Zoek.exe v5.0.0.0 Updated 22-05-2014
Tool run by gebruiker on do 29/05/2014 at 19:34:12,68.
Microsoft Windows 7 Home Premium  6.1.7600  x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

29/05/2014 19:36:39 Zoek.exe System Restore Point Created Succesfully.

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll 
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Monitor {7842554E-6BED-11D2-8CDB-B05550C10000} C:\Program Files\WIDCOMM\Bluetooth Software\btncopy.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll 


==== Empty Folders Check ======================

C:\Program Files\GamersFirst
C:\Program Files\MSXML 4.0
C:\Program Files\websaver
C:\PROGRA~2\Oracle
C:\PROGRA~2\Symantec
C:\PROGRA~2\WinZipEC
C:\Users\gebruiker\AppData\Roaming\Windows Live Writer
C:\Users\gebruiker\AppData\Roaming\WinRAR
C:\Users\gebruiker\AppData\Local\Acer ePower Management V4
C:\Users\gebruiker\AppData\Local\Bundled software uninstaller
C:\Users\gebruiker\AppData\Local\MigWiz
C:\Users\gebruiker\AppData\Local\OpenCandy

==== Creating Sample_20142905_1938.zip ======================
 
Process chrome.exe killed
Process rundll32.exe killed
Copied folder c:\programdata\SalesCheCker to sample\SalesCheCker
sample\SalesCheCker\u4SG4VBmL.dat renamed to 9FCA510A285F68E2EF2A8B862778FCA6
sample\SalesCheCker\u4SG4VBmL.dll renamed to 5337AB32D06451B51B031FAD03674A73
sample\SalesCheCker\u4SG4VBmL.exe renamed to 83C728A3D4B56127985B096478A943F8
sample\SalesCheCker\u4SG4VBmL.tlb renamed to 26D6F1C3AD2F6F6935BC31B609681D13

C:\Users\Public\Desktop\sample_20142905_1938.zip created successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1937608926-1708186935-3658638872-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{55C5571A-8004-7182-D045-96AA32327E35} deleted successfully
HKEY_USERS\S-1-5-21-1937608926-1708186935-3658638872-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{55C5571A-8004-7182-D045-96AA32327E35} deleted successfully
HKEY_USERS\S-1-5-21-1937608926-1708186935-3658638872-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B11DE820-5759-B69C-5B06-79974FB03126} deleted successfully
HKEY_USERS\S-1-5-21-1937608926-1708186935-3658638872-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B11DE820-5759-B69C-5B06-79974FB03126} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3B2CAC99-1E18-F7D9-AE2A-45564BDB3C79} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{3B2CAC99-1E18-F7D9-AE2A-45564BDB3C79} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3B2CAC99-1E18-F7D9-AE2A-45564BDB3C79} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{55C5571A-8004-7182-D045-96AA32327E35} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{55C5571A-8004-7182-D045-96AA32327E35} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{55C5571A-8004-7182-D045-96AA32327E35} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B11DE820-5759-B69C-5B06-79974FB03126} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{B11DE820-5759-B69C-5B06-79974FB03126} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B11DE820-5759-B69C-5B06-79974FB03126} deleted successfully

==== Deleting CLSID Registry Values ======================


==== FireFox Fix ======================

Deleted from C:\Users\GEBRUI~1\AppData\Roaming\Mozilla\Firefox\Profiles\a1pvwxbo.default\prefs.js:
user_pref("browser.search.defaulturl", "http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=18708");
user_pref("browser.search.defaultengine", "Ask.com");
user_pref("browser.search.order.1", "Search the web (Babylon)");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\GEBRUI~1\AppData\Roaming\Mozilla\Firefox\Profiles\a1pvwxbo.default\prefs.js:

