ComboFix 14-12-25.01 - bertkatrien 26/12/2014 8:53.1.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.32.1043.18.3711.3174 [GMT 1:00] Gestart vanuit: c:\documents and settings\bertkatrien\Mijn documenten\Downloads\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\All Users\Application Data\TEMP c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\ar\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\bg\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\ca\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\cs\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\da\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\de\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\el\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\en\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\es\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\fi\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\fr\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\he\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\hr\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\hu\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\id\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\it\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\ja\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\ko\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\nb\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\nl\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\pl\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\pt_BR\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\pt_PT\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\ro\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\ru\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\sk\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\sl\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\sr\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\sv\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\te\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\tr\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\uk\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\vi\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\zh_CN\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_locales\zh_TW\messages.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\_metadata\verified_contents.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\adblock_start_chrome.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\adblock_start_common.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\background.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\bandaids.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\button\popup.css c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\button\popup.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\button\popup.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\button\search\search.css c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\button\search\search.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\CHANGELOG.txt c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\checkupdates.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\chrome_oauth_receiver.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\chrome_oauth_receiver.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\dropbox-datastores.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\filtering\domainset.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\filtering\filternormalizer.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\filtering\filteroptions.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\filtering\filterset.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\filtering\filtertypes.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\filtering\myfilters.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\functions.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\idlehandler.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\delete.gif c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\dropbox1.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\dropbox2.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\dropbox3.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\facebook-sprite.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\gifloader.gif c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\gplus-sprite.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon128.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon16.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon16_grayscale.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon16_grayscale@2x.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon19-grayscale.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon19-whitelisted.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon19.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon24.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon32.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon38-grayscale.