ComboFix 14-11-09.02 - brian 10-11-2014  12:09:54.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.31.1043.18.16290.14276 [GMT 1:00]
Gestart vanuit: c:\users\brian\Desktop\ComboFix.exe
AV: Basis *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
SP: Basis *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\quickpick
c:\programdata\quickpick\5hm2TXSshSgWZR.dat
c:\programdata\quickpick\5hm2TXSshSgWZR.tlb
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\ar\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\bg\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\ca\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\cs\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\da\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\de\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\el\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\en\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\es\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\fi\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\fr\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\he\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\hr\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\hu\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\id\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\it\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\ja\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\ko\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\nb\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\nl\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\pl\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\pt_BR\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\pt_PT\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\ro\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\ru\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\sk\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\sl\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\sr\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\sv\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\te\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\tr\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\uk\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\vi\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\zh_CN\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_locales\zh_TW\messages.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\_metadata\verified_contents.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\adblock_start_chrome.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\adblock_start_common.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\background.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\bandaids.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\button\popup.css
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\button\popup.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\button\popup.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\button\search\search.css
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\button\search\search.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\CHANGELOG.txt
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\checkupdates.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\chrome_oauth_receiver.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\chrome_oauth_receiver.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\dropbox-datastores.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\filtering\domainset.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\filtering\filternormalizer.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\filtering\filteroptions.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\filtering\filterset.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\filtering\filtertypes.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\filtering\myfilters.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\functions.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\idlehandler.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\delete.gif
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\dropbox1.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\dropbox2.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\dropbox3.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\facebook-sprite.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\gifloader.gif
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\gplus-sprite.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon128.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon16.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon16_grayscale.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon16_grayscale@2x.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon19-grayscale.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon19-whitelisted.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon19.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon24.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon32.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon38-grayscale.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon38-whitelisted.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon38.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\icon48.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\logo.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\search\check.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\search\magnifying_glass.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\search\search-engine-card_no-shadow.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\search\search-engine-icons.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\search\search-omnibox-card_no-shadow.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\search\search_engine_select_arrow.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\img\twitter-sprite.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_flat_55_999999_40x100.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_flat_75_aaaaaa_40x100.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_glass_45_0078ae_1x400.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_glass_55_f8da4e_1x400.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_glass_75_79c9ec_1x400.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_gloss-wave_50_38cfff_500x100.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_gloss-wave_75_2191c0_500x100.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-bg_inset-hard_100_fcfdfd_1x100.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-icons_056b93_256x240.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\images\ui-icons_d8e7f3_256x240.png
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\jquery-ui.custom.css
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\css\override-page.css
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\jquery-ui.custom.min.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\jquery.cookie.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\jquery\jquery.min.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\LICENSE
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\manifest.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\customize.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\customize.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\filters.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\filters.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\general.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\general.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\index.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\index.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\options.css
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\support.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\options\support.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\pages\adreport.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\pages\adreport.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\pages\resourceblock.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\pages\resourceblock.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\pages\subscribe.html
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\pages\subscribe.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\port.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\README.markdown
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\search\focus.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\search\incognito.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\search\pitchpage.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\search\search-plus-one.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\search\secure_reminder.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\search\serp.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\stats.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\translators.json
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\blacklisting\blacklistui.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\blacklisting\clickwatcher.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\blacklisting\elementchain.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\blacklisting\overlay.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\blacklisting\rightclick_hook.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\load_jquery_ui.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\send_content_to_back.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\top_open_blacklist_ui.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\uiscripts\top_open_whitelist_ui.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.13_0\ytchannel.js
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage
c:\users\brian\AppData\Local\Google\Chrome\User Data\Default\Preferences
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2014-10-10 to 2014-11-10  ))))))))))))))))))))))))))))))
.
.
