ComboFix 14-09-12.01 - user 11-09-2014  22:09:57.8.4 - x64
Gestart vanuit: c:\users\user\Desktop\ComboFix.exe
 * Nieuw herstelpunt werd aangemaakt
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\PCDr\6426\AddOnDownloaded\17f1dc08-7438-4923-8b13-c44c0a4de941.dll
c:\programdata\PCDr\6426\AddOnDownloaded\31432802-7f43-4786-a8e0-71cd2588572a.dll
c:\programdata\PCDr\6426\AddOnDownloaded\7c5b1d75-4145-4f69-b184-a8fb559fd417.dll
c:\programdata\PCDr\6426\AddOnDownloaded\d25002f9-4300-486b-80e9-bcb6abe38487.dll
c:\programdata\PCDr\6426\AddOnDownloaded\e5a96c3d-2e95-42ea-ad11-9e3f77fdabd4.dll
c:\programdata\PCDr\6426\AddOnDownloaded\fbd50850-4122-4fe3-a72e-fcbe58a0f196.dll
c:\windows\tmp
c:\windows\tmp\dd_vcredistMSI2B84.txt
c:\windows\tmp\dd_vcredistMSI321B.txt
c:\windows\tmp\dd_vcredistUI2B84.txt
c:\windows\tmp\dd_vcredistUI321B.txt
c:\windows\tmp\fonts\fontdb
c:\windows\tmp\qtsingleapp-koboex-7d5-1-lockfile
c:\windows\wininit.ini
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2014-08-11 to 2014-09-11  ))))))))))))))))))))))))))))))
.
.
2014-09-11 20:21 . 2014-09-11 20:21	--------	d-----w-	c:\windows\system32\wbem\repository
2014-09-11 20:20 . 2014-09-11 20:20	--------	d-----w-	c:\users\Public\AppData\Local\temp
2014-09-11 20:20 . 2014-09-11 20:20	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-09-11 19:58 . 2014-09-11 19:54	24064	----a-w-	c:\windows\zoek-delete.exe
2014-09-11 17:16 . 2014-09-11 17:16	1825792	----a-w-	c:\windows\SysWow64\m2megaplugin_pandu.dll
2014-09-11 17:16 . 2013-03-22 12:59	73184	------w-	c:\windows\SysWow64\SSDPDiscovery.dll
2014-09-11 17:14 . 2014-09-11 17:14	--------	dc-h--w-	c:\programdata\{65645173-D674-42EE-9CA4-E050D7BF480F}
2014-09-11 16:01 . 2014-09-11 16:01	--------	d-----w-	c:\program files\My Dell
2014-09-10 18:44 . 2014-07-25 10:55	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-09-10 18:06 . 2014-09-10 18:06	--------	d-----w-	c:\program files (x86)\Microsoft Security Client
2014-09-10 18:05 . 2014-09-10 18:06	--------	d-----w-	c:\program files\Microsoft Security Client
2014-09-10 17:30 . 2014-09-10 17:31	--------	d-----w-	C:\zoek_backup
2014-09-10 15:19 . 2014-09-10 15:19	--------	d-----w-	c:\users\user\AppData\Local\KPN
2014-09-10 15:18 . 2014-09-11 17:16	--------	d-----w-	c:\programdata\mquadr.at
2014-09-10 15:18 . 2014-04-07 15:16	4161912	------w-	c:\windows\SysWow64\M2ElevatedCalls.dll
2014-09-10 15:18 . 2013-03-26 14:36	3368344	------w-	c:\windows\SysWow64\M2LU_Server.exe
2014-09-10 15:18 . 2011-01-24 15:32	876192	------w-	c:\windows\SysWow64\ipworks8.dll
2014-09-10 15:18 . 2010-06-08 13:19	692224	------w-	c:\windows\SysWow64\libeay32.dll
2014-09-10 15:18 . 2010-06-08 13:19	151552	------w-	c:\windows\SysWow64\ssleay32.dll
2014-09-10 15:18 . 2014-09-10 15:19	--------	d-----w-	c:\users\user\AppData\Local\mquadr.at
2014-09-10 15:18 . 2014-09-10 15:18	--------	d-----w-	c:\program files (x86)\KPN
2014-09-10 15:18 . 2014-04-07 15:14	5471112	------w-	c:\windows\SysWow64\m2network64helper.exe
2014-09-10 15:18 . 2014-04-07 15:13	3697064	------w-	c:\windows\SysWow64\M2ElevatedNetworkAdapters.dll
2014-09-10 15:18 . 2012-12-03 13:58	279040	------w-	c:\windows\system32\WiFiMan.dll
2014-09-10 15:18 . 2012-12-03 13:57	238592	------w-	c:\windows\SysWow64\WiFiMan.dll
2014-09-10 08:29 . 2014-06-14 14:03	260696	----a-w-	c:\windows\system32\unrar64.dll
2014-09-10 08:29 . 2014-09-10 08:29	--------	d-----w-	c:\program files (x86)\K-Lite Codec Pack
2014-09-09 18:08 . 2014-09-09 18:08	--------	d-----w-	C:\rsit
2014-09-07 17:09 . 2014-09-07 17:09	--------	d-----w-	c:\program files (x86)\Windows Resource Kits
2014-09-07 16:37 . 2010-08-30 06:34	536576	----a-w-	c:\windows\SysWow64\sqlite3.dll
2014-09-07 16:36 . 2014-09-07 16:40	--------	d-----w-	C:\AdwCleaner
2014-09-07 14:19 . 2014-09-07 14:19	--------	d-----w-	c:\windows\ERUNT