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon38-whitelisted.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon38.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\icon48.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\logo.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\search\check.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\search\magnifying_glass.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\search\search-engine-card_no-shadow.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\search\search-engine-icons.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\search\search-omnibox-card_no-shadow.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\search\search_engine_select_arrow.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\img\twitter-sprite.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_flat_55_999999_40x100.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_flat_75_aaaaaa_40x100.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_glass_45_0078ae_1x400.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_glass_55_f8da4e_1x400.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_glass_75_79c9ec_1x400.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_gloss-wave_50_38cfff_500x100.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_gloss-wave_75_2191c0_500x100.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-bg_inset-hard_100_fcfdfd_1x100.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-icons_056b93_256x240.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\images\ui-icons_d8e7f3_256x240.png c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\jquery-ui.custom.css c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\css\override-page.css c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\jquery-ui.custom.min.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\jquery.cookie.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\jquery\jquery.min.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\LICENSE c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\manifest.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\customize.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\customize.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\filters.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\filters.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\general.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\general.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\index.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\index.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\options.css c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\support.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\options\support.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\pages\adreport.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\pages\adreport.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\pages\resourceblock.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\pages\resourceblock.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\pages\subscribe.html c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\pages\subscribe.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\port.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\README.markdown c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\search\focus.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\search\incognito.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\search\pitchpage.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\search\search-plus-one.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\search\secure_reminder.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\search\serp.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\stats.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\translators.json c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\blacklisting\blacklistui.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\blacklisting\clickwatcher.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\blacklisting\elementchain.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\blacklisting\overlay.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\blacklisting\rightclick_hook.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\load_jquery_ui.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\send_content_to_back.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\top_open_blacklist_ui.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\uiscripts\top_open_whitelist_ui.