ComboFix 13-04-15.01 - Ann 17-04-2013   8:36.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.31.1043.18.8138.6282 [GMT 2:00]
Gestart vanuit: c:\users\Ann\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2013-03-17 to 2013-04-17  ))))))))))))))))))))))))))))))
.
.
2013-04-17 06:39 . 2013-04-17 06:39	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-04-16 15:54 . 2013-04-16 15:54	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2013-04-16 15:20 . 2013-03-15 06:28	9311288	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{3FD9D0E3-5323-42D1-8BB9-7BA90E1A16E9}\mpengine.dll
2013-04-15 19:40 . 2013-04-15 19:40	--------	d-----w-	c:\programdata\FileOpen
2013-04-15 19:39 . 2013-04-15 19:39	--------	d-----w-	c:\programdata\Nitro
2013-04-14 19:14 . 2013-04-14 19:16	--------	d-----w-	c:\program files (x86)\JDownloader
2013-04-10 21:47 . 2013-02-19 11:42	2706432	----a-w-	c:\windows\system32\mshtml.tlb
2013-04-10 06:38 . 2013-02-15 06:06	3717632	----a-w-	c:\windows\system32\mstscax.dll
2013-04-06 16:08 . 2013-04-06 16:08	--------	d-----w-	c:\program files (x86)\Google
2013-04-04 11:52 . 2013-04-04 11:52	--------	d-----w-	c:\program files (x86)\Mio
2013-04-04 07:27 . 2013-04-04 07:27	--------	d-----w-	c:\program files\DIFX
2013-04-04 07:26 . 2013-04-04 07:26	--------	d-----w-	c:\windows\SysWow64\beidpp
2013-04-04 07:26 . 2013-04-04 07:26	--------	d-----w-	c:\windows\SysWow64\siscardplugins
2013-04-04 07:26 . 2013-04-04 07:26	--------	d-----w-	c:\program files (x86)\Belgium Identity Card
2013-04-04 07:26 . 2013-04-04 07:26	--------	d-----w-	c:\program files\log
2013-04-04 07:26 . 2013-04-04 07:26	44672	----a-w-	c:\windows\system32\drivers\a38usb.sys
2013-04-04 07:26 . 2013-04-04 07:26	137216	----a-w-	c:\windows\system32\usbr38.dll
2013-04-04 07:23 . 2013-04-13 05:11	--------	d-----w-	c:\program files (x86)\Mozilla Maintenance Service
2013-04-03 07:38 . 2013-04-03 07:38	--------	d-----w-	c:\programdata\Sync App Settings
2013-04-03 07:38 . 2013-04-03 07:38	--------	d-----w-	c:\program files (x86)\Allway Sync
2013-04-02 17:27 . 2007-03-23 00:13	145408	----a-w-	c:\windows\system32\Spool\prtprocs\x64\lxblpp6c.dll
2013-04-02 17:27 . 2013-04-02 17:27	--------	d-----w-	c:\program files\Lexmark Z700-P700 Series
2013-04-02 17:24 . 2007-04-20 10:24	233392	----a-w-	c:\windows\system32\lxblih.exe
2013-04-02 17:23 . 2013-04-04 07:26	--------	d-----w-	C:\drivers
2013-04-02 16:42 . 2013-04-02 16:42	--------	d-----w-	c:\program files (x86)\MediaInfo
2013-04-01 22:08 . 2013-04-01 22:08	--------	d-----w-	c:\users\Default\AppData\Local\Microsoft Help
2013-04-01 12:11 . 2013-04-01 12:12	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2013-04-01 12:06 . 2013-04-01 12:06	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2013-04-01 12:06 . 2013-04-01 12:06	--------	d-----r-	c:\program files (x86)\Skype
2013-04-01 12:06 . 2013-04-01 12:06	--------	d-----w-	c:\programdata\Skype
2013-04-01 12:04 . 2013-04-01 12:04	--------	d-----w-	c:\program files (x86)\VideoLAN
2013-04-01 12:01 . 2013-04-01 12:01	--------	d-----w-	c:\programdata\Licenses
2013-04-01 12:01 . 2013-04-01 12:02	--------	d-----w-	c:\program files (x86)\SpywareBlaster
2013-04-01 12:01 . 2009-03-24 10:52	129872	----a-w-	c:\windows\SysWow64\MSSTDFMT.DLL
2013-04-01 11:31 . 2013-04-01 11:31	--------	d-----w-	c:\program files (x86)\2BrightSparks
2013-04-01 11:29 . 2013-04-01 11:29	--------	d-----w-	c:\program files (x86)\Win7codecs
2013-04-01 11:27 . 2013-04-01 11:30	--------	d-----w-	c:\programdata\Win7codecs
2013-04-01 11:06 . 2013-04-01 11:06	--------	d-----w-	c:\program files (x86)\PhotoFiltre 7