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"Optimizer Pro"=- 

==== Deleting Files \ Folders ======================

c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\ffxtlbr@babylon.com not found
c:\programdata\websaver deleted
c:\programdata\ddeal4me deleted
c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\btgyh@qyjrfd.net deleted
c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\zg14knzh@rieii.org deleted
c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\hvose@hgufioe.com deleted
c:\programdata\SalesCheCker deleted
"C:\Program Files\Optimizer Pro\OptProReminder.exe" deleted
"C:\Program Files\Optimizer Pro" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\GEBRUI~1\AppData\Local\Temp ====
2014-05-28 15:14:47	5634C601025C31032A0AF1590B4C0CA6	43008	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpi9lyjj.dll
2014-05-26 18:17:25	84D280E42F3A337BF993023A9B3C0437	274944	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\46434uninstall.exe
2014-05-26 18:11:07	84D280E42F3A337BF993023A9B3C0437	274944	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\65674uninstall.exe
2014-05-26 18:10:23	84D280E42F3A337BF993023A9B3C0437	274944	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\54355uninstall.exe
2014-05-26 18:10:23	5405413FFF79B8D9C747AA900F60F082	599419	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\Sqlite3.dll
====== Java Cache =====
====== C:\Windows\system32 =====
====== C:\Windows\system32\drivers =====
2014-05-13 12:19:14	B295472342FCD8E0D15FC099552BA89D	192280	----a-w-	C:\Windows\System32\drivers\avgldx86.sys
2014-05-13 12:17:22	383D7AEC7F1A44B81F2069DB9EE5F313	122136	----a-w-	C:\Windows\System32\drivers\avgdiskx.sys
2014-05-13 12:17:22	16EDEFD8D99936B2410D082A494D2E3F	210200	----a-w-	C:\Windows\System32\drivers\avgtdix.sys
2014-05-13 12:17:20	A7A3E71F9E4F6F93AEAE2B1A88A12FCB	107288	----a-w-	C:\Windows\System32\drivers\avgmfx86.sys
2014-05-13 12:17:20	486A27CBB8314577A92BEFF025D52345	149784	----a-w-	C:\Windows\System32\drivers\avgidshx.sys
2014-05-13 12:09:12	E76F8CDCC1BF9952D165CA5D90025730	198936	----a-w-	C:\Windows\System32\drivers\avgidsdriverx.sys
2014-05-13 12:04:36	F2C626DD5CF3F2FACBBA053F465563EB	27416	----a-w-	C:\Windows\System32\drivers\avgrkx86.sys
2014-05-13 12:04:34	B650C4774CAB608AAC9C650312DA2CBB	21272	----a-w-	C:\Windows\System32\drivers\avgidsshimx.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-29 16:42:08	--------	d-----w-	C:\Program Files\AVG
======= C: =====
====== C:\Users\gebruiker\AppData\Roaming ======
2014-05-29 16:44:56	--------	d-----w-	C:\Users\gebruiker\AppData\Roaming\AVG2014
2014-05-29 16:44:29	--------	d-----w-	C:\Windows\system32\config\systemprofile\AppData\Roaming\AVG2014
2014-05-29 16:44:01	--------	d-----w-	C:\Users\gebruiker\AppData\Roaming\TuneUp Software
2014-05-29 16:42:10	--------	d-----w-	C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014
2014-05-29 16:38:22	--------	d-----w-	C:\Users\gebruiker\AppData\Local\Avg2014
2014-05-26 18:14:48	--------	d-----r-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2014-05-21 19:30:09	--------	d-----w-	C:\Users\gebruiker\AppData\Locallow\{3B2CAC99-1E18-F7D9-AE2A-45564BDB3C79}
2014-05-14 10:43:30	--------	d-----w-	C:\Users\gebruiker\AppData\Roaming\DropboxMaster
2014-05-01 08:14:56	--------	d-----w-	C:\Users\gebruiker\AppData\Local\Spotify
2014-05-01 08:14:13	--------	d-----w-	C:\Users\gebruiker\AppData\Roaming\Spotify
====== C:\Users\gebruiker ======
2014-05-29 16:44:01	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-05-29 16:43:24	--------	d-----w-	C:\ProgramData\AVG2014
2014-05-29 16:38:22	--------	d--h--w-	C:\ProgramData\Common Files
2014-05-16 16:38:10	--------	d-----w-	C:\Users\gebruiker\FrostWire
2014-05-16 16:38:08	--------	d-----w-	C:\Users\gebruiker\.frostwire5
2014-05-16 16:38:07	--------	d-----w-	C:\ProgramData\APN
2014-05-16 16:37:40	363A4A68A86441777924DF8219AEB72C	489392	----a-w-	C:\Users\gebruiker\Documents\APNSetup1.exe