2014-11-10 11:12 . 2014-11-10 11:12	--------	d-----w-	c:\users\Public\AppData\Local\temp
2014-11-10 11:12 . 2014-11-10 11:12	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-11-09 18:51 . 2014-11-09 18:51	--------	d-----w-	c:\program files (x86)\E Dev
2014-11-09 15:14 . 2014-11-10 10:51	129752	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-11-09 15:14 . 2014-10-01 10:11	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2014-11-09 15:14 . 2014-10-01 10:11	93400	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2014-11-09 15:14 . 2014-10-01 10:11	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2014-11-09 13:59 . 2014-11-09 13:59	4	----a-w-	c:\users\brian\AppData\Roaming\appdataFr2.bin
2014-11-09 13:28 . 2014-11-09 13:28	--------	d-----w-	c:\program files (x86)\nodejs
2014-11-09 13:26 . 2014-11-09 13:26	--------	d-----w-	c:\users\brian\AppData\Local\Secunia PSI
2014-11-09 13:26 . 2014-11-09 13:26	--------	d-----w-	c:\program files (x86)\Secunia
2014-11-09 12:55 . 2014-11-09 12:55	--------	d-----w-	c:\users\brian\AppData\Roaming\SUPERAntiSpyware.com
2014-11-09 12:55 . 2014-11-09 12:55	--------	d-----w-	c:\programdata\SUPERAntiSpyware.com
2014-11-09 12:38 . 2014-11-09 12:38	56016	----a-w-	c:\windows\system32\drivers\fsbts.sys
2014-11-09 12:38 . 2014-11-09 12:38	--------	d-----w-	C:\rsit
2014-11-09 12:38 . 2014-11-09 12:38	--------	d-----w-	c:\program files\trend micro
2014-11-09 12:15 . 2014-11-09 12:15	41024	----a-w-	c:\windows\SysWow64\drivers\fsbts.sys
2014-11-09 12:09 . 2014-11-09 12:09	--------	d-----w-	c:\windows\system32\drivers\NSTx64
2014-11-09 12:09 . 2014-11-09 12:09	--------	d-----w-	c:\program files (x86)\Norton Identity Safe
2014-11-09 12:06 . 2014-11-09 12:16	--------	d-----w-	c:\program files (x86)\Internetbeveiliging
2014-11-09 12:06 . 2014-11-09 12:16	--------	d-----w-	c:\programdata\F-Secure
2014-11-09 11:49 . 2014-11-09 11:50	--------	d-----w-	c:\program files (x86)\stinger
2014-11-08 13:50 . 2014-11-08 13:51	--------	d-----w-	c:\users\brian\AppData\Local\NPE
2014-11-08 13:46 . 2014-11-09 18:45	--------	d-----w-	C:\AdwCleaner
2014-11-08 13:17 . 2014-11-08 13:17	--------	d-----w-	c:\programdata\McAfee
2014-11-05 20:10 . 2014-11-05 20:11	--------	d-----w-	c:\programdata\give2u
2014-11-05 19:50 . 2014-11-08 13:26	--------	d-----w-	c:\program files (x86)\VideoCnv
2014-11-05 19:50 . 2014-11-05 19:50	--------	d-----w-	c:\users\brian\AppData\Local\PopcornTimeDesktop
2014-11-05 19:50 . 2014-11-05 19:50	--------	d-----w-	c:\program files (x86)\Popcorn Time
2014-11-04 20:01 . 2014-10-30 00:56	614728	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2014-10-23 20:00 . 2014-10-23 20:00	--------	d-----w-	c:\users\brian\AppData\Local\ElevatedDiagnostics
2014-10-23 19:55 . 2014-10-20 01:37	11627712	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{33C3DAC5-3075-4976-A5F3-FB9CE2879D4A}\mpengine.dll
2014-10-23 19:55 . 2014-10-02 13:53	278152	------w-	c:\windows\system32\MpSigStub.exe
2014-10-23 19:35 . 2014-10-23 19:35	--------	d-----w-	c:\users\brian\Doctor Web
2014-10-23 18:53 . 2014-10-23 18:53	--------	d-----w-	c:\users\brian\AppData\Local\Popcorn Time
2014-10-23 18:13 . 2014-10-23 18:13	8979136	----a-w-	c:\windows\PE_Rom.dll
2014-10-23 13:39 . 2014-10-16 16:54	1876296	----a-w-	c:\windows\system32\nvdispco6434448.dll
2014-10-23 13:39 . 2014-10-16 16:54	1539272	----a-w-	c:\windows\system32\nvdispgenco6434448.dll
2014-10-19 21:20 . 2014-10-19 21:32	--------	d-----w-	c:\users\brian\AppData\Local\Flixtor
