
Zoek.exe v5.0.0.0 Updated 23-December-2013
Tool run by Lesly on di 31/12/2013 at 16:19:21,17.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode No Internet Access Detected
Launched: C:\Documents and Settings\Lesly\Bureaublad\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-12-30-134918.log	452 bytes

==== Empty Folders Check ======================

C:\Program Files\MSXML 4.0 deleted successfully
C:\Documents and Settings\All Users\Menu Start\Programma's\Administrative Tools deleted successfully
C:\Documents and Settings\Lesly\Menu Start\Programma's\Azureus deleted successfully
C:\Documents and Settings\Lesly\Menu Start\Programma's\EA GAMES deleted successfully
C:\Documents and Settings\All Users\Application Data\Big Fish Games deleted successfully
C:\Documents and Settings\All Users\Application Data\BigFishGamesCache deleted successfully
C:\Documents and Settings\All Users\Application Data\Downloaded Installations deleted successfully
C:\Documents and Settings\Lesly\Application Data\ATI deleted successfully
C:\Documents and Settings\Lesly\Application Data\f-secure deleted successfully
C:\Documents and Settings\Lesly\Application Data\Media Player Classic deleted successfully
C:\Documents and Settings\Lesly\Application Data\My Games deleted successfully
C:\Documents and Settings\LocalService\Application Data\Apple Computer deleted successfully
C:\Documents and Settings\LocalService.NT AUTHORITY\Application Data\Apple Computer deleted successfully
C:\Documents and Settings\LocalService.NT AUTHORITY.000\Application Data\Apple Computer deleted successfully
C:\Documents and Settings\LocalService.NT AUTHORITY.001\Application Data\Apple Computer deleted successfully
C:\Documents and Settings\NetworkService\Application Data\Apple Computer deleted successfully
C:\Documents and Settings\Lesly\Local Settings\Application Data\ATI deleted successfully
C:\Documents and Settings\Lesly\Local Settings\Application Data\WMTools Downloaded Files deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} deleted successfully
HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Boonty Games deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Boonty Games deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Boonty Games deleted successfully

