Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Isax on za 23-07-2016 at 9:31:56,73. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Isax\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 23-7-2016 09:33:48 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Avira deleted successfully C:\PROGRA~2\IObit deleted successfully C:\Program Files\office.tmp deleted successfully C:\PROGRA~3\AsusMissionManagerIni deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\FolderView deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\Isax\AppData\Local\ActiveSync deleted successfully C:\Users\Isax\AppData\Local\EmieSiteList deleted successfully C:\Users\Isax\AppData\Local\EmieUserList deleted successfully C:\Users\Isax\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E66592B-8E7C-4A14-88A5-8BF21032F651} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} deleted successfully HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\YahooAUService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater40.3.2 deleted successfully ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Avira not found C:\PROGRA~2\IObit not found C:\PROGRA~2\WebsavErrs deleted C:\Program Files (x86)\Yahoo!\SoftwareUpdate deleted C:\windows\SysNative\Tasks\ASUS Patch for Touch Panel deleted C:\windows\SysNative\Tasks\AVG-SSU_0716tb deleted C:\windows\SysNative\Tasks\AVG-SSU_0716tb_DELETE deleted C:\Users\Isax\AppData\LocalLow\{CD6DB53E-F72B-9BC5-500B-3AC2AAEB155E} deleted C:\Users\Isax\AppData\Local\Packages\windows_ie_ac_001\AC\{CD6DB53E-F72B-9BC5-500B-3AC2AAEB155E} deleted C:\PROGRA~3\Yahoo! Companion deleted C:\PROGRA~3\Excellent4App deleted C:\Users\Isax\AppData\Local\AVG Web TuneUp deleted C:\PROGRA~3\WebsavErrs deleted C:\Program Files\AVG Web TuneUp deleted C:\PROGRA~2\Yahoo! deleted C:\PROGRA~3\SetStretch.VBS deleted C:\PROGRA~3\Yahoo! deleted C:\PROGRA~3\AVG Web TuneUp deleted C:\PROGRA~3\Avg_Update_0116av deleted C:\PROGRA~3\Avg_Update_1215av deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\AVG Secure Search deleted C:\PROGRA~3\InstallMate deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Users\Isax\AppData\LocalLow\Yahoo! deleted C:\Users\Isax\AppData\LocalLow\Yahoo! Companion deleted C:\END deleted C:\Users\Isax\AppData\Roaming\Mozilla\Firefox\Profiles\n67tr5o7.default\extensions\abs@avira.com deleted "C:\WINDOWS\Installer\2a2a4.msi" deleted "C:\Users\Isax\AppData\Local\{0A5417CE-4E89-4A30-89B6-1000331DC1BD}" deleted "C:\Users\Isax\AppData\Local\{BD7D492B-AC8A-4936-B789-591A5AB79B94}" deleted "C:\PROGRA~3\d775806c017ee32e\{9DB19ABE-679C-FFBF-ECA3-159A4E15CB61}" deleted "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" deleted "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" deleted "C:\PROGRA~2\AVG Web TuneUp\vprot.exe" deleted "C:\PROGRA~3\Avg_Update_0716tb\AVG-Secure-Search-Update_0716tb.exe" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.3.2\avgdttbx.dll" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\ScriptHelperInstaller\40.3.2\ScriptHelper.exe" deleted "C:\PROGRA~3\d775806c017ee32e" deleted "C:\Program Files (x86)\AVG Web TuneUp" deleted "C:\Program Files (x86)\AVG Web TuneUp" deleted "C:\PROGRA~2\AVG Web TuneUp" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted "C:\PROGRA~3\Avg_Update_0716tb" not deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\ScriptHelperInstaller" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.3.2" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\ScriptHelperInstaller\40.3.2" deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Isax\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== ====== C:\WINDOWS\Sysnative\drivers ===== ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2016-07-10 12:58:17 -------- d-----w- C:\PROGRA~2\WinRAR ======= C: ===== 2016-07-23 07:28:36 !HASH: COULD NOT OPEN FILE !!!!! 0 --sha-w- C:\DkHyperbootSync ====== C:\Users\Isax\AppData\Roaming ====== ====== C:\Users\Isax ====== 2016-07-10 14:07:55 6F1902AAFD619C84B4A9797F85AE3939 8961228 ----a-w- C:\Users\Isax\Desktop\swords_sandals2_downloadable.exe 2016-07-10 12:58:04 81BD7000DBD74052634F584043EA1233 1808528 ----a-w- C:\Users\Isax\Downloads\wrar531.exe ====== C: exe-files == 2016-07-23 07:33:07 539F86FFAB835934D4D4C9C0BA5B0F3F 22943816 ----a-w- C:\Windows\Temp\{D0FB97B8-73F4-4A09-9D87-5531CC9EC89C}.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-110290312-1727843910-1152570901-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Spotify Web Helper"="C:\Users\Isax\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "Messenger (Yahoo\Program Files (x86)\Yahoo\Messenger\YahooMessenger.exe -quiet" "OneDrive"="C:\Users\Isax\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Spotify"="C:\Users\Isax\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE" "ASUSWebStorage"="C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe /S" "mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey" "ATLauncher"="C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe /createshortcuts:1" "ATUninstallIcon"="C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe /createuninstallentry:1" "Avira Systray"="C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avuirunnerx.exe C:\Program Files (x86)\AVG\AVG2015\avgui.exe" "vProt"="C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Spotify Web Helper"="C:\Users\Isax\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "Messenger (Yahoo\Program Files (x86)\Yahoo\Messenger\YahooMessenger.exe -quiet" "OneDrive"="C:\Users\Isax\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Spotify"="C:\Users\Isax\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HDAudDeck"="C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" ==== Startup Folders ====================== 2014-10-15 16:28:05 1686 --sha-w- C:\Users\Isax\AppData\Roaming\Microsoft\LastFlashConfig.wfc ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cf283e5dadeb79.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03-09-2015 00:09] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf283e5e1df4ce.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03-09-2015 00:09] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d0bfb7ed808273.