2014-10-16 22:46 . 2014-10-16 22:46	--------	d-----w-	c:\users\brian\AppData\Roaming\PDAppFlex
2014-10-16 22:37 . 2014-10-16 22:37	--------	d-----w-	c:\programdata\regid.1986-12.com.adobe
2014-10-16 22:34 . 2014-10-16 22:36	--------	d-----w-	c:\program files\Adobe
2014-10-16 22:33 . 2014-10-16 22:36	--------	d-----w-	c:\program files\Common Files\Adobe
2014-10-16 22:30 . 2014-10-16 22:30	--------	d-----r-	c:\users\brian\Creative Cloud Files
2014-10-16 22:28 . 2014-10-16 22:34	--------	d-----w-	c:\programdata\Package Cache
2014-10-16 18:25 . 2014-10-16 22:37	--------	d-----w-	c:\users\brian\AppData\Roaming\NVIDIA
2014-10-16 01:03 . 2014-10-16 01:03	--------	d-----w-	c:\program files (x86)\Microsoft ASP.NET
2014-10-15 19:04 . 2014-09-18 02:00	3241472	----a-w-	c:\windows\system32\msi.dll
2014-10-13 22:46 . 2014-10-25 18:36	--------	d-----w-	c:\users\brian\AppData\Local\Popcorn-Time
2014-10-12 16:28 . 2014-10-12 16:28	--------	d-----w-	c:\programdata\Visan
2014-10-12 16:28 . 2012-10-17 02:31	741480	------w-	c:\windows\system32\HPDiscoPMB111.dll
2014-10-11 22:40 . 2014-10-11 22:40	--------	d-----w-	c:\users\brian\AppData\Roaming\UltraMixer4
.
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-30 04:53 . 2014-08-24 11:07	73872	----a-w-	c:\windows\system32\OpenCL.dll
2014-10-30 04:53 . 2014-08-24 11:07	60744	----a-w-	c:\windows\SysWow64\OpenCL.dll
2014-10-30 04:53 . 2014-08-24 11:04	20966504	----a-w-	c:\windows\system32\nvwgf2umx.dll
2014-10-30 04:53 . 2014-08-24 11:04	987008	----a-w-	c:\windows\system32\nvumdshimx.dll
2014-10-30 04:53 . 2014-08-24 11:04	16886168	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2014-10-30 04:53 . 2014-08-24 11:04	3237528	----a-w-	c:\windows\system32\nvapi64.dll
2014-10-30 02:10 . 2014-08-24 11:07	6880968	----a-w-	c:\windows\system32\nvcpl.dll
2014-10-30 02:10 . 2014-08-24 11:07	3533632	----a-w-	c:\windows\system32\nvsvc64.dll
2014-10-30 02:10 . 2014-08-24 11:07	935232	----a-w-	c:\windows\system32\nvvsvc.exe
2014-10-30 02:10 . 2014-08-24 11:07	61640	----a-w-	c:\windows\system32\nvshext.dll
2014-10-30 02:10 . 2014-08-24 11:07	2558792	----a-w-	c:\windows\system32\nvsvcr.dll
2014-10-30 02:10 . 2014-08-24 11:07	385352	----a-w-	c:\windows\system32\nvmctray.dll
2014-10-27 00:34 . 2014-08-24 11:07	4066553	----a-w-	c:\windows\system32\nvcoproc.bin
2014-10-23 20:47 . 2014-10-05 19:18	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-10-23 20:47 . 2014-10-05 19:18	701104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-10-16 01:01 . 2014-08-24 13:05	103265616	----a-w-	c:\windows\system32\MRT.exe
2014-10-04 06:42 . 2014-08-24 12:23	2197680	----a-w-	c:\windows\SysWow64\nvspcap.dll
2014-10-04 06:42 . 2014-08-24 12:23	1291280	----a-w-	c:\windows\SysWow64\nvspbridge.dll
2014-10-04 06:41 . 2014-08-24 12:23	2800296	----a-w-	c:\windows\system32\nvspcap64.dll
2014-10-04 06:41 . 2014-08-24 12:23	1715224	----a-w-	c:\windows\system32\nvspbridge64.dll
2014-09-25 02:08 . 2014-10-01 16:44	371712	----a-w-	c:\windows\system32\qdvd.dll
2014-09-25 01:40 . 2014-10-01 16:44	519680	----a-w-	c:\windows\SysWow64\qdvd.dll
2014-09-17 04:51 . 2014-09-23 22:34	31520	----a-w-	c:\windows\system32\nvhdap64.dll
2014-09-17 04:51 . 2014-09-23 22:34	197408	----a-w-	c:\windows\system32\drivers\nvhda64v.sys
2014-09-17 04:51 . 2014-08-24 11:07	1538880	----a-w-	c:\windows\system32\nvhdagenco6420103.dll
2014-09-13 23:48 . 2014-09-23 22:34	1876296	----a-w-	c:\windows\system32\nvdispco6434411.dll
