
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by PC-bureau on di 06/09/2016 at 10:16:33,20.
Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\PC-bureau\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2016-08-22-082112.log	61717 bytes
C:\zoek-results2016-08-24-084619.log	35722 bytes
C:\zoek-results2016-08-24-103751.log	3890 bytes
C:\zoek-results2016-09-02-092946.log	39675 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2957127233-3609595312-830154782-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F4E39681-15F8-4fda-B8A3-B5C98378F2F3} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\PC-BUR~1\AppData\Roaming\Mozilla\Firefox\Profiles\nge165vz.default-1454417243647\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Added to C:\Users\PC-BUR~1\AppData\Roaming\Mozilla\Firefox\Profiles\nge165vz.default-1454417243647\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\PC-BUR~1\AppData\Roaming\Mozilla\Firefox\Profiles\nge165vz.default-1454417243647

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20160609_1030_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner] 
-HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} 
-HKLM\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} 
-HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} 
-HKCU\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} 

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\PROTOCOLS\Handler\linkscanner] 
-HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} 
-HKLM\Wow6432Node\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Amazon Browser Settings not found
"C:\Windows\SysNative\tasks\DistromaticUpdater-logon" not found
"C:\Windows\SysNative\tasks\DistromaticUpdater-periodic" not found
"C:\Users\PC-bureau\AppData\Roaming\Mozilla\Firefox\Profiles\nge165vz.default-1454417243647\extensions\abb@amazon.com.xpi" not found
"C:\Windows\Installer\3a856.msi" not found
"C:\Windows\Installer\b9eb30a.msi" not found

==== Orphaned Tasks deleted from Registry ======================

avast Emergency Update deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\PC-BUR~1\AppData\Roaming\Mozilla\Firefox\Profiles\nge165vz.default-1454417243647
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [15/06/2016 07:44]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [15/06/2016 07:44]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\PC-bureau\AppData\Roaming\Mozilla\Firefox\Profiles\nge165vz.default-1454417243647
3EE8AE0ECFE5D79DE1737A855AD1E84C	- C:\Users\PC-bureau\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll -	Google Update
20FF20FBC1F20ADEC0AD6AF98ABE9545	- C:\Users\PC-bureau\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll -	Google Talk Plugin
57D28190C994AD5E9B1007FB2259393A	- C:\Users\PC-bureau\AppData\Roaming\Mozilla\plugins\npo1d.dll -	Google Talk Plugin Video Renderer


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[15/06/2016 07:43]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ooebgdicanjhnamfmdlmlbcnkgehkkmf - No path found[]
pbjikboenpfhbbejgkoklgkhjpfogcam - No path found[]

Google Docs - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Docs Offline - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Avast Online Security - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Chrome Web Store Payments - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Amazon.com Search Settings - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebgdicanjhnamfmdlmlbcnkgehkkmf
Amazon Assistant for Chrome - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Gmail - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Chrome Media Router - