
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by User on zo 30-08-2015 at 15:02:22,56.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\User\Mijn documenten\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

30-8-2015 15:03:59 Zoek.exe System Restore Point Created Successfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-507921405-1177238915-1417001333-1004\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4} deleted successfully
HKEY_USERS\S-1-5-21-507921405-1177238915-1417001333-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E66592B-8E7C-4A14-88A5-8BF21032F651} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\YahooAUService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\YahooAUService deleted successfully

==== Deleting Files \ Folders ======================

C:\Documents and Settings\All Users\Application Data\Browse2save not found
C:\Program Files\Yahoo! deleted
C:\Documents and Settings\User\Application Data\Yahoo! deleted
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! deleted
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion deleted

==== Registry Search Results for "{91774881-D725-4E58-B298-07617B9B86A8}" ======================


[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data]
"CLSID"="{91774881-D725-4E58-B298-07617B9B86A8}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SkypeIEPlugin.ResourcePluggableProtocol\CLSID]
@="{91774881-D725-4E58-B298-07617B9B86A8}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\SkypeIEPlugin.ResourcePluggableProtocol.1\CLSID]
@="{91774881-D725-4E58-B298-07617B9B86A8}"

==== Firefox Start and Search pages ======================

ProfilePath: C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\bwyg6sk3.default
user_pref("browser.startup.homepage", "http://www.yahoo.com/?ilc=8");
user_pref("browser.search.defaulturl", "http://search.yahoo.com/search?fr=mkg030&p=");
user_pref("browser.search.defaultenginename", "Yahoo");
user_pref("browser.search.selectedEngine", "Yahoo");
user_pref("keyword.URL", "http://search.yahoo.com/search?fr=mkg030&p=");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [14-05-2014 13:54]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\bwyg6sk3.default
- Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\bwyg6sk3.default
901DF887DBDF87FA3C659239F68F3228	- C:\Program Files\Windows Media Player\npdrmv2.dll -	Microsoft® DRM
0F9DEA5814D22F83FED5F427E263DED0	- C:\Program Files\Windows Media Player\npdsplay.dll -	Windows Media Player Plug-in Dynamic Link Library
F89E6BBD6A080D8C714DFB6F30678288	- C:\Program Files\Windows Media Player\npwmsdrm.dll -	Microsoft® DRM
F51ECBBA611C75E47578295D5241630F	- C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll -	Adobe Acrobat
D654525C0902C21118AD29217E4ECB49	- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll -	Adobe Acrobat
F8CB60A5ACA5D73807ECBD9942A8BCB7	- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll -	RealDownloader Plugin
96B3689320E9B16EDF38B7A5001C35F0	- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll -	RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit)
EAC427FEF96A13058C1ACD17C38966CF	- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll -	RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit)
BE126CB7049E89ED6F3038016668B502	- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll -	RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit)
0FCEAA7D12B7B0BA825E5C770B1DCA48	- c:\program files\real\realplayer\Netscape6\nprpplugin.dll -	RealPlayer Download Plugin
3A9E1940B4459CC97FDCBB24FCB69004	- c:\program files\real\realplayer\Netscape6\nppl3260.dll -	RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
AB87EEFFD18F2BAAFC274E7075EA6C67	- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll -	Windows Presentation Foundation / Windows Presentation Foundation
1C8124B6A03A620EB0CBCA615666D2AE	- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll -	Windows Live® Photo Gallery
893BF7D2261C56C24F813405D9D018E0	- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll -	Silverlight Plug-In
7A75CCAA7E3CE0B14F7428F1731CF4C9	- C:\WINDOWS\system32\Npindeo.dll -	Intel Indeo® video 5.1 PD Plug-In
3CB231F12674D3CB0AC1F5EDE9578E85	- C:\WINDOWS\system32\npwmsdrm.dll -	Microsoft® Windows Media Services
8DA2ED6B04EA33F2EAE8BA883F903729	- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll -	Microsoft® Silverlight
3EA079023D32054BFD73D08E77C72609	- C:\WINDOWS\system32\npptools.dll -	Besturingssysteem Microsoft® Windows®


==== Chromium Look ======================

Google Chrome Version: 44.0.2403.157

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14-08-2013 15:24]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bakijjialdiiboeaknfpmflphhmljfkd - No path found[]
fcfenmboojpjinhpgggodefccipikbpd - No path found[]

Docs - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
RealDownloader - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji
Gmail - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Docs - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
ytbyclick D1 - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\nmjkkfcmfikddklhnfbifdngpcjndhhb
Google Wallet - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Angry Birds - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
Google Docs - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Chrome Web Store Payments - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Preferences
"homepage": "http://www.search.ask.com/?gct=hp",
"startup_urls": [ "http://www.google.nl/" ]

C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Preferences
{"incidents_sent":"743AA37DBEAC07D445ADB3168DA4340BC1BDCC1FFD6D134E88370F9BC6CA6F6B"},"search_provider_overrides":"C685D143E20E986D647A4FD794F8F34635A6771FA270180D4567B741725744EF","session":{"restore_on_startup":"DA804B934870EE7FBC292D9E6D5E6BC1CB5E2FFFF5A63BA112DA40FDAAA20021","startup_urls":"C0CE2A1DB160379D39A52147EAC57C4F743D61F42E5B3D3CDB5E81CE7B963801"},"software_reporter":{"prompt_reason":"4F4D48000BAF92796DB390AFA12ED305CB74EB97D522467D567B3BD0D1000C08","prompt_seed":"A7270783083727F26427684B562FEC1BD8124FA07E44CFC60EFDE448B4B090E6","prompt_version":"60399750C9551D80388EE42436749D477A18130C5E0651954660337AC3220645"},"sync":{"remaining_rollback_tries":"BB00E5EA1DCA2DD92A10954C9A7A0EB4D093AEA425361263FED8F5CBDD100A4A"}},"super_mac":"9EA080322C2B093F8E34E8F3F6382F9C7F7450206BC299B0DC304385F71080FC"},"session":{"restore_on_startup":4,"startup_urls":["https://www.google.nl/"]},"sync":{"remaining_rollback_tries":0}}


==== Chromium Fix ======================

C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\nmjkkfcmfikddklhnfbifdngpcjndhhb deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.yahoo.com/?ilc=8"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.yahoo.com/?ilc=8"
"Start Page"="http://www.yahoo.com/?ilc=8"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{DECA3892-BA8F-44b8-A993-A466AD694AE4}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox"

==== Reset Google Chrome ======================

C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences~RF6b15b2.TMP was reset successfully
C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Secure Preferences was reset successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Preferences was reset successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Secure Preferences was reset successfully
C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Web Data was reset successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Web Data-journal was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully
HKEY_USERS\S-1-5-21-507921405-1177238915-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully

==== Deleting Registry Keys ======================

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\User\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\User\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache emptied successfully
C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Profile 3\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=595 folders=141 12572771 bytes)

==== Empty Temp Folders ======================

C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully
C:\Documents and Settings\User\Local Settings\Temp will be emptied at reboot
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\User\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\User\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on zo 30-08-2015 at 15:24:51,60 ======================