ComboFix 15-04-19.01 - Jive1 25/04/2015 11:35:43.1.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.8169.6173 [GMT 2:00] Gestart vanuit: c:\users\Jive1\Desktop\ComboFix.exe AV: AVG Internet Security 2015 *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413} FW: AVG Internet Security 2015 *Enabled* {757AB44A-78C2-7D1A-E37F-CA42A037B368} SP: AVG Internet Security 2015 *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Jive1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclcmokkcfnjpghegbnebiokigholeli c:\users\Jive1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclcmokkcfnjpghegbnebiokigholeli\119\background.html c:\users\Jive1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclcmokkcfnjpghegbnebiokigholeli\119\content.js c:\users\Jive1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclcmokkcfnjpghegbnebiokigholeli\119\LJpimjj.js c:\users\Jive1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclcmokkcfnjpghegbnebiokigholeli\119\lsdb.js c:\users\Jive1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclcmokkcfnjpghegbnebiokigholeli\119\manifest.json c:\users\Jive1\AppData\Local\Google\Chrome\User Data\Default\Preferences . . (((((((((((((((((((( Bestanden Gemaakt van 2015-03-25 to 2015-04-25 )))))))))))))))))))))))))))))) . . 2015-04-25 10:29 . 2015-04-25 10:29 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2015-04-25 10:29 . 2015-04-25 10:29 -------- d-----w- c:\users\Default\AppData\Local\temp 2015-04-23 05:30 . 2015-04-24 05:23 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable) 2015-04-19 12:00 . 2015-04-19 12:00 -------- d-----w- c:\users\Jive1\AppData\Roaming\Spearit 2015-04-19 12:00 . 2015-04-19 12:00 -------- d-----w- c:\programdata\Spearit 2015-04-18 05:34 . 2015-03-17 05:22 95672 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2015-04-18 05:34 . 2015-03-17 05:22 155576 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2015-04-18 05:34 . 2015-03-17 05:16 29184 ----a-w- c:\windows\system32\sspisrv.dll 2015-04-18 05:34 . 2015-03-17 05:16 136192 ----a-w- c:\windows\system32\sspicli.dll 2015-04-18 05:34 . 2015-03-17 05:16 28160 ----a-w- c:\windows\system32\secur32.dll 2015-04-18 05:34 . 2015-03-17 05:16 1461760 ----a-w- c:\windows\system32\lsasrv.dll 2015-04-18 05:34 . 2015-03-17 05:15 31232 ----a-w- c:\windows\system32\lsass.exe 2015-04-18 05:34 . 2015-03-17 05:15 64000 ----a-w- c:\windows\system32\auditpol.exe 2015-04-18 05:34 . 2015-03-17 05:13 60416 ----a-w- c:\windows\system32\msobjs.dll 2015-04-18 05:34 . 2015-03-17 05:13 146432 ----a-w- c:\windows\system32\msaudite.dll 2015-04-18 05:34 . 2015-03-17 05:11 686080 ----a-w- c:\windows\system32\adtschema.dll 2015-04-17 14:39 . 2015-04-17 14:39 -------- d-----w- c:\users\Jive1\AppData\Roaming\Fighters 2015-04-17 14:15 . 2015-04-19 11:51 -------- d-----w- C:\AdwCleaner 2015-04-17 13:49 . 2015-04-24 09:20 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware 2015-04-17 13:49 . 2015-04-23 05:30 -------- d-----w- c:\programdata\Malwarebytes 2015-04-16 14:11 . 2015-04-21 05:29 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2015-04-16 14:11 . 2015-04-21 05:33 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2 2015-04-15 15:26 . 2015-04-15 15:26 17593008 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe 2015-04-15 11:06 . 2015-04-15 11:06 256992 ----a-w- c:\windows\system32\drivers\avgldx64.sys 2015-04-15 05:37 . 