ComboFix 13-03-28.01 - Wim 29/03/2013  11:30:23.2.4 - x64
Microsoft Windows 7 Enterprise   6.1.7601.1.1252.32.1043.18.8190.6027 [GMT 1:00]
Gestart vanuit: c:\users\Wim\Desktop\ComboFix.exe
gebruikte Opdracht switches :: c:\users\Wim\Desktop\CFScript.txt
AV: Bitdefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
FW: Bitdefender Firewall *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
SP: Bitdefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\drivers\NBVolUp.sys"
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Common Files\Nero
c:\program files (x86)\Common Files\Nero\NeroShellExt\x64\NeroShellExt.dll
c:\program files (x86)\Common Files\Nero\NeroShellExt\x64\SolutionExplorer.dll
c:\windows\system32\drivers\NBVolUp.sys
.
.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NBVOLUP
-------\Service_NBVolUp
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2013-02-28 to 2013-03-29  ))))))))))))))))))))))))))))))
.
.
2013-03-26 13:05 . 2012-08-24 18:13	154480	----a-w-	c:\windows\system32\drivers\ksecpkg.sys
2013-03-26 13:05 . 2012-08-24 18:09	458712	----a-w-	c:\windows\system32\drivers\cng.sys
2013-03-26 13:05 . 2012-08-24 18:05	340992	----a-w-	c:\windows\system32\schannel.dll
2013-03-26 13:05 . 2012-08-24 18:03	1448448	----a-w-	c:\windows\system32\lsasrv.dll
2013-03-26 13:05 . 2012-08-24 16:57	247808	----a-w-	c:\windows\SysWow64\schannel.dll
2013-03-26 13:05 . 2012-08-24 16:57	22016	----a-w-	c:\windows\SysWow64\secur32.dll
2013-03-26 13:05 . 2012-08-24 16:53	96768	----a-w-	c:\windows\SysWow64\sspicli.dll
2013-03-26 10:14 . 2010-05-26 10:41	248672	----a-w-	c:\windows\SysWow64\d3dx11_43.dll
2013-03-26 10:14 . 2010-05-26 10:41	470880	----a-w-	c:\windows\SysWow64\d3dx10_43.dll
2013-03-26 10:14 . 2010-05-26 10:41	1998168	----a-w-	c:\windows\SysWow64\D3DX9_43.dll
2013-03-26 10:13 . 2010-05-26 10:41	1868128	----a-w-	c:\windows\SysWow64\d3dcsx_43.dll
2013-03-26 10:13 . 2010-05-26 10:41	2106216	----a-w-	c:\windows\SysWow64\D3DCompiler_43.dll
2013-03-25 15:31 . 2013-01-31 10:10	35104	----a-w-	c:\windows\system32\TURegOpt.exe
2013-03-25 15:31 . 2013-01-31 10:10	26400	----a-w-	c:\windows\system32\authuitu.dll
2013-03-25 15:31 . 2013-01-31 10:10	21792	----a-w-	c:\windows\SysWow64\authuitu.dll
2013-03-25 15:30 . 2013-03-25 15:31	--------	d-----w-	c:\program files (x86)\TuneUp Utilities 2013
2013-03-25 14:13 . 2013-03-25 14:21	--------	d-----w-	c:\program files (x86)\mbar
2013-03-22 11:14 . 2013-03-25 15:30	--------	d-----w-	c:\programdata\TuneUp Software
2013-03-22 11:14 . 2013-03-25 15:34	--------	d-sh--w-	c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-03-22 11:14 . 2013-03-22 11:14	--------	d--h--w-	c:\programdata\Common Files
2013-03-22 09:03 . 2013-03-22 09:03	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2013-03-22 09:03 . 2012-12-14 15:49	24176	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-03-21 12:11 . 2011-10-27 14:07	329800	----a-w-	c:\windows\system32\drivers\trufos.sys
2013-03-21 12:11 . 2011-08-16 13:59	442088	----a-w-	c:\windows\system32\drivers\bdfsfltr.sys
2013-03-20 19:00 . 2013-03-20 19:00	--------	d-----w-	c:\program files (x86)\devolo
2013-03-20 18:17 . 2013-03-20 18:17	48648	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2013-03-20 18:17 . 2013-03-20 18:17	704136	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-03-20 16:14 . 2013-03-20 16:16	--------	d-----w-	c:\program files (x86)\Spybot - Search & Destroy