2014-09-13 23:48 . 2014-09-23 22:34	1539272	----a-w-	c:\windows\system32\nvdispgenco6434411.dll
2014-09-09 22:11 . 2014-09-24 09:54	2048	----a-w-	c:\windows\system32\tzres.dll
2014-09-09 21:47 . 2014-09-24 09:54	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2014-09-09 07:31 . 2014-09-09 08:00	166384	----a-w-	c:\windows\system32\drivers\psmounterex.sys
2014-09-04 19:14 . 2014-09-20 19:23	38048	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2014-09-04 19:14 . 2014-09-20 19:23	32416	----a-w-	c:\windows\SysWow64\nvaudcap32v.dll
2014-09-04 19:14 . 2014-08-24 11:23	34976	----a-w-	c:\windows\system32\nvaudcap64v.dll
2014-09-03 18:27 . 2014-09-03 18:27	53248	----a-r-	c:\users\brian\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2014-08-26 11:18 . 2012-07-17 12:37	23256	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-08-25 15:23 . 2014-08-25 15:23	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2014-08-25 15:23 . 2014-08-25 15:23	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2014-08-25 15:23 . 2014-08-25 15:23	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2014-08-25 15:23 . 2014-08-25 15:23	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2014-08-25 15:23 . 2014-08-25 15:23	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2014-08-25 15:23 . 2014-08-25 15:23	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2014-08-25 15:23 . 2014-08-25 15:23	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2014-08-25 15:23 . 2014-08-25 15:23	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2014-08-25 15:23 . 2014-08-25 15:23	337408	----a-w-	c:\windows\SysWow64\html.iec
2014-08-25 15:23 . 2014-08-25 15:23	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2014-08-25 15:23 . 2014-08-25 15:23	235008	----a-w-	c:\windows\system32\elshyph.dll
2014-08-25 15:23 . 2014-08-25 15:23	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2014-08-25 15:23 . 2014-08-25 15:23	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2014-08-25 15:23 . 2014-08-25 15:23	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2014-08-25 15:23 . 2014-08-25 15:23	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2014-08-25 15:23 . 2014-08-25 15:23	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2014-08-25 15:23 . 2014-08-25 15:23	942592	----a-w-	c:\windows\system32\jsIntl.dll
2014-08-25 15:23 . 2014-08-25 15:23	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2014-08-25 15:23 . 2014-08-25 15:23	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2014-08-25 15:23 . 2014-08-25 15:23	81408	----a-w-	c:\windows\system32\icardie.dll
2014-08-25 15:23 . 2014-08-25 15:23	774144	----a-w-	c:\windows\system32\jscript.dll
2014-08-25 15:23 . 2014-08-25 15:23	77312	----a-w-	c:\windows\system32\tdc.ocx
2014-08-25 15:23 . 2014-08-25 15:23	62464	----a-w-	c:\windows\system32\pngfilt.dll
2014-08-25 15:23 . 2014-08-25 15:23	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2014-08-25 15:23 . 2014-08-25 15:23	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2014-08-25 15:23 . 2014-08-25 15:23	48640	----a-w-	c:\windows\system32\mshtmler.dll
2014-08-25 15:23 . 2014-08-25 15:23	48128	----a-w-	c:\windows\system32\imgutil.dll
2014-08-25 15:23 . 2014-08-25 15:23	413696	----a-w-	c:\windows\system32\html.iec
2014-08-25 15:23 . 2014-08-25 15:23	30208	----a-w-	c:\windows\system32\licmgr10.dll
2014-08-25 15:23 . 2014-08-25 15:23	247808	----a-w-	c:\windows\system32\msls31.dll
2014-08-25 15:23 . 2014-08-25 15:23	243200	----a-w-	c:\windows\system32\webcheck.dll