2015-04-01 23:49 235184 ----a-w- c:\program files (x86)\Internet Explorer\sqmapi.dll 2015-04-13 11:10 . 2015-04-13 11:10 -------- d-----w- c:\programdata\Common Toolkit Suite 2015-04-13 11:09 . 2015-04-13 12:00 -------- d-----w- c:\program files (x86)\Common Files\Common Toolkit Suite 2015-04-13 11:09 . 2015-04-14 13:39 -------- dc-h--w- c:\programdata\{F1C5246A-E375-4847-9E08-38150A57B00C} 2015-04-13 10:58 . 2015-04-13 10:58 -------- d-----w- c:\windows\SysWow64\RTCOM 2015-04-13 10:58 . 2015-04-13 10:58 -------- d-----w- c:\program files\Realtek 2015-04-13 10:56 . 2015-01-19 07:08 12975360 ----a-w- c:\windows\system32\MaxxVoiceAPO3064.dll 2015-04-13 10:55 . 2014-05-22 14:24 96568 ----a-w- c:\windows\system32\audioLibVc.dll 2015-04-13 10:55 . 2014-06-09 08:59 560328 ----a-w- c:\windows\system32\AERTAC64.dll 2015-04-13 10:55 . 2013-06-21 09:01 109848 ----a-w- c:\windows\system32\AcpiServiceVnA64.dll 2015-04-13 10:55 . 2012-03-08 09:47 108640 ----a-w- c:\windows\system32\AERTAR64.dll 2015-04-13 09:21 . 2015-04-13 09:22 -------- d-----w- c:\users\Jive1\AppData\Local\Alhworks 2015-04-13 09:21 . 2015-04-20 14:48 -------- d-----w- c:\users\Jive1\AppData\Local\Atwbworks 2015-04-13 07:33 . 2015-04-13 07:33 -------- d-----w- c:\windows\Brisbane Airport 2009 2015-04-09 13:09 . 2015-02-05 17:57 621384 ----a-w- c:\windows\SysWow64\nvStreaming.exe 2015-04-09 13:05 . 2015-03-23 03:25 726528 ----a-w- c:\windows\system32\generaltel.dll 2015-04-09 13:05 . 2015-03-23 03:25 769536 ----a-w- c:\windows\system32\invagent.dll 2015-04-09 13:05 . 2015-03-23 03:24 419840 ----a-w- c:\windows\system32\devinv.dll 2015-04-09 13:05 . 2015-03-23 03:24 957952 ----a-w- c:\windows\system32\appraiser.dll 2015-04-09 13:05 . 2015-03-23 03:24 30720 ----a-w- c:\windows\system32\acmigration.dll 2015-04-09 13:05 . 2015-03-23 03:24 227328 ----a-w- c:\windows\system32\aepdu.dll 2015-04-09 13:05 . 2015-03-23 03:24 192000 ----a-w- c:\windows\system32\aepic.dll 2015-04-09 13:05 . 2015-03-23 03:17 1111552 ----a-w- c:\windows\system32\aeinv.dll 2015-04-09 12:11 . 2015-04-09 12:11 284128 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys 2015-04-07 10:39 . 2015-04-07 10:39 291296 ----a-w- c:\windows\system32\drivers\avgtdia.sys 2015-04-06 08:39 . 2015-04-06 08:39 -------- d-----w- c:\programdata\InstallMate 2015-04-06 07:40 . 2015-04-06 07:40 -------- d-----w- c:\programdata\Synaptics 2015-04-06 07:26 . 2010-11-04 13:16 143688 ----a-w- c:\windows\system32\drivers\MxEFUF64.sys 2015-04-06 07:26 . 2010-11-04 13:16 113480 ----a-w- c:\windows\system32\drivers\MxEFLF64.sys 2015-04-06 07:26 . 2015-04-06 07:26 -------- d-----w- c:\programdata\AmUStor 2015-04-06 07:26 . 2015-04-06 07:26 -------- d-----w- c:\program files (x86)\AmUStor 2015-04-06 07:17 . 2015-04-06 07:17 -------- d-----w- c:\program files\Synaptics 2015-04-06 07:10 . 2015-04-06 07:10 -------- d-----w- c:\program files (x86)\Realtek 2015-04-06 07:08 . 2007-07-18 22:39 15768 ----a-w- c:\windows\system32\drivers\lv302a64.sys 2015-04-06 06:12 . 2007-07-18 22:44 465432 ----a-w- c:\windows\SysWow64\LVUI2RC.dll 2015-04-06 06:12 . 2007-07-18 22:43 490008 ----a-w- c:\windows\SysWow64\LVUI2.dll 2015-04-06 06:12 . 2007-07-18 22:43 50072 ----a-w- c:\windows\system32\drivers\LVUSBS64.sys 2015-04-06 06:12 . 2007-07-18 22:43 486936 ----a-w- c:\windows\system32\LVUIRC64.dll 2015-04-06 06:12 . 2007-07-18 22:43 685080 ----a-w- c:\windows\system32\LVUI64.dll 2015-04-06 06:12 . 