2013-04-01 10:42 . 2013-04-16 15:00	--------	d-----w-	c:\programdata\Team Manager 10
2013-04-01 10:40 . 2013-04-01 11:08	--------	d-----w-	c:\program files (x86)\Splash Software
2013-04-01 10:40 . 2013-04-01 10:40	--------	d-----w-	c:\programdata\Meet Manager 11
2013-04-01 10:10 . 2013-04-01 10:10	--------	d-----w-	c:\programdata\Firetrust
2013-04-01 09:54 . 2013-04-01 09:54	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2013-04-01 09:54 . 2013-04-01 09:54	--------	d-----w-	c:\programdata\Malwarebytes
2013-04-01 09:54 . 2012-12-14 14:49	24176	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-04-01 09:50 . 2013-04-01 09:50	--------	d-----w-	c:\program files\CCleaner
2013-04-01 08:09 . 2013-04-01 08:09	--------	d-----w-	c:\windows\PCHEALTH
2013-04-01 08:07 . 2013-04-01 08:07	--------	d-----w-	c:\program files\Microsoft Office
2013-04-01 08:07 . 2013-04-01 08:07	--------	d-----w-	c:\program files (x86)\Microsoft Analysis Services
2013-04-01 08:06 . 2013-04-14 21:25	--------	d-----w-	c:\programdata\Microsoft Help
2013-04-01 08:06 . 2013-04-01 08:06	--------	d-----r-	C:\MSOCache
2013-04-01 07:24 . 2013-04-01 07:24	--------	d-----w-	c:\windows\SysWow64\wbem\en-US
2013-04-01 07:24 . 2013-04-01 07:24	--------	d-----w-	c:\windows\system32\wbem\en-US
2013-04-01 07:23 . 2013-04-01 07:23	--------	d-----w-	c:\windows\SysWow64\Wat
2013-04-01 07:23 . 2013-04-01 07:23	--------	d-----w-	c:\windows\system32\Wat
2013-03-31 23:05 . 2013-04-16 15:50	--------	d-----w-	c:\windows\Panther
2013-03-31 22:53 . 2012-07-26 07:49	2560	----a-w-	c:\windows\system32\drivers\nl-NL\wdf01000.sys.mui
2013-03-31 22:53 . 2012-07-26 04:55	785512	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2013-03-31 22:53 . 2012-07-26 04:55	54376	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2013-03-31 22:53 . 2012-07-26 02:36	9728	----a-w-	c:\windows\system32\Wdfres.dll
2013-03-31 22:43 . 2013-03-31 22:43	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-31 22:37 . 2010-02-23 08:16	294912	----a-w-	c:\windows\system32\browserchoice.exe
2013-03-31 22:19 . 2012-03-01 06:46	23408	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2013-03-31 22:19 . 2012-03-01 06:33	81408	----a-w-	c:\windows\system32\imagehlp.dll
2013-03-31 22:19 . 2012-03-01 06:28	5120	----a-w-	c:\windows\system32\wmi.dll
2013-03-31 22:19 . 2012-03-01 05:33	159232	----a-w-	c:\windows\SysWow64\imagehlp.dll
2013-03-31 22:19 . 2012-03-01 05:29	5120	----a-w-	c:\windows\SysWow64\wmi.dll
2013-03-31 20:52 . 2011-10-01 05:45	886784	----a-w-	c:\program files\Common Files\System\wab32.dll
2013-03-31 20:51 . 2012-11-02 05:59	478208	----a-w-	c:\windows\system32\dpnet.dll
2013-03-31 20:50 . 2012-04-07 12:31	3216384	----a-w-	c:\windows\system32\msi.dll
2013-03-31 20:49 . 2012-06-06 06:05	495616	----a-w-	c:\program files\Common Files\System\ado\msadox.dll
2013-03-31 20:45 . 2013-03-31 20:45	--------	d-----w-	c:\program files\WinRAR
2013-03-31 20:40 . 2012-02-17 06:38	1031680	----a-w-	c:\windows\system32\rdpcore.dll
2013-03-31 20:40 . 2012-02-17 05:34	826880	----a-w-	c:\windows\SysWow64\rdpcore.dll
2013-03-31 20:40 . 2012-02-17 04:57	23552	----a-w-	c:\windows\system32\drivers\tdtcp.sys
2013-03-31 20:37 . 2012-06-02 22:19	57880	----a-w-	c:\windows\system32\wuauclt.exe
2013-03-31 20:37 . 2012-06-02 22:19	44056	----a-w-	c:\windows\system32\wups2.dll
2013-03-31 20:37 . 2012-06-02 22:19	2428952	----a-w-	c:\windows\system32\wuaueng.dll
2013-03-31 20:37 . 2012-06-02 22:15	2622464	----a-w-	c:\windows\system32\wucltux.dll
2013-03-31 20:37 . 2012-06-02 22:19	38424	----a-w-	c:\windows\system32\wups.dll
2013-03-31 20:37 . 2012-06-02 22:19	701976	----a-w-	c:\windows\system32\wuapi.dll