2013-03-20 15:52 . 2013-03-25 17:32	--------	d-----w-	C:\Toolwiz
2013-03-20 15:52 . 2013-03-20 15:52	32576	----a-w-	c:\windows\system32\drivers\BTOWSFF.sys
2013-03-20 15:52 . 2013-03-20 15:52	57152	----a-w-	c:\windows\system32\drivers\BTOWSVF.sys
2013-03-20 15:52 . 2013-03-20 15:52	--------	d-----w-	c:\program files (x86)\Toolwiz TimeFreeze
2013-03-20 15:47 . 2013-03-28 12:32	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2013-03-20 15:47 . 2013-03-20 15:50	--------	d-----w-	c:\program files (x86)\Spybot - Search & Destroy 2
2013-03-20 14:51 . 2013-03-20 14:51	--------	d-----w-	c:\program files (x86)\QuickTime
2013-03-20 14:51 . 2013-03-20 14:51	--------	d-----w-	c:\program files (x86)\Common Files\TechSmith Shared
2013-03-20 14:51 . 2013-03-20 14:51	--------	d-----w-	c:\program files (x86)\TechSmith
2013-03-20 14:41 . 2013-03-20 14:42	--------	d-----w-	c:\programdata\TechSmith
2013-03-20 14:34 . 2013-03-20 14:44	--------	d-----w-	c:\program files\TechSmith
2013-03-20 14:26 . 2013-03-20 14:26	--------	d-----w-	c:\programdata\Malwarebytes
2013-03-20 14:16 . 2013-03-20 14:16	--------	d-----w-	c:\programdata\VS Revo Group
2013-03-20 14:16 . 2009-12-30 09:21	31800	----a-w-	c:\windows\system32\drivers\revoflt.sys
2013-03-20 14:16 . 2013-03-20 14:16	--------	d-----w-	c:\program files\VS Revo Group
2013-03-20 11:18 . 2013-03-20 11:18	--------	d--h--w-	c:\programdata\CanonIJSolutionMenuEX
2013-03-20 11:18 . 2013-03-20 11:18	--------	d--h--w-	c:\programdata\CanonIJEPPEX2
2013-03-20 11:18 . 2013-03-20 11:18	--------	d--h--w-	c:\programdata\CanonEPP
2013-03-20 11:18 . 2013-03-20 11:18	--------	d--h--w-	c:\programdata\CanonIJMyPrinter
2013-03-20 11:18 . 2013-03-20 14:29	--------	d-----w-	c:\programdata\CanonIJPLM
2013-03-20 11:17 . 2012-03-14 04:00	385024	----a-w-	c:\windows\system32\CNMLMAD.DLL
2013-03-20 11:15 . 2013-03-20 11:15	--------	d-----w-	c:\programdata\CanonIJMSetup
2013-03-20 11:13 . 2013-03-20 11:13	--------	d-----w-	c:\program files\Common Files\CANON
2013-03-20 11:12 . 2013-03-20 11:12	--------	d-----w-	c:\programdata\CanonIJWSpt
2013-03-20 11:07 . 2013-03-20 11:07	--------	d-----w-	c:\program files\Canon
2013-03-20 10:55 . 2013-03-20 10:55	--------	d--h--w-	c:\programdata\CanonBJ
2013-03-20 10:55 . 2012-03-14 04:00	99840	----a-w-	c:\windows\system32\Spool\prtprocs\x64\CNMPPAD.DLL
2013-03-20 10:55 . 2012-03-14 04:00	30208	----a-w-	c:\windows\system32\Spool\prtprocs\x64\CNMPDAD.DLL
2013-03-20 10:54 . 2013-03-20 10:54	--------	d--h--w-	c:\windows\system32\CanonIJ Uninstaller Information
2013-03-20 10:54 . 2010-03-18 18:25	307200	----a-w-	c:\windows\SysWow64\CNC5100L.dll
2013-03-20 10:54 . 2010-03-18 16:11	106496	----a-w-	c:\windows\SysWow64\CNC5100U.dll
2013-03-20 10:54 . 2008-08-25 17:02	15872	----a-w-	c:\windows\SysWow64\CNHMCA.dll
2013-03-20 10:54 . 2010-03-18 18:26	348672	----a-w-	c:\windows\system32\CNC5100L.dll
2013-03-20 10:54 . 2010-03-18 16:13	1354240	----a-w-	c:\windows\system32\CNC5100C.dll
2013-03-20 10:54 . 2010-03-18 16:13	112128	----a-w-	c:\windows\system32\CNC5100I.dll
2013-03-20 10:54 . 2008-08-25 17:02	17920	----a-w-	c:\windows\system32\CNHMCA6.dll
2013-03-20 10:53 . 2010-01-13 14:04	103424	----a-w-	c:\windows\system32\CNC5100O.dll
2013-03-20 10:53 . 2010-03-11 08:57	248320	----a-w-	c:\windows\system32\CNMIUAD.DLL
2013-03-20 10:49 . 2013-03-20 11:15	--------	d-----w-	c:\program files (x86)\Canon
2013-03-20 10:45 . 2013-03-20 10:45	--------	d-----w-	c:\programdata\BDLogging
