
Zoek.exe v5.0.0.0 Updated 10-March-2015
Tool run by fred on wo 11/03/2015 at 17:40:15,12.
Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\fred\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

11/03/2015 17:43:08 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Users\fred\AppData\Local\FileViewPro deleted successfully
C:\Users\fred\AppData\Local\ms-drivers deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2745406066-188088592-2588830699-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F4E39681-15F8-4fda-B8A3-B5C98378F2F3} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\fred\.android deleted
C:\Windows\system32\config\systemprofile\.android deleted
C:\PROGRA~2\Package Cache deleted
C:\Users\fred\Downloads\ReimageRepair.exe deleted
C:\Windows\Reimage.ini deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Users\fred\AppData\Roaming\TomTom\HOME\Profiles\i9noli0l.default\.autoreg deleted
"C:\Program Files\Acer Bio Protection\ACERWMI.dll" deleted
"C:\Program Files\Acer Bio Protection\BASVC.exe" deleted
"C:\Program Files\Acer Bio Protection\CompPtcVUI.exe" deleted
"C:\Program Files\Acer Bio Protection\CustomRes_Acer.dll" deleted
"C:\Program Files\Acer Bio Protection\FPLaunchCache.dll" deleted
"C:\Program Files\Acer Bio Protection\PdtWzd.exe" deleted
"C:\Program Files\Acer Bio Protection\PwdFilter.dll" deleted
"C:\Program Files\Acer Bio Protection" not deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"antiphishing@bullguard"="C:\Program Files\BullGuard Ltd\BullGuard Antivirus\Antiphishing\FF\antiphishing@bullguard" [02/08/2014 12:29]

==== Firefox Extensions ======================

ProfilePath: C:\Users\fred\AppData\Roaming\Mozilla\Firefox\Profiles\p1l2hsr7.default
- Undetermined - C:\Program Files\IObit Apps Toolbar\FF

ProfilePath: C:\Users\fred\AppData\Roaming\TomTom\HOME\Profiles\i9noli0l.default
- Emulator - %ProfilePath%\extensions\Navcore.8.415.1240@tomtom.com
- Emulator - %ProfilePath%\extensions\Navcore.9.510.1234792@tomtom.com

==== Firefox Plugins ======================

Profilepath: C:\Users\fred\AppData\Roaming\Mozilla\Firefox\Profiles\p1l2hsr7.default
6C3E34E303DBDCB9F7EC1F7A7F6B1629	- C:\Users\fred\AppData\Roaming\Mozilla\plugins\npo1d.dll -	Google Talk Plugin Video Renderer
2D684F0DDF782C73847BED9503250991	- C:\Users\fred\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll -	Google Talk Plugin
9DF0C4F0CEF60158614EDD1B3AB441EE	- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll -	Adobe Acrobat
0806948270D853B709CCBBF38AF167E4	- C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll -	Adobe Acrobat
3B00376AE69AC2E815425E54DEBFF750	- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll -	Photo Gallery
15E298B5EC5B89C5994A59863969D9FF	- C:\Windows\system32\npmproxy.dll -	Microsoft® Windows® Operating System


==== Chromium Look ======================

Google Chrome Version: 41.0.2272.89 (Up to date, latest Stable version: 41.0.2272.89)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14/07/2014 17:22]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

Google Docs - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Gmail Offline - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk
AdBlock - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Bookmark Manager - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Google Play Music - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg
Google Drive App Launcher - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh
Google Wallet - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.standaard.be/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.standaard.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{DE0A7B1E-E506-493E-814D-791E948C0259}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{DE0A7B1E-E506-493E-814D-791E948C0259} Google  Url="http://www.google.be/search?hl=nl&q={searchTerms}&sourceid=ie8&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}&rlz=1I7GGHP_nlBE519"

==== Reset Google Chrome ======================

C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== shortcuts on Users Desktops ======================

