
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by van la Parra on za 23-04-2016 at 10:26:21,61.
Microsoft Windows 10 Pro 10.0.10586  x64
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Users\van la Parra\Downloads\zoek(3).exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2016-04-18-161756.log	111 bytes
C:\zoek-results2016-04-18-170251.log	121001 bytes
C:\zoek-results2016-04-19-143240.log	11079 bytes
C:\zoek-results2016-04-20-141314.log	41641 bytes
C:\zoek-results2016-04-21-120341.log	12455 bytes

==== System Restore Info ======================

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Launcher] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\My Avira] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\BootOptimizer] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\General] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\JunkCleaner] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\MyA] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\Power Profiles\BatteryBoostMode] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\Power Profiles] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\PrivacyCleaner] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\RegistryCleaner] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup\Scanner] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira\Speedup] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Avira] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\AviraSpeedup\AviraSpeedup] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\AviraSpeedup] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Avira_RASAPI32] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\Avira_RASMANCS] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\X-AVCSD\Launcher] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Dependencies\{34CE35A5-BC22-4045-9F05-6C411D3A74DB}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Dependencies\{74d1ef14-dd39-4749-b051-e183a1e27f5e}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\5A53EC4322CB5404F950C614D1A347BD] 
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION] 
"Avira.Systray.exe"=- 
[HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION] 
"Avira.Systray.exe"=- 
[HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION] 
"Avira.Systray.exe"=- 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Application\Avira Service Host] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Application\Avira VPN] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Application\AviraSpeedupService] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\Avira Service Host] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\Avira VPN] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\AviraSpeedupService] 
[-HKEY_USERS\.DEFAULT\Software\Avira\VPN] 
[-HKEY_USERS\.DEFAULT\Software\Avira] 
[-HKEY_USERS\.DEFAULT\Software\AviraSpeedup\AviraSpeedup] 
[-HKEY_USERS\.DEFAULT\Software\AviraSpeedup] 
[-HKEY_USERS\S-1-5-18\Software\Avira\VPN] 
[-HKEY_USERS\S-1-5-18\Software\Avira] 
[-HKEY_USERS\S-1-5-18\Software\AviraSpeedup\AviraSpeedup] 
[-HKEY_USERS\S-1-5-18\Software\AviraSpeedup] 
[HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts] 
"C:\\Users\\van la Parra\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Kaspersky Security Scan\\Kaspersky Security Scan.lnk"=- 
[-HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab\KSS2] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\KasperskyLab] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\KasperskyLab\KSS2] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\KasperskyLab] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\imageformats] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\C:\Program Files (x86)\Kaspersky Lab] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\imageformats] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\C:\Program Files (x86)\Kaspersky Lab] 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83218077F0}] 
"InstallSource"=- 
[-HKEY_LOCAL_MACHINE\SOFTWARE\HeimdalSecurity\Local Storage] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\HeimdalSecurity] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\heimdal_RASAPI32] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\heimdal_RASMANCS] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Application\Heimdal Client Host] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Application\HeimdalClientManager] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EventLog\Application\HeimdalSecureDNS] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\Heimdal Client Host] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\HeimdalClientManager] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\HeimdalSecureDNS] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Explorer\DOMStorage\heimdalsecurity.com] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Explorer\EdpDomStorage\heimdalsecurity.com] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Explorer\DOMStorage\heimdalsecurity.com] 
[-HKEY_USERS\S-1-5-21-3654615766-1524511065-2618837555-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Explorer\EdpDomStorage\heimdalsecurity.com] 

==== Deleting Files \ Folders ======================

C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan not found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=666 folders=272 213862092 bytes)

==== EOF on za 23-04-2016 at 10:27:27,01 ======================