Zoek.exe Version 4.0.0.2 Updated 30-03-2013 Tool run by Hilaire on zo 31/03/2013 at 17:24:28,65. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected ==== System Restore Info ====================== 31/03/2013 17:26:02 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\application updater deleted successfully ==== Deleting Files \ Folders ====================== "C:\Windows\system32\roboot.exe" deleted "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe" deleted "C:\Program Files\Common Files\Spigot\Search Settings\wth160.dll" deleted "C:\Program Files\Application Updater" deleted "C:\Program Files\IObit Apps Toolbar" deleted "C:\Program Files\Common Files\Spigot" not deleted "C:\Users\Hilaire\AppData\Roaming\Systweak" deleted "C:\ProgramData\APN" deleted "C:\Users\Hilaire\AppData\Local\CRE" deleted "C:\Users\Hilaire\AppData\LocalLow\Search Settings" deleted "C:\Program Files\Common Files\Spigot\Search Settings" not deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bpegkgagfojjbcpkihigfmkojdmmimdf - No path found[] ehgldbbpchgpcfagfpfjgoomddhccfgh - No path found[] hbcennhacfaagdopikcegfcobcadeocj - C:\Program Files\Common Files\Spigot\GC\saebay_1.0.crx[] icdlfehblmklkikfigmjhbmmpmkmpooj - C:\Program Files\Common Files\Spigot\GC\errorassistant_1.1.crx[] icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[07/03/2013 01:29] jbolfgndggfhhpbnkgnpjkfhinclbigj - No path found[] mhkaekfpcppmmioggniknbnbdbcigpkk - C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx[] nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[12/12/2011 15:13] pfndaklgolladniicklehhancnlgocpp - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx[] Cirque du Soleil - Hilaire - Default\Extensions\bambdhnebihakocbdlomklpnieneajmo http //www.hna.de/lokales/melsungen/ - Hilaire - Default\Extensions\cgckpnfmcemdfipfgoifnloidldpfgjl http //www.kapaza.be/ - Hilaire - Default\Extensions\chiopncjgmnoijhhopkmdociikbnoidd http //www.delijn.be/index.htm - Hilaire - Default\Extensions\dfbcaikfkednpfffkoiblmpgfiephohc http //www.pc-helpforum.be/ - Hilaire - Default\Extensions\dgpfjiddmmkpfkokckpkjgijfnojamha http //webmail.base.be/?_task=logout - Hilaire - Default\Extensions\dmkhiibdbaefinbibjpocecgejngafbe http //www.facebook.com/ - Hilaire - Default\Extensions\dnknkgccldocdogpnhbaddbdhhjiindo http //www.cm.be//index.jsp - Hilaire - Default\Extensions\ebannkigldfcbgndfmpijmahggddhgdo http //www.demorgen.be/ - Hilaire - Default\Extensions\fgoookejgoefoaehjdpmhadjkmkkbjef Vertalen.nu - Hilaire - Default\Extensions\giapagjeblcapfphboclikepoeelhgkj Ebay Shopping Assistant by Spigot - Hilaire - Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj http //www.de8.be/index.html - Hilaire - Default\Extensions\hdgbccgfdjahcjeblpgnklmgminabneg http //www.gvagroup.be/website/svzwcm20.nsf/a - Hilaire - Default\Extensions\higfbgcdmliingimbedbfhmnhpjjgkgj http //www.google.be/ - Hilaire - Default\Extensions\hnlkomidliifcdghkkldmeopenoldldj Windows Media Player Extension for HTML5 - Hilaire - Default\Extensions\hokdglbhghcebcopdbanieangmcamaak Domain Error Assistant - Hilaire - Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj http //www.medi-c.be/ - Hilaire - Default\Extensions\ijognegfmakmkdjdblbcaiomnnnfeohn http //www.standaard.be/ - Hilaire - Default\Extensions\jdoeimbaimhjmkkeikhbkgjmgakjndif Neerslagalarm - Hilaire - Default\Extensions\jlhabpjomliflpffmhbdolblceidbkni http //www.infobel.com/nl/belgium - Hilaire - Default\Extensions\keimanmlkdhhnfdjkilokmefgamjeaci http //www.nieuwsblad.be/ - Hilaire - Default\Extensions\kfahphnfdcllmbbenabdncblfnniaihm http //nl.wikipedia.org/wiki/Wiki - Hilaire - Default\Extensions\ldbhhknemkgdmcblefimhmdafiepmdbe https //twitter.com/ - Hilaire - Default\Extensions\lddagfjihimnacaabfnfagjcokfmnekc http //www.2dehands.be/ - Hilaire - Default\Extensions\mfhhpaeihkilnfehnlliehamhjmclieg Savings-Slider - Hilaire - Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk Bitdefender QuickScan - Hilaire - Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie World Clocks - Hilaire - Default\Extensions\pjgoijhajhaahklokegbfnohialajpej avast WebRep - Hilaire - Profile 2\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda ==== Chrome Fix ====================== C:\Users\Hilaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully C:\Users\Hilaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully C:\Users\Hilaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://nl.msn.com/?ocid=OIE9HP" "Default_Search_URL"="http://www.google.com/ie" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://nl.msn.com/?ocid=OIE9HP" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{847E1059-86E0-4D49-872A-C090FE50FC13}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {847E1059-86E0-4D49-872A-C090FE50FC13} Yahoo//search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=902615&p={searchTerms}" {b0441a0e-a49a-4e16-afc1-74ecced1921f} Unknown Url="Not_Found" {BE28C22E-F666-424d-B5FD-125C4AFEE34E} Unknown Url="Not_Found" ==== Reset Google Chrome ====================== C:\users\Hilaire\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\Hilaire\AppData\Local\Google\Chrome\User Data\Profile 2\Preferences was reset successfully C:\users\Hilaire\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\users\Hilaire\AppData\Local\Google\Chrome\User Data\Profile 2\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3610711996-1769753261-2712777353-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully HKEY_USERS\S-1-5-21-3610711996-1769753261-2712777353-1000\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f} deleted successfully HKEY_USERS\S-1-5-21-3610711996-1769753261-2712777353-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BE28C22E-F666-424d-B5FD-125C4AFEE34E} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully HKEY_CLASSES_ROOT\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3610711996-1769753261-2712777353-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully HKEY_USERS\S-1-5-21-3610711996-1769753261-2712777353-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp deleted successfully ==== Empty IE Cache ====================== C:\Users\Hilaire\AppData\Local\temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hilaire\AppData\Local\VirtualStore\Windows\temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hilaire\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\Hilaire\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\users\Hilaire\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully C:\users\Hilaire\AppData\Local\Google\Chrome\User Data\Profile 2\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Hilaire\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Hilaire\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Program Files\Common Files\Spigot" not found