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.15_0\ytchannel.js c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lmpbmiihnoehpfapimlkedgmmphiflpe_0.localstorage-journal c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lmpbmiihnoehpfapimlkedgmmphiflpe_0.localstorage c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_omilmmhnlakjoaccohepghalmchkbcbe_0.localstorage-journal c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_omilmmhnlakjoaccohepghalmchkbcbe_0.localstorage c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences c:\documents and settings\bertkatrien\WINDOWS c:\windows\$msi31uninstall_kb893803v2$ c:\windows\$msi31uninstall_kb893803v2$\msi.dll c:\windows\$msi31uninstall_kb893803v2$\msiexec.exe c:\windows\$msi31uninstall_kb893803v2$\msihnd.dll c:\windows\$msi31uninstall_kb893803v2$\msimsg.dll c:\windows\$msi31uninstall_kb893803v2$\msisip.dll c:\windows\$msi31uninstall_kb893803v2$\reg00013 c:\windows\$msi31uninstall_kb893803v2$\reg00014 c:\windows\$msi31uninstall_kb893803v2$\reg00015 c:\windows\$msi31uninstall_kb893803v2$\reg00016 c:\windows\$msi31uninstall_kb893803v2$\reg00017 c:\windows\$msi31uninstall_kb893803v2$\reg00018 c:\windows\$msi31uninstall_kb893803v2$\reg00019 c:\windows\$msi31uninstall_kb893803v2$\reg00020 c:\windows\$msi31uninstall_kb893803v2$\reg00021 c:\windows\$msi31uninstall_kb893803v2$\reg00022 c:\windows\$msi31uninstall_kb893803v2$\reg00023 c:\windows\$msi31uninstall_kb893803v2$\reg00024 c:\windows\$msi31uninstall_kb893803v2$\reg00025 c:\windows\$msi31uninstall_kb893803v2$\reg00026 c:\windows\$msi31uninstall_kb893803v2$\reg00027 c:\windows\$msi31uninstall_kb893803v2$\reg00028 c:\windows\$msi31uninstall_kb893803v2$\reg00029 c:\windows\$msi31uninstall_kb893803v2$\reg00030 c:\windows\$msi31uninstall_kb893803v2$\reg00031 c:\windows\$msi31uninstall_kb893803v2$\reg00032 c:\windows\$msi31uninstall_kb893803v2$\reg00033 c:\windows\$msi31uninstall_kb893803v2$\reg00034 c:\windows\$msi31uninstall_kb893803v2$\reg00035 c:\windows\$msi31uninstall_kb893803v2$\reg00036 c:\windows\$msi31uninstall_kb893803v2$\reg00037 c:\windows\$msi31uninstall_kb893803v2$\reg00038 c:\windows\$msi31uninstall_kb893803v2$\reg00039 c:\windows\$msi31uninstall_kb893803v2$\reg00040 c:\windows\$msi31uninstall_kb893803v2$\reg00041 c:\windows\$msi31uninstall_kb893803v2$\reg00042 c:\windows\$msi31uninstall_kb893803v2$\reg00043 c:\windows\$msi31uninstall_kb893803v2$\reg00044 c:\windows\$msi31uninstall_kb893803v2$\reg00045 c:\windows\$msi31uninstall_kb893803v2$\reg00046 c:\windows\$msi31uninstall_kb893803v2$\reg00047 c:\windows\$msi31uninstall_kb893803v2$\reg00048 c:\windows\$msi31uninstall_kb893803v2$\reg00051 c:\windows\$msi31uninstall_kb893803v2$\reg00052 c:\windows\$msi31uninstall_kb893803v2$\reg00053 c:\windows\$msi31uninstall_kb893803v2$\reg00054 c:\windows\$msi31uninstall_kb893803v2$\reg00055 c:\windows\$msi31uninstall_kb893803v2$\reg00056 c:\windows\$msi31uninstall_kb893803v2$\reg00057 c:\windows\$msi31uninstall_kb893803v2$\reg00058 c:\windows\$msi31uninstall_kb893803v2$\reg00059 c:\windows\$msi31uninstall_kb893803v2$\reg00060 c:\windows\$msi31uninstall_kb893803v2$\reg00061 c:\windows\$msi31uninstall_kb893803v2$\reg00062 c:\windows\$msi31uninstall_kb893803v2$\reg00063 c:\windows\$msi31uninstall_kb893803v2$\reg00064 c:\windows\$msi31uninstall_kb893803v2$\reg00065 c:\windows\$msi31uninstall_kb893803v2$\reg00066 c:\windows\$msi31uninstall_kb893803v2$\reg00067 c:\windows\$msi31uninstall_kb893803v2$\reg00068 c:\windows\$msi31uninstall_kb893803v2$\reg00069 c:\windows\$msi31uninstall_kb893803v2$\reg00070 c:\windows\$msi31uninstall_kb893803v2$\reg00071 c:\windows\$msi31uninstall_kb893803v2$\reg00072 c:\windows\$msi31uninstall_kb893803v2$\reg00073 c:\windows\$msi31uninstall_kb893803v2$\reg00074 c:\windows\$msi31uninstall_kb893803v2$\reg00075 c:\windows\$msi31uninstall_kb893803v2$\reg00076 c:\windows\$msi31uninstall_kb893803v2$\reg00077 c:\windows\$msi31uninstall_kb893803v2$\reg00078 c:\windows\$msi31uninstall_kb893803v2$\reg00079 c:\windows\$msi31uninstall_kb893803v2$\reg00080 c:\windows\$msi31uninstall_kb893803v2$\reg00081 c:\windows\$msi31uninstall_kb893803v2$\reg00082 c:\windows\$msi31uninstall_kb893803v2$\reg00083 c:\windows\$msi31uninstall_kb893803v2$\reg00084 c:\windows\$msi31uninstall_kb893803v2$\reg00085 c:\windows\$msi31uninstall_kb893803v2$\reg00086 c:\windows\$msi31uninstall_kb893803v2$\reg00087 c:\windows\$msi31uninstall_kb893803v2$\reg00088 c:\windows\$msi31uninstall_kb893803v2$\reg00089 c:\windows\$msi31uninstall_kb893803v2$\reg00090 c:\windows\$msi31uninstall_kb893803v2$\reg00099 c:\windows\$msi31uninstall_kb893803v2$\reg00100 c:\windows\$msi31uninstall_kb893803v2$\reg00101 c:\windows\$msi31uninstall_kb893803v2$\reg00102 c:\windows\$msi31uninstall_kb893803v2$\reg00103 c:\windows\$msi31uninstall_kb893803v2$\reg00104 c:\windows\$msi31uninstall_kb893803v2$\reg00105 c:\windows\$msi31uninstall_kb893803v2$\reg00106 c:\windows\$msi31uninstall_kb893803v2$\reg00107 c:\windows\$msi31uninstall_kb893803v2$\reg00108 c:\windows\$msi31uninstall_kb893803v2$\reg00109 c:\windows\$msi31uninstall_kb893803v2$\reg00110 c:\windows\$msi31uninstall_kb893803v2$\reg00111 c:\windows\$msi31uninstall_kb893803v2$\reg00112 c:\windows\$msi31uninstall_kb893803v2$\reg00113 c:\windows\$msi31uninstall_kb893803v2$\reg00114 c:\windows\$msi31uninstall_kb893803v2$\reg00115 c:\windows\$msi31uninstall_kb893803v2$\reg00116 c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.exe c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.inf c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.txt c:\windows\$msi31uninstall_kb893803v2$\spuninst\updspapi.dll c:\windows\IsUn0413.