Zoek.exe v5.0.0.0 Updated 24-08-2014 Tool run by whirless on zo 24-08-2014 at 20:46:49,02. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\whirless\Favorites\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-08-23-113716.log 90726 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-201003595-3411674417-2857927949-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{31ad400d-1b06-4e33-a59a-90c2c140cba0} deleted successfully HKEY_USERS\S-1-5-21-201003595-3411674417-2857927949-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "speedtestanalysis@SpeedAnalysis.com"=- ==== Deleting Files \ Folders ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Users\whirless\Searches deleted "C:\Windows\Installer\69cc2e.msi" deleted "C:\Windows\Installer\13f95f19.msi" deleted ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "online_banking@kaspersky.com"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com" [21-08-2014 18:56] ==== Firefox Extensions ====================== ProfilePath: C:\Users\whirless\AppData\Roaming\TomTom\HOME\Profiles\k0ax6nu3.default - Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dchlnpcodkpfdpacogkljefecpegganj - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx[28-11-2013 12:06] efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[08-05-2014 15:49] hakdifolhalapjijoafobooafbilfakh - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx[28-11-2013 12:06] hghkgaeecgjhjkannahfamoehjmkjail - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx[28-11-2013 12:03] jagncdcchgajhfhijbbhecadmaiegcmh - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx[28-11-2013 12:03] pjldcfjmnllhmgjclecdnfampinooman - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx[28-11-2013 12:06] ==== Chromium Startpages ====================== C:\Users\whirless\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences "homepage": "http://www.delta-search.com/?babsrc=HP_ss&mntrId=6C9F20689D25A14F&affID=119357&tl=kwdg1y2j8h38&tsp=5024", "startup_urls": [ "http://www.delta-search.com/?babsrc=HP_ss&mntrId=6C9F20689D25A14F&affID=119357&tl=kwdg1y2j8h38&tsp=5024" ], ==== Chrome Fix ====================== C:\Users\whirless\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_www.delta-search.com_0.localstorage deleted successfully C:\Users\whirless\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_www.delta-search.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=nl&pid=NAV&pvid=21.4.0.13" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=nl&pid=NAV&pvid=21.4.0.13" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{006ee092-9658-4fd6-bd8e-a21a348e59f5}" {006ee092-9658-4fd6-bd8e-a21a348e59f5} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GZEU_nlNL522" {8A244612-A1F7-11E0-95C0-E71F4824019B} Search Url="http://badoo.com/startpage/?source=bsb&q={searchTerms}" ==== Reset Google Chrome ====================== C:\Users\whirless\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully C:\Users\whirless\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6E3C12FFDF79F4745981D8BC9EC48245 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C18BC956E45B1FD46B813F757793A345 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FF21C3E6-97FD-474F-9518-8DCBE94C2854} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B614E5FA-6DA4-45A1-845C-52F870240A89} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{98CE8819-87AA-4814-8167-ADDDD513485F} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{659CB81C-B54E-4DF1-B618-F35777393A54} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\6E3C12FFDF79F4745981D8BC9EC48245 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\C18BC956E45B1FD46B813F757793A345 deleted successfully ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\whirless\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\whirless\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Users\whirless\AppData\Local\Microsoft\Windows Live Mail\Storage Folders\Ge´mporteer 30e\AppData\Local\Microsoft\Windows\Temporary I 4e4\Content.IE5 emptied successfully C:\Users\whirless\AppData\Local\Microsoft\Windows Live Mail\Storage Folders\Ge´mporteer 30e\AppData\Local\Microsoft\Windows\Temporary I 4e4\Low\Content.IE5 emptied successfully C:\Users\whirless\AppData\Local\Microsoft\Windows Live Mail\Storage Folders\Geïmporteer 30e\AppData\Local\Microsoft\Windows\Temporary I 4e4\Content.IE5 emptied successfully C:\Users\whirless\AppData\Local\Microsoft\Windows Live Mail\Storage Folders\Geïmporteer 30e\AppData\Local\Microsoft\Windows\Temporary I 4e4\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\whirless\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2197 folders=424 284998248 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\whirless\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\whirless\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 24-08-2014 at 21:03:38,97 ======================