Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Pascal on wo 23/03/2016 at 16:57:49,71. Microsoft Windows 10 Pro 10.0.10240 x64 Running in: Normal Mode Internet Access Detected Launched: D:\Pascal\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 23/03/2016 17:01:37 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\Program Files\CiscoVUSB deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully C:\Users\Pascal\AppData\Local\Adobe deleted successfully C:\Users\Pascal\AppData\Local\PeerDistRepub deleted successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\1504akis.default user.js not found ---- Lines oldsearch removed from prefs.js ---- user_pref("extensions.classicthemerestorer.ctroldsearch", true); user_pref("extensions.classicthemerestorer.ctroldsearchc", true); ---- FireFox user.js and prefs.js backups ---- prefs_20162303_1716_.backup ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\1504akis.default\extensions\adbhelper@mozilla.org deleted C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\1504akis.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} deleted C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\1504akis.default\extensions\fxdevtools-adapters@mozilla.org deleted C:\Users\Pascal\.android deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Control Center deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\1504akis.default\extensions\firefox@ghostery.com.xpi deleted C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\1504akis.default\jetpack deleted "C:\ProgramData\.tv7" deleted "C:\Users\Pascal\AppData\Roaming\DisplayFusion\AppHookWIN6032_6beb7ee3-f93f-4e31-b835-a960a631de10.dll" deleted "C:\Users\Pascal\AppData\Roaming\DisplayFusion\AppHookWIN6064_e1ade7b5-d450-46ab-9ae5-a226fa08c296.dll" deleted "C:\Users\Pascal\AppData\Roaming\DisplayFusion" not deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Pascal\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2016-03-23 15:48:42 A1FBF6EC15FED02967053321F003812D 16148 ----a-w- C:\Windows\Sysnative\DOWNLOADPC_Pascal_HistoryPrediction.bin ====== C:\Windows\Sysnative\drivers ===== 2016-03-08 18:55:11 F7101D3B4E00800E6CEE69F9795B7B62 633184 ----a-w- C:\Windows\Sysnative\drivers\fvevol.sys 2016-03-08 18:55:07 55D5C5B0B9F9B65BD452136A384E6EAC 138240 ----a-w- C:\Windows\Sysnative\drivers\dfsc.sys 2016-03-08 18:55:06 2521520142F7853E39028AE6BD66E072 104960 ----a-w- C:\Windows\Sysnative\drivers\rasl2tp.sys 2016-02-25 20:19:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\Sysnative\drivers\SET1699.tmp 2016-02-23 19:33:50 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\Sysnative\drivers\EsgScanner.sys ====== C:\Windows\Tasks ====== 2016-02-28 17:44:11 DDD289C19F5B0C83A573FB5EEEA81E54 1032 ----a-w- C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2016-02-28 17:44:11 DA7D93D961137C19351A89CB9F31A6CE 3864 ----a-w- C:\Windows\Sysnative\Tasks\DropboxUpdateTaskMachineCore 2016-02-28 17:44:11 D5329ABA45F451A7669F830EFA239651 4096 ----a-w- C:\Windows\Sysnative\Tasks\DropboxUpdateTaskMachineUA 2016-02-28 17:44:11 30698277C16689BE336E895E438C15B3 1036 ----a-w- C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2016-03-21 18:53:38 -------- d-----w- C:\Program Files\Inkscape 2016-03-16 20:32:58 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2016-03-15 20:16:13 -------- d-----w- C:\PROGRA~2\RidNacs 2016-03-03 18:07:59 -------- d-----w- C:\PROGRA~2\Windows Media Components 2016-03-03 18:07:57 -------- d-----w- C:\PROGRA~2\COMMON~1\Ulead Systems 2016-03-03 18:07:54 -------- d-----w- C:\PROGRA~2\Corel 2016-03-02 11:23:08 -------- d-----w- C:\PROGRA~2\Reference Assemblies 2016-02-28 19:16:30 -------- d-----w- C:\PROGRA~2\COMMON~1\InstallShield 2016-02-28 19:16:28 -------- d-----w- C:\PROGRA~2\COMMON~1\Jasc Software Inc 2016-02-28 19:14:52 -------- d-----w- C:\PROGRA~2\Jasc Software Inc 2016-02-28 17:44:10 -------- d-----w- C:\PROGRA~2\Dropbox 2016-02-27 15:25:06 -------- d-----w- C:\PROGRA~2\winaerotweaker_[winaero.com]_117 2016-02-25 20:18:44 -------- d-----w- C:\PROGRA~2\LenovoEMC Storage Manager ======= C: ===== 2016-02-23 19:34:33 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat ====== C:\Users\Pascal\AppData\Roaming ====== 2016-03-21 19:04:54 1A5D99BBEF1AFDB363BFDB00DB81DAD2 1298 ----a-w- C:\Users\Pascal\AppData\Local\recently-used.xbel 2016-03-21 18:56:33 -------- d-----w- C:\Users\Pascal\AppData\Local\fontconfig 2016-03-11 19:51:59 -------- d-----w- C:\Users\Default\AppData\Local\Google 2016-03-11 19:51:59 -------- d-----w- C:\Users\Default User\AppData\Local\Google 2016-03-09 18:16:02 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\bdch 2016-03-03 18:43:13 -------- d-s---r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-03-03 18:43:13 -------- d-----w- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-03-03 18:43:13 -------- d-----w- C:\Users\DefaultAppPool\AppData\Roaming 2016-03-03 18:43:13 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local\Temp 2016-03-03 18:43:13 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local\Microsoft Help 2016-03-03 18:43:13 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local\Microsoft 2016-03-03 18:43:13 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-03-03 18:31:33 D5B7FA47FD200D503C4B59F203EF4BEA 173824 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2016-03-01 11:07:14 -------- d-----w- C:\Users\Pascal\AppData\Local\Pushbullet_Inc 2016-02-29 09:31:23 