2014-08-25 15:23 . 2014-08-25 15:23	235520	----a-w-	c:\windows\system32\url.dll
2014-08-25 15:23 . 2014-08-25 15:23	167424	----a-w-	c:\windows\system32\iexpress.exe
2014-08-25 15:23 . 2014-08-25 15:23	147968	----a-w-	c:\windows\system32\occache.dll
2014-08-25 15:23 . 2014-08-25 15:23	143872	----a-w-	c:\windows\system32\wextract.exe
2014-08-25 15:23 . 2014-08-25 15:23	13824	----a-w-	c:\windows\system32\mshta.exe
2014-08-25 15:23 . 2014-08-25 15:23	135680	----a-w-	c:\windows\system32\iepeers.dll
2014-08-25 15:23 . 2014-08-25 15:23	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2014-08-25 15:23 . 2014-08-25 15:23	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2014-08-25 15:23 . 2014-08-25 15:23	105984	----a-w-	c:\windows\system32\iesysprep.dll
2014-08-25 15:23 . 2014-08-25 15:23	101376	----a-w-	c:\windows\system32\inseng.dll
2014-08-25 15:22 . 2014-08-25 15:22	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	9728	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	648192	----a-w-	c:\windows\system32\d3d10level9.dll
2014-08-25 15:22 . 2014-08-25 15:22	604160	----a-w-	c:\windows\SysWow64\d3d10level9.dll
2014-08-25 15:22 . 2014-08-25 15:22	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	522752	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2014-08-25 15:22 . 2014-08-25 15:22	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	4096	---ha-w-	c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	364544	----a-w-	c:\windows\SysWow64\XpsGdiConverter.dll
2014-08-25 15:22 . 2014-08-25 15:22	363008	----a-w-	c:\windows\system32\dxgi.dll
2014-08-25 15:22 . 2014-08-25 15:22	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	3584	---ha-w-	c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	333312	----a-w-	c:\windows\system32\d3d10_1core.dll
2014-08-25 15:22 . 2014-08-25 15:22	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	3072	---ha-w-	c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	3072	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	296960	----a-w-	c:\windows\system32\d3d10core.dll
2014-08-25 15:22 . 2014-08-25 15:22	293376	----a-w-	c:\windows\SysWow64\dxgi.dll
2014-08-25 15:22 . 2014-08-25 15:22	2560	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-25 15:22 . 2014-08-25 15:22	2560	---ha-w-	c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinBar (x86)"="p:\winbar\WinBar.exe" [2009-09-29 271360]
"HP Photosmart 5520 series (NET)"="c:\program files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]
"CCleaner Monitoring"="p:\ccleaner\CCleaner64.exe" [2014-10-29 6501656]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2013-03-12 134616]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-26 292848]
"ASUS Ai Charger"="c:\program files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe" [2012-08-13 547984]
"KiesTrayAgent"="p:\kies\Kies\KiesTrayAgent.exe" [2014-07-25 311616]
"LWS"="p:\logitech\LWS\Webcam Software\LWS.exe" [2012-09-12 204136]
"AllShareAgent"="p:\allshare\AllShare\AllShareAgent.exe" [2012-03-01 285072]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2013-05-30 96056]
"F-Secure Hoster (45123)"="c:\program files (x86)\Internetbeveiliging\fshoster32.exe" [2012-11-26 183864]
"F-Secure Manager"="c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE" [2013-08-27 310208]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IDSS_STARTUP"="c:\program files (x86)\Norton Identity Safe\Engine\2014.7.8.23\coSAStub.exe" [2014-09-20 442720]
.