====== C: exe-files ==
2014-05-26 18:17:25	84D280E42F3A337BF993023A9B3C0437	274944	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\46434uninstall.exe
2014-05-26 18:11:07	84D280E42F3A337BF993023A9B3C0437	274944	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\65674uninstall.exe
2014-05-26 18:10:23	84D280E42F3A337BF993023A9B3C0437	274944	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\54355uninstall.exe
2014-05-23 17:25:45	B88B8DA6B88D10319658833BF4C01CFD	62751	----a-w-	C:\Users\gebruiker\Documents\Downloads\complete\Ride Along (2014) 720P HQ AC3 DD5 1 (Ingebakken Subs)\name Reverse-2013\Setup.exe
=== C: other files ==
2014-05-29 17:38:48	8DCE398C8E6736A671A9213A73F66218	358921	----a-w-	C:\Users\Public\Desktop\sample_20142905_1938.zip
2014-05-26 18:05:09	1192BA95F7F5C69048F5532E39A8C955	88	----a-w-	C:\Users\gebruiker\AppData\Local\Temp\uttD2BE.tmp.bat
2014-05-23 21:03:39	0C3E5DF93D556087AD9D8DB4C87D6863	335843	----a-w-	C:\Users\gebruiker\Downloads\Gescand document van HP ePrint-gebruiker.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1937608926-1708186935-3658638872-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background"
"SmpcSys"="C:\Program Files\PACKARD BELL\SetupMyPC\SmpSys.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Google Update"="C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"KiesPreload"="C:\Program Files\Samsung\Kies\Kies.exe /preload"
"KiesAirMessage"="C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup"
"KiesPDLR"="C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"HP Photosmart 6520 series (NET)"="C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe -deviceID TH38E170Y805XP:NW -scfn HP Photosmart 6520 series (NET) -AutoStart 1"
"Spotify"="C:\Users\gebruiker\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe"
"Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe"
"Acer ePower Management"="C:\Program Files\Packard Bell\Packard Bell PowerSave Solution\ePowerTrayLauncher.exe"
"BackupManagerTray"="C:\Program Files\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe -k"
"NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup"
"PDVD8LanguageShortcut"="C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"
"RemoteControl8"="C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"
"VideoWebCamera"="C:\Program Files\VideoWebCamera\VideoWebCamera.exe -a"
"LManager"="C:\Program Files\Launch Manager\LManager.exe"
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
"KiesTrayAgent"="C:\Program Files\Samsung\Kies\KiesTrayAgent.exe"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"PMBVolumeWatcher"="C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"AgentMonitor"="C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe"
"AVG_UI"="C:\Program Files\AVG\AVG2014\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background"
"SmpcSys"="C:\Program Files\PACKARD BELL\SetupMyPC\SmpSys.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Google Update"="C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"KiesPreload"="C:\Program Files\Samsung\Kies\Kies.exe /preload"
"KiesAirMessage"="C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup"
"KiesPDLR"="C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"HP Photosmart 6520 series (NET)"="C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe -deviceID TH38E170Y805XP:NW -scfn HP Photosmart 6520 series (NET) -AutoStart 1"
"Spotify"="C:\Users\gebruiker\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="  c:\\progra~1\\optimi~1\\optpro~1.dll"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GrooveMonitor"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Common Files\\Nero\\Lib\\NMIndexStoreSvr.exe\" ASO-616B5711-6DAE-4795-A05F-39A1E5104020"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ISUSPM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ISUSPM"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\ISUSPM.exe\" -scheduler"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Pando Media Booster]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Pando Media Booster"
"hkey"="HKCU"
"command"="C:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeActiveFileMonitor6.0]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\FLEXnet Licensing Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\iPod Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Nero BackItUp Scheduler 3]