2013-03-20 10:44 . 2013-03-21 12:11	--------	d-----w-	c:\programdata\Bitdefender
2013-03-20 10:43 . 2013-03-20 10:44	--------	d-----w-	c:\program files\Bitdefender
2013-03-20 10:42 . 2013-03-20 10:43	--------	d-----w-	c:\program files\Common Files\Bitdefender
2013-03-20 10:21 . 2013-02-19 02:57	9162192	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{CF4A1AC0-C67F-40FE-A03B-9BBBE4A5F075}\mpengine.dll
2013-03-15 15:12 . 2013-03-15 15:12	--------	d-----w-	c:\windows\SysWow64\Wat
2013-03-15 15:12 . 2013-03-15 15:12	--------	d-----w-	c:\windows\system32\Wat
2013-03-15 14:46 . 2013-03-15 14:46	--------	d-----w-	c:\program files\CCleaner
2013-03-15 14:44 . 2013-03-15 14:44	--------	d-----w-	c:\program files (x86)\MSXML 4.0
2013-03-14 21:35 . 2013-03-14 21:35	--------	d-----w-	c:\windows\SysWow64\wbem\en-US
2013-03-14 21:35 . 2013-03-14 21:35	--------	d-----w-	c:\windows\system32\wbem\en-US
2013-03-14 20:03 . 2013-03-04 13:53	72013344	----a-w-	c:\windows\system32\MRT.exe
2013-03-14 19:54 . 2013-03-25 14:06	--------	d-----w-	c:\windows\AutoKMS
2013-03-14 19:45 . 2012-07-26 07:49	2560	----a-w-	c:\windows\system32\drivers\nl-NL\wdf01000.sys.mui
2013-03-14 19:45 . 2012-07-26 04:55	785512	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2013-03-14 19:45 . 2012-07-26 04:55	54376	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2013-03-14 19:45 . 2012-07-26 02:36	9728	----a-w-	c:\windows\system32\Wdfres.dll
2013-03-14 19:36 . 2013-03-14 19:36	9728	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-14 19:31 . 2010-02-23 08:16	294912	----a-w-	c:\windows\system32\browserchoice.exe
2013-03-14 19:28 . 2012-12-16 17:11	46080	----a-w-	c:\windows\system32\atmlib.dll
2013-03-14 19:28 . 2012-12-16 14:45	367616	----a-w-	c:\windows\system32\atmfd.dll
2013-03-14 19:28 . 2012-12-16 14:13	295424	----a-w-	c:\windows\SysWow64\atmfd.dll
2013-03-14 19:28 . 2012-12-16 14:13	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
2013-03-14 19:28 . 2010-09-30 10:41	100864	----a-w-	c:\windows\system32\fontsub.dll
2013-03-14 19:28 . 2010-09-30 06:47	70656	----a-w-	c:\windows\SysWow64\fontsub.dll
2013-03-14 19:27 . 2012-07-26 03:08	84992	----a-w-	c:\windows\system32\WUDFSvc.dll
2013-03-14 19:27 . 2012-07-26 03:08	194048	----a-w-	c:\windows\system32\WUDFPlatform.dll
2013-03-14 19:27 . 2012-07-26 02:26	87040	----a-w-	c:\windows\system32\drivers\WUDFPf.sys
2013-03-14 19:27 . 2012-07-26 02:26	198656	----a-w-	c:\windows\system32\drivers\WUDFRd.sys
2013-03-14 19:27 . 2012-07-26 03:08	229888	----a-w-	c:\windows\system32\WUDFHost.exe
2013-03-14 19:27 . 2012-07-26 03:08	744448	----a-w-	c:\windows\system32\WUDFx.dll
2013-03-14 19:27 . 2012-07-26 03:08	45056	----a-w-	c:\windows\system32\WUDFCoinstaller.dll
2013-03-14 19:26 . 2012-03-01 06:46	23408	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2013-03-14 19:26 . 2012-03-01 06:33	81408	----a-w-	c:\windows\system32\imagehlp.dll
2013-03-14 19:26 . 2012-03-01 06:28	5120	----a-w-	c:\windows\system32\wmi.dll
2013-03-14 19:26 . 2012-03-01 05:33	159232	----a-w-	c:\windows\SysWow64\imagehlp.dll
2013-03-14 19:26 . 2012-03-01 05:29	5120	----a-w-	c:\windows\SysWow64\wmi.dll
2013-03-14 19:24 . 2012-11-09 05:45	2048	----a-w-	c:\windows\system32\tzres.dll
2013-03-14 19:24 . 2012-11-09 04:42	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2013-03-14 19:24 . 2011-02-25 06:19	2871808	----a-w-	c:\windows\explorer.exe
2013-03-14 19:24 . 2011-02-25 05:30	2616320	----a-w-	c:\windows\SysWow64\explorer.exe