c:\users\brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Inktwaarschuwingen controleren - HP Photosmart 5520 series (netwerk).lnk - c:\windows\system32\RunDll32.exe "c:\program files\HP\HP Photosmart 5520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3AH513C60602;CONNECTION=NW;MONITOR=1; [2009-7-14 45568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Secunia PSI Tray.lnk - c:\program files (x86)\Secunia\PSI\psi_tray.exe [2013-12-6 565464]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R1 SASDIFSV;SASDIFSV;c:\users\brian\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.SYS;c:\users\brian\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.SYS [x]
R1 SASKUTIL;SASKUTIL;c:\users\brian\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.SYS;c:\users\brian\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.SYS [x]
R2 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.24\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.24\AsusFanControlService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 fa6789c5;VideoCnv;c:\windows\system32\rundll32.exe;c:\windows\SYSNATIVE\rundll32.exe [x]
R2 MBAMService;MBAMService;t:\malwarebytes anti-malware\mbamservice.exe;t:\malwarebytes anti-malware\mbamservice.exe [x]
R2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe;c:\program files (x86)\Secunia\PSI\sua.exe [x]
R3 519DA1A263DEE5ED;519DA1A263DEE5ED;c:\users\brian\AppData\Local\Temp\C303BE2C.sys;c:\users\brian\AppData\Local\Temp\C303BE2C.sys [x]
R3 cleanhlp;cleanhlp;c:\users\brian\Desktop\virus scanner's\Altijd\emsisoft\Run\cleanhlp64.sys;c:\users\brian\Desktop\virus scanner's\Altijd\emsisoft\Run\cleanhlp64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 NVFLASH;NVFLASH;c:\windows\system32\drivers\nvflash.sys;c:\windows\SYSNATIVE\drivers\nvflash.sys [x]
R3 PSMounterEx;Macrium Reflect Image Explorer Driver;c:\windows\system32\drivers\psmounterex.sys;c:\windows\SYSNATIVE\drivers\psmounterex.sys [x]
R3 PSVolAcc;PSVolAcc; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.20);c:\windows\system32\DRIVERS\RtTeam620.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam620.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 SimpleSlideShowServer;SimpleSlideShowServer;p:\allshare\AllShare\AllShareSlideShowService.exe;p:\allshare\AllShare\AllShareSlideShowService.exe [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;Ondersteuning voor WSD-scan via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [x]
R4 ASGT;ASGT;c:\windows\SysWOW64\ASGT.exe;c:\windows\SysWOW64\ASGT.exe [x]
R4 SkypeUpdate;Skype Updater;p:\skype\Updater\Updater.exe;p:\skype\Updater\Updater.exe [x]
S0 fsbts;fsbts;c:\windows\system32\Drivers\fsbts.sys;c:\windows\SYSNATIVE\Drivers\fsbts.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 A2DDA;A2 Direct Disk Access Support Driver;c:\users\BRIAN\DESKTOP\VIRUS SCANNER'S\ALTIJD\EMSISOFT\RUN\a2ddax64.sys;c:\users\BRIAN\DESKTOP\VIRUS SCANNER'S\ALTIJD\EMSISOFT\RUN\a2ddax64.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 ccSet_NST;Norton Identity Safe Settings Manager;c:\windows\system32\drivers\NSTx64\7DE07080.017\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NSTx64\7DE07080.017\ccSetx64.sys [x]
S1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\HIPS\drivers\fshs.sys;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\HIPS\drivers\fshs.sys [x]
S1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [x]
S1 ndisrd;WinpkFilter LightWeight Filter;c:\windows\system32\DRIVERS\ndisrd.sys;c:\windows\SYSNATIVE\DRIVERS\ndisrd.sys [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [x]
S2 fshoster;F-Secure Dll Hoster;c:\program files (x86)\Internetbeveiliging\fshoster32.exe;c:\program files (x86)\Internetbeveiliging\fshoster32.exe [x]
S2 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe;c:\program files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 MBAMScheduler;MBAMScheduler;t:\malwarebytes anti-malware\mbamscheduler.exe;t:\malwarebytes anti-malware\mbamscheduler.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 ReflectService.exe;Macrium Reflect Image Mounting Service;p:\macrium reflect\ReflectService.exe;p:\macrium reflect\ReflectService.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 SamsungAllShareV2.0;Samsung AllShare PC;p:\allshare\AllShare\AllShareDMS\AllShareDMS.exe;p:\allshare\AllShare\AllShareDMS\AllShareDMS.exe [x]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe;c:\program files (x86)\Secunia\PSI\PSIA.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TeamViewer9;TeamViewer 9;p:\teamviewer\TeamViewer_Service.exe;p:\teamviewer\TeamViewer_Service.exe [x]
S2 Update service;Update service;c:\program files (x86)\Popcorn Time\Updater.exe;c:\program files (x86)\Popcorn Time\Updater.exe [x]
S3 AiCharger;AiCharger;SysWow64\drivers\AiCharger.sys;SysWow64\drivers\AiCharger.sys [x]
S3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
S3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [x]
S3 fsni;fsni;c:\program files (x86)\Internetbeveiliging\apps\CCF_Scanning\fsni64.sys;c:\program files (x86)\Internetbeveiliging\apps\CCF_Scanning\fsni64.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf_amd64.sys;c:\windows\SYSNATIVE\DRIVERS\psi_mf_amd64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-27 19:09	1089352	----a-w-	c:\program files (x86)\Google\Chrome\Application\38.0.2125.111\Installer\chrmstp.exe
.
