Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Administrator on wo 05-08-2015 at 17:53:29,02. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Administrator\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2015-08-03-180635.log 113952 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\ADMINI~1\AppData\Roaming\Mozilla\Firefox\Profiles\i1c5a91l.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_05-08-2015_1816_.backup ProfilePath: C:\Users\JONATH~1\AppData\Roaming\Mozilla\Firefox\Profiles\extensions ---- FireFox user.js and prefs.js backups ---- user_05-08-2015_1816_.backup prefs_05-08-2015_1816_.backup ProfilePath: C:\Users\JONATH~1\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0 ---- FireFox user.js and prefs.js backups ---- user_05-08-2015_1816_.backup prefs_05-08-2015_1816_.backup ==== Deleting Files \ Folders ====================== C:\programdata\c56bc7ea-0e24-7e33-c56b-bc7ea0e21fa8 not found C:\programdata\7461192a-e3fa-2a39-7461-1192ae3f64ab not found C:\Users\Jonathan Marchal PB\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com not found C:\Windows\SysNative\config\systemprofile\Searches deleted "C:\Windows\tasks\uprqgm.job" deleted "C:\Windows\tasks\ProMeditate.job" deleted "C:\Windows\SysNative\tasks\uprqgm" deleted ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\ADMINI~1\AppData\Roaming\Mozilla\Firefox\Profiles\i1c5a91l.default user_pref("browser.startup.homepage", "www.google.com"); ProfilePath: C:\Users\JONATH~1\AppData\Roaming\Mozilla\Firefox\Profiles\extensions user_pref("browser.search.defaultenginename", "Yahoo"); user_pref("browser.search.selectedEngine", "Yahoo"); user_pref("keyword.URL", "http://search.yahoo.com/search?ei=utf-8&fr=greentree_ff1&type=937811&ilc=12&p="); ==== Firefox Extensions ====================== ProfilePath: C:\Users\ADMINI~1\AppData\Roaming\Mozilla\Firefox\Profiles\i1c5a91l.default - BranderApp - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\i1c5a91l.default\extensions\lqridwnujyop@nhxwhdaosl_htchshm.org - BranderApp - %ProfilePath%\extensions\lqridwnujyop@nhxwhdaosl_htchshm.org - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\i1c5a91l.default 9E2ACEFA9A03FA35133459B0F8613B40 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1215155.dll - Shockwave for Director / Shockwave for Director FD82108FD60B63010325D9AF6F00AF99 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll - Shockwave Flash ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[06-08-2013 17:34] Embed WMPlayer inline - Jonathan Marchal PB\AppData\Local\Google\Chrome\User Data\Default\Extensions\bamkbfdmckphehgiafpenehgebjgdlli Firebug Lite for Google Chrome\u2122 - Jonathan Marchal PB\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench Skype for Chromium - Jonathan Marchal PB\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Musica - Jonathan Marchal PB\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpobbhilcmbbpkhkhkeajapafclchbhe SiteBlock - Jonathan Marchal PB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj AdBlock - Joosd\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Bookmark Manager - Joosd\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik Outlook.com - Joosd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge ==== Chromium Startpages ====================== C:\Users\Jonathan Marchal PB\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://google.nl/", C:\Users\Joosd\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.search.ask.com/?gct=hp", "homepage": "http://google.nl/", ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jonathan Marchal PB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jonathan Marchal PB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Joosd\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Joosd\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\TEMP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\TEMP.MarchalPB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Administrator\AppData\Local\Mozilla\Firefox\Profiles\i1c5a91l.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Jonathan Marchal PB\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Joosd\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=586 folders=138 90596145 bytes) ==== Empty Temp Folders ====================== C:\Users\Administrator\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Jonathan Marchal PB\AppData\Local\Temp emptied successfully C:\Users\Joosd\AppData\Local\Temp emptied successfully C:\Users\TEMP\AppData\Local\Temp emptied successfully C:\Users\TEMP.MarchalPB\AppData\Local\Temp emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ADMINI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on wo 05-08-2015 at 19:46:15,00 ======================