2013-03-31 20:37 . 2012-06-02 22:15	99840	----a-w-	c:\windows\system32\wudriver.dll
2013-03-31 20:37 . 2012-06-02 13:19	186752	----a-w-	c:\windows\system32\wuwebv.dll
2013-03-31 20:37 . 2012-06-02 13:15	36864	----a-w-	c:\windows\system32\wuapp.exe
2013-03-31 20:14 . 2013-03-31 20:14	--------	d-----w-	c:\program files (x86)\GPLGS
2013-03-31 20:13 . 2013-03-31 20:13	--------	d-----w-	c:\program files (x86)\Acro Software
2013-03-31 20:13 . 2012-10-04 17:49	87152	----a-w-	c:\windows\system32\cpwmon64.dll
2013-03-31 20:11 . 2013-04-12 10:43	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-31 20:11 . 2013-04-12 10:43	691592	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-31 20:11 . 2013-03-31 20:11	--------	d-----w-	c:\windows\SysWow64\Macromed
2013-03-31 20:11 . 2013-03-31 20:11	--------	d-----w-	c:\windows\system32\Macromed
2013-03-31 20:03 . 2013-04-14 21:17	--------	d-----w-	c:\program files\Calibre2
2013-03-31 19:35 . 2013-03-31 19:35	--------	d-----w-	c:\program files (x86)\Firetrust
2013-03-31 18:29 . 2013-03-31 18:29	--------	d-----w-	c:\program files (x86)\uTorrent
2013-03-31 18:02 . 2013-03-31 18:02	--------	d-----w-	c:\program files (x86)\AGEIA Technologies
2013-03-31 18:02 . 2013-03-31 18:02	--------	d-----w-	c:\users\UpdatusUser
2013-03-31 18:01 . 2013-03-31 18:02	--------	d-----w-	c:\program files (x86)\NVIDIA Corporation
2013-03-31 18:01 . 2013-03-15 04:16	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-03-31 18:01 . 2013-03-15 04:16	3477280	----a-w-	c:\windows\system32\nvsvc64.dll
2013-03-31 18:01 . 2013-03-15 04:16	6398240	----a-w-	c:\windows\system32\nvcpl.dll
2013-03-31 18:01 . 2013-03-15 04:16	877856	----a-w-	c:\windows\system32\nvvsvc.exe
2013-03-31 18:01 . 2013-03-15 04:16	2555680	----a-w-	c:\windows\system32\nvsvcr.dll
2013-03-31 18:01 . 2013-03-15 04:16	237856	----a-w-	c:\windows\system32\nvmctray.dll
2013-03-31 18:01 . 2013-03-15 05:53	61216	----a-w-	c:\windows\system32\OpenCL.dll
2013-03-31 18:01 . 2013-03-15 05:53	53024	----a-w-	c:\windows\SysWow64\OpenCL.dll
2013-03-31 18:01 . 2013-03-31 18:01	--------	d-----w-	c:\programdata\NVIDIA Corporation
2013-03-31 17:59 . 2013-03-31 17:59	--------	d-----w-	C:\NVIDIA
2013-03-31 17:57 . 2013-04-17 06:31	--------	d-----w-	c:\programdata\NVIDIA
2013-03-31 17:57 . 2013-03-31 17:57	--------	d-----w-	c:\windows\Sun
2013-03-31 17:57 . 2013-03-31 17:57	--------	d-----w-	c:\program files (x86)\Common Files\Java
2013-03-31 17:56 . 2013-03-31 17:56	861088	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2013-03-31 17:56 . 2013-03-31 17:56	782240	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-03-31 17:56 . 2013-03-31 17:56	95648	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-31 17:56 . 2013-03-31 17:56	--------	d-----w-	c:\program files (x86)\Java
2013-03-31 17:32 . 2013-04-17 06:32	30528	----a-w-	c:\windows\GVTDrv64.sys
2013-03-31 17:30 . 2013-03-06 22:33	70992	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2013-03-31 17:30 . 2013-03-06 22:33	68920	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2013-03-31 17:30 . 2013-03-06 22:33	377920	----a-w-	c:\windows\system32\drivers\aswSP.sys
2013-03-31 17:30 . 2013-03-06 22:33	1025808	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2013-03-31 17:30 . 2013-03-06 22:33	33400	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2013-03-31 17:30 . 2013-03-06 22:33	178624	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2013-03-31 17:30 . 2013-03-06 22:33	65336	----a-w-	c:\windows\system32\drivers\aswRvrt.sys