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\PeerDistRepub 2016-02-29 09:31:17 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Dropbox 2016-02-28 19:20:33 -------- d-----w- C:\Users\Pascal\AppData\Local\Diagnostics 2016-02-28 17:44:08 -------- d-----w- C:\Users\Pascal\AppData\Local\Dropbox 2016-02-25 20:19:02 -------- d-----w- C:\Users\Pascal\AppData\Local\LenovoEMCStorageManager 2016-02-23 15:24:14 -------- d-----w- C:\Users\Pascal\AppData\Temp ====== C:\Users\Pascal ====== 2016-03-21 18:53:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape 0.91 2016-03-15 20:16:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RidNacs 2016-03-13 12:50:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-03-09 18:16:00 -------- d-----w- C:\ProgramData\bdch 2016-03-03 18:43:13 -------- d--h--w- C:\Users\DefaultAppPool\AppData 2016-03-03 18:43:13 -------- d-----w- C:\Users\DefaultAppPool\Saved Games 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Videos 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Pictures 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Music 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Links 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Favorites 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Downloads 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Documents 2016-03-03 18:43:13 -------- d-----r- C:\Users\DefaultAppPool\Desktop 2016-03-03 18:09:52 -------- d-----w- C:\ProgramData\InterVideo 2016-03-03 18:09:31 -------- d-----w- C:\ProgramData\Corel 2016-03-03 18:07:57 -------- d-----w- C:\ProgramData\Ulead Systems 2016-02-29 09:31:15 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Documents 2016-02-29 09:31:15 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Desktop 2016-02-28 19:16:36 -------- d-----w- C:\ProgramData\InstallShield 2016-02-28 19:16:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jasc Software 2016-02-28 17:44:08 -------- d-----w- C:\ProgramData\Dropbox 2016-02-25 20:19:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LenovoEMC 2016-02-25 13:35:06 -------- d-----w- C:\Users\Public\Desktop 2016-02-23 19:34:09 -------- d-----w- C:\Users\Pascal\Start Menu 2016-02-23 19:34:09 -------- d-----w- C:\Users\Pascal\Desktop ====== C: exe-files == 2016-03-21 18:23:37 10E3CE500533BCB52D32B25AEDFE43FB 47484960 ----a-w- C:\Users\Pascal\AppData\Local\Spotify\Update\spotify_installer-1.0.25.127.g58007b4c-30.exe 2016-03-16 20:32:58 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Pascal.exe === C: other files == 2016-03-21 18:44:19 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Pascal\AppData\Local\Temp\_MEI74722\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2016-03-21 18:44:19 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Pascal\AppData\Local\Temp\_MEI74722\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-353603163-2690693654-462508661-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Pascal\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Spotify Web Helper"="C:\Users\Pascal\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe" "DisplayFusion"="C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe" "HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -deviceID CN2A57KH1V05RQ:NW -scfn HP Officejet 6700 (NET) -AutoStart 1" "Pushbullet"="C:\Program Files (x86)\Pushbullet\pushbullet.exe -show false" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "Dropbox"="C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Pascal\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Spotify Web Helper"="C:\Users\Pascal\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe" "DisplayFusion"="C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe" "HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -deviceID CN2A57KH1V05RQ:NW -scfn HP Officejet 6700 (NET) -AutoStart 1" "Pushbullet"="C:\Program Files (x86)\Pushbullet\pushbullet.exe -show false" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Bdagent"="C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe" "Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun" "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" "SamsungRapidApp"="C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\DropboxUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [28/02/2016 18:44] C:\Windows\tasks\DropboxUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [28/02/2016 18:44] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08/01/2016 12:12] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08/01/2016 12:12] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" [C:\Program Files\Bitdefender Agent\WatchDog.exe] "C:\Windows\SysNative\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\Windows\SysNative\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\SamsungMagician" ["C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe"] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "bdwteffv20@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender 2016\antispam32\bdwteff" [16/12/2015 19:29] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{F003DA68-8256-4b37-A6C4-350FA04494DF}"="C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt" [17/01/2016 20:29] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\1504akis.default - Classic Theme Restorer - %ProfilePath%\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi - ClipConverter - %ProfilePath%\extensions\clipconverter@clipconverter.cc.xpi - Google Search by Image - %ProfilePath%\extensions\google@hitachi.com.xpi - Pushbullet - %ProfilePath%\extensions\jid1-BYcQOfYfmBMd9A@jetpack.xpi - I dont care about cookies - %ProfilePath%\extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi - Private Tab - %ProfilePath%\extensions\privateTab@infocatcher.xpi - Menu Wizard - %ProfilePath%\extensions\s3menu@wizard.xpi - Tab Scope - %ProfilePath%\extensions\tabscope@xuldev.org.xpi - Back to Top - %ProfilePath%\extensions\{3C9A65A6-9563-4485-BA4A-4BCD698BCFB4}.xpi - Download Status Bar - %ProfilePath%\extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi - Image Toolbar - %ProfilePath%\extensions\{A4732521-77D9-447E-A557-B279AC923F06}.