2013-03-14 19:24 . 2011-04-09 06:58	142336	----a-w-	c:\windows\system32\poqexec.exe
2013-03-14 19:24 . 2011-04-09 05:56	123904	----a-w-	c:\windows\SysWow64\poqexec.exe
2013-03-14 19:24 . 2011-10-01 05:45	886784	----a-w-	c:\program files\Common Files\System\wab32.dll
2013-03-14 19:24 . 2011-10-01 04:37	708608	----a-w-	c:\program files (x86)\Common Files\System\wab32.dll
2013-03-14 19:24 . 2011-10-26 05:21	43520	----a-w-	c:\windows\system32\csrsrv.dll
2013-03-14 19:22 . 2012-06-06 06:05	1499136	----a-w-	c:\program files\Common Files\System\ado\msado15.dll
2013-03-14 19:20 . 2012-06-02 05:41	1464320	----a-w-	c:\windows\system32\crypt32.dll
2013-03-14 19:20 . 2012-06-02 05:41	184320	----a-w-	c:\windows\system32\cryptsvc.dll
2013-03-14 19:20 . 2012-06-02 05:41	140288	----a-w-	c:\windows\system32\cryptnet.dll
2013-03-14 19:20 . 2012-06-02 04:36	140288	----a-w-	c:\windows\SysWow64\cryptsvc.dll
2013-03-14 19:20 . 2012-06-02 04:36	1159680	----a-w-	c:\windows\SysWow64\crypt32.dll
2013-03-14 19:20 . 2012-06-02 04:36	103936	----a-w-	c:\windows\SysWow64\cryptnet.dll
2013-03-14 19:14 . 2011-11-19 14:58	77312	----a-w-	c:\windows\system32\packager.dll
2013-03-14 19:14 . 2011-11-19 14:01	67072	----a-w-	c:\windows\SysWow64\packager.dll
2013-03-14 19:02 . 2013-03-14 19:02	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2013-03-14 18:57 . 2013-03-14 18:59	--------	d-----w-	c:\program files (x86)\Inkscape
2013-03-14 18:56 . 2013-03-14 18:56	--------	d-----w-	c:\program files\Paint.NET
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-14 18:30 . 2011-03-30 13:46	114704	----a-w-	c:\windows\system32\drivers\AtihdW76.sys
2013-03-14 18:30 . 2011-05-24 22:02	278528	----a-w-	c:\windows\SysWow64\Oemdspif.dll
2013-03-14 18:30 . 2011-05-24 21:59	1828864	----a-w-	c:\windows\SysWow64\atiumdmv.dll
2013-03-14 18:30 . 2011-05-24 21:50	4017152	----a-w-	c:\windows\SysWow64\atiumdva.dll
2013-03-14 18:30 . 2011-05-24 21:24	40960	----a-w-	c:\windows\system32\atiuxp64.dll
2013-03-14 18:30 . 2011-05-24 21:24	31744	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2013-03-14 18:30 . 2011-05-24 21:19	58880	----a-w-	c:\windows\system32\coinst.dll
2013-03-14 18:30 . 2011-05-24 22:00	1113088	----a-w-	c:\windows\system32\atiumd6v.dll
2013-03-14 18:30 . 2011-05-24 21:59	3810816	----a-w-	c:\windows\system32\atiumd6a.dll
2013-03-14 18:30 . 2011-05-24 21:39	4330496	----a-w-	c:\windows\SysWow64\atiumdag.dll
2013-03-14 18:30 . 2011-05-24 21:33	5486592	----a-w-	c:\windows\system32\atiumd64.dll
2013-03-14 18:30 . 2011-05-24 21:24	38912	----a-w-	c:\windows\system32\atiu9p64.dll
2013-03-14 18:30 . 2011-05-24 21:24	29184	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2013-03-14 18:30 . 2011-05-24 22:53	23336960	----a-w-	c:\windows\system32\atio6axx.dll
2013-03-14 18:30 . 2011-05-24 22:31	17940992	----a-w-	c:\windows\SysWow64\atioglxx.dll
2013-03-14 18:30 . 2011-05-24 22:02	120320	----a-w-	c:\windows\system32\atitmm64.dll
2013-03-14 18:30 . 2011-05-24 22:02	423424	----a-w-	c:\windows\system32\atipdl64.dll
2013-03-14 18:30 . 2011-05-24 22:02	356352	----a-w-	c:\windows\SysWow64\atipdlxx.dll
2013-03-14 18:30 . 2010-08-27 13:33	332800	----a-w-	c:\windows\system32\ATIODE.exe
2013-03-14 18:30 . 2009-06-22 10:34	51200	----a-w-	c:\windows\system32\ATIODCLI.exe
2013-03-14 18:30 . 2011-05-24 23:26	9359872	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2013-03-14 18:30 . 2011-05-24 22:01	16384	----a-w-	c:\windows\system32\atimuixx.dll
