logje nakijken graag!!

ComboFix 13-08-05.03 - Supervisor 06-08-2013 0:31.1.2 - x64

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.31.1043.18.4095.2456

Gestart vanuit: c:\users\Supervisor\Desktop\ComboFix.exe

AV: ESET Smart Security 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}

FW: ESET Persoonlijke firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}

SP: ESET Smart Security 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

c:\users\Supervisor\AppData\Roaming\inst.exe

c:\users\Supervisor\AppData\Roaming\vso_ts_preview.xml

(((((((((((((((((((( Bestanden Gemaakt van 2013-07-05 to 2013-08-05 ))))))))))))))))))))))))))))))

2013-08-05 21:42 . 2013-08-05 22:38 ——– d—–w- c:\users\Supervisor\AppData\Local\Temp

2013-08-05 21:42 . 2013-08-05 21:33 24064 —-a-w- c:\windows\zoek-delete.exe

2013-08-05 20:38 . 2013-08-05 20:38 ——– d—–w- c:\program files\trend micro

2013-08-05 20:38 . 2013-08-05 20:38 ——– d—–w- C:\rsit

2013-08-05 20:32 . 2013-08-05 20:32 ——– d—–w- c:\program files (x86)\ESET

2013-08-02 21:10 . 2013-07-02 08:34 9460976 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{360FF0BA-D251-47CD-8147-36B7D6318879}\mpengine.dll

2013-07-22 10:24 . 2013-07-22 10:24 ——– d—–w- c:\program files\CCleaner

2013-07-16 10:02 . 2013-07-16 10:02 ——– d—–w- c:\program files (x86)\TomTom HOME 2

2013-07-16 09:20 . 2013-07-16 09:20 ——– d—–w- c:\program files (x86)\AGEIA Technologies

2013-07-13 01:01 . 2013-07-13 01:02 ——– d—–w- c:\windows\system32\MRT

2013-07-11 17:18 . 2013-07-11 17:18 ——– d—–w- c:\users\Supervisor\AppData\Local\HEMA Fotoservice

2013-07-11 17:15 . 2013-07-11 17:18 ——– d—–w- c:\program files (x86)\HEMA Fotoservice

2013-07-10 11:00 . 2013-07-10 11:00 ——– d—–w- c:\programdata\fotofabriekSoftware

2013-07-10 11:00 . 2013-07-10 11:00 ——– d—–w- c:\program files (x86)\fotofabriekSoftware

2013-07-10 10:55 . 2013-04-09 23:34 1247744 —-a-w- c:\windows\SysWow64\DWrite.dll

2013-07-10 10:55 . 2013-04-02 22:51 1643520 —-a-w- c:\windows\system32\DWrite.dll

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

2013-07-14 09:12 . 2012-03-31 13:25 692104 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-07-14 09:12 . 2011-06-12 09:35 71048 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-07-02 14:54 . 2013-07-02 14:54 96168 —-a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll

2013-07-02 14:54 . 2012-07-09 08:13 867240 —-a-w- c:\windows\SysWow64\npdeployJava1.dll

2013-07-02 14:54 . 2010-09-10 10:02 789416 —-a-w- c:\windows\SysWow64\deployJava1.dll

2013-06-23 22:57 . 2010-04-06 20:07 78277128 —-a-w- c:\windows\system32\MRT.exe

2013-06-21 12:06 . 2013-04-14 01:02 61216 —-a-w- c:\windows\system32\OpenCL.dll

2013-06-21 12:06 . 2013-04-14 01:02 53024 —-a-w- c:\windows\SysWow64\OpenCL.dll

2013-06-21 12:06 . 2013-02-25 22:32 2597856 —-a-w- c:\windows\SysWow64\nvapi.dll

2013-06-21 12:06 . 2013-02-25 22:32 2936208 —-a-w- c:\windows\system32\nvapi64.dll

2013-06-21 12:06 . 2013-02-25 22:32 15920536 —-a-w- c:\windows\system32\nvwgf2umx.dll

2013-06-21 12:06 . 2013-02-25 22:32 13411896 —-a-w- c:\windows\SysWow64\nvwgf2um.dll

2013-06-21 12:06 . 2009-09-27 23:12 12427240 —-a-w- c:\windows\SysWow64\nvd3dum.dll