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi - Tab Mix Plus - %ProfilePath%\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dhhejlifdlcgcmogbggeomfodgklfaem - No path found[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[] Google Slides - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Photo Editor - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aenihapfpbplnoodpaebohaknejoidaj Google Docs - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Instagram - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apchgljmbdmgpelofkpfaghmjcgkcmmb Google Drive - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Fotor Photo Editor - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbckhhmjfnmedpakkaaflpnmkamdppf Ribbet - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bikpkcdadljalhghbbipfkkhocppkhob YouTube - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Cast - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd selector is not a valid CSS selector - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Scroll To Top Button - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\chinfkfmaefdlchhempbfgbdagheknoj Pushbullet - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd Dailymotion - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckopbmcmofndcicfgnlfcelnphemljme Spotify - Music for every moment - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh Google Search - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Image-Toolbar - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpgaepnhfockgofcejphihfafgmenofb Search by Image by Google - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm Bitdefender Wallet - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhhejlifdlcgcmogbggeomfodgklfaem PicMonkey Extension - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhipmoghimfdldnocmopeoanjmoolofl Polarr - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\djonnbgfieijldcieafgjcnhmpcfpmgg Logitech Smooth Scrolling - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk Dropbox for Gmail - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec Sumo Paint - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpgjihldbpodlmnjolekemlfbcajnmod Tabs Outliner - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl Pixlr-o-matic - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj Fotor Extension - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\eicdknplohdampjgndodmhblklhhnkbn Google Calendar - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn vGet Cast (DLNA Controller) - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekdjofnchpbfmnfbedalmbdlhbabiapi Photovisi - Photo Collage Maker - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\emkkfkcbnpdnhgeolpbggbdogfngiadf Visual history for Chrome - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnpecigdjglcgfabfnmlphhgfdifaan QuickDrop - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\epikhaceecmdolocoldapfdepjpegdoo Google Sheets - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Bye-bye to warnings. - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja StockBlocker - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gabmlabpkcpincifnadmjplohbbljdba Cloud Print with Drive - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbackapcmmghpcfbfpbnbomhgecnphoj Treasure Chest Radio: 3FM - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\geeoeokcenpaehoemkfdjfmnobopefck Google Docs Offline - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi AdBlock - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Unlimited Free VPN - Hola - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio Google Calendar by Google - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich Untitled audio - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne Bookmark Manager - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik Twitcher - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmngpagflejjoblmmamaonmnkghjmebh TinEye Reverse Image Search - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl TweetDeck by Twitter - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl InstaTwit - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhalcamddihdpdgdjkjbgikgobnbbpif TuneIn - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhkolpgedpldcfmkgbdokgiljfbblpfj Checker Plus for Google Calendar™ - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkhggnncdpfibdhinjiegagmopldibha Speed Test Internet - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhbmnfdcklajeaeikfinieljfegamko vGet Extension (Video Downloader DLNA) - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hniladkejehjfchadikcbjmgjaogciic Pixlr Express - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmjpdlmjopaeginhldhiokeidchjid