014-06-03 15:16 . 2013-07-09 05:46	184320	----a-w-	c:\windows\system32\cryptsvc.dll
2014-06-03 15:16 . 2013-07-09 05:46	139776	----a-w-	c:\windows\system32\cryptnet.dll
2014-06-03 15:16 . 2013-07-09 04:46	140288	----a-w-	c:\windows\SysWow64\cryptsvc.dll
2014-06-03 15:16 . 2013-07-09 04:46	103936	----a-w-	c:\windows\SysWow64\cryptnet.dll
2014-06-03 15:16 . 2014-01-24 02:37	1684928	----a-w-	c:\windows\system32\drivers\ntfs.sys
2014-06-03 15:16 . 2013-09-08 02:30	1903552	----a-w-	c:\windows\system32\drivers\tcpip.sys
2014-06-03 15:16 . 2013-11-26 11:40	376768	----a-w-	c:\windows\system32\drivers\netio.sys
2014-06-03 15:16 . 2012-08-21 21:01	245760	----a-w-	c:\windows\system32\OxpsConverter.exe
2014-06-03 15:08 . 2013-08-01 12:09	983488	----a-w-	c:\windows\system32\drivers\dxgkrnl.sys
2014-06-03 15:08 . 2013-04-10 06:01	265064	----a-w-	c:\windows\system32\drivers\dxgmms1.sys
2014-06-03 15:08 . 2011-02-03 11:25	144384	----a-w-	c:\windows\system32\cdd.dll
2014-06-03 12:13 . 2014-06-03 12:13	--------	d-----w-	c:\program files (x86)\RarmaRadio
2014-06-03 12:11 . 2007-04-14 23:05	991232	----a-w-	c:\windows\SysWow64\imageviewer2.ocx
2014-06-03 12:11 . 2004-03-08 22:00	224016	----a-w-	c:\windows\SysWow64\tabctl32.ocx
2014-06-03 12:11 . 2000-07-09 17:15	106496	----a-w-	c:\windows\SysWow64\mbprgbar.ocx
2014-06-03 12:11 . 2000-05-21 23:00	608448	----a-w-	c:\windows\SysWow64\comctl32.ocx
2014-06-03 12:11 . 2000-05-01 22:02	110592	----a-w-	c:\windows\SysWow64\ccrpbds6.dll
2014-06-03 12:11 . 1999-09-16 08:04	151552	----a-w-	c:\windows\SysWow64\ccrpfd6.ocx
2014-06-03 12:11 . 1998-06-23 23:00	164144	----a-w-	c:\windows\SysWow64\comct232.ocx
2014-06-03 12:11 . 1996-01-11 23:00	200704	----a-w-	c:\windows\SysWow64\threed32.ocx
2014-06-03 11:47 . 2014-06-03 11:47	--------	d-----w-	c:\program files (x86)\Mozilla Maintenance Service
2014-06-02 19:19 . 2013-12-24 23:09	1987584	----a-w-	c:\windows\SysWow64\d3d10warp.dll
2014-06-02 19:19 . 2013-12-24 22:48	2565120	----a-w-	c:\windows\system32\d3d10warp.dll
2014-06-02 19:19 . 2013-11-22 22:48	3928064	----a-w-	c:\windows\system32\d2d1.dll
2014-06-02 19:19 . 2013-11-26 08:16	3419136	----a-w-	c:\windows\SysWow64\d2d1.dll
2014-06-02 19:18 . 2013-04-09 23:34	1247744	----a-w-	c:\windows\SysWow64\DWrite.dll
2014-06-02 19:18 . 2013-04-02 22:51	1643520	----a-w-	c:\windows\system32\DWrite.dll
2014-06-02 19:18 . 2013-11-23 18:26	417792	----a-w-	c:\windows\SysWow64\WMPhoto.dll
2014-06-02 19:18 . 2013-11-23 17:47	465920	----a-w-	c:\windows\system32\WMPhoto.dll
2014-06-02 19:18 . 2014-01-09 02:22	5694464	----a-w-	c:\windows\SysWow64\mstscax.dll
2014-06-02 19:18 . 2014-01-03 22:44	6574592	----a-w-	c:\windows\system32\mstscax.dll
2014-06-02 19:16 . 2014-02-04 02:32	1424384	----a-w-	c:\windows\system32\WindowsCodecs.dll
2014-06-02 19:16 . 2014-02-04 02:04	1230336	----a-w-	c:\windows\SysWow64\WindowsCodecs.dll
2014-06-02 18:06 . 2012-08-23 15:28	3584	----a-w-	c:\windows\system32\drivers\nl-NL\tsusbflt.sys.mui
2014-06-02 18:06 . 2012-08-23 13:24	15360	----a-w-	c:\windows\system32\RdpGroupPolicyExtension.dll
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-31 19:15 . 2009-07-14 02:36	152576	----a-w-	c:\windows\SysWow64\msclmd.dll
2014-05-31 19:15 . 2009-07-14 02:36	175616	----a-w-	c:\windows\system32\msclmd.dll
2014-05-31 18:45 . 2011-03-28 16:36	23264	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-05-04 15:12 . 2009-11-06 15:18	93223848	----a-w-	c:\windows\system32\MRT.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	131248	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	131248	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	131248	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	131248	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"POP Peeper"="c:\program files (x86)\POP Peeper\POPPeeper.exe" [2011-11-16 1613824]
"Ditto"="c:\program files\Ditto\Ditto.exe" [2012-11-08 1717872]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"AVG_UI"="c:\program files (x86)\AVG\AVG2014\avgui.exe" [2014-05-19 5391376]
.
