ComboFix 11-06-13.06 - Jarno 14-06-2011  17:28:09.1.2 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.31.1043.18.2815.817 [GMT 2:00]
Gestart vanuit: c:\users\Jarno\Desktop\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\IsUn0413.exe
c:\windows\SysWow64\advapi32new.dll
c:\windows\SysWow64\apphelpnew.dll
c:\windows\SysWow64\crypt32new.dll
c:\windows\SysWow64\kernel32new.dll
c:\windows\SysWow64\msvcrtnew.dll
c:\windows\SysWow64\ntdsapinew.dll
c:\windows\SysWow64\powrprofnew.dll
c:\windows\SysWow64\secur32new.dll
c:\windows\SysWow64\user32new.dll
c:\windows\SysWow64\winstanew.dll
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2011-05-14 to 2011-06-14  ))))))))))))))))))))))))))))))
.
.
2011-06-14 15:41 . 2011-06-14 15:41	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2011-06-14 15:41 . 2011-06-14 15:41	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-06-13 12:55 . 2011-06-13 12:56	--------	d-----w-	c:\users\Jarno\Crack
2011-06-12 07:15 . 2011-06-12 07:15	--------	d-----w-	c:\users\Jarno\AppData\Local\eMule
2011-06-12 07:15 . 2011-06-12 07:15	--------	d-----w-	c:\program files (x86)\eMule
2011-06-11 09:09 . 2011-06-12 07:15	--------	d-----w-	c:\programdata\eMule
2011-06-08 14:08 . 2011-06-08 14:08	--------	d-----w-	c:\program files (x86)\uTorrent
2011-06-08 14:07 . 2011-06-13 11:50	--------	d-----w-	c:\users\Jarno\AppData\Roaming\uTorrent
2011-06-07 14:10 . 2011-06-07 14:10	--------	d-----w-	c:\users\Jarno\AppData\Roaming\Auslogics
2011-06-07 14:09 . 2011-06-07 14:09	--------	d-----w-	c:\program files (x86)\Auslogics
2011-06-06 14:02 . 2011-06-06 14:26	--------	d-----w-	c:\users\Jarno\Backup USB-stick Jarno
2011-06-02 18:51 . 2011-06-02 18:51	--------	d-----w-	c:\windows\system32\SPReview
2011-06-02 18:09 . 2011-06-02 18:41	2560	----a-w-	c:\windows\system32\drivers\nl-NL\rdpwd.sys.mui
2011-06-02 18:08 . 2011-06-02 18:42	3584	----a-w-	c:\windows\system32\drivers\nl-NL\tsusbflt.sys.mui
2011-06-02 18:07 . 2011-06-02 18:42	3072	----a-w-	c:\windows\system32\drivers\nl-NL\Dot4usb.sys.mui
2011-06-02 17:26 . 2011-06-02 18:41	98816	----a-w-	c:\windows\SysWow64\Robocopy.exe
2011-06-02 17:25 . 2011-06-02 18:42	43520	----a-w-	c:\windows\system32\vbisurf.ax
2011-06-02 17:24 . 2011-06-02 18:42	148992	----a-w-	c:\windows\system32\t2embed.dll
2011-06-02 17:23 . 2011-06-02 18:42	442368	----a-w-	c:\windows\system32\winspool.drv
2011-06-02 17:21 . 2011-06-02 18:42	279040	----a-w-	c:\windows\system32\sethc.exe
2011-06-02 17:16 . 2011-06-02 17:16	--------	d-----w-	c:\windows\system32\EventProviders
2011-06-02 17:16 . 2011-06-02 17:16	--------	dc----w-	C:\269341eeb899d478bbc813460942c5
2011-06-02 09:21 . 2011-06-02 09:22	--------	d-----w-	c:\program files\Speccy
2011-05-29 07:30 . 2011-02-18 10:56	613376	----a-w-	c:\windows\system32\vbscript.dll
2011-05-29 07:30 . 2011-02-18 05:43	428032	----a-w-	c:\windows\SysWow64\vbscript.dll
2011-05-28 10:43 . 2011-05-28 10:43	--------	d-----w-	c:\programdata\DAEMON Tools Lite
2011-05-26 17:57 . 2011-05-26 17:57	388096	----a-r-	c:\users\Jarno\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-05-26 17:57 . 2011-05-26 17:57	--------	d-----w-	c:\program files (x86)\Trend Micro