C:\Users\fred\Desktop\Dropbox.lnk - C:\Users\fred\AppData\Roaming\Dropbox\bin\Dropbox.exe /home
C:\Users\fred\Desktop\Evernote.lnk - C:\Program Files\Evernote\Evernote\Evernote.exe 
C:\Users\fred\Desktop\inSSIDer 3.lnk - C:\Users\fred\AppData\Roaming\Microsoft\Installer\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}\Icon.ico 
C:\Users\fred\Desktop\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\fred\Desktop\IrfanView.lnk - C:\Program Files\IrfanView\i_view32.exe 
C:\Users\fred\Desktop\NetBak Replicator.lnk - C:\Program Files\QNAP\NetBak\NetBak.exe 
C:\Users\fred\Desktop\Notepad.lnk - C:\Windows\system32\notepad.exe 
C:\Users\fred\Desktop\QRM systeempunt..lnk - C:\Users\fred\Documents\QRM3\Quick Restore Maker v3\QRM3.exe 
C:\Users\fred\Desktop\Revo Uninstaller.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe 
C:\Users\fred\Desktop\Solitaire.lnk -  
C:\Users\fred\Desktop\Sound Recorder.lnk - C:\Windows\system32\SoundRecorder.exe 
C:\Users\fred\Desktop\Spider Solitaire.lnk -  
C:\Users\fred\Desktop\Spotify.lnk - C:\Users\fred\AppData\Roaming\Spotify\spotify.exe 
C:\Users\fred\Desktop\Van Dale Handwoordenboek Engels.lnk - C:\VANDALE\HWBNE\COMPLEX3.EXE C:\VanDale\HWBNE\VanDale.abs NE.and
C:\Users\fred\Desktop\Van Dale Handwoordenboek Frans.lnk - C:\VANDALE\HWBNF\COMPLEX3.EXE C:\VanDale\HWBNF\VanDale.abs NF.and

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\BullGuard Antivirus.lnk - C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuard.exe 
C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe 
C:\Users\Public\Desktop\Defraggler.lnk - C:\Program Files\Defraggler\Defraggler.exe 
C:\Users\Public\Desktop\eID Viewer.lnk - C:\Program Files\Belgium Identity Card\EidViewer\eID Viewer.exe 
C:\Users\Public\Desktop\Freemake Audio Converter.lnk - C:\Program Files\Freemake\Freemake Audio Converter\FreemakeAudioConverter.exe 
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\mbam.exe 
C:\Users\Public\Desktop\Mozilla mail.lnk - C:\Program Files\Mozilla Thunderbird\thunderbird.exe 
C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk - C:\Program Files\OpenOffice 4\program\soffice.exe 
C:\Users\Public\Desktop\PlayMemories Home Help.lnk - C:\Program Files\Sony\PlayMemories Home\PMBBrowser.exe /Help
C:\Users\Public\Desktop\PlayMemories Home.lnk - C:\Program Files\Sony\PlayMemories Home\PMBBrowser.exe 
C:\Users\Public\Desktop\Qfinder.lnk - C:\Program Files\QNAP\Qfinder\Qfinder.exe 
C:\Users\Public\Desktop\Sonos.lnk - C:\Program Files\Sonos\Sonos.exe 
C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files\VideoLAN\VLC\vlc.exe 

==== shortcuts in Users Start Menu ======================

C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk - C:\Users\fred\AppData\Local\Microsoft\OneDrive\OneDrive.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk - C:\Users\fred\AppData\Roaming\Dropbox\bin\Dropbox.exe /home
C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Uninstall Dropbox.lnk - C:\Users\fred\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager\Music Manager.lnk - C:\Users\fred\AppData\Local\Programs\Google\MusicManager\MusicManager.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk - C:\Users\fred\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup
C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteTray.lnk - C:\Program Files\Evernote\Evernote\EvernoteTray.exe 

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1043-7B44-AB0000000001}\SC_Reader.ico 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server.lnk - C:\Program Files\Universal Media Server\UMS.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Docs.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_document
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Drive.lnk - C:\Program Files\Google\Drive\googledrivesync.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Sheets.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_spreadsheet
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Slides.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_presentation
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files\Microsoft Silverlight\5.1.30514.0\Silverlight.Configuration.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QNAP\Qfinder\De-installeren Qfinder.lnk - C:\Program Files\QNAP\Qfinder\uninstall.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QNAP\Qfinder\Qfinder.lnk - C:\Program Files\QNAP\Qfinder\Qfinder.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonos\Sonos.lnk - C:\Program Files\Sonos\Sonos.exe 

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk - C:\Program Files\Mozilla Thunderbird\thunderbird.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\NetBak Replicator.lnk - C:\Program Files\QNAP\NetBak\NetBak.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Qfinder.lnk - C:\Program Files\QNAP\Qfinder\Qfinder.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\displayswitch.lnk - C:\Windows\system32\displayswitch.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Skype.lnk - C:\Program Files\Skype\Phone\Skype.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Snipping Tool.lnk - C:\Windows\system32\SnippingTool.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\App-opstartprogramma van Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe --show-app-list
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Drive.lnk - C:\Program Files\Google\Drive\googledrivesync.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\KeePass 2.lnk - C:\Program Files\KeePass Password Safe 2\KeePass.exe 
C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Skype.lnk - C:\Program Files\Skype\Phone\Skype.exe 

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TVWiz deleted successfully

==== Empty IE Cache ======================

C:\Users\fred\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\fred\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=68 folders=17 117347358 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\fred\AppData\Local\Temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\fred\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files\Acer Bio Protection"  not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on wo 11/03/2015 at 18:50:37,86 ======================