c:\users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
MSOFFICE.EXE [2001-2-13 226720]
stickies.exe [2014-6-1 1134592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2014-5-30 110592]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2014\avgfws.exe;c:\program files (x86)\AVG\AVG2014\avgfws.exe [x]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe [x]
R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 PDF Architect Service;PDF Architect Service;c:\program files (x86)\PDF Architect\ConversionService.exe;c:\program files (x86)\PDF Architect\ConversionService.exe [x]
R2 RealPlayerUpdateSvc;RealPlayer Update Service;c:\program files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe;c:\program files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [x]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SpyHunter 4 Service;SpyHunter 4 Service;c:\progra~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE;c:\progra~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [x]
R2 WiseBootAssistant;Wise Boot Assistant;c:\program files (x86)\Wise\Wise Care 365\BootTime.exe;c:\program files (x86)\Wise\Wise Care 365\BootTime.exe [x]
R3 EsgScanner;EsgScanner;c:\windows\system32\DRIVERS\EsgScanner.sys;c:\windows\SYSNATIVE\DRIVERS\EsgScanner.sys [x]
R3 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 BTOWSVF;BTOWSVF;c:\windows\System32\Drivers\BTOWSVF.sys;c:\windows\SYSNATIVE\Drivers\BTOWSVF.sys [x]
S0 KSafeDISK;KSafeDISK;c:\windows\System32\Drivers\KSafeDISK.sys;c:\windows\SYSNATIVE\Drivers\KSafeDISK.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 BTOWSFF;BTOWSFF;c:\windows\System32\Drivers\BTOWSFF.sys;c:\windows\SYSNATIVE\Drivers\BTOWSFF.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
S2 PDF Architect Helper Service;PDF Architect Helper Service;c:\program files (x86)\PDF Architect\HelperService.exe;c:\program files (x86)\PDF Architect\HelperService.exe [x]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
S2 RealPlayer Cloud Service;RealPlayer Cloud Service;c:\program files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe;c:\program files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [x]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
.
.
Inhoud van de 'Gedeelde Taken' map
.
2014-06-04 c:\windows\Tasks\DriverEasy Scheduled Scan.job
- c:\program files\Easeware\DriverEasy\DriverEasy.exe [2014-06-02 10:07]
.
2014-06-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-30 20:35]
.
2014-06-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-30 20:35]
.
2014-06-06 c:\windows\Tasks\ParetoLogic Registration3.job
- c:\windows\system32\rundll32.exe [2009-07-13 01:14]
.
2014-06-06 c:\windows\Tasks\ParetoLogic Update Version3.job
- c:\program files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2011-11-25 02:25]
.
2014-06-06 c:\windows\Tasks\RegCure Pro.job
- c:\program files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe [2014-06-06 17:58]
.
2014-06-01 c:\windows\Tasks\Wise Turbo Checker.job
- c:\program files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2014-05-30 10:46]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-06-06 12:13	2471744	----a-w-	c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	164016	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	164016	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	164016	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44	164016	----a-w-	c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 385560]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 363544]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
UxTuneUp
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.nl/
IE: &Block This Image (ABP) - c:\program files\Adblock Pro\blockimg.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office15\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~2\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\
FF - ExtSQL: 2014-04-11 19:47; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi
FF - ExtSQL: 2014-05-30 23:09; {7E7165E2-0767-448c-852F-5FA8714F2C37}; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\{7E7165E2-0767-448c-852F-5FA8714F2C37}
FF - ExtSQL: 2014-05-31 20:15; elemhidehelper@adblockplus.org; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\elemhidehelper@adblockplus.org.xpi
FF - ExtSQL: 2014-05-31 20:16; {fe272bd1-5f76-4ea4-8501-a05d35d823fc}; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi
FF - ExtSQL: 2014-05-31 20:16; adblockpopups@jessehakanen.net; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\adblockpopups@jessehakanen.net.xpi
FF - ExtSQL: 2014-06-01 01:29; feca4b87-3be4-43da-a1b1-137c24220968@jetpack; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi
FF - ExtSQL: 2014-06-01 01:30; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2014-06-01 01:30; artur.dubovoy@gmail.com; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\artur.dubovoy@gmail.com
FF - ExtSQL: 2014-06-01 02:53; {dc501fe1-520b-41f2-9421-ecbb2e7f0255}; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\{dc501fe1-520b-41f2-9421-ecbb2e7f0255}.xpi
FF - ExtSQL: 2014-06-02 16:21; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2014-06-04 00:52; FFPDFArchitectConverter@pdfarchitect.com; c:\program files (x86)\PDF Architect\FFPDFArchitectExt
FF - ExtSQL: 2014-06-04 21:11; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - ExtSQL: 2014-06-06 23:49; TFToolbarX@torrent-finder; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\hziq2hrf.default\extensions\TFToolbarX@torrent-finder.xpi
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: content.notify.ontimer - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.switch.threshold - 750000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Notify-SDWinLogon - SDWinLogon.dll
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
AddRemove-Adobe Photoshop 7.0 - c:\windows\ISUN0413.EXE
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.13"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2014-06-07  04:51:45
ComboFix-quarantined-files.txt  2014-06-07 02:51
.
Pre-Run: 113.353.363.456 bytes beschikbaar
Post-Run: 113.615.482.880 bytes beschikbaar
.
- - End Of File - - 9D4EDF54369959271D0DBBDA692FDE62
A36C5E4F47E84449FF07ED3517B43A31