==== Startup Folders ======================

2013-05-20 20:20:58	1054	----a-w-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2009-10-10 13:59:06	1117	----a-w-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk
2009-09-30 16:20:12	741	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
2013-03-29 15:09:37	1119	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/05/2014 19:57]
C:\Windows\tasks\FoxTab.job --a------ C:\Users\GEBRUI1\AppData\Roaming\FoxTab\UPDATE1\UPDATE1.exe []
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1937608926-1708186935-3658638872-1000Core.job --a------ C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [21/09/2012 19:49]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1937608926-1708186935-3658638872-1000UA.job --a------ C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [21/09/2012 19:49]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\FoxTab" [C:\Users\GEBRUI~1\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE]
"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1937608926-1708186935-3658638872-1000Core" [C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1937608926-1708186935-3658638872-1000UA" [C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\HPCustParticipation HP Photosmart 6520 series" ["C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPCustPartic.exe"]
"C:\Windows\system32\tasks\Packard Bell Customer Registration Reminder - gebruiker" [C:\Program Files\Packard Bell\Packard Bell Customer Registration\PBCReg.exe]
"C:\Windows\system32\tasks\User_Feed_Synchronization-{BFEEB8CB-D686-41B9-8DB3-C46CB2A4C563}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\system32\tasks\{183A2D00-8642-48B8-89F1-3D6002D94282}" [C:\Program Files\IBM\SPSS\Statistics\20\stats.exe]
"C:\Windows\system32\tasks\{227614C2-66CF-446B-83B3-B6CFE934D781}" [C:\Program Files\IBM\SPSS\Statistics\20\stats.exe]
"C:\Windows\system32\tasks\{778C34B9-CF71-45D3-877C-FDEBE6D0F19A}" [C:\Program Files\IBM\SPSS\Statistics\20\stats.exe]
"C:\Windows\system32\tasks\{94F2BC72-5577-43EA-B6FF-7D24413C17F1}" [C:\Program Files\IBM\SPSS\Statistics\20\stats.exe]
"C:\Windows\system32\tasks\{9ADA5E95-6F3E-488D-87F2-6A204F2A4EE8}" [C:\Program Files\Skype\Phone\Skype.exe]
"C:\Windows\system32\tasks\{DE1CCB16-D1C0-479A-BEB4-FA0522A52EDA}" [C:\Program Files\Skype\Phone\Skype.exe]
"C:\Windows\system32\tasks\{F469A866-A1F7-408E-9D81-28A08DC1C239}" [C:\Program Files\IBM\SPSS\Statistics\20\stats.exe]
"C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]

==== Folders in C:\PROGRA~2 0-6 Months Old ======================

2013-12-23 14:04:11	--------	d-----w-	C:\PROGRA~2\e5a362c29801406e
2013-12-23 14:04:19	--------	d-----w-	C:\PROGRA~2\mfloeckopdffnbhcdbemflelpfbeahal
2013-12-30 12:17:32	--------	d-----w-	C:\PROGRA~2\HP
2013-12-30 12:18:03	--------	d-----w-	C:\PROGRA~2\HP Photo Creations
2013-12-30 12:18:04	--------	d-----w-	C:\PROGRA~2\Visan
2013-12-30 13:29:28	--------	d-----w-	C:\PROGRA~2\AVAST Software
2014-01-20 18:40:32	--------	d-----w-	C:\PROGRA~2\VTech
2014-01-31 10:00:16	--------	d-----w-	C:\PROGRA~2\bjplodoghlkbbbmjnfaofcdljafkehda
2014-01-31 10:00:17	--------	d-----w-	C:\PROGRA~2\ImaageCOunverteer
2014-02-01 16:05:00	--------	d-----w-	C:\PROGRA~2\lednbhfbcnnlehibmghkoijfpmldpkdc
2014-02-01 16:05:01	--------	d-----w-	C:\PROGRA~2\PsdrUnnneer
2014-02-16 13:39:25	--------	d-----w-	C:\PROGRA~2\abmheecgbblddilmakpnjfnddjjccbdg
2014-02-16 13:39:33	--------	d-----w-	C:\PROGRA~2\DocToTXTConverT
2014-02-16 13:40:20	--------	d-----w-	C:\PROGRA~2\saveerOn
2014-03-10 19:29:16	--------	d-----w-	C:\PROGRA~2\ProeShopper
2014-03-20 13:30:13	--------	d-----w-	C:\PROGRA~2\SaulesMagnnet
2014-03-23 08:25:08	--------	d-----w-	C:\PROGRA~2\Oracle
2014-05-16 16:38:07	--------	d-----w-	C:\PROGRA~2\APN
2014-05-29 16:38:22	--------	d-----w-	C:\PROGRA~2\MFAData
2014-05-29 16:38:22	--------	d--h--w-	C:\PROGRA~2\Common Files
2014-05-29 16:43:24	--------	d-----w-	C:\PROGRA~2\AVG2014