2013-03-14 18:30 . 2011-05-24 21:38	53760	----a-w-	c:\windows\system32\atimpc64.dll
2013-03-14 18:30 . 2011-05-24 21:38	53760	----a-w-	c:\windows\system32\amdpcom64.dll
2013-03-14 18:30 . 2011-05-24 21:38	52736	----a-w-	c:\windows\SysWow64\atimpc32.dll
2013-03-14 18:30 . 2011-05-24 21:38	52736	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2013-03-14 18:30 . 2011-05-24 21:26	14848	----a-w-	c:\windows\system32\atig6pxx.dll
2013-03-14 18:30 . 2011-05-24 21:26	12800	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2013-03-14 18:30 . 2011-05-24 21:26	12800	----a-w-	c:\windows\system32\atiglpxx.dll
2013-03-14 18:30 . 2011-05-24 21:25	39936	----a-w-	c:\windows\system32\atig6txx.dll
2013-03-14 18:30 . 2011-05-24 21:25	32768	----a-w-	c:\windows\SysWow64\atigktxx.dll
2013-03-14 18:30 . 2011-05-24 21:25	309760	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2013-03-14 18:30 . 2011-05-24 22:07	688128	----a-w-	c:\windows\SysWow64\aticfx32.dll
2013-03-14 18:30 . 2011-05-24 22:06	811008	----a-w-	c:\windows\system32\aticfx64.dll
2013-03-14 18:30 . 2011-05-24 22:04	462848	----a-w-	c:\windows\system32\ATIDEMGX.dll
2013-03-14 18:30 . 2011-05-24 22:04	485376	----a-w-	c:\windows\system32\atieclxx.exe
2013-03-14 18:30 . 2011-05-24 22:03	204288	----a-w-	c:\windows\system32\atiesrxx.exe
2013-03-14 18:30 . 2011-05-24 22:01	59392	----a-w-	c:\windows\system32\atiedu64.dll
2013-03-14 18:30 . 2011-05-24 21:58	4219904	----a-w-	c:\windows\SysWow64\atidxx32.dll
2013-03-14 18:30 . 2011-05-24 21:49	5008384	----a-w-	c:\windows\system32\atidxx64.dll
2013-03-14 18:30 . 2011-05-24 21:47	51200	----a-w-	c:\windows\system32\aticalrt64.dll
2013-03-14 18:30 . 2011-05-24 21:47	46080	----a-w-	c:\windows\SysWow64\aticalrt.dll
2013-03-14 18:30 . 2011-05-24 21:47	8489472	----a-w-	c:\windows\system32\aticaldd64.dll
2013-03-14 18:30 . 2011-05-24 22:07	151552	----a-w-	c:\windows\system32\atiapfxx.exe
2013-03-14 18:30 . 2011-05-24 22:01	43520	----a-w-	c:\windows\SysWow64\ati2edxx.dll
2013-03-14 18:30 . 2011-05-24 21:47	44544	----a-w-	c:\windows\system32\aticalcl64.dll
2013-03-14 18:30 . 2011-05-24 21:47	44032	----a-w-	c:\windows\SysWow64\aticalcl.dll
2013-03-14 18:30 . 2011-05-24 21:43	6847488	----a-w-	c:\windows\SysWow64\aticaldd.dll
2013-03-14 18:30 . 2011-05-24 21:26	366592	----a-w-	c:\windows\system32\atiadlxx.dll
2013-03-14 18:30 . 2011-05-24 21:26	262144	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2013-03-14 18:30 . 2011-05-24 21:24	53248	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2013-03-14 18:30 . 2009-05-11 16:35	118784	----a-w-	c:\windows\system32\atibtmon.exe
2013-03-14 18:25 . 2011-03-29 09:04	994416	----a-w-	c:\windows\system32\VIAPropPageExt.dll
2013-03-14 18:25 . 2011-03-29 09:04	556144	----a-w-	c:\windows\system32\VIASysFx.dll
2013-03-14 18:25 . 2011-03-29 09:04	87152	----a-w-	c:\windows\system32\ViaMicArrayPropPageExt.dll
2013-03-14 18:25 . 2011-03-29 09:04	27760	----a-w-	c:\windows\system32\ViakaraokeSrv.exe
2013-03-14 18:25 . 2011-03-29 09:04	202864	----a-w-	c:\windows\system32\ViaMicArrayAPO.dll
2013-03-14 18:25 . 2011-03-29 09:04	116848	----a-w-	c:\windows\system32\ViaKaraokePropPageExt.dll
2013-03-14 18:25 . 2011-03-29 09:04	1161328	----a-w-	c:\windows\system32\ViaKaraokeApo.dll
2013-03-14 18:25 . 2011-03-29 09:04	2157680	----a-w-	c:\windows\system32\drivers\viahduaa.sys
2013-03-14 18:25 . 2011-03-29 09:04	91760	----a-w-	c:\windows\system32\Dts2PropPageExt.dll
