Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Gebruiker on do 28-07-2016 at 15:30:19,77. Microsoft Windows 10 Home 10.0.10586 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\XZESI8SL\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2016-07-24-054919.log 70285 bytes ==== Empty Folders Check ====================== C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully C:\Users\Gebruiker\AppData\Local\ActiveSync deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\SearchScopes\{a0892e19-6051-4ae6-9a5f-91542a166b2b} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\SearchScopes\{46499032-EB07-4BE1-B951-26723B1F57B4} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5AA7D691-D615-4CCF-A74D-803B28F988A7} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FB921FC3-2E15-4A80-BE2F-87D7073C8B4A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{a0892e19-6051-4ae6-9a5f-91542a166b2b} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AvastVBoxSvc deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 -HKLM\SearchScopes\{a0892e19-6051-4ae6-9a5f-91542a166b2b} -HKCU\SearchScopes\{46499032-EB07-4BE1-B951-26723B1F57B4} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SweetIM"=- ==== Deleting Files \ Folders ====================== C:\Program Files\AVAST Software not found "C:\Windows\Installer\1c0a31.msi" not found C:\Program Files\gmsd_be_004010193 deleted C:\Users\Gebruiker\AppData\Local\gmsd_be_004010193 deleted C:\ProgramData\Kaspersky Lab Setup Files deleted C:\Program Files\SweetIM deleted C:\Program Files\Alwil Software deleted C:\Program Files\Primary Color deleted C:\PROGRA~2\48ed1695-d484-472b-bd42-582714ef1368 deleted C:\Users\Gebruiker\AppData\Local\InternetSpeedTracker_9t deleted C:\Users\Gebruiker\daemonprocess.txt deleted C:\Users\Gebruiker\.android deleted C:\Program Files\Mobogenie deleted C:\Program Files\smartdl deleted C:\Program Files\MPC Cleaner deleted C:\PROGRA~2\APN deleted C:\PROGRA~2\SweetIM deleted C:\PROGRA~2\ParetoLogic deleted C:\PROGRA~2\{429CAD59-35B1-4DBC-BB6D-1DB246563521} deleted C:\PROGRA~2\Package Cache deleted C:\Users\Gebruiker\AppData\Local\simedit.log deleted C:\Users\Gebruiker\AppData\Local\IAC deleted C:\Users\Gebruiker\AppData\Local\Mobogenie deleted C:\Users\Gebruiker\AppData\Local\cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\WINDOWS\System32\Tasks\avast! Windows 10 Start Menu helper deleted C:\WINDOWS\system32\GroupPolicy\Machine deleted C:\WINDOWS\Installer\{7683B745-6060-41FD-AA75-0BBB383FEAD4} deleted "C:\WINDOWS\system32\tasks\{5CFF11C0-2955-45A9-A0E7-99378B60A7EB}" deleted ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "ols@f-secure.com"="C:\Program Files\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi" [18-07-2016 14:15] ==== Firefox Extensions ====================== ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\TomTom\HOME\Profiles\cwqopyp3.default - Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.9.430.890926@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.9.510.1234792@tomtom.com AppDir: C:\Program Files\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions efaidnbmnnnibpcajpcglclefindmkaj - No path found[] jmjjnhpacphpjmnnlnccpfmhkcloaade - C:/Program Files/Telenet Security Pack/apps/CCF_Scanning/bin/browser/install/fs_chrome_https/fs_chrome_https.crx[18-07-2016 14:15] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/?trackid=sp-006" "Search Bar"="https://www.google.com/?trackid=sp-006" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Bar"="https://www.google.com/?trackid=sp-006" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="https://www.google.com/?trackid=sp-006" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} - https://www.google.com/search?trackid=sp-006&q={searchTerms} HKCU\SearchScopes "DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 HKCU\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} - https://www.google.com/search?trackid=sp-006&q={searchTerms} ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\547B38670606DF14AA57B0BB83F3AE4D deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\InternetSpeedTracker_9tbar Uninstall Internet Explorer deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\547B38670606DF14AA57B0BB83F3AE4D deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\XZESI8SL will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1776 folders=242 315330458 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\XZESI8SL" not found ==== EOF on do 28-07-2016 at 16:11:42,95 ======================