Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Magic Tom on wo 17/08/2016 at 17:47:33,51. Microsoft Windows 10 Home 10.0.10586 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Magic Tom\Downloads\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2016-08-16-215444.log 57127 bytes ==== Empty Folders Check ====================== C:\Users\Magic Tom\AppData\Local\ActiveSync deleted successfully C:\Users\Magic Tom\AppData\Local\PackageStaging deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsDrvInst deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WsDrvInst deleted successfully ==== Registry Search Results for "{E00957BD-D0E1-4EB9-A025-7743FDC8B27B}" ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AviraBrowserSafetyProtocol.ABSProtocol\CLSID] @="{E00957BD-D0E1-4EB9-A025-7743FDC8B27B}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\abs] "CLSID"="{E00957BD-D0E1-4eb9-A025-7743FDC8B27B}" ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [20/07/2013 14:48] ==== Firefox Extensions ====================== ProfilePath: C:\Users\MAGICT~1\AppData\Roaming\TomTom\HOME\Profiles\5mdzblw9.default - Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.8.010.9369@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.8.016.9380@tomtom.com ProfilePath: C:\Users\Schattie\AppData\Roaming\TomTom\HOME\Profiles\jfifpuws.default - Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.7.163.8493@tomtom.com AppDir: C:\Program Files\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Magic Tom\AppData\Roaming\Mozilla\Firefox\Profiles\t99ucohg.default DA632EC5CCC16F0B0FAC9BB21C10B2C3 - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.5 B033D1486EAD65BE7857114DFAFD8429 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.5 5A2AF08FEF626D3825AA7923B0A9DFF5 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.5 87FCE1D38F135B923EEC502825B5C7F6 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.5 5596E40701BE8A4AEC399F57DBCE289E - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.5 8130FF8214221BA5AC764909587E161A - C:\Program Files\Adobe\Reader 8.0\Reader\browser\nppdf32.dll - Adobe Acrobat 3EE8AE0ECFE5D79DE1737A855AD1E84C - C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll - Google Update 65FB4909BD29CAAA81FDC69AD21BB905 - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) 01F0264937036BD962563F1ADF35CE72 - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll - RealPlayer Version Plugin AC421A44DE902F2627F1E63793ED89CD - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery 24E990B1E6D55428001843CF7217DD81 - C:\Program Files\Microsoft\Office Live\npOLW.dll - Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox 1B743D5B6FD001660FAB17DD7C347A38 - C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll - Silverlight Plug-In FB658E2F5E185FE5762B169A388BA0BD - C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U101 4FD3548990CAF9771B688532DEF5DE48 - C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.1010.13 5B92CB0A3EEE50F6B9AE036B4F9B0F0C - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin 9BFF4C87460FE3E8BEE0CF5D550D76F9 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll - DivX Plus Web Player 79039398587F475ADA606D1A3B740A63 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll - DivX VOD Helper Plug-in F40E8C944675BF87E605E8E02FA76EDA - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector 62D98B286C805E193568037B70D936D2 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll - Shockwave Flash 4F3F6B17B4A5BDB68B3CB0367A2C214E - C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrlui.dll - Microsoft® Silverlight ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions flliilndjeohchalpbbcdekjklbdgfkk - No path found[] ipmkfpcnmccejididiaagpgchgjfajgp - No path found[] Chrome Media Router - Magic Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm Chrome Media Router - Schattie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/?pc=AV01" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/?pc=AV01" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} - http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 HKCU\SearchScopes "DefaultScope"="{67A2568C-7A0A-4EED-AECC-B5405DE63B64}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{19C5EEDF-C3DC-498B-8E1C-D37F5BD2CC8C} - No_Url_Value HKCU\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} - https://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - No_Url_Value ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Magic Tom\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Magic Tom\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Users\Schattie\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Schattie\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Magic Tom\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Magic Tom\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Users\Schattie\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Schattie\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Magic Tom\AppData\Local\Mozilla\Firefox\Profiles\t99ucohg.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Magic Tom\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Schattie\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=748 folders=152 178239479 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\MAGICT~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on wo 17/08/2016 at 20:01:50,55 ======================