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"KavAntiBanner@Kaspersky.ru"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\KavAntiBanner@kaspersky.ru" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\Mozilla\Firefox\Profiles\a1pvwxbo.default
- Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
- PsdrUnnneer - %ProfilePath%\extensions\02fmnmf@gjdaae.com
- saveerOn - %ProfilePath%\extensions\12lc9doui@vxoteoo.com
- ddeal4me - %ProfilePath%\extensions\9yya.o@skmgiywc.co.uk
- Camifox - %ProfilePath%\extensions\camifox@altmusictv.com
- HTTPS-Everywhere - %ProfilePath%\extensions\https-everywhere@eff.org
- DocToTXTConverT - %ProfilePath%\extensions\it82n1@eoyajbwjx.co.uk
- ImaageCOunverteer - %ProfilePath%\extensions\pcy-czwzgdb@bmkqyy-.edu
- websaver - %ProfilePath%\extensions\vj_yu@auaeiooi-.edu
- Facebook Toolbar - %ProfilePath%\extensions\firefox@facebook.com.xpi
- NASA Night Launch - %ProfilePath%\extensions\nasanightlaunch@example.com.xpi
- Office Black - %ProfilePath%\extensions\Office2007Black@JBBS.xpi

AppDir: C:\Program Files\Mozilla Firefox
- Anti-bannire - %AppDir%\extensions\KavAntiBanner@kaspersky.ru_bak
- Analyse des liens URL Advisor - %AppDir%\extensions\linkfilter@kaspersky.ru_bak
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\a1pvwxbo.default
A58DE0A570148AF5FF3512B2A340D09F	- C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll -	Shockwave Flash
A9C86900D2A61728C8326FE7147617C5	- C:\Users\gebruiker\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll -	Google Update
9D4A0B314CB9CF134CA27E1E0217E51E	- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll -	iTunes Application Detector
BE501CBC29B2025A263D80D399F1797A	- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll -	Silverlight Plug-In
77B09C2C6F407531447DA75E3ACD1C5B	- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll -	Adobe Acrobat
86FD0445C7A92516FC0BA201C79B8E9E	- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll -	QuickTime Plug-in 7.7.4
9FDABAD05A9623988750CCC10223BDB0	- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll -	QuickTime Plug-in 7.7.4
5E1D0432C765884434A7CCD4DBDC80AA	- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll -	QuickTime Plug-in 7.7.4
3B293C235A80E7A5369E6AA28FEA50B1	- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll -	QuickTime Plug-in 7.7.4
A80BCBED52F7DD5FDBF346A985A4E4D5	- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll -	QuickTime Plug-in 7.7.4
8F24103AB984847AA2939F58F19CCC98	- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll -	Java(TM) Platform SE 7 U21
8759CC593AB7DBCBFD82B1437EA8BCF9	- C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll -	Pando Web Installer
24E990B1E6D55428001843CF7217DD81	- C:\Program Files\Microsoft\Office Live\npOLW.dll -	Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox
AB87EEFFD18F2BAAFC274E7075EA6C67	- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll -	Windows Presentation Foundation / Windows Presentation Foundation
9A6101F29E2E9D41B99CBCC8F106E8FE	- C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL -	2007 Microsoft Office system
86FD0445C7A92516FC0BA201C79B8E9E	- C:\Program Files\QuickTime\Plugins\npqtplugin5.dll -	QuickTime Plug-in 7.7.4
9FDABAD05A9623988750CCC10223BDB0	- C:\Program Files\QuickTime\Plugins\npqtplugin4.dll -	QuickTime Plug-in 7.7.4
5E1D0432C765884434A7CCD4DBDC80AA	- C:\Program Files\QuickTime\Plugins\npqtplugin3.dll -	QuickTime Plug-in 7.7.4
3B293C235A80E7A5369E6AA28FEA50B1	- C:\Program Files\QuickTime\Plugins\npqtplugin2.dll -	QuickTime Plug-in 7.7.4
A80BCBED52F7DD5FDBF346A985A4E4D5	- C:\Program Files\QuickTime\Plugins\npqtplugin.dll -	QuickTime Plug-in 7.7.4
77B09C2C6F407531447DA75E3ACD1C5B	- C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll -	Adobe Acrobat
04ACC61B47857E779CD92D1D88770BF1	- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll -	Adobe Acrobat
B27CCB1168B1960AEC6E9D3E0E0F0D2A	- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrlui.dll -	Microsoft® Silverlight