2007-07-18 22:40 416280 ----a-w- c:\windows\SysWow64\lvcodec2.dll 2015-04-06 06:12 . 2007-07-18 22:40 257560 ----a-w- c:\windows\system32\lvco1110.dll 2015-04-06 06:12 . 2007-07-18 22:40 475672 ----a-w- c:\windows\system32\lvcod64.dll 2015-04-06 06:12 . 2007-07-18 21:56 19344 ----a-w- c:\windows\system32\Repository.reg 2015-04-06 06:12 . 2007-07-18 22:39 1213592 ----a-w- c:\windows\system32\drivers\LV302V64.SYS 2015-04-06 06:01 . 2015-04-25 06:57 -------- d-----w- C:\temp 2015-04-05 14:05 . 2015-04-05 14:11 -------- d-----w- c:\program files (x86)\Smart PC Solutions 2015-04-04 16:23 . 2015-04-04 16:23 -------- d-s---w- c:\windows\system32\GWX 2015-04-04 16:23 . 2015-04-04 16:23 -------- d-s---w- c:\windows\SysWow64\GWX 2015-04-03 07:34 . 2015-04-03 07:34 137184 ----a-w- c:\windows\system32\drivers\avgmfx64.sys 2015-04-01 10:25 . 2015-04-01 10:25 -------- d-----w- c:\users\Jive1\AppData\Roaming\Firetrust 2015-04-01 10:25 . 2015-04-01 10:25 -------- d-----w- c:\program files (x86)\Firetrust 2015-04-01 07:35 . 2015-04-01 07:35 924 ----a-w- c:\program files (x86)\Fixit50388.reg 2015-03-31 07:48 . 2015-03-31 07:48 -------- d-----w- c:\users\Jive1\AppData\Roaming\MiniGet 2015-03-31 07:48 . 2015-03-31 07:52 -------- d-----w- c:\program files (x86)\MiniGet 2015-03-31 07:47 . 2015-03-31 07:47 -------- d-----w- c:\users\Jive1\AppData\Local\Opera Software 2015-03-31 07:47 . 2015-03-31 07:47 -------- d-----w- c:\users\Jive1\AppData\Roaming\Opera Software 2015-03-31 07:47 . 2015-03-31 07:51 -------- d-----w- c:\program files (x86)\Opera 2015-03-30 05:51 . 2015-03-30 15:28 -------- d-----w- c:\program files (x86)\WebMoney Advisor 2015-03-30 05:50 . 2015-03-30 05:50 -------- d-----w- c:\programdata\mjjeebigpafejdnghmmiknkgfakkcgba . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2015-04-16 05:36 . 2014-12-27 13:20 128913832 ----a-w- c:\windows\system32\MRT.exe 2015-04-15 15:26 . 2014-12-23 15:30 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2015-04-15 15:26 . 2014-12-23 15:30 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2015-03-20 10:20 . 2013-09-26 08:44 67040 ----a-w- c:\windows\system32\drivers\avgfwd6a.sys 2015-03-20 10:18 . 2015-03-20 10:18 40928 ----a-w- c:\windows\system32\drivers\avgrkx64.sys 2015-03-17 04:56 . 2015-04-17 05:35 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2015-03-12 17:49 . 2014-12-22 09:08 627912 ----a-w- c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe 2015-03-11 10:16 . 2015-03-11 10:16 162784 ----a-w- c:\windows\system32\drivers\avgdiska.sys 2015-03-11 10:13 . 2015-03-11 10:13 344544 ----a-w- c:\windows\system32\drivers\avgloga.sys 2015-03-11 10:13 . 2015-03-11 10:13 213984 ----a-w- c:\windows\system32\drivers\avgidsha.sys 2015-03-07 10:38 . 2015-03-07 10:25 286720 ----a-w- c:\windows\iun506.exe 2015-02-26 03:25 . 2015-03-11 06:50 3204096 ----a-w- c:\windows\system32\win32k.sys 2015-02-25 08:25 . 2015-02-27 07:32 41784 ----a-w- c:\windows\system32\TURegOpt.exe 2015-02-25 08:24 . 2015-02-28 08:45 44856 ----a-w- c:\windows\system32\uxtuneup.dll 2015-02-25 08:24 . 2015-02-28 08:45 36664 ----a-w- c:\windows\SysWow64\uxtuneup.dll 2015-02-25 08:24 . 2015-02-27 07:32 30520 ----a-w- c:\windows\system32\authuitu.dll 2015-02-25 08:24 . 2015-02-27 07:32 25912 ----a-w- c:\windows\SysWow64\authuitu.dll 2015-02-20 04:41 . 2015-03-11 06:51 41984 ----a-w- c:\windows\system32\lpk.dll 2015-02-20 04:40 . 