2014-09-05 13:29 . 2014-09-07 17:59	--------	d-----w-	c:\programdata\boost_interprocess
2014-09-05 13:29 . 2014-09-05 13:34	--------	d-----w-	c:\users\user\AppData\Local\Plex Media Server
2014-09-05 13:26 . 2014-09-05 13:26	--------	d-----w-	c:\program files (x86)\Plex
2014-09-05 13:26 . 2014-09-05 13:26	--------	d-----w-	c:\programdata\Package Cache
2014-09-02 16:40 . 2014-09-02 16:42	--------	d-----w-	c:\users\user\AppData\Roaming\PopcornTime
2014-09-02 16:40 . 2014-09-10 17:31	--------	d-----w-	c:\program files (x86)\Popcorn Time
.
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-11 20:01 . 2012-04-13 20:15	701104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-09-11 20:01 . 2011-08-28 12:51	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-11 15:47 . 2014-07-17 22:02	122584	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-28 11:04 . 2012-07-17 13:37	23256	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-08-21 09:24 . 2014-09-10 18:08	11319192	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BB75E616-B2EE-4701-9D57-00ADB7CB29A2}\mpengine.dll
2014-08-14 09:30 . 2014-09-10 18:08	1169712	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{53FFEA44-147B-4B75-8BBE-E2C862A5197A}\gapaengine.dll
2014-07-17 16:05 . 2014-07-17 16:05	269008	----a-w-	c:\windows\system32\drivers\MpFilter.sys
2014-07-17 16:05 . 2014-07-17 16:05	125584	----a-w-	c:\windows\system32\drivers\NisDrvWFP.sys
2014-06-14 14:03 . 2013-08-07 19:36	218200	----a-w-	c:\windows\SysWow64\unrar.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe /firstrun [2009-12-16 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R1 beivlmkt;beivlmkt;c:\windows\system32\drivers\beivlmkt.sys;c:\windows\SYSNATIVE\drivers\beivlmkt.sys [x]
R1 bzldjklq;bzldjklq;c:\windows\system32\drivers\bzldjklq.sys;c:\windows\SYSNATIVE\drivers\bzldjklq.sys [x]
R1 gcjzzqxq;gcjzzqxq;c:\windows\system32\drivers\gcjzzqxq.sys;c:\windows\SYSNATIVE\drivers\gcjzzqxq.sys [x]
R1 ithutvli;ithutvli;c:\windows\system32\drivers\ithutvli.sys;c:\windows\SYSNATIVE\drivers\ithutvli.sys [x]
R1 ivpqybdd;ivpqybdd;c:\windows\system32\drivers\ivpqybdd.sys;c:\windows\SYSNATIVE\drivers\ivpqybdd.sys [x]
R1 kfbfzmna;kfbfzmna;c:\windows\system32\drivers\kfbfzmna.sys;c:\windows\SYSNATIVE\drivers\kfbfzmna.sys [x]
R1 ktkozxam;ktkozxam;c:\windows\system32\drivers\ktkozxam.sys;c:\windows\SYSNATIVE\drivers\ktkozxam.sys [x]
R1 nghvjrhc;nghvjrhc;c:\windows\system32\drivers\nghvjrhc.sys;c:\windows\SYSNATIVE\drivers\nghvjrhc.sys [x]
R1 ofocodwt;ofocodwt;c:\windows\system32\drivers\ofocodwt.sys;c:\windows\SYSNATIVE\drivers\ofocodwt.sys [x]
R1 oquazjqk;oquazjqk;c:\windows\system32\drivers\oquazjqk.sys;c:\windows\SYSNATIVE\drivers\oquazjqk.sys [x]
R1 pgfaooer;pgfaooer;c:\windows\system32\drivers\pgfaooer.sys;c:\windows\SYSNATIVE\drivers\pgfaooer.sys [x]
R1 qtabsgdq;qtabsgdq;c:\windows\system32\drivers\qtabsgdq.sys;c:\windows\SYSNATIVE\drivers\qtabsgdq.sys [x]
R1 quxnoxsa;quxnoxsa;c:\windows\system32\drivers\quxnoxsa.sys;c:\windows\SYSNATIVE\drivers\quxnoxsa.sys [x]
R1 rmfxnewc;rmfxnewc;c:\windows\system32\drivers\rmfxnewc.sys;c:\windows\SYSNATIVE\drivers\rmfxnewc.sys [x]
R1 ulmagftk;ulmagftk;c:\windows\system32\drivers\ulmagftk.sys;c:\windows\SYSNATIVE\drivers\ulmagftk.sys [x]
R1 upafxgyp;upafxgyp;c:\windows\system32\drivers\upafxgyp.sys;c:\windows\SYSNATIVE\drivers\upafxgyp.sys [x]
R1 vqcnvldj;vqcnvldj;c:\windows\system32\drivers\vqcnvldj.sys;c:\windows\SYSNATIVE\drivers\vqcnvldj.sys [x]
R1 zdecobre;zdecobre;c:\windows\system32\drivers\zdecobre.sys;c:\windows\SYSNATIVE\drivers\zdecobre.sys [x]
R2 0251691327433211mcinstcleanup;McAfee Application Installer Cleanup (0251691327433211);c:\users\ROELRI~1\AppData\Local\Temp\025169~1.EXE;c:\users\ROELRI~1\AppData\Local\Temp\025169~1.EXE [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Netwerkinspectie;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [x]