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dchmpbaclbiioedakpcldenooikekokm - C:\Users\GEBRUI~1\AppData\Local\foxtab_speeddial.crx[]
dhkplhfnhceodhffomolpfigojocbpcb - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonChrome.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
dchmpbaclbiioedakpcldenooikekokm - C:\Users\GEBRUI~1\AppData\Local\foxtab_speeddial.crx[]

QueenCOUpon - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\adgifpgfcekfhpionnaoemjfblooeokj
QueeenCoupoN - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\bglhlclfefhibpgbjfgclmbgffegekob
Extended Protection - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml
Last updated at time on date - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
AdBlock - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Keep My Opt-Outs - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhnjdplhmcnkiecampfdgfjilccfpfoe
saveiitkeeep. - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\hionenaeedkdbgcphbjmejconmllopla
Adblock for Facebook - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbfjodonncabnangfknilmabjfofdikc
Ghostery - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij
Google Wallet - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
QueenCOUpon - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\adgifpgfcekfhpionnaoemjfblooeokj
ddeal4me - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\akblhhmbbkcoobbpfelocelgdimogjci
QueeenCoupoN - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bglhlclfefhibpgbjfgclmbgffegekob
YouTube - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Kaspersky URL Advisor - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dchlnpcodkpfdpacogkljefecpegganj
saveiitkeeep. - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hionenaeedkdbgcphbjmejconmllopla
Virtual Keyboard - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh
saveerOn - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mellhbhihkipdccoifjgmlefhakhgehf
Gmail - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Anti-Banner - gebruiker\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjldcfjmnllhmgjclecdnfampinooman
Google Docs - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
BatBrowse - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccncljhbalbbkkfgopogabimepmfkmff
Google Search - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.be/"
"Search Bar"="http://www.google.com/ie"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search/?q=%s"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Search the web (Babylon) Url="http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=18708"
{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} Ask Search Url="http://websearch.ask.com/redirect?client=ie&tb=LMW2&o=16050&src=crm&q={searchTerms}&locale=nl_EU"
{18EAB056-9057-F224-FD4C-1F6569C4D8D2} Ask  Url="http://www.plusnetwork.com/s/?q={searchTerms}&iesrc={referrer:source?}"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Unknown  Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rlz=1I7ACPW_nlBE347&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"
{afdbddaa-5d3f-42ee-b79c-185a7020515b} Messenger Plus Live Belgium Customized Web Search Url="http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2535304"
{D56905EB-7F3C-458F-B7A2-022E4D9B8063} Bing  Url="http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}"
{D981AED6-9C62-4CE6-AA5B-1E369E24ABEC} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ACPW_nlBE347"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\KavAntiBanner@Kaspersky.ru deleted successfully

