Zoek.exe Version 4.0.0.2 Updated 23-03-2013 Tool run by Maxim on wo 27/03/2013 at 18:04:57,40. Microsoft Windows 7 Home Premium 6.1.7600 x64 Running in: Normal Mode Internet Access Detected ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2826479152-1464123832-2615865384-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully HKEY_USERS\S-1-5-21-2826479152-1464123832-2615865384-1000\Software\Microsoft\Internet Explorer\SearchScopes\{D969FFB4-8B8D-4973-9039-008F0C574C57} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== FireFox Fix ====================== ==== Deleting Files \ Folders ====================== "c:\programdata\SoftSafe" deleted "c:\program files (x86)\BrowseToSave" deleted "c:\programdata\InstallMate" deleted "C:\Program Files (x86)\BrowseToSave" deleted "C:\Program Files (x86)\Yontoo" deleted "C:\Program Files (x86)\PriceGong" deleted "C:\Program Files (x86)\BittorrentBar_NL" deleted "C:\Program Files (x86)\Conduit" deleted "C:\Users\Maxim\AppData\Roaming\DefaultTab" deleted "C:\ProgramData\Partner" deleted "C:\ProgramData\SoftSafe" deleted "C:\ProgramData\InstallMate" deleted "C:\ProgramData\Tarma Installer" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong" deleted "C:\Users\Maxim\AppData\Local\CRE" deleted "C:\Users\Maxim\AppData\Local\SwvUpdater" deleted "C:\Users\Maxim\AppData\Local\Conduit" deleted "C:\Users\Maxim\AppData\LocalLow\BittorrentBar_NL" deleted "C:\Users\Maxim\AppData\LocalLow\PriceGong" deleted "C:\Users\Maxim\AppData\LocalLow\Conduit" deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[04/12/2012 10:47] idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[29/11/2012 20:35] ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Maxim\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[] niapdbllcanepiiimjjndipklodoedlc - No path found[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\Maxim\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[] BRowse2save - Maxim - Default\Extensions\ablfgjbpjhpchnkglkigkodmecbidegg Google Drive - Maxim - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Maxim - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Maxim - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf SiteAdvisor - Maxim - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho BittorrentBar_NL - Maxim - Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn Gmail - Maxim - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Docs - School - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - School - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - School - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - School - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf SiteAdvisor - School - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho RealDownloader - School - Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji Gmail - School - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Drive - Vrij - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Vrij - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Vrij - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf SiteAdvisor - Vrij - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho RealDownloader - Vrij - Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji Gmail - Vrij - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/?ocid=OIE9MSE&PC=UP09" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=aspire_5820tg&r=27361212n106l0453z145t4691p783" "Start Page"="http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=aspire_5820tg&r=27361212n106l0453z145t4691p783" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=aspire_5820tg&r=27361212n106l0453z145t4691p783" "Start Page"="http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=aspire_5820tg&r=27361212n106l0453z145t4691p783" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/?ocid=OIE9MSE&PC=UP09" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{67A2568C-7A0A-4EED-AECC-B5405DE63B64}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {22B5DDE2-66F5-47C6-995C-B3855F3B7CB9} Google Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_nlBE516" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Bing Url="http://www.bing.com/search?FORM=UP09DF&PC=UP09&q={searchTerms}&src=IE-SearchBox" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Reset Google Chrome ====================== C:\users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\School\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\Vrij\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\users\School\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\users\Vrij\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2826479152-1464123832-2615865384-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-2826479152-1464123832-2615865384-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== shortcuts on Users Desktops ====================== C:\Users\Maxim\Desktop\Audacity.lnk - C:\Program Files (x86)\Audacity\audacity.exe C:\Users\Maxim\Desktop\Counter-Strike Source.lnk - C:\Program Files (x86)\Steam\Steam.exe -applaunch 240 C:\Users\Maxim\Desktop\Day of Defeat Source.lnk - C:\Program Files (x86)\Steam\Steam.exe -applaunch 300 C:\Users\Maxim\Desktop\Half-Life 2 Deathmatch.lnk - C:\Program Files (x86)\Steam\Steam.exe -applaunch 320 C:\Users\School\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\School\Desktop\Microsoft Excel 2010.lnk - C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\xlicons.exe C:\Users\Vrij\Desktop\Cd-station - Snelkoppeling.lnk - D:\ ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Users\Public\Desktop\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Maxim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Counter-Strike Source.lnk - C:\Program Files (x86)\Steam\Steam.exe -applaunch 240 C:\Users\Maxim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Day of Defeat Source.lnk - C:\Program Files (x86)\Steam\Steam.exe -applaunch 300 C:\Users\Maxim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Half-Life 2 Deathmatch.lnk - C:\Program Files (x86)\Steam\Steam.exe -applaunch 320 C:\Users\Maxim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Uninstall\Uninstall Counter-Strike Source.lnk - C:\Program Files (x86)\Steam\uninstall_css.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk - C:\Program Files (x86)\Audacity\audacity.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk - C:\Program Files (x86)\Microsoft Security Client\msseces.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Battlefield Bad Company™ 2.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Medal of Honor - Multiplayer.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Medal of Honor.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Info iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.Resources\nl.lproj\About iTunes.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\NVIDIA PhysX Properties.lnk - C:\Windows\SysWOW64\PhysX.cpl C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Subscriber Agreement.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Uninstall\Uninstall Steam.lnk - C:\Program Files (x86)\Steam\uninstall_steam.exe ==== shortcuts in Quick Launch ====================== C:\Users\School\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Maxim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Maxim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\School\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Vrij\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Vrij\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\users\School\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\users\Vrij\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache is not empty, a reboot is needed ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Maxim\AppData\Local\Temp successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Vrij\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\users\Vrij\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\8R968YJH\cdn.zoomin.tv" not found