==== Deleting Files \ Folders ======================

C:\Program Files\DealPly deleted
C:\Program Files\Common Files\BOONTY Shared deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\DOCUME~1\Lesly\LOCALS~1\Temp ====
====== Java Cache =====
2013-12-08 11:43:14	C02C44A000603ED432921CD7C67306B1	2090450	----a-w-	C:\Documents and Settings\Lesly\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\60\1ba8977c-509d9cb4-temp
2013-12-08 12:53:12	795D9229C20C4B83D0DABAEEDF4F7D65	2126280	----a-w-	C:\Documents and Settings\Lesly\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\60\1ba8977c-64ae9956
2013-12-08 11:43:07	BDA4BC07B78D5F4B6FD1759C4B90B8A7	37	----a-w-	C:\Documents and Settings\Lesly\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\9\3ff060c9-6.0.lap
====== C:\WINDOWS\system32 =====
2013-12-29 17:14:25	7BC386A4C864E12A38D13A9A5AD76784	1324	----a-w-	C:\WINDOWS\System32\d3d9caps.dat
====== C:\WINDOWS\system32\drivers =====
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
======= C: =====
2013-12-30 13:46:08	7C91C3EB7FD5AA3055E8EA931A29BAC3	658	----a-w-	C:\runcheck.txt
2013-12-29 18:08:19	65DAD2DD58907FE02D828872D640CF22	179708	----a-w-	C:\unp303443844096171836.mdmp
====== C:\Documents and Settings\Lesly\Application Data ======
2013-12-30 12:47:46	--------	d-----w-	C:\Documents and Settings\LocalService.NT AUTHORITY.001\Local Settings\Application Data\Microsoft
2013-12-30 12:47:40	--------	d-s---w-	C:\Documents and Settings\LocalService.NT AUTHORITY.001\Application Data\Microsoft
2013-12-30 12:30:18	--------	d-----w-	C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings\Application Data\Microsoft
2013-12-30 12:30:12	--------	d-s---w-	C:\Documents and Settings\LocalService.NT AUTHORITY.000\Application Data\Microsoft
2013-12-30 10:04:23	--------	d-----w-	C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Application Data\Microsoft
2013-12-30 10:04:17	--------	d-s---w-	C:\Documents and Settings\LocalService.NT AUTHORITY\Application Data\Microsoft
2013-12-25 18:02:49	--------	d-----w-	C:\Documents and Settings\Lesly\Application Data\SecondLife
2013-12-25 18:02:47	--------	d-----w-	C:\Documents and Settings\Lesly\Local Settings\Application Data\SecondLife
2013-12-20 23:16:34	36A55692A003913991AC91EE77B470A7	29	----a-w-	C:\Documents and Settings\Lesly\Application Data\WB.CFG
2013-12-19 15:16:13	F97B0F0224FB1F4C9FB710657FC465AA	27	----a-w-	C:\Documents and Settings\NetworkService\Application Data\WB.CFG
====== C:\Documents and Settings\Lesly ======
2013-12-30 12:47:48	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Documents and Settings\LocalService.NT AUTHORITY.001\ntuser.ini
2013-12-30 12:47:40	--------	d-sh--w-	C:\Documents and Settings\LocalService.NT AUTHORITY.001\IETldCache
2013-12-30 12:47:40	--------	d-sh--w-	C:\Documents and Settings\LocalService.NT AUTHORITY.001\Cookies
2013-12-30 12:47:40	--------	d-----w-	C:\Documents and Settings\LocalService.NT AUTHORITY.001\Application Data
2013-12-30 12:47:39	--------	d--h--w-	C:\Documents and Settings\LocalService.NT AUTHORITY.001\Local Settings
2013-12-30 12:30:20	6FC234AD3752E1267B34FB12BCD6718B	20	--sha-w-	C:\Documents and Settings\LocalService.NT AUTHORITY.000\ntuser.ini
2013-12-30 12:30:12	--------	d-sh--w-	C:\Documents and Settings\LocalService.NT AUTHORITY.000\IETldCache
2013-12-30 12:30:12	--------	d-sh--w-	C:\Documents and Settings\LocalService.NT AUTHORITY.000\Cookies
2013-12-30 12:30:12	--------	d-----w-	C:\Documents and Settings\LocalService.NT AUTHORITY.000\Application Data
2013-12-30 12:30:11	--------	d--h--w-	C:\Documents and Settings\LocalService.NT AUTHORITY.000\Local Settings
2013-12-30 10:04:24	6FC234AD3752E1267B34FB12BCD6718B	20	--sha-w-	C:\Documents and Settings\LocalService.NT AUTHORITY\ntuser.ini
2013-12-30 10:04:16	--------	d-sh--w-	C:\Documents and Settings\LocalService.NT AUTHORITY\IETldCache
2013-12-30 10:04:16	--------	d-sh--w-	C:\Documents and Settings\LocalService.NT AUTHORITY\Cookies
2013-12-30 10:04:16	--------	d--h--w-	C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings
2013-12-30 10:04:16	--------	d-----w-	C:\Documents and Settings\LocalService.NT AUTHORITY\Application Data
2013-12-29 19:56:59	--------	d--h--r-	C:\Documents and Settings\Lesly\Onlangs geopend

====== C: exe-files ==
=== C: other files ==
2013-12-30 13:45:43	3E02820FF89462348EF711F79FB726D9	4079821	----a-w-	C:\RECYCLER\S-1-5-21-515967899-115176313-725345543-1004\Dc4.zip
2013-12-30 13:44:15	4D3A03F7D966421E40BFC579FDBC63E4	4078986	----a-w-	C:\RECYCLER\S-1-5-21-515967899-115176313-725345543-1004\Dc3.zip
2013-12-29 17:33:59	9D888490786F4C3B3E2A81492967A403	701440	----a-w-	C:\WINDOWS\system32\ReinstallBackups\0022\DriverFiles\i386\ati2mtag.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"
"BrowserChoice"="C:\WINDOWS\system32\browserchoice.exe /run"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-21-515967899-115176313-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe"
"KiesPDLR"="D:\programmatjes\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background"
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"
"BrowserChoice"="C:\WINDOWS\system32\browserchoice.exe /run"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NeroHomeFirstStart"="C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"zBrowser Launcher"="C:\Program Files\Logitech\iTouch\iTouch.exe"
"SwitchBoard"="C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"SoundMAXPnP"="C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe"
"SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray"
"LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam\Quickcam.exe /hide"
"LogitechCommunicationsManager"="C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
"EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming"
"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"KiesTrayAgent"="D:\programmatjes\Kies\KiesTrayAgent.exe"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"USBestCR"="C:\Program Files\USIM Editor\iconcs25963640.exe RunFromReg"
"beidsccertprop"="C:\Program Files\Belgium Identity Card\BeID Certprop\beidsccertprop.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe"
"HPHmon04"="C:\WINDOWS\system32\hphmon04.exe"
"HPHUPD04"="\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
"AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe"
"KiesPDLR"="D:\programmatjes\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background"
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS5.5ServiceManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CS5"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\CS5.5ServiceManager\\CS5.5ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NMBgMonitor"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Common Files\\Ahead\\Lib\\NMBgMonitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BrMfcWnd]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BrMfcWnd"
"hkey"="HKLM"
"command"="C:\\Program Files\\Brother\\Brmfcmon\\BrMfcWnd.exe /AUTORUN"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ControlCenter3]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="brctrcen"
"hkey"="HKLM"
"command"="C:\\Program Files\\Brother\\ControlCenter3\\brctrcen.exe /autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DTLite"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools-1033]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="daemon"
"hkey"="HKLM"
"command"="\"D:\\programmatjes\\D-tools\\daemon.exe\" -lang 1033 -noicon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPreload]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Kies"
"hkey"="HKCU"
"command"="D:\\programmatjes\\Kies\\Kies.exe /preload"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSMSGS]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msmsgs"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NeroFilterCheck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NeroCheck"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Ahead\\Lib\\NeroCheck.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TomTomHOME.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TomTomHOMERunner"
"hkey"="HKCU"
"command"="\"D:\\programmatjes\\TomTom HOME 2\\TomTomHOMERunner.exe\""


