Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Hugo van Doorne on ma 25-05-2015 at 16:03:29,17. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Hugo van Doorne\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2013-03-27-181215.log 59385 bytes C:\zoek-results2014-09-12-081029.log 44814 bytes C:\zoek-results2014-09-12-114731.log 26519 bytes C:\zoek-results2014-09-13-091546.log 6090 bytes C:\zoek-results2014-09-18-163022.log 1066 bytes C:\zoek-results2014-09-20-100139.log 953 bytes C:\zoek-results2015-05-24-083802.log 36717 bytes ==== Reset Hosts File ====================== # Copyright (c) 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handled within DNS itself. 127.0.0.1 localhost ::1 localhost ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== Deleted from C:\Users\HUGOVA~1\AppData\Roaming\TomTom\HOME\Profiles\y2pd0ajt.default\prefs.js: Added to C:\Users\HUGOVA~1\AppData\Roaming\TomTom\HOME\Profiles\y2pd0ajt.default\prefs.js: user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); ==== Deleting Files \ Folders ====================== C:\ProgramData\{692A81E9-39A8-506F-882E-20ED58ACF363} deleted C:\Windows\SysWow64\AI_RecycleBin deleted ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\HUGOVA~1\AppData\Roaming\TomTom\HOME\Profiles\y2pd0ajt.default user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [26-03-2010 18:23] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [26-03-2010 18:23] ==== Firefox Extensions ====================== ProfilePath: C:\Users\HUGOVA~1\AppData\Roaming\TomTom\HOME\Profiles\y2pd0ajt.default - Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 43.0.2357.65 ==== Chromium Startpages ====================== C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Preferences 2956BA054E55","mfehgcgbbipciphmccgaenjidiccnmng":"186C065994ECECED8FC6DFFE7FB01C692C7B0A6888EE53C119FB49FC9D69DD5B","mgndgikekgjfcpckkfioiadnlibdjbkf":"7653EB0D4AE5D26DA493FC81060FCCAE79DFA91F88831AD8FF5E82A1F08D7E2D","mhjfbmdgcfjbbpaeojofohoefgiehjai":"A687AA9C4F54991F0832918E856FCB69A168D4451C99C3667273701E1CE87DA7","neajdppkdcdipfabeoofebfddakdcjhd":"059F588922249DE146D29869B94D51549D33BF85A65461BFB309A8F41B4E4134","nkeimhogjdpnpccoofpliimaahmaaome":"B9E4ED05E70AD3888EFD1E37F26120C2AE7113CD63CED3154BB10072B2451737","nmmhkkegccagdldgiimedpiccmgmieda":"817FF5753C833AEF3FEE784F3677E2D10C05137DE7A75F6A66F81C6390123FC4","ogminpmldncgcmokldnmmapddoccmhfl":"CFADDE8048DCF2090E0215E6081BC493C915D3B21895885CC87B664AA156D172","oilkkkefbalmbfppgjmgjoefbclebkce":"13F22591C191809AADE43ED59096A12E828A873941A281F3FDA408914FE3F957","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"5488501FA33A350A5758EF2690390BEFB821ADA250E337F06A577C43CEEFB5F4"}},"google":{"services":{"last_username":"3AD6DD1F856977EAB3DA2E0CDCCD3EC98F4EB42421B7B43857657D33A63D6234","username":"AB36E380CF80C1BAC0ECBD7189A2A0B1DEBA2657F9BE2B3114CDA4F3CC2844AD"}},"homepage":"8DAA56F3A00F6F661282CCB818214EBC5AD2EF4B0ED0607FB164BEE621F1823E","homepage_is_newtabpage":"0CEB643D9A06D259AB84249B5B5755A9AC4BEAFC93DBF9D481EDED9762BFB521","pinned_tabs":"97C26274CE0F8315B5FDD7715417DEEE40DB6CD11217EB81F6297C3075AA784C","prefs":{"preference_reset_time":"BD46FE9CBADD2A9E232936B6865B44B0A2B521F664728D12494E078B2D81230F"},"profile":{"reset_prompt_memento":"3845D50465BC2EA0790E002AC4074321DB1989EADAA74B1340CE94C188DECFEA"},"safebrowsing":{"incidents_sent":"0F66CA63B1591F1B7572D76B4EDE7C54CCFA57D14DC6F36E1F4FEB7A4C068CBC"},"search_provider_overrides":"FE843A7549C5751E5283D94E089F21465BB12E584C332EE28976956AD6CD4515","session":{"restore_on_startup":"87AB90B85B1E4F1239382A34AA36ADD3D6A44182D75EBC72E06524592F0089F8","startup_urls":,"https://www.google.nl/"]},"sync":{"remaining_rollback_tries":0}} ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {BAFE38B7-D657-4373-B959-C5906FFBFC77} Bing Url="http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox" ==== Reset Google Chrome ====================== C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Web Data.temp was reset successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\TEMP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XGDS4MAB will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Hugo van Doorne\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=5316 folders=677 657086670 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Hugo van Doorne\AppData\Local\Temp will be emptied at reboot C:\Users\TEMP\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\HUGOVA~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Hugo van Doorne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XGDS4MAB" not found ==== EOF on ma 25-05-2015 at 17:10:46,61 ======================