2013-03-31 17:30 . 2013-03-06 22:33	80816	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2013-03-31 17:30 . 2013-03-06 22:32	287840	----a-w-	c:\windows\system32\aswBoot.exe
2013-03-31 17:30 . 2013-03-06 22:32	41664	----a-w-	c:\windows\avastSS.scr
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-14 20:07 . 2013-03-14 20:07	559904	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-03-11 23:10 . 2010-11-21 03:27	282744	------w-	c:\windows\system32\MpSigStub.exe
2013-02-27 06:57 . 2013-02-27 06:57	4283392	----a-w-	c:\windows\SysWow64\x264vfw.dll
2013-02-12 05:45 . 2013-03-31 20:51	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-31 20:51	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-31 20:51	308736	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-31 20:51	111104	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-31 20:51	474112	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-31 20:51	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2012-07-19 133440]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"="c:\program files (x86)\GIGABYTE\ET6\ETCall.exe" [2012-07-09 40960]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0\0sdnclean64.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\DRIVERS\a38usb.sys [2013-04-04 44672]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 aswVmm;aswVmm; [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2013-04-17 30528]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-03-31 1255736]
S0 aswRvrt;aswRvrt; [x]
S0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 19264]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2012-10-25 22680]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-05 166720]
S2 lxbl_device;lxbl_device;c:\windows\system32\lxblcoms.exe [2007-04-20 566704]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-19 365376]
S3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 357184]
S3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 789824]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
.
.
--- Andere Services/Drivers In Geheugen ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-11 21:54	1642448	----a-w-	c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Inhoud van de 'Gedeelde Taken' map
.
2013-04-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-06 16:08]
.
2013-04-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-06 16:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 22:32	133840	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Verzenden naar OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\7qws1rz9.default-1364764847419\
FF - prefs.js: browser.startup.homepage - www.google.com
FF - ExtSQL: 2013-03-31 19:30; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2013-03-31 23:31; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\7qws1rz9.default-1364764847419\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-04-01 16:57; {66E978CD-981F-47DF-AC42-E3CF417C1467}; c:\users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\7qws1rz9.default-1364764847419\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi
FF - ExtSQL: 2013-04-04 09:26; belgiumeid@eid.belgium.be; c:\program files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF - ExtSQL: 2013-04-15 20:51; {210249CE-F888-11DD-B868-4CB456D89593}; c:\users\Ann\AppData\Roaming\Mozilla\Firefox\Profiles\7qws1rz9.default-1364764847419\extensions\{210249CE-F888-11DD-B868-4CB456D89593}
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2013-04-17  08:41:12
ComboFix-quarantined-files.txt  2013-04-17 06:41
.
Pre-Run: 164.721.713.152 bytes beschikbaar
Post-Run: 164.364.455.936 bytes beschikbaar
.
- - End Of File - - 54F3465541E9FD10F364C30C6B8B245E