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a--c--- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [11/12/2013 16:38]
C:\WINDOWS\tasks\AppleSoftwareUpdate.job --a--c--- :C:\Program Files\Apple Software Update\SoftwareUpdate.exe []
C:\WINDOWS\tasks\At1.job --a------ C:\DOCUME1\Lesly\APPLIC1\Dealply\UPDATE1\UPDATE1.exe []
C:\WINDOWS\tasks\avast\Undetermined Task.exe []
C:\WINDOWS\tasks\Google Software Updater.job --a--c--- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [27/08/2012 12:06]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a--c--- [Undetermined Task]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a--c--- C:\Program Files\Google\Update\GoogleUpdate.exe [03/02/2010 18:03]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [13/12/2013 20:15]

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Skype Click to Call - %AppDir%\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\Lesly\Application Data\Mozilla\Firefox\Profiles\itlvogpn.default-1372787387156
F891089A6AB9E12FEDEBCC5EC0F40D66	- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll -	Shockwave Flash
C36444D7301A8C881FC7296B092609C7	- C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll -	Google Update
6768C724599214E4F9ADD9F8FF5097EB	- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll -	Java(TM) Platform SE 7 U45
F1CD6E22E5AE5CEEB7712E546A5FC853	- C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll -	Java Deployment Toolkit 7.0.450.18
5B92CB0A3EEE50F6B9AE036B4F9B0F0C	- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll -	Google Earth Plugin
BE501CBC29B2025A263D80D399F1797A	- C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll -	Silverlight Plug-In
04ACC61B47857E779CD92D1D88770BF1	- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll -	Adobe Acrobat
77B09C2C6F407531447DA75E3ACD1C5B	- C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll -	Adobe Acrobat
270EE43CC00609B9937AAF94E1E970D4	- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll -	iTunes Application Detector
3D3AF7420B5B01F591163BB3CEA89877	- C:\Documents and Settings\Lesly\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll -	Unity Player
358878E398AB0FB8B1EE176C2E3EDF48	- C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll -	Google Updater
54BF6EBC262DF04712AC4EB18AD8B9CC	- C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll -	PlayStation(R)Network Downloader Check Plug-in
B6A800D881A0176C544988870861E798	- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll -	Shockwave for Director / Shockwave for Director
AB87EEFFD18F2BAAFC274E7075EA6C67	- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll -	Windows Presentation Foundation / Windows Presentation Foundation
901DF887DBDF87FA3C659239F68F3228	- C:\Program Files\Windows Media Player\npdrmv2.dll -	Microsoft� DRM
0F9DEA5814D22F83FED5F427E263DED0	- C:\Program Files\Windows Media Player\npdsplay.dll -	Windows Media Player Plug-in Dynamic Link Library
F89E6BBD6A080D8C714DFB6F30678288	- C:\Program Files\Windows Media Player\npwmsdrm.dll -	Microsoft� DRM
B27CCB1168B1960AEC6E9D3E0E0F0D2A	- C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrlui.dll -	Microsoft� Silverlight


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gaiilaahiahdejapggenmdmafpmbipje - C:\Program Files\DealPly\DealPly.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
gaiilaahiahdejapggenmdmafpmbipje - C:\Program Files\DealPly\DealPly.crx[]

YouTube - Lesly - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Lesly - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
DealPly - Lesly - Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Gmail - Lesly - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGIH_nl"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=6 folders=3 268250 bytes)

==== EOF on di 31/12/2013 at 16:29:02,87 ======================