2011-05-26 13:08 . 2011-05-26 13:08	--------	d-----w-	c:\users\Jarno\AppData\Roaming\Malwarebytes
2011-05-26 13:08 . 2010-12-20 16:09	38224	----a-w-	c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-05-26 13:08 . 2011-05-26 13:08	--------	d-----w-	c:\programdata\Malwarebytes
2011-05-26 13:08 . 2011-05-26 13:08	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2011-05-26 13:08 . 2010-12-20 16:08	24152	----a-w-	c:\windows\system32\drivers\mbam.sys
2011-05-25 19:06 . 2011-04-22 22:15	27520	----a-w-	c:\windows\system32\drivers\Diskdump.sys
2011-05-24 17:06 . 2011-04-09 06:58	142336	----a-w-	c:\windows\system32\poqexec.exe
2011-05-24 17:06 . 2011-04-09 05:56	123904	----a-w-	c:\windows\SysWow64\poqexec.exe
2011-05-22 07:23 . 2011-05-22 07:23	--------	d-----w-	c:\users\Jarno\AppData\Roaming\InstallShield
2011-05-21 13:09 . 2011-05-21 13:09	--------	d-----w-	c:\users\Jarno\AppData\Local\LucasArts
2011-05-21 12:27 . 2008-10-15 04:22	519000	----a-w-	c:\windows\system32\d3dx10_40.dll
2011-05-21 12:27 . 2008-10-15 04:22	452440	----a-w-	c:\windows\SysWow64\d3dx10_40.dll
2011-05-21 12:27 . 2008-10-15 04:22	2605920	----a-w-	c:\windows\system32\D3DCompiler_40.dll
2011-05-21 12:27 . 2008-10-15 04:22	2036576	----a-w-	c:\windows\SysWow64\D3DCompiler_40.dll
2011-05-21 12:27 . 2008-10-15 04:22	5631312	----a-w-	c:\windows\system32\D3DX9_40.dll
2011-05-21 12:27 . 2008-10-15 04:22	4379984	----a-w-	c:\windows\SysWow64\D3DX9_40.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-12 06:29 . 2011-05-13 16:37	404640	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-06-02 18:42 . 2009-07-14 02:36	152576	----a-w-	c:\windows\SysWow64\msclmd.dll
2011-06-02 18:42 . 2009-07-14 02:36	175616	----a-w-	c:\windows\system32\msclmd.dll
2011-06-02 18:41 . 2011-06-02 17:26	2175488	----a-w-	c:\windows\apppatch\AcGenral.dll
2011-05-25 07:25 . 2011-04-07 21:19	1016936	----a-w-	c:\windows\system32\nvvsvc.exe
2011-05-25 07:25 . 2011-04-07 21:19	2560616	----a-w-	c:\windows\system32\nvsvcr.dll
2011-05-25 07:25 . 2011-04-07 21:18	3040872	----a-w-	c:\windows\system32\nvsvc64.dll
2011-05-25 07:25 . 2011-01-07 19:48	61544	----a-w-	c:\windows\system32\nvshext.dll
2011-05-25 07:25 . 2011-04-07 21:19	117864	----a-w-	c:\windows\system32\nvmctray.dll
2011-05-25 07:25 . 2011-04-07 21:19	6300776	----a-w-	c:\windows\system32\nvcpl.dll
2011-05-25 07:25 . 2011-04-07 21:19	739432	----a-w-	c:\windows\system32\easyUpdatusAPIU64.dll
2011-05-25 07:25 . 2011-03-25 19:28	15223912	----a-w-	c:\windows\system32\nvd3dumx.dll
2011-05-25 07:25 . 2011-03-25 19:28	11992680	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2011-05-25 07:25 . 2011-03-25 19:28	2644584	----a-w-	c:\windows\system32\nvapi64.dll
2011-05-10 12:10 . 2011-05-15 11:36	40112	----a-w-	c:\windows\avastSS.scr
2011-05-10 12:10 . 2011-05-15 11:36	199304	----a-w-	c:\windows\SysWow64\aswBoot.exe
2011-05-10 12:10 . 2011-05-15 11:37	253888	----a-w-	c:\windows\system32\aswBoot.exe
2011-05-10 12:04 . 2011-05-15 11:37	600920	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2011-05-10 12:04 . 2011-05-15 11:37	287576	----a-w-	c:\windows\system32\drivers\aswSP.sys
2011-05-10 12:02 . 2011-05-15 11:37	53592	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2011-05-10 11:59 . 2011-05-15 11:37	31064	----a-w-	c:\windows\system32\drivers\aswRdr.sys