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2014-11-26 to 2014-12-26 )))))))))))))))))))))))))))))) . . 2014-12-25 08:12 . 2014-12-02 11:01 9054624 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{D796EBDC-3E68-45C3-B15E-09727180B480}\mpengine.dll 2014-12-24 08:08 . 2014-12-02 11:01 9054624 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2014-12-21 21:18 . 2014-12-21 21:18 -------- d-----w- c:\documents and settings\NetworkService\Application Data\Apple Computer 2014-12-21 20:59 . 2014-12-21 19:33 24064 ----a-w- c:\windows\zoek-delete.exe 2014-12-20 16:38 . 2014-12-20 16:38 -------- d-----w- c:\documents and settings\bertkatrien\Application Data\YoutubeToMp3Converter . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2014-12-20 20:55 . 2014-08-10 08:31 114904 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys 2014-12-10 14:43 . 2012-10-14 19:50 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2014-12-10 14:43 . 2011-06-13 09:02 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2014-11-23 20:27 . 2014-11-23 20:27 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2014-11-23 20:27 . 2008-10-23 20:46 145408 ----a-w- c:\windows\system32\javacpl.cpl 2014-11-23 07:36 . 2014-05-26 21:42 787800 ----a-w- c:\windows\system32\drivers\aswsnx.sys 2014-11-23 07:36 . 2014-05-26 21:42 423784 ----a-w- c:\windows\system32\drivers\aswsp.sys 2014-11-23 07:35 . 2014-05-26 21:42 57928 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2014-11-23 07:35 . 2014-05-26 21:42 206248 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2014-11-23 07:35 . 2014-05-26 21:42 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys 2014-11-23 07:35 . 2014-05-26 21:42 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2014-11-23 07:35 . 2014-05-26 21:42 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys 2014-11-23 07:35 . 2014-05-26 21:42 55240 ----a-w- c:\windows\system32\drivers\aswrdr.sys 2014-11-23 07:35 . 2014-11-23 07:36 291352 ----a-w- c:\windows\system32\aswBoot.exe 2014-11-23 07:35 . 2014-11-23 07:35 43152 ----a-w- c:\windows\avastSS.scr 2014-11-21 05:14 . 2014-08-10 08:28 54360 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys 2014-11-21 05:14 . 2010-08-20 00:34 23256 ----a-w- c:\windows\system32\drivers\mbam.sys 2014-10-30 11:24 . 2013-08-25 19:39 229000 ------w- c:\windows\system32\MpSigStub.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2014-11-23 07:35 723976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2013-09-10 23:54 131248 ----a-w- c:\documents and settings\bertkatrien\Application Data\Dropbox\bin\DropboxExt.22.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2013-09-10 23:54 131248 ----a-w- c:\documents and settings\bertkatrien\Application Data\Dropbox\bin\DropboxExt.22.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2013-09-10 23:54 131248 ----a-w- c:\documents and settings\bertkatrien\Application Data\Dropbox\bin\DropboxExt.22.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2013-09-10 23:54 131248 ----a-w- c:\documents and settings\bertkatrien\Application Data\Dropbox\bin\DropboxExt.22.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\WCESCOMM.EXE" [2004-02-24 401491] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 951576] "AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-12-12 5227112] "nwiz"="nwiz.exe" [2004-07-01 843776] "PinnacleDriverCheck"="c:\windows\system32\PSDrvCheck.exe" [2003-12-04 406016] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-09-26 271744] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360] . c:\documents and settings\bertkatrien\Menu Start\Programma's\Opstarten\ Registration-InstantCopy.lnk - c:\program files\Pinnacle\Shared Files\InstantCDDVD\Pixie\RegTool.exe InstantCopy,INSCPY,register,NL,0,serial=AARTO-AAAYB-SWFKG-YENCA-EOMUA [2002-9-26 245760] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "SoftwareSASGeneration"= 1 (0x1) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKLM\~\startupfolder\C:^Documents and Settings^bertkatrien^Menu Start^Programma's^Opstarten^Registration-InstantCopy.lnk] path=c:\documents and settings\bertkatrien\Menu Start\Programma's\Opstarten\Registration-InstantCopy.lnk backup=c:\windows\pss\Registration-InstantCopy.lnkStartup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] 2013-01-28 12:08 59720 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] 2003-08-12 20:10 335872 ----a-w- c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2014-12-21 21:23 107912 ----atw- c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2013-02-20 11:35 152392 ----a-w- c:\program files\iTunes\iTunesHelper.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4] 2006-10-11 10:45 75304 ----a-w- c:\program files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck] 2003-12-04 10:34 406016 ----a-w- c:\windows\system32\PSDrvCheck.