Pixlr Editor - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk Google Play Music - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg Lunapic Photo Editor - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifimmnanlabnljjnaegjmgnelmdmjabn Auto Refresh - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifooldnmmcmlbdennkpdnlnbgbmfalko Mail2Cloud for Chrome | Revolutionizing Email - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijhapcklhkanndjbdnhichfmolhiaekg iPiccy - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\imokeandodnlammaoenbgcnbhigjbpjh Dropbox - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl Color Picker - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcmgligingjhdnhdhgepemlckgcgmgaj Drag image To Save - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlepofnflidkndofkhhbalmmijnlpkpl Pixeffect - Photo Effects - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\koekplodmdaalggcclajcecoomipnpca Black Pinstripe Orange - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\koipdmoajpekhgmlongohamicmkdjdap Google Drive App Launcher - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh Earbits Radio - Free Music - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgkjffcdjblaipglnmhanakilfbniihj Pocket - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk Ghostery - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij 4k Wallpaper - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpibmjcgbgjdccdkpekfjbmccbbbeenm deviantART muro - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\namljbfbglehfnlonjmebceimaalofei OneDrive - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk Radio - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhpdjhpnoggcnfihakphcdibkdohbmcm Save to Pocket - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj Chrome Web Store Payments - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Show Apps - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nohbdifokmdgjcbbeobglcbaifinhfip Hover Zoom - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl Enhanced Steam - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg Instagram for Chrome - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb Message to display data savings. - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmgfdlgomnbgkofeojodiodmgpgmkac Outlook.com - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge Psykopaint - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil World Clocks 2 - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjgoijhajhaahklokegbfnohialajpej Gmail - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Similar Pages beta by Google - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjnfggphgdjblhfjaphkjhfpiiekbbej Reditr - The Best Reddit Client - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfcbbijgnhoebddbjpmlikabnbnddgb GeoProxy - Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pooljnboifbodgifngpppfklhifechoe ==== Chromium Fix ====================== C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hniladkejehjfchadikcbjmgjaogciic deleted successfully C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpgaepnhfockgofcejphihfafgmenofb deleted successfully C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmgfdlgomnbgkofeojodiodmgpgmkac deleted successfully C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pfmgfdlgomnbgkofeojodiodmgpgmkac deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 ==== Reset Google Chrome ====================== C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF30CB.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF3178.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF3179.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF317A.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF317B.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318C.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318D.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318E.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318F.tmp will be deleted at reboot C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF31A0.tmp will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Pascal\AppData\Local\Mozilla\Firefox\Profiles\1504akis.default\cache2 will be emptied at reboot ==== Empty Chrome Cache ====================== C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=468 folders=202 32511330 bytes) ==== Empty Temp Folders ====================== C:\Users\Pascal\AppData\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Pascal\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF30CB.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF3178.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF3179.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF317A.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF317B.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318C.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318D.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318E.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF318F.tmp" not found "C:\Users\Pascal\AppData\Local\Microsoft\Windows\INetCache\IE\WPF31A0.tmp" not found "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted "C:\Users\Pascal\AppData\Roaming\DisplayFusion" not found "C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cpgaepnhfockgofcejphihfafgmenofb" deleted ==== EOF on wo 23/03/2016 at 17:25:46,14 ======================