2011-05-10 11:59 . 2011-05-15 11:37	64344	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2011-05-10 11:59 . 2011-05-15 11:37	22360	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2011-05-04 12:02 . 2011-05-04 12:02	2601816	----a-w-	c:\windows\system32\WavesGUILib.dll
2011-05-04 12:02 . 2011-05-04 12:02	71272	----a-w-	c:\windows\system32\RCoInst64.dll
2011-05-04 12:02 . 2011-05-04 12:02	476264	----a-w-	c:\windows\system32\RtkApi64.dll
2011-05-04 12:02 . 2011-05-04 12:02	335192	----a-w-	c:\windows\system32\MaxxAudioAPO30.dll
2011-05-04 12:02 . 2011-05-04 12:02	334680	----a-w-	c:\windows\system32\MaxxVolumeSDAPO.dll
2011-05-04 12:02 . 2011-05-04 12:02	332392	----a-w-	c:\windows\system32\RtlCPAPI64.dll
2011-05-04 12:02 . 2011-05-04 12:02	318808	----a-w-	c:\windows\system32\MaxxAudioAPO20.dll
2011-05-04 12:02 . 2011-05-04 12:02	2615400	----a-w-	c:\windows\system32\RtkAPO64.dll
2011-05-04 12:02 . 2011-05-04 12:02	2394216	----a-w-	c:\windows\system32\drivers\RTKVHD64.sys
2011-05-04 12:02 . 2011-05-04 12:02	1987176	----a-w-	c:\windows\system32\RtPgEx64.dll
2011-05-04 12:02 . 2011-05-04 12:02	1736536	----a-w-	c:\windows\system32\MaxxAudioRealtek.dll
2011-05-04 12:02 . 2011-05-04 12:02	149608	----a-w-	c:\windows\system32\RtkCfg64.dll
2011-05-04 12:02 . 2011-05-04 12:02	1216104	----a-w-	c:\windows\system32\RTCOM64.dll
2011-05-04 12:02 . 2011-05-04 12:02	1146984	----a-w-	c:\windows\system32\RTSnMg64.cpl
2011-05-04 12:02 . 2011-05-04 12:02	489744	----a-w-	c:\windows\system32\DTSSymmetryDLL64.dll
2011-05-04 12:02 . 2011-05-04 12:02	330656	----a-w-	c:\windows\system32\FMAPO64.dll
2011-05-04 12:02 . 2011-05-04 12:02	124176	----a-w-	c:\windows\system32\DTSLFXAPO64.dll
2011-05-04 12:02 . 2011-05-04 12:02	123664	----a-w-	c:\windows\system32\DTSGFXAPO64.dll
2011-05-04 12:02 . 2011-05-04 12:02	123152	----a-w-	c:\windows\system32\DTSGFXAPONS64.dll
2011-05-04 11:54 . 2011-05-04 11:54	25608	----a-w-	c:\windows\SysWow64\drivers\DKbFltr.sys
2011-05-04 11:18 . 2011-05-04 11:18	1490656	----a-w-	c:\windows\system32\WdfCoinstaller01007.dll
2011-05-04 11:17 . 2011-05-04 11:17	41096	----a-w-	c:\windows\system32\drivers\WmFilter.sys
2011-04-28 15:48 . 2011-04-30 12:02	727552	--sh--w-	c:\windows\SysWow64\bcdmem2.exe
2011-04-09 07:02 . 2011-05-12 16:42	5562240	----a-w-	c:\windows\system32\ntoskrnl.exe
2011-04-09 06:02 . 2011-05-12 16:42	3967872	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2011-04-09 06:02 . 2011-05-12 16:42	3912576	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2011-04-08 06:48 . 2011-04-08 06:48	48648	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-04-08 06:48 . 2011-04-08 06:48	894784	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-04-08 05:14 . 2011-04-08 16:53	1404008	----a-w-	c:\windows\system32\nvgenco642060.dll
2011-04-08 05:14 . 2011-04-08 16:53	1619048	----a-w-	c:\windows\system32\nvdispco6420140.dll
2011-04-01 06:25 . 2011-03-31 17:09	183112	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2011-03-31 17:09 . 2011-03-31 17:09	66872	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2011-03-29 17:24 . 2011-03-29 17:24	1700352	----a-w-	c:\windows\SysWow64\gdiplus.dll