==== Uninstall List x86 ======================

Adobe Bridge 1.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B74D4E10-1033-0000-0000-000000000001}]
Adobe Common File Installer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8EDBA74D-0686-4C99-BFDD-F894678E5102}]
Adobe Flash Player 13 ActiveX [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX]
Adobe Flash Player 13 Plugin [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player Plugin]
Adobe Help Center 1.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E9787678-1033-0000-8E67-000000000001}]
Adobe Photoshop CS2 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{236BB7C4-4419-42FD-0409-1E257A25E34D}]
Adobe Photoshop CS2 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}]
Adobe Photoshop Elements 6.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F54AC413-D2C6-4A24-B324-370C223C6250}]
Adobe Photoshop Elements 6.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Photoshop Elements 6]
Adobe Premiere Elements 4.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3E2C691B-B7E6-4053-B5C3-94B8BC407E7A}]
Adobe Premiere Elements 4.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PremElem40]
Adobe Premiere Elements 4.0 Templates [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F85C7118-F3DC-4ED9-AB27-3E7931EA3D88}]
Adobe Premiere Elements 4.0 Templates [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PremElem40Templates]
Adobe Reader X (10.1.8) - Nederlands [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1043-7B44-AA1000000001}]
Adobe Stock Photos 1.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{786C5747-1033-0000-B58E-000000000001}]
Apple Application Support [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{46F044A5-CE8B-4196-984E-5BD6525E361D}]
Apple Mobile Device Support [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}]
Apple Software Update [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}]
AVG 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4FD60DA7-3BC9-4D9A-BC15-9C53D1283709}]
AVG 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B453A241-EC64-44EE-B385-22CF076985FC}]
AVG 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG]
AviSynth 2.5 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AviSynth]
Backup Manager Basic [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{72B776E5-4530-4C4B-9453-751DF87D9D93}]
Bonjour  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79155F2B-9895-49D7-8612-D92580E0DE5B}]
Canon Utilities CameraWindow DC 8 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CameraWindowDC]
Canon Utilities ImageBrowser EX [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\ImageBrowser EX]
CyberLink PowerDVD 8 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}]
CyberLink PowerDVD 8 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}]
ddeal4me  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{09854D8E-46B5-057B-5B6E-BFD2A04AD5AB}]
Dropbox  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dropbox]
Explor@ Park [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VTechDownloadManager]
Foxtab  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\foxtab]
Google Chrome [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Toolbar for Internet Explorer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}]
Google Toolbar for Internet Explorer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DBEA1034-5882-4A88-8033-81C4EF0CFA29}]
HP FWUpdateEDO2 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}]
HP Photo Creations [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HP Photo Creations]
HP Photosmart 6520 series Basissoftware van het apparaat [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{25AA0016-177E-4D2C-89F4-F8B8563DE3B9}]
HP Photosmart 6520 series Help [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0E9F6EEA-2AAE-483F-AADC-FFABBF02948E}]
HP Photosmart 6520 series Productverbeteringsonderzoek [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{69BB1BBC-64D1-4E34-ABBB-9410F60A1B0A}]
HP Update [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}]
IBM SPSS Statistics 20 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2AF8017B-E503-408F-AACE-8A335452CAD2}]
iCloud  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{20C6FF70-690B-4DF7-8F5D-269DD3A7FD23}]
Identity Card [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Identity Card]
InfoCentre  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\InfoCentre]
iTunes  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C197BC08-3D82-4651-8886-E68C21578A38}]
Java 7 Update 21 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83217017FF}]
Java Auto Updater [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}]
Launch Manager [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\LManager]
Microsoft .NET Framework 4 Client Profile [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3C3901C5-3455-3E0A-A214-0B093A5070A6}]
Microsoft .NET Framework 4 Client Profile NLD Language Pack [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}]
Microsoft Office Enterprise 2007 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\ENTERPRISE]
Microsoft Office Home and Student 2007 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HOMESTUDENTR]
Microsoft Office Live Add-in 1.5 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}]
Microsoft Silverlight [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}]
Microsoft SQL Server 2008 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Microsoft SQL Server 10]
Microsoft SQL Server 2008 Common Files [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4A6F34E2-09E5-4616-B227-4A26A488A6F9}]
Microsoft SQL Server 2008 Database Engine Services [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}]
Microsoft SQL Server 2008 Database Engine Shared [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F3494AB6-6900-41C6-AF57-823626827ED8}]
Microsoft SQL Server 2008 RsFx Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{33AE9E89-47C9-4A0D-9E9D-BDD6966A3804}]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{770657D0-A123-3C07-8E44-1C83EC895118}]
Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}]
Microsoft Visual Web Developer 2005 Express Edition - ENU [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{221125DC-6A40-4900-B844-591F5E1195B0}]
Microsoft Visual Web Developer 2005 Express Edition - ENU [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Microsoft Visual Web Developer 2005 Express Edition - ENU]
Microsoft Works [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5158F1F5-FA1B-4D49-B546-55A5004B89BD}]
MobileMe Control Panel [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{710BF966-43C8-4216-A8EC-BC4E169FF7C1}]