2013-06-21 10:23 . 2009-09-27 16:22 6496544 —-a-w- c:\windows\system32\nvcpl.dll

2013-06-21 10:23 . 2009-09-27 16:22 3514656 —-a-w- c:\windows\system32\nvsvc64.dll

2013-06-21 10:23 . 2009-09-27 16:22 884512 —-a-w- c:\windows\system32\nvvsvc.exe

2013-06-21 10:23 . 2009-09-27 16:22 63776 —-a-w- c:\windows\system32\nvshext.dll

2013-06-21 10:23 . 2009-09-27 16:22 2555680 —-a-w- c:\windows\system32\nvsvcr.dll

2013-06-21 10:23 . 2009-09-27 16:22 237856 —-a-w- c:\windows\system32\nvmctray.dll

2013-06-21 03:16 . 2013-06-21 03:16 566048 —-a-w- c:\windows\SysWow64\nvStreaming.exe

2013-05-16 12:27 . 2010-06-24 09:33 22240 —-a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-05-13 05:51 . 2013-06-12 12:05 184320 —-a-w- c:\windows\system32\cryptsvc.dll

2013-05-13 05:51 . 2013-06-12 12:05 1464320 —-a-w- c:\windows\system32\crypt32.dll

2013-05-13 05:51 . 2013-06-12 12:05 139776 —-a-w- c:\windows\system32\cryptnet.dll

2013-05-13 05:50 . 2013-06-12 12:05 52224 —-a-w- c:\windows\system32\certenc.dll

2013-05-13 04:45 . 2013-06-12 12:05 140288 —-a-w- c:\windows\SysWow64\cryptsvc.dll

2013-05-13 04:45 . 2013-06-12 12:05 1160192 —-a-w- c:\windows\SysWow64\crypt32.dll

2013-05-13 04:45 . 2013-06-12 12:05 103936 —-a-w- c:\windows\SysWow64\cryptnet.dll

2013-05-13 03:43 . 2013-06-12 12:05 1192448 —-a-w- c:\windows\system32\certutil.exe

2013-05-13 03:08 . 2013-06-12 12:05 903168 —-a-w- c:\windows\SysWow64\certutil.exe

2013-05-13 03:08 . 2013-06-12 12:05 43008 —-a-w- c:\windows\SysWow64\certenc.dll

2013-05-12 21:42 . 2013-05-24 08:14 1832224 —-a-w- c:\windows\system32\nvdispco6432018.dll

2013-05-12 21:42 . 2013-05-24 08:14 1511712 —-a-w- c:\windows\system32\nvdispgenco6432018.dll

2013-05-10 05:49 . 2013-06-12 12:05 30720 —-a-w- c:\windows\system32\cryptdlg.dll

2013-05-10 03:20 . 2013-06-12 12:05 24576 —-a-w- c:\windows\SysWow64\cryptdlg.dll

2013-05-08 06:39 . 2013-06-12 12:05 1910632 —-a-w- c:\windows\system32\drivers\tcpip.sys

2007-03-12 17:59 . 2007-03-12 17:59 299008 —-a-w- c:\program files (x86)\navigram_register.exe

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

@=“{8BA85C75-763B-4103-94EB-9470F12FE0F7}”

2013-06-03 05:35 1725128 —-a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL

@=“{CD55129A-B1A1-438E-A425-CEBC7DC684EE}”

2013-06-03 05:35 1725128 —-a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL

@=“{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}”

2013-06-03 05:35 1725128 —-a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL

“KiesPDLR”=“c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe”

“KiesPreload”=“c:\program files (x86)\Samsung\Kies\Kies.exe”

“TomTomHOME.exe”=“c:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe”

“HDAudDeck”=“c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe”

“SwitchBoard”=“c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe”

“AdobeCS6ServiceManager”=“c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe”

“P17RunE”=“P17RunE.dll”

“APSDaemon”=“c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”

“KiesTrayAgent”=“c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe”

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Sitecom Wireless Utility.lnk - c:\program files (x86)\Sitecom\Common\WLANUtil.exe -s

“ConsentPromptBehaviorAdmin”= 5 (0x5)

“ConsentPromptBehaviorUser”= 3 (0x3)

“EnableUIADesktopToggle”= 0 (0x0)

“Adobe ARM”=“c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”

“HP Software Update”=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe

“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe”

“iTunesHelper”=“c:\program files (x86)\iTunes\iTunesHelper.exe”