2011-03-29 17:24 . 2011-03-29 17:24	1060864	----a-w-	c:\windows\SysWow64\mfc71.dll
2011-03-26 18:10 . 2011-03-26 18:10	178800	----a-w-	c:\windows\SysWow64\CmdLineExt_x64.dll
2011-03-26 08:35 . 2011-04-08 16:53	1404008	----a-w-	c:\windows\system32\SET3907.tmp
2011-03-26 08:35 . 2011-04-08 16:53	1619048	----a-w-	c:\windows\system32\SET3849.tmp
2011-03-26 08:35 . 2011-03-25 19:28	12934248	----a-w-	c:\windows\system32\SETDE2.tmp
2011-03-26 08:35 . 2011-03-25 19:28	10071656	----a-w-	c:\windows\SysWow64\SET2AA0.tmp
2011-03-26 08:35 . 2011-03-25 19:28	2273896	----a-w-	c:\windows\system32\SET2F4.tmp
2011-03-25 19:30 . 2011-03-25 19:30	43520	----a-w-	c:\windows\SysWow64\CmdLineExt03.dll
2011-03-21 12:03 . 2011-03-12 20:32	98304	----a-w-	c:\windows\SysWow64\CmdLineExt.dll
2011-03-19 14:16 . 2011-03-19 14:16	4608	----a-w-	c:\windows\SysWow64\w95inf32.dll
2011-03-19 14:16 . 2011-03-19 14:16	2272	----a-w-	c:\windows\SysWow64\w95inf16.dll
2011-03-19 07:24 . 2011-03-13 12:39	98304	----a-w-	c:\windows\system32CmdLineExt.dll
2011-03-17 17:57 . 2011-03-17 17:57	420352	----a-w-	c:\windows\system32\ZSHP2600.EXE
2008-03-09 05:25 . 2011-05-14 15:35	236	---ha-w-	c:\program files (x86)\Common Files\dx.reg
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files (x86)\IncrediMail\bin\IncMail.exe" [2011-03-12 353736]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-06-02 1475584]
"eMuleAutoStart"="c:\program files (x86)\eMule\emule.exe" [2010-04-07 5758976]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]
S2 GREGService;GREGService;c:\program files (x86)\eMachines\Registration\GREGsvc.exe [2010-01-08 23584]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-25 2214504]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-04-24 483688]
S2 Updater Service;Updater Service;c:\program files\eMachines\eMachines Updater\UpdaterService.exe [2010-01-28 243232]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-04-24 209768]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
2011-06-02 18:42	302592	----a-w-	c:\windows\System32\cmd.exe
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10	134384	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-05-04 10867816]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.google.nl/
uLocal Page = c:\windows\SYSTEM32\blank.htm
mStart Page = hxxp://emachines.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 212.54.35.25 212.54.40.25
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
WebBrowser-{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - (no file)
WebBrowser-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\S-1-5-21-2193873462-1639097644-668497416-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10s_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10s_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
.
**************************************************************************
.
Voltooingstijd: 2011-06-14  17:54:21 - machine werd herstart
ComboFix-quarantined-files.txt  2011-06-14 15:54
.
Pre-Run: 231.694.909.440 bytes beschikbaar
Post-Run: 231.673.679.872 bytes beschikbaar
.
- - End Of File - - 1444597B4D6FC41A7C892D2A883041F9