Mobogenie  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie]
Mozilla Firefox 13.0.1 (x86 nl) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mozilla Firefox 13.0.1 (x86 nl)]
Mozilla Maintenance Service [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService]
MSXML 4.0 SP2 (KB954430) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}]
MSXML 4.0 SP2 (KB973688) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}]
MyFreeCodec  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec]
Nero 8 Essentials [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5C1BF3AC-B19D-4C26-B0A0-90833A521043}]
neroxml  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}]
Norton Internet Security [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}]
NVIDIA Drivers [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\NVIDIA Drivers]
NVIDIA PhysX [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1C4551A6-4743-4093-91E4-1477CD655043}]
OGA Notifier 2.0.0048.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2544A03-10D0-4E5E-BA69-0362FFC20D18}]
Optimizer Pro v3.2 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1]
Packard Bell MyBackup [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}]
Packard Bell PowerSave Solution [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3DB0448D-AD82-4923-B305-D001E521A964}]
PackardBell ScreenSaver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PackardBell Screensaver]
Pando Media Booster [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{980A182F-E0A2-4A40-94C1-AE0C1235902E}]
PCFriendly  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PCFriendly]
PIXELA AAC LC CODEC [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PIXELA AAC LC CODEC]
PlayMemories Home [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}]
QuickTime  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}]
Realtek High Definition Audio Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}]
Realtek USB 2.0 Card Reader [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DC24971E-1946-445D-8A82-CE685433FA7D}]
SABnzbd 0.7.9 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SABnzbd]
SalesCheCker  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CC17A332-9555-AD95-3985-0BDD9BF0EC71}]
Samsung Kies [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{758C8301-2696-4855-AF45-534B1200980A}]
Samsung Kies [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\01_Simmental]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\02_Siberian]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\03_Swallowtail]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\04_semseyite]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\05_Sloan]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\06_Spencer]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\07_Schorl]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\08_EMPChipset]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\09_Hsp]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\11_HSP_Plus_Default]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\16_Shrewsbury]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\17_EMP_Chipset2]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\18_Zinia_Serial_Driver]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\19_VIA_driver]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\20_NXP_Driver]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\21_Searsburg]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\22_WiBro_WiMAX]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\24_flashusbdriver]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}\25_escape]
SAMSUNG USB Driver for Mobile Phones [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}]
Security Update for CAPICOM (KB931906) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}]
ServiceInstaller  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\ServiceInstaller]
SetupMyPC  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SetupMyPC]
SkypeT 5.10 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}]
Sony Image Data Suite [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{359FCAA7-B544-4147-AE3B-8C8A526E2427}]
Spotify  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Spotify]
Sql Server Customer Experience Improvement Program [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C965F01C-76EA-4BD7-973E-46236AE312D7}]
Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SynTPDeinstKey]
Toggle Downloader Winzip [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Toggle Downloader Winzip]
Updator  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Updator]
Upgrade Kit [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1D0FDD6D-3C5E-4588-8ED0-02DC88014BF2}]
Video Web Camera [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}]
Visual Studio 2012 x86 Redistributables [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}]
VLC media player 1.1.9 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VLC media player]
VobSub v2.23 (Remove Only) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VobSub]
VTech Download Agent Library [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{40C4903E-EDFB-4CAE-A611-41FEBA585921}]
websaver  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5CDF2354-26AF-2DBC-1012-44FEDFCC75BB}]
WIDCOMM Bluetooth Software [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}]
Windows 7 Upgrade Advisor [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0DC66F25-C58F-40d3-86BC-CA29C6D99BF8}]
Windows Live OneCare safety scanner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FE0646A7-19D0-41B4-A2BB-2C35D644270D}]
Windows Live OneCare safety scanner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Windows Live OneCare safety scanner]
Windows Live Sync - ActiveX-besturingselement voor externe verbindingen [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1F204E91-08B9-4115-9E95-C20D9A9E7264}]
Windows Live Sync [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CD19EDD9-1632-4002-9212-7478E4BA0423}]
Windows Live Sync ActiveX Control for Remote Connections [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CF119AF4-6943-407F-B416-B4D77E6A7BDD}]
WinPump  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinPump]
WinZip 17.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D6}]
XviD MPEG4 Video Codec (remove only) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\XviD MPEG4 Video Codec]

==== C:\zoek_backup content ======================

C:\zoek_backup (files=39 folders=10 41501167 bytes)

==== EOF on do 29/05/2014 at 19:46:49,30 ======================