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

R2 gupdate;Google Update-service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe

R2 KMService;KMService;c:\windows\system32\srvany.exe;c:\windows\SYSNATIVE\srvany.exe

R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe

R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys

R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys

R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

R3 Pcouffin64;Low level access layer for CD devices;c:\windows\system32\Drivers\pcouffin64a.sys;c:\windows\SYSNATIVE\Drivers\pcouffin64a.sys

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys

R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe

R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys

R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys

R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys

R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys

R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys

R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys

R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe

S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys

S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys

S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys

S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe

S2 RalinkRegistryWriter64;Ralink Registry Writer 64;c:\program files (x86)\Sitecom\Common\RaRegistry64.exe;c:\program files (x86)\Sitecom\Common\RaRegistry64.exe

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe

S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe

S3 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys

S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys

S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys

iissvcs REG_MULTI_SZ w3svc was

apphost REG_MULTI_SZ apphostsvc

2013-08-01 21:59 1173456 —-a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe

Inhoud van de ‘Gedeelde Taken’ map

2013-08-05 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

2013-08-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe

2013-08-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe

——— X64 Entries ———–

@=“{8BA85C75-763B-4103-94EB-9470F12FE0F7}”

2013-06-03 05:33 2328264 —-a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL

@=“{CD55129A-B1A1-438E-A425-CEBC7DC684EE}”

2013-06-03 05:33 2328264 —-a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL

@=“{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}”

2013-06-03 05:33 2328264 —-a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL

“Windows Mobile Device Center”=“c:\windows\WindowsMobile\wmdc.exe”

“AdobeAAMUpdater-1.0”=“c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe”

“egui”=“c:\program files\ESET\ESET Smart Security\egui.exe”

“Nvtmru”=“c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe”

——- Bijkomende Scan ——-

uStart Page = hxxp://google.nl/

uLocal Page = c:\windows\system32\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105

IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000

IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000

IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105

TCP: DhcpNameServer = 192.168.0.1

Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL

Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

DPF: Microsoft XML Parser for Java - file:///C:/Windows/Java/classes/xmldso.cab

DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} - hxxp://foto.hema.nl/ips-opdata/layout/hema/objects/jordan.cab

DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game.zylom.com/activex/zylomgamesplayer.cab

DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab

- - - - ORPHANS VERWIJDERD - - - -

URLSearchHooks-{87775fdb-6972-41f9-ae51-8326e38cb206} - (no file)

Wow6432Node-HKLM-Run- - (no file)

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

WebBrowser-{87775FDB-6972-41F9-AE51-8326E38CB206} - (no file)

AddRemove-Adobe Shockwave Player - c:\windows\system32\adobe\SHOCKW~1\UNWISE.EXE

——————— VERGRENDELDE REGISTER SLEUTELS ———————

@Denied: (A 2) (Everyone)

@=“FlashBroker”

“LocalizedString”=“@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101”

“Enabled”=dword:00000001

@=“c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe”

@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”

@Denied: (A 2) (Everyone)

@=“IFlashBroker5”

@=“{00020424-0000-0000-C000-000000000046}”

@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”

“Version”=“1.0”

@Denied: (A 2) (Everyone)

@=“FlashBroker”

“LocalizedString”=“@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101”

“Enabled”=dword:00000001

@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe”

@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”

@Denied: (A 2) (Everyone)

@=“Shockwave Flash Object”

@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx”

“ThreadingModel”=“Apartment”

@=“0”

@=“ShockwaveFlash.ShockwaveFlash.11”

@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1”

@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”

@=“1.0”

@=“ShockwaveFlash.ShockwaveFlash”

@Denied: (A 2) (Everyone)

@=“Macromedia Flash Factory Object”

@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx”

“ThreadingModel”=“Apartment”

@=“FlashFactory.FlashFactory.1”

@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1”

@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”

@=“1.0”

@=“FlashFactory.FlashFactory”

@Denied: (A 2) (Everyone)

@=“IFlashBroker5”

@=“{00020424-0000-0000-C000-000000000046}”

@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”

“Version”=“1.0”

@Denied: (A) (Everyone)

“Solution”=“{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}”

@Denied: (A) (Everyone)

“Key”=“ActionsPane3”

“Location”=“c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd”

“SymbolicLinkValue”=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\

@Denied: (A) (Users)

@Denied: (A) (Everyone)