2013-03-14 18:25 . 2011-03-29 09:04	248944	----a-w-	c:\windows\system32\Dts2APO.dll
2013-03-14 18:25 . 2007-12-04 10:28	86016	----a-w-	c:\windows\system32\nQPropPageExt.dll
2013-03-14 18:25 . 2007-12-04 10:28	82432	----a-w-	c:\windows\system32\nQAPO.dll
2013-02-12 05:45 . 2013-03-14 19:23	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-14 19:23	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-14 19:23	308736	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-14 19:23	111104	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-14 19:23	474112	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-14 19:23	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-01-17 00:28 . 2010-11-21 03:27	273840	------w-	c:\windows\system32\MpSigStub.exe
2013-01-04 04:43 . 2013-03-14 19:23	44032	----a-w-	c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-03-20 15:42	222808	----a-w-	c:\users\Wim\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-03-20 15:42	222808	----a-w-	c:\users\Wim\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-03-20 15:42	222808	----a-w-	c:\users\Wim\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-01-22 106496]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2013-03-14 3037296]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 336384]
"CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]
"Toolwiz TimeFreeze"="c:\program files (x86)\Toolwiz TimeFreeze\ToolwizTimeFreezeGUI.exe" [2013-03-20 1680192]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [2012-02-17 545064]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [2011-11-17 79952]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-21 20992]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
R3 SafeBox;SafeBox;c:\program files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2012-02-21 75384]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-21 34816]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-03-15 1255736]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [2012-03-20 691896]
S0 BTOWSVF;BTOWSVF;c:\windows\System32\Drivers\BTOWSVF.sys [2013-03-20 57152]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-14 90192]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
S1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [2010-01-19 103944]
S1 BTOWSFF;BTOWSFF;c:\windows\System32\Drivers\BTOWSFF.sys [2013-03-20 32576]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-03-14 204288]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-05-24 365568]
S2 DevoloNetworkService;devolo Network Service;c:\program files (x86)\devolo\dlan\devolonetsvc.exe [2012-02-28 3128856]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\asus.sys\config\DVMExportService.exe [2009-10-16 319488]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
S2 NPF_devolo;NetGroup Packet Filter Driver (devolo);c:\windows\sysWOW64\drivers\npf_devolo.sys [2012-01-31 34048]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2013-01-31 2402080]
S2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-03-13 66096]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [2013-03-14 27760]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2013-03-14 114704]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [2011-11-25 258736]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 77824]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-01-22 180224]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-11-16 11880]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2013-03-14 2157680]