2015-03-11 06:51 100864 ----a-w- c:\windows\system32\fontsub.dll 2015-02-20 04:40 . 2015-03-11 06:51 14336 ----a-w- c:\windows\system32\dciman32.dll 2015-02-20 04:40 . 2015-03-11 06:51 46080 ----a-w- c:\windows\system32\atmlib.dll 2015-02-20 04:13 . 2015-03-11 06:51 70656 ----a-w- c:\windows\SysWow64\fontsub.dll 2015-02-20 04:13 . 2015-03-11 06:51 10240 ----a-w- c:\windows\SysWow64\dciman32.dll 2015-02-20 04:13 . 2015-03-11 06:51 34304 ----a-w- c:\windows\SysWow64\atmlib.dll 2015-02-20 04:12 . 2015-03-11 06:51 25600 ----a-w- c:\windows\SysWow64\lpk.dll 2015-02-20 03:29 . 2015-03-11 06:51 372224 ----a-w- c:\windows\system32\atmfd.dll 2015-02-20 03:09 . 2015-03-11 06:51 299008 ----a-w- c:\windows\SysWow64\atmfd.dll 2015-02-19 23:18 . 2014-12-22 09:36 74056 ----a-w- c:\windows\system32\OpenCL.dll 2015-02-19 23:18 . 2014-12-22 09:36 60560 ----a-w- c:\windows\SysWow64\OpenCL.dll 2015-02-19 23:18 . 2014-12-22 09:30 18575880 ----a-w- c:\windows\system32\nvwgf2umx.dll 2015-02-19 23:18 . 2014-08-19 21:15 16017040 ----a-w- c:\windows\SysWow64\nvwgf2um.dll 2015-02-19 23:18 . 2015-02-19 23:18 877816 ----a-w- c:\windows\SysWow64\nvumdshim.dll 2015-02-19 23:18 . 2014-12-22 09:30 995248 ----a-w- c:\windows\system32\nvumdshimx.dll 2015-02-19 23:18 . 2015-02-19 23:18 13294528 ----a-w- c:\windows\system32\nvopencl.dll 2015-02-19 23:18 . 2015-02-19 23:18 32106640 ----a-w- c:\windows\system32\nvoglv64.dll 2015-02-19 23:18 . 2015-02-19 23:18 10773704 ----a-w- c:\windows\SysWow64\nvopencl.dll 2015-02-19 23:18 . 2015-02-19 23:18 24768144 ----a-w- c:\windows\SysWow64\nvoglv32.dll 2015-02-19 23:18 . 2015-02-19 23:18 353224 ----a-w- c:\windows\system32\nvoglshim64.dll 2015-02-19 23:18 . 2015-02-19 23:18 305136 ----a-w- c:\windows\SysWow64\nvoglshim32.dll 2015-02-19 23:18 . 2015-02-19 23:18 969872 ----a-w- c:\windows\system32\NvIFR64.dll 2015-02-19 23:18 . 2015-02-19 23:18 177624 ----a-w- c:\windows\system32\nvinitx.dll 2015-02-19 23:18 . 2015-02-19 23:18 164752 ----a-w- c:\windows\SysWow64\nvinit.dll 2015-02-19 23:18 . 2015-02-19 23:18 10284872 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys 2015-02-19 23:18 . 2015-02-19 23:18 929936 ----a-w- c:\windows\SysWow64\NvIFR.dll 2015-02-19 23:18 . 2015-02-19 23:18 943760 ----a-w- c:\windows\system32\NvFBC64.dll 2015-02-19 23:18 . 2015-02-19 23:18 908104 ----a-w- c:\windows\SysWow64\NvFBC.dll 2015-02-19 23:18 . 2015-02-19 23:18 30536 ----a-w- c:\windows\system32\nvhdap64.dll 2015-02-19 23:18 . 2015-02-19 23:18 195728 ----a-w- c:\windows\system32\drivers\nvhda64v.sys 2015-02-19 23:18 . 2015-02-19 23:18 1540240 ----a-w- c:\windows\system32\nvhdagenco6420103.dll 2015-02-19 23:18 . 2015-02-19 23:18 1895240 ----a-w- c:\windows\system32\nvdispco6434752.dll 2015-02-19 23:18 . 2015-02-19 23:18 17253848 ----a-w- c:\windows\system32\nvd3dumx.dll 2015-02-19 23:18 . 2015-02-19 23:18 1557648 ----a-w- c:\windows\system32\nvdispgenco6434752.dll 2015-02-19 23:18 . 2015-02-19 23:18 3610768 ----a-w- c:\windows\system32\nvcuvid.dll 2015-02-19 23:18 . 2015-02-19 23:18 14119744 ----a-w- c:\windows\SysWow64\nvd3dum.dll 2015-02-19 23:18 . 2015-02-19 23:18 3247248 ----a-w- c:\windows\SysWow64\nvcuvid.dll 2015-02-19 23:18 . 2015-02-19 23:18 13208200 ----a-w- c:\windows\system32\nvcuda.dll 2015-02-19 23:18 . 2015-02-19 23:18 10713256 ----a-w- c:\windows\SysWow64\nvcuda.dll 2015-02-19 23:18 . 2015-02-19 23:18 20466496 ----a-w- c:\windows\SysWow64\nvcompiler.dll 2015-02-19 23:18 . 