Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by van la Parra on do 21-04-2016 at 7:27:13,13. Microsoft Windows 10 Pro 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\van la Parra\Downloads\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2016-04-18-161756.log 111 bytes C:\zoek-results2016-04-18-170251.log 121001 bytes C:\zoek-results2016-04-19-143240.log 11079 bytes C:\zoek-results2016-04-20-141314.log 41641 bytes ==== Empty Folders Check ====================== C:\Users\van la Parra\AppData\Local\ActiveSync deleted successfully C:\Users\van la Parra\AppData\Local\PeerDistRepub deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira_icon32.png not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\abs_avira_umbrella_white.svg" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira-app-icon.svg" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira_icon128.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira_icon16.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira_icon24.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira_icon48.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira_logo.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk\1.9.1_1\img\avira_logo.svg" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_biglogo.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_search_icon128.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_search_icon16.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_search_icon24.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_search_icon32.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_search_icon48.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_search_logo.png" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\avira_search_logo.svg" not found "C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp\1.4.0_0\img\logo-avira-antivirus.png" not found C:\ProgramData\Avira deleted C:\Users\van la Parra\AppData\Local\Avira deleted C:\windows\SysNative\config\systemprofile\AppData\Local\Avira_Operations_GmbH_&_C deleted C:\ProgramData\Heimdal Security deleted C:\Users\Public\Documents\Heimdal Security deleted C:\Windows\Microsoft.NET\assembly\GAC_32\Heimdal.AgentResourceManager deleted C:\Windows\Microsoft.NET\assembly\GAC_32\Heimdal.ClientManagerContracts deleted C:\Windows\Microsoft.NET\assembly\GAC_32\Heimdal.Domain deleted C:\Windows\Microsoft.NET\assembly\GAC_32\Heimdal.Helpers deleted "C:\Users\Public\Desktop\Avira Launcher.lnk" deleted "C:\Windows\Installer\MSID40D.tmp-\Avira.OE.Setup.CustomActions.dll" deleted "C:\Windows\Prefetch\AVIRA.OE.SETUP.BUNDLE.EXE-6C6299E3.pf" deleted "C:\Windows\Prefetch\AVIRA.OE.SETUP.BUNDLE.EXE-9F71F947.pf" deleted "C:\Windows\Prefetch\AVIRA.OE.SETUP.BUNDLE.EXE-C995C7DE.pf" deleted "C:\Windows\Prefetch\AVIRA_EN_AVPN0_57121C85074CC_-71BF7664.pf" deleted "C:\Windows\Prefetch\AVIRA_NL_AV_570FD1BD72AA6__WS-A201A9BC.pf" deleted "C:\Windows\Prefetch\AVIRA_PC_CLEANER_DE.EXE-2444C3FA.pf" deleted "C:\Windows\Prefetch\AVIRA_SYSTEM_SPEEDUP.TMP-4F082983.pf" deleted "C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\Avira.ServiceHost.exe.log" deleted "C:\Users\van la Parra\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\Heimdal.Agent.exe.log" deleted "C:\Users\van la Parra\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\heimdal.wizard.exe.log" deleted "C:\Users\van la Parra\Downloads\Heimdal.msi" deleted "C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\Heimdal.ClientHost.exe.log" deleted "C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\Heimdal.SecureDNS.exe.log" deleted ==== Firefox Extensions ====================== ProfilePath: C:\Users\VANLAP~1\AppData\Roaming\Mozilla\Firefox\Profiles\d84ozzgd.default-1449068176930 - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\van la Parra\AppData\Roaming\Mozilla\Firefox\Profiles\d84ozzgd.default-1449068176930 8CE35D76726DFC8C3848BB26B3C79A54 - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director 57C7E359ED8D049132EED23EFA444C63 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll - Shockwave Flash AF8A94BCB98C299C49B28CC12EBC0ED2 - C:\Users\van la Parra\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll - Google Update 77B6DD23DCA19A217D5A4C4CAF962895 - C:\Users\van la Parra\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll - RocketLife Secure Plug-In Layer ==== Chromium Look ====================== HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions bbjllphbppobebmjpjcijfbakobcheof - No path found[] Comodo Drag&Drop Service - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo Rapport - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof Comodo Web Inspector - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn Comodo Media Downloader - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo IBA Opt-out (by Google) - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb Google Analytics Debugger - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jnkmfdileelhofjcijamephohjechhna Comodo Dragon Browser Light Theme - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kglppafajjeikfgmjjegogphhkjnnmgc Ad Sanitizer - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\mbklemiimcpdblemkogjenikmcfhpnib Fixer for Java - van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ocoiokalhgfiblapcgelblmeakhidmle Rapport - van la Parra\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof IBA Opt-out (by Google) - van la Parra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb Google Analytics Debugger - van la Parra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkmfdileelhofjcijamephohjechhna Fixer for Java - van la Parra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocoiokalhgfiblapcgelblmeakhidmle ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE03&ocid=UE03DHP" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE03&ocid=UE03DHP" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Default User\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\van la Parra\AppData\Local\Mozilla\Firefox\Profiles\d84ozzgd.default-1449068176930\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\van la Parra\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully C:\Users\van la Parra\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=666 folders=272 213862092 bytes) ==== Empty Temp Folders ====================== C:\Users\van la Parra\AppData\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\VANLAP~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on do 21-04-2016 at 14:03:41,28 ======================