Inhoud van de 'Gedeelde Taken' map
.
2014-11-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-08-25 15:19]
.
2014-10-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-08-25 15:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2014-09-26 12:41	1021088	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2014-09-26 12:41	1021088	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2014-09-26 12:41	1021088	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-10-04 2463552]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-11-19 6846096]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-01-31 36352]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-10-04 2800296]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "p:\fences\Stardock\Fences\FencesMenu64.dll" [2010-06-22 253288]
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.nl/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Verzenden naar OneNote - p:\office~1\Office14\ONBttnIE.dll/105
IE: Afbeelding knippen - p:\evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Afbeelding opnemen - p:\evernote\EvernoteIERes\Clip.html?clipAction=4
IE: E&xporteren naar Microsoft Excel - p:\office~1\Office14\EXCEL.EXE/3000
IE: Kopieer selectie - p:\evernote\EvernoteIERes\Clip.html?clipAction=3
IE: Kopieer URL - p:\evernote\EvernoteIERes\Clip.html?clipAction=0
IE: Nieuwe notitie - p:\evernote\EvernoteIERes\NewNote.html
IE: Pagina opemen - p:\evernote\EvernoteIERes\Clip.html?clipAction=1
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\brian\AppData\Roaming\Mozilla\Firefox\Profiles\mieuypfa.default-1415534195062\
FF - prefs.js: browser.search.selectedEngine - Norton Safe Search
FF - prefs.js: browser.startup.homepage - www.google.nl
.
- - - - ORPHANS VERWIJDERD - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
SafeBoot-CleanHlp
SafeBoot-CleanHlp.sys
AddRemove-NST - c:\program files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2014.7.8.23\InstStub.exe
AddRemove-{D40EB009-0499-459c-A8AF-C9C110766215} - c:\program files (x86)\Common Files\LogiShrd\Installer\{D40EB009-0499-459c-A8AF-C9C110766215}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\fshoster]
"ImagePath"="\"c:\program files (x86)\Internetbeveiliging\fshoster32.exe\" -hosterid:0"
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\S-1-5-21-1012701413-1853892315-1459238543-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-1012701413-1853892315-1459238543-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_189_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_189_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_189_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_189_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Environment*]
"v5Licence0"="15-2ZUN-NY34-SSRF-K8XE-C9FG-667NKRW"
"Activated"="Y"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\F-Secure\My Services Agent\Protected]
@Denied: ) (Everyone)
"AgentIdentifier"="84696b73-d180-47ab-b118-945e870b6254"
"AuthorizationCode"=""
"45123_AgentIdentifier"="84696b73-d180-47ab-b118-945e870b6254"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2014-11-10  12:13:00
ComboFix-quarantined-files.txt  2014-11-10 11:13
.
Pre-Run: 177.359.101.952 bytes beschikbaar
Post-Run: 176.885.313.536 bytes beschikbaar
.
- - End Of File - - CB5F131077C0311F2A0E013C1EC89FBE
A36C5E4F47E84449FF07ED3517B43A31