Zoek.exe v5.0.0.0 Updated 29-March-2015 Tool run by Hp on ma 30/03/2015 at 7:59:12,55. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Hp\Desktop\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 30/03/2015 8:00:53 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Avira deleted successfully C:\PROGRA~2\WinISO Computing deleted successfully C:\Program Files\Common Files\Symantec Shared deleted successfully C:\Users\Hp\AppData\Roaming\WinPatrol deleted successfully C:\Users\Hp\AppData\Local\LogMeIn Rescue Applet deleted successfully C:\Users\Hp\AppData\Local\Samsung deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1240993424-3555931370-692324636-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BFB6B770-537F-45D6-B19B-6EA28EDE7EAA} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Avira not found C:\PROGRA~2\WinISO Computing not found C:\found.000 deleted C:\Users\Hp\AppData\Roaming\gns3.ini deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Photo Pro X3 deleted C:\Users\Hp\Downloads\SoftonicDownloader_voor_driver-booster-free.exe.9doif21.partial deleted C:\Users\Hp\Downloads\SoftonicDownloader_voor_ultraiso.exe.067da6w.partial deleted C:\Users\Hp\Downloads\SoftonicDownloader_voor_ultraiso.exe.1o4q0g9.partial deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Windows\SysWow64\AI_RecycleBin deleted C:\Users\Hp\Downloads\wpsetup.exe deleted ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\eq21ypc6.default user_pref("browser.startup.homepage", "about:home"); user_pref("browser.search.defaulturl", "https://www.google.com/search"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("keyword.URL", "https://www.google.com/search"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "url_advisor@kaspersky.com"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.0\FFExt\url_advisor@kaspersky.com" [07/02/2015 18:14] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\eq21ypc6.default - Belgium eID - %ProfilePath%\extensions\belgiumeid@eid.belgium.be.xpi ProfilePath: C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\i6eorxni.default - Free Download Manager plugin - %ProfilePath%\extensions\fdm_ffext@freedownloadmanager.org AppDir: C:\Program Files (x86)\Mozilla Firefox - Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\eq21ypc6.default CAF78E18A9E1380A0A38065B3B1210E0 - C:\Users\Hp\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin.dll - VASCO Card Reader Plugin 31DA97B4682187C6639BBE2215814FDA - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director 1CDD28B47D8198F868349BDFBCD1281B - C:\Users\Hp\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin64.dll - VASCO Card Reader Plugin ==== Fake Chromium Profiles Check ====================== Fake profile C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome deleted ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.101 (Latest Stable version: 41.0.2272.101) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dbhjdbfgekjfcfkkfjjmlmojhbllhbho - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho[] iikflkcanblccfahdhdonehdalibjnif - No path found[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14/07/2014 19:22] Kaspersky Protection - Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho Norton Identity Safe - Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif Google Wallet - Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {5D3D18CF-279B-46F5-8075-380E6604046B} Wikipedia Url="http://nl.wikipedia.org/wiki/Special:Search?search={searchTerms}" {97038AEE-C0D8-41A7-AC90-DB3D66190004} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox" ==== Reset Google Chrome ====================== C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Preferences_bak was reset successfully C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully C:\Users\Hp\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Web Data.temp was reset successfully C:\Users\Hp\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2} deleted successfully HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\E6D7C08DDFFE6E74C81EBBD355774BDF deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\beid deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Elite Unzip AppIntegrator 32-bit deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Elite Unzip AppIntegrator 64-bit deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BJ3YT4X1 will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Hp\AppData\Local\Mozilla\Firefox\Profiles\eq21ypc6.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Hp\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=11 folders=16 1166994 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Gast\AppData\Local\Temp emptied successfully C:\Users\Hp\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Hp\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Hp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BJ3YT4X1" not found "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on ma 30/03/2015 at 8:37:47,20 ======================