2015-02-19 23:18 25460880 ----a-w- c:\windows\system32\nvcompiler.dll 2015-02-19 23:18 . 2014-12-22 09:30 3299512 ----a-w- c:\windows\system32\nvapi64.dll 2015-02-19 23:18 . 2014-12-22 09:30 2902784 ----a-w- c:\windows\SysWow64\nvapi.dll 2015-02-13 05:22 . 2015-03-11 06:50 14177280 ----a-w- c:\windows\system32\shell32.dll 2015-02-05 19:07 . 2014-12-22 09:36 6861128 ----a-w- c:\windows\system32\nvcpl.dll 2015-02-05 19:07 . 2014-12-22 09:36 3517584 ----a-w- c:\windows\system32\nvsvc64.dll 2015-02-05 19:07 . 2014-12-27 13:26 2558792 ----a-w- c:\windows\system32\nvsvcr.dll 2015-02-05 19:07 . 2014-12-22 09:36 935056 ----a-w- c:\windows\system32\nvvsvc.exe 2015-02-05 19:07 . 2014-12-22 09:36 62792 ----a-w- c:\windows\system32\nvshext.dll 2015-02-05 19:06 . 2014-12-22 09:36 385168 ----a-w- c:\windows\system32\nvmctray.dll 2015-02-05 12:50 . 2014-12-22 09:36 4236870 ----a-w- c:\windows\system32\nvcoproc.bin 2015-02-04 10:23 . 2015-02-04 10:23 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll 2015-02-04 10:13 . 2015-02-04 10:13 869536 ----a-w- c:\windows\system32\msvcr120_clr0400.dll 2015-02-04 03:16 . 2015-03-11 06:44 465920 ----a-w- c:\windows\system32\WMPhoto.dll 2015-02-04 02:54 . 2015-03-11 06:44 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll 2015-02-03 03:34 . 2015-03-11 06:51 693176 ----a-w- c:\windows\system32\winload.efi 2015-02-03 03:34 . 2015-03-11 06:51 94656 ----a-w- c:\windows\system32\drivers\mountmgr.sys 2015-02-03 03:33 . 2015-03-11 06:51 616360 ----a-w- c:\windows\system32\winresume.efi 2015-02-03 03:31 . 2015-03-11 06:51 782848 ----a-w- c:\windows\system32\wmdrmsdk.dll 2015-02-03 03:31 . 2015-03-11 06:51 14632960 ----a-w- c:\windows\system32\wmp.dll 2015-02-03 03:31 . 2015-03-11 06:51 229376 ----a-w- c:\windows\system32\wintrust.dll 2015-02-03 03:31 . 2015-03-11 06:50 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll 2015-02-03 03:31 . 2015-03-11 06:50 215552 ----a-w- c:\windows\system32\ubpm.dll 2015-02-03 03:31 . 2015-03-11 06:51 5120 ----a-w- c:\windows\system32\msdxm.ocx 2015-02-03 03:31 . 2015-03-11 06:51 5120 ----a-w- c:\windows\system32\dxmasf.dll 2015-02-03 03:31 . 2015-03-11 06:51 63488 ----a-w- c:\windows\system32\setbcdlocale.dll 2015-02-03 03:31 . 2015-03-11 06:51 1574400 ----a-w- c:\windows\system32\quartz.dll 2015-02-03 03:31 . 2015-03-11 06:51 500224 ----a-w- c:\windows\system32\AUDIOKSE.dll 2015-02-03 03:31 . 2015-03-11 06:51 371712 ----a-w- c:\windows\system32\qdvd.dll 2015-02-03 03:31 . 2015-03-11 06:51 188416 ----a-w- c:\windows\system32\pcasvc.dll 2015-02-03 03:31 . 2015-03-11 06:51 37376 ----a-w- c:\windows\system32\pcadm.dll 2015-02-03 03:31 . 2015-03-11 06:51 9728 ----a-w- c:\windows\system32\spwmp.dll 2015-02-03 03:31 . 2015-03-11 06:51 641024 ----a-w- c:\windows\system32\msscp.dll 2015-02-03 03:31 . 2015-03-11 06:51 325632 ----a-w- c:\windows\system32\msnetobj.dll 2015-02-03 03:31 . 2015-03-11 06:51 11264 ----a-w- c:\windows\system32\msmmsp.dll 2015-02-03 03:31 . 2015-03-11 06:51 432128 ----a-w- c:\windows\system32\mfplat.dll 2015-02-03 03:31 . 2015-03-11 06:51 4121600 ----a-w- c:\windows\system32\mf.dll 2015-02-03 03:31 . 2015-03-11 06:51 206848 ----a-w- c:\windows\system32\mfps.dll 2015-02-03 03:30 . 2015-03-11 06:51 631808 ----a-w- c:\windows\system32\evr.dll 2015-02-03 03:30 . 2015-03-11 06:51 284672 ----a-w- c:\windows\system32\EncDump.dll 2015-02-03 03:30 . 