R4 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe;c:\windows\SYSNATIVE\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe [x]
R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R4 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe;c:\program files\Dell\DellDock\DockLogin.exe [x]
R4 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
R4 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
R4 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
R4 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [x]
R4 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S2 Update service;Update service;c:\program files (x86)\Popcorn Time\Updater.exe;c:\program files (x86)\Popcorn Time\Updater.exe [x]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Acceler.sys;c:\windows\SYSNATIVE\DRIVERS\Acceler.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 O2MDGRDR;O2MDGRDR;c:\windows\system32\DRIVERS\o2mdgx64.sys;c:\windows\SYSNATIVE\DRIVERS\o2mdgx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
.
.
Inhoud van de 'Gedeelde Taken' map
.
2014-09-11 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-13 20:01]
.
2014-09-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-07 04:36]
.
2014-09-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-09-07 04:36]
.
2014-09-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2019682446-1621871602-3416362686-1000Core.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-27 18:43]
.
2014-09-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2019682446-1621871602-3416362686-1000UA.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-27 18:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-20 487424]
"Broadcom Wireless Manager UI"="c:\program files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" [2009-07-17 4968960]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-08-22 1331288]
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.nl/
mLocal Page = c:\windows\SysWOW64\blank.htm
mDefault_Page_URL = hxxp://www.google.com
uInternet Settings,ProxyOverride = *.local
Trusted Zone: dell.com
Trusted Zone: facebook.com\www
Trusted Zone: google.com\accounts
Trusted Zone: google.com\www
Trusted Zone: microsoft.com\update
Trusted Zone: windowsupdate.com\download
TCP: DhcpNameServer = 192.168.2.254 195.121.1.34 195.121.1.66
DPF: {682C59F5-478C-4421-9070-AD170D143B77} - hxxp://www.dell.com/support/troubleshooting/Content/Ode/pcd86.cab
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\91r9p4a5.default\
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-Locked - (no file)
WebBrowser-{2D8D9ACC-F6D7-4362-8876-A275CA929591} - (no file)
AddRemove-{DB2FC4C1-7CA6-4F6D-A2A1-E0080DEDE2C3} - c:\programdata\{208DBE30-583D-4DB2-BED9-1E486B1F3820}\Setup_KPN_IA.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_152_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_152_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_152_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_152_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files (x86)\TeamViewer\Version9\TeamViewer.exe
c:\program files (x86)\TeamViewer\Version9\tv_w32.exe
c:\windows\TEMP\setCCDF.tmp.exe
.
**************************************************************************
.
Voltooingstijd: 2014-09-11  22:32:24 - machine werd herstart
ComboFix-quarantined-files.txt  2014-09-11 20:32
ComboFix2.txt  2013-03-24 09:25
ComboFix3.txt  2012-07-19 05:06
ComboFix4.txt  2012-05-05 08:25
ComboFix5.txt  2014-09-11 20:08
.
Pre-Run: 189.904.044.032 bytes beschikbaar
Post-Run: 189.605.048.320 bytes beschikbaar
.
- - End Of File - - 234D3B1E42C198942434838933BDDE08
5C616939100B85E558DA92B899A0FC36