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2014-09-26 17:19 271744 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2010-12-30 20:33 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "ctfmon.exe"=c:\windows\system32\ctfmon.exe "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "PinnacleDriverCheck"=c:\windows\System32\PSDrvCheck.exe "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray . [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"= "c:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "c:\\Program Files\\Java\\jre6\\bin\\java.exe"= "c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"= "c:\\WINDOWS\\system32\\IPCamera.exe"= "c:\\Documents and Settings\\bertkatrien\\Application Data\\Dropbox\\bin\\Dropbox.exe"= "c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"= "d:\\bert\\toestellen en machines\\ipod\\tinyumbrella\\tinyumbrella-6.12.00.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\WINDOWS\\system32\\muzapp.exe"= "c:\\Documents and Settings\\bertkatrien\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management "50080:TCP"= 50080:TCP:*:Disabled:192.168.2.3 "50080:UDP"= 50080:UDP:*:Disabled:192.168.2.3 . R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [26/05/2014 22:42 49944] R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [26/05/2014 22:42 206248] R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [14/04/2010 20:12 28552] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [26/05/2014 22:42 787800] R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [26/05/2014 22:42 423784] R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [26/05/2014 22:42 24184] R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [26/05/2014 22:42 70384] R3 PhTVTune;MEDION TV-TUNER 7134 MK2/3;c:\windows\system32\drivers\PhTVTune.sys [12/06/2003 7:47 24704] R3 PRISM_A00;PRISM 802.11g Driver;c:\windows\system32\drivers\PRISMA00.sys [10/09/2003 12:22 362688] . Inhoud van de 'Gedeelde Taken' map . 2014-12-26 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-14 14:43] . 2014-12-19 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 16:57] . 2014-12-26 c:\windows\Tasks\avast! Emergency Update.job - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-23 07:35] . 2014-12-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-11-02 21:19] . 2014-12-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-11-02 21:19] . 2014-12-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1310669757-2741214076-3707491104-1008Core.job - c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-12-17 21:23] . 2014-12-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1310669757-2741214076-3707491104-1008UA.job - c:\documents and settings\bertkatrien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-12-17 21:23] . 2014-12-26 c:\windows\Tasks\Microsoft Windows XP - aanmelding voor kennisgeving over einde van service.job - c:\windows\system32\xp_eos.exe [2014-03-26 23:28] . 2014-12-08 c:\windows\Tasks\Microsoft Windows XP - maandelijkse kennisgeving over einde van service.job - c:\windows\system32\xp_eos.exe [2014-03-26 23:28] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.com uInternet Settings,ProxyOverride = TCP: DhcpNameServer = 195.130.130.3 195.130.131.3 DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab . - - - - ORPHANS VERWIJDERD - - - - . MSConfigStartUp-CHotkey - mHotkey.exe AddRemove-Free Studio_is1 - c:\program files\Common Files\DVDVideoSoft\lib\Uninstall.exe AddRemove-Free YouTube to MP3 Converter_is1 - c:\program files\Common Files\DVDVideoSoft\lib\Uninstall.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2014-12-26 09:03 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-1310669757-2741214076-3707491104-1008\Software\SecuROM\License information*] "datasecu"=hex:33,6f,8f,62,91,24,d3,08,89,4f,01,94,50,76,22,b8,0b,d8,c2,81,d0, 62,65,9e,2c,70,73,e8,26,37,6f,d0,36,16,6a,bc,71,90,23,a4,56,1b,15,27,d1,2d,\ "rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98 . [HKEY_USERS\S-1-5-21-839522115-562591055-682003330-1003_Classes\CLSID\{130F8154-E804-4BD5-A07B-35BE69039715}\{A730F6F3-255C-417C-8986-2C578500547E}*Hidden] "{2338F5D5-2437-4FC3-9005-A01804321264}"="AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAA43ri+JjyCUeH9SeI4P/qvAAAAAACAAAAAAADZgAAqAAAABAAAADWxK69c+o4Y0YOmwPj+bekAAAAAASAAACgAAAAEAAAAFUrD5xYSxLi5MmvkaUfNJ4YAAAADqur9pdpC0Iq0wmRu3xlMbkGFxkHLp9VFAAAAK3RZBwyv8rQ1msg+OKzw1YG559z" . [HKEY_USERS\S-1-5-21-839522115-562591055-682003330-1003_Classes\CLSID\{130F8154-E804-4BD5-A07B-35BE69039715}\{A730F6F3-255C-417C-8986-2C578500547E}*Hidden\DeltaClock] "LastSynchronizationClock"=hex(b):10,d2,71,b2,8e,ea,d1,08 "DeltaClock"=hex(b):f7,13,1d,21,04,00,00,00 "LastNtpServer"="time.nist.gov" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_246_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_246_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}] @Denied: (A 2) (Everyone) @="IFlashBroker6" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . Voltooingstijd: 2014-12-26 09:06:06 ComboFix-quarantined-files.txt 2014-12-26 08:06 . Pre-Run: 11.205.971.968 bytes beschikbaar Post-Run: 11.913.629.696 bytes beschikbaar . - - End Of File - - A62656022C2C74DA4455C90234CA1844 671B81004FDD1588FA9ED1331C9CECA9