2015-03-11 06:51 1202176 ----a-w- c:\windows\system32\drmv2clt.dll 2015-02-03 03:30 . 2015-03-11 06:51 497664 ----a-w- c:\windows\system32\drmmgrtn.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1] @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}" [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}] 2015-03-22 17:05 329376 ----a-w- c:\users\Jive1\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2] @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}" [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}] 2015-03-22 17:05 329376 ----a-w- c:\users\Jive1\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3] @="{BBACC218-34EA-4666-9D7A-C78F2274A524}" [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}] 2015-03-22 17:05 329376 ----a-w- c:\users\Jive1\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="c:\program files (x86)\AVG\AVG2015\avgui.exe" [2015-04-15 3745232] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Printkey2000.lnk - c:\program files (x86)\PrintKey2000\Printkey2000.exe [2015-1-25 869376] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x] R3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys;c:\windows\SYSNATIVE\DRIVERS\lv302a64.sys [x] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x] R3 MxEFLF;Matrox Extio Lower Function Filter;c:\windows\system32\DRIVERS\MxEFLF64.sys;c:\windows\SYSNATIVE\DRIVERS\MxEFLF64.sys [x] R3 MxEFUF;Matrox Extio Upper Function Filter;c:\windows\system32\DRIVERS\MxEFUF64.sys;c:\windows\SYSNATIVE\DRIVERS\MxEFUF64.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] R3 xcbdaNtscV;ViXS Tuner Card (NTSC) - V;c:\windows\system32\DRIVERS\xcbdaVx64.sys;c:\windows\SYSNATIVE\DRIVERS\xcbdaVx64.sys [x] R4 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x] R4 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x] R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R4 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x] S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x] S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x] S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x] S0 mv91xx;mv91xx;c:\windows\system32\DRIVERS\mv91xx.sys;c:\windows\SYSNATIVE\DRIVERS\mv91xx.sys [x] S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x] S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x] S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x] S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x] S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2015\avgfws.exe;c:\program files (x86)\AVG\AVG2015\avgfws.exe [x] S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe [x] S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe [x] S2 ClickToRunSvc;Microsoft Office ClickToRun Service;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [x] S2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe;c:\windows\SYSNATIVE\IProsetMonitor.exe [x] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x] S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x] S3 A38CCID;CCID USB Smart Card Reader;c:\windows\system32\DRIVERS\a38ccid.sys;c:\windows\SYSNATIVE\DRIVERS\a38ccid.sys [x] S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x] S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x] S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys;c:\windows\SYSNATIVE\drivers\LVUSBS64.sys [x] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x] S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x] . . Inhoud van de 'Gedeelde Taken' map . 