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03-09-2015 00:09] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\ASUS Live Update1" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS Live Update2" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS P4G" [C:\Program Files\ASUS\P4G\BatteryLife.exe] "C:\WINDOWS\SysNative\tasks\ASUS Patch for VIA Audio" [C:\Windows\system32\AsPatchViaAudio.exe] "C:\WINDOWS\SysNative\tasks\ASUS Smart Gesture Launcher" [C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe] "C:\WINDOWS\SysNative\tasks\ASUS Splendid ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe] "C:\WINDOWS\SysNative\tasks\ASUS Splendid ColorU" [C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe] "C:\WINDOWS\SysNative\tasks\ASUS USB Charger Plus" ["C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"] "C:\WINDOWS\SysNative\tasks\ASUS VivoBook" [C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore1cf283e5dadeb79" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA1cef52211546cd2" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA1cf283e5e1df4ce" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA1d0bfb7ed808273" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\Update Checker" [C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{001505A8-0D4B-4629-A94F-F5863A1D856F}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\{03D1E9E4-177B-4555-B467-FDA50F69BA9A}" ["c:\windows\system32\launchwinapp.exe"] "C:\WINDOWS\SysNative\tasks\{10E2CDB3-93DB-47B9-9091-E5B906E4D1B2}" ["c:\windows\system32\launchwinapp.exe"] "C:\WINDOWS\SysNative\tasks\{44E2386E-FDD0-4180-B581-FE2F095E8CA4}" ["c:\windows\system32\launchwinapp.exe"] "C:\WINDOWS\SysNative\tasks\{B4A48682-E2A3-4CC2-B8F7-CE3861089FEF}" ["c:\windows\system32\launchwinapp.exe"] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Fake Chromium Profiles Check ====================== Fake profile C:\Users\Administrator\AppData\Local\Torch deleted Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome deleted Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome SxS deleted Fake profile C:\Users\Administrator\AppData\Local\Comodo\Dragon deleted Fake profile C:\Users\Gast\AppData\Local\Torch deleted Fake profile C:\Users\Gast\AppData\Local\Google\Chrome deleted Fake profile C:\Users\Gast\AppData\Local\Google\Chrome SxS deleted Fake profile C:\Users\Gast\AppData\Local\Comodo\Dragon deleted Fake profile C:\Users\Isax\AppData\Local\Torch deleted Fake profile C:\Users\Isax\AppData\Local\Google\Chrome SxS deleted Fake profile C:\Users\Isax\AppData\Local\Comodo\Dragon deleted ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions flliilndjeohchalpbbcdekjklbdgfkk - No path found[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[25-05-2016 10:31] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions chfdnecihphmhljaaejmgoiahnihplgn - No path found[] selector is not a valid CSS selector - Isax\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb AVG Web TuneUp - Isax\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn Skype - Isax\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Chrome Web Store Payments - Isax\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Chromium Fix ====================== C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.flashlyrics.com_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.flashlyrics.com_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_huizen.trovit.nl_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_huizen.trovit.nl_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.doubleclick.net_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.doubleclick.net_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ads2.opensubtitles.org_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ads2.opensubtitles.org_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ads1.msads.net_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ads1.msads.net_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_internet4services.blogspot.nl_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_internet4services.blogspot.nl_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_deals.ebay.com_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_deals.ebay.com_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_hitman-pro.nl.softonic.com_0.localstorage deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_hitman-pro.nl.softonic.com_0.localstorage-journal deleted successfully C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://mysearch.avg.com/?cid={73709944-169F-47E5-86B0-5834DE617704}&mid=7c8d9442774747cd9d71b1ed0a3e9191-7c96e1b633cfe1380ab9be3c0b3338ac88c1ac52&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0915av&pr=fr&d=2015-09-28 22:00:33&v=4.3.1.831&pid=wtu&sg=&sap=hp" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{95B7759C-8C7F-4BF1-B163-73684A933233}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E4B3672D4FB5B864BB00B9B321E1F02B deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\0841757b-1889-406f-ae99-8bbd3b590e93 deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\2f57f9d7-dd83-4ccf-bc56-64662fb4273b deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\342b2b3d-8a0c-486a-b36c-4e5ca76b0856 deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ed9fcb61-0ceb-4014-b389-693b7a213062 deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9480d4af-12b9-4e56-8034-4031ef6ab39d} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D2763B4E-5BF4-468B-BB00-9B3B121E0FB2} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9DB19ABE-679C-FFBF-ECA3-159A4E15CB61} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\E4B3672D4FB5B864BB00B9B321E1F02B deleted successfully ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\1MZWHE8U will be deleted at reboot C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\NBZJM7K7 will be deleted at reboot C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\RE540FG2 will be deleted at reboot C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\SFVYZAYP will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Isax\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1048 folders=304 349457229 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Isax\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\PROGRA~3\Avg_Update_0716tb" not found "C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\1MZWHE8U" not found "C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\NBZJM7K7" not found "C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\RE540FG2" not found "C:\Users\Isax\AppData\Local\Microsoft\Windows\INetCache\IE\SFVYZAYP" not found ==== EOF on za 23-07-2016 at 9:58:29,12 ======================