Zoek.exe v5.0.0.0 Updated 19-07-2014 Tool run by Fons Janssens on ma 21/07/2014 at 13:58:47,69. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Fons Janssens\Downloads\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-07-19-184150.log 120660 bytes C:\zoek-results2014-07-21-114944.log 553 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} not found C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\ascsurfingprotection@iobit.com not found C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\2f86d471-1122-4c15-901a-d7fd67316cd9@ca42b8d2-0eb6-47be-84a2-6d95abe186e8.com not found C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{3444c3c5-6c56-4a16-a453-832b05bf6ea4} not found C:\Users\HomeGroupUser$\AppData\Local\Torch deleted C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser deleted C:\Users\Gast\AppData\Local\Torch deleted C:\Users\Gast\AppData\Local\Chromatic Browser deleted C:\Users\Fons Janssens\AppData\Local\Torch deleted C:\Users\Fons Janssens\AppData\Local\Chromatic Browser deleted C:\Users\Administrator\AppData\Local\Torch deleted C:\Users\Administrator\AppData\Local\Chromatic Browser deleted C:\programdata\anyappsnow\sw-booster deleted C:\Windows\SysNative\tasks\JetCleanLoginCheckUpdate deleted C:\Program Files (x86)\BlueSprig\JetClean deleted C:\Windows\SysNative\tasks\SW-Booster-S-5415902620 deleted C:\Users\Fons Janssens\Searches deleted "C:\Windows\tasks\SW-Booster-S-5415902620.job" deleted ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{F53C93F1-07D5-430c-86D4-C9531B27DFAF}"="C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack" [12/07/2012 09:04] ==== Firefox Extensions ====================== ProfilePath: C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default - Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} - Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\ascsurfingprotection@iobit.com - Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\2f86d471-1122-4c15-901a-d7fd67316cd9@ca42b8d2-0eb6-47be-84a2-6d95abe186e8.com - Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{3444c3c5-6c56-4a16-a453-832b05bf6ea4} - AVG Do Not Track - C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions ndibdjnfmopecpmkdieinmbadjfpblof - C:\Program Files (x86)\AVG\AVG2012\Chrome\donottrack.crx[20/04/2012 06:18] A Journey through Middle-earth - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjgkjeheegjnnmheaflhdocglkiegoni Toothless - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmoddhicigmjbldpdglkhalagjjiinnl Google Wallet - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" ==== Reset Google Chrome ====================== C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== shortcuts on Users Desktops ====================== C:\Users\Fons Janssens\Desktop\Google Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=sc&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457 C:\Users\Fons Janssens\Desktop\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Fons Janssens\Desktop\Microsoft Office Excel 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe C:\Users\Fons Janssens\Desktop\Microsoft Office PowerPoint 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe C:\Users\Fons Janssens\Desktop\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe C:\Users\Fons Janssens\Desktop\µTorrent.lnk - ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\De Sims™ 2.lnk - C:\Users\Public\Desktop\De Sims™ 3 Bovennatuurlijk.lnk - C:\Users\Public\Desktop\De Sims™ 3 Diesel Accessoires.lnk - C:\Users\Public\Desktop\De Sims™ 3 Exotisch Eiland.lnk - C:\Users\Public\Desktop\De Sims™ 3 Luxe Accessoires.lnk - C:\Users\Public\Desktop\De Sims™ 3 Slaap- en badkamer Accessoires.lnk - C:\Users\Public\Desktop\De Sims™ 3 Wereldavonturen.lnk - C:\Users\Public\Desktop\De Sims™ 3.lnk - C:\Users\Public\Desktop\De Sims™ Middeleeuwen Piraten en Adel.lnk - C:\Users\Public\Desktop\De Sims™ Middeleeuwen.lnk - C:\Users\Public\Desktop\DriverToolkit.lnk - C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\App-opstartprogramma van Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe --show-app-list C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=sc&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457 ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit\DriverToolkit.lnk - C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit\Uninstall DriverToolkit.lnk - C:\Program Files (x86)\DriverToolkitT\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN\DW WLAN Card Readme.lnk - C:\Program Files (x86)\Dell\DW WLAN Card\Readme.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN\DW WLAN Card Utility.lnk - C:\Windows\System32\rundll32.exe shell32.dll,,Control_RunDLL C:\Windows\system32\bcmwlcpl.CPL C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\World of Warcraft™.lnk - ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk - C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe -ScParameter=8 C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk - C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe -ScParameter=8 C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\App-opstartprogramma van Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe --show-app-list C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=sc&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457 C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 ==== shortcuts After Repair ====================== C:\Users\Fons Janssens\Desktop\Google Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Fons Janssens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Fons Janssens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Fons Janssens\AppData\Local\Mozilla\Firefox\Profiles\tuljtvbc.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1588 folders=647 125944120 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Fons Janssens\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\FONSJA~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Fons Janssens\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XGAS8RB4\facebookplatformfiles.arkadium.com" not found "C:\Users\Fons Janssens\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XGAS8RB4\static.nl.softonic.com" not found ==== EOF on ma 21/07/2014 at 14:24:12,14 ======================