2015-04-25 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-23 15:26] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1] @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}" [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}] 2015-03-22 17:05 358056 ----a-w- c:\users\Jive1\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2] @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}" [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}] 2015-03-22 17:05 358056 ----a-w- c:\users\Jive1\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3] @="{BBACC218-34EA-4666-9D7A-C78F2274A524}" [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}] 2015-03-22 17:05 358056 ----a-w- c:\users\Jive1\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)] @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}" [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}] 2015-03-12 17:50 2334928 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)] @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}" [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}] 2015-03-12 17:50 2334928 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)] @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}" [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}] 2015-03-12 17:50 2334928 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2015-01-22 13874392] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.com/ mDefault_Search_URL = www.google.com mDefault_Page_URL = www.google.com mStart Page = www.google.com mLocal Page = c:\windows\SysWOW64\blank.htm mSearch Page = www.google.com uInternet Settings,ProxyServer = localhost:8080 TCP: DhcpNameServer = 192.168.1.1 . . ------- Bestandsassociaties ------- . vbefile\shell\open2\command="%SystemRoot%\System32\CScript.exe" "%1" %* vbsfile\shell\open2\command="%SystemRoot%\System32\CScript.exe" "%1" %* jsefile\shell\open2\command=c:\windows\System32\CScript.exe "%1" %* . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-{41564753-502D-4C53-00A7-7A786E7484D7} - (no file) Toolbar-{41564753-502D-4C53-00A7-7A786E7484D7} - (no file) WebBrowser-{41564753-502D-4C53-00A7-7A786E7484D7} - (no file) ShellIconOverlayIdentifiers-{F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637} - (no file) AddRemove- ACG's IWM Duxford - f:\extract\DUxford\Uninstall_ACG_IWM_DUXFORD_FS9.exe AddRemove- ACG's IWM Duxford AI Pack - f:\extract\Pack\Uninstall_ACG_IWM_DUXFORD_AI_FS9.exe AddRemove-DutchFlight Simulation Eindhoven New Terminal - f:\extract\Uninstal.exe AddRemove-FS9_Total_Stations_To_Date_29_Mar_11 - f:\extract\BCATP\Uninstal.exe AddRemove-Sofia Airport (LBSF) - f:\extract\Sofia Airport (LBSF)_Uninstal.exe AddRemove-Team SDB Freeware. Ice Station Alpha - f:\extract\Uninstal ISA.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}] @Denied: (A 2) (Everyone) @="IFlashBroker6" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.17" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}] @Denied: (A 2) (Everyone) @="IFlashBroker6" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2015-04-25 12:32:06 ComboFix-quarantined-files.txt 2015-04-25 10:32 . Pre-Run: 75.958.448.128 bytes beschikbaar Post-Run: 75.653.742.592 bytes beschikbaar . - - End Of File - - B9A0F55D77E992C2AE00C1292193BD3B A36C5E4F47E84449FF07ED3517B43A31