.
.
Inhoud van de 'Gedeelde Taken' map
.
2013-03-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-14 18:42]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-03-20 15:42	261704	----a-w-	c:\users\Wim\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-03-20 15:42	261704	----a-w-	c:\users\Wim\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-03-20 15:42	261704	----a-w-	c:\users\Wim\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1]
@="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}"
[HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}]
2012-02-22 12:55	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2]
@="{342DAA0B-D796-460D-8566-901E08A1CCAD}"
[HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}]
2012-02-22 12:55	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3]
@="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}"
[HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}]
2012-02-22 12:55	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4]
@="{33816773-98AE-4723-ADE0-EBE54C8B5A67}"
[HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}]
2012-02-22 12:55	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 2726728]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-03-22 1067256]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.be/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 195.130.130.130 195.130.131.130
FF - ProfilePath - c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\
FF - prefs.js: browser.startup.homepage - hxxp://start.be/
FF - ExtSQL: 2013-03-20 13:49; {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}; c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF - ExtSQL: 2013-03-20 13:50; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-03-20 13:51; {73a6fe31-595d-460b-a920-fcc0f8843232}; c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF - ExtSQL: 2013-03-20 14:01; donottrackplus@abine.com; c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\extensions\donottrackplus@abine.com
FF - ExtSQL: 2013-03-20 14:02; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2013-03-20 14:05; info@sharkcube.com; c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\extensions\info@sharkcube.com.xpi
FF - ExtSQL: 2013-03-20 14:07; trafficlight@bitdefender.com; c:\users\Wim\AppData\Roaming\Mozilla\Firefox\Profiles\z4t5pigh.default\extensions\trafficlight@bitdefender.com.xpi
FF - ExtSQL: 2013-03-21 19:10; {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}; c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - ORPHANS VERWIJDERD - - - -
.
ShellIconOverlayIdentifiers-{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} - (no file)
ShellIconOverlayIdentifiers-{62CCD8E3-9C21-41E1-B55E-1E26DFC68511} - (no file)
ShellIconOverlayIdentifiers-{39D54CC2-69CF-43b4-B167-577D25E7F496} - (no file)
ShellIconOverlayIdentifiers-{1574C9EF-7D58-488F-B358-8B78C1538F51} - (no file)
ShellIconOverlayIdentifiers-{F7395C2E-A5D8-4a32-9536-5C6A9F1DC450} - (no file)
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
.
**************************************************************************
.
Voltooingstijd: 2013-03-29  11:43:24 - machine werd herstart
ComboFix-quarantined-files.txt  2013-03-29 10:43
.
Pre-Run: 703.172.259.840 bytes beschikbaar
Post-Run: 702.462.341.120 bytes beschikbaar
.
- - End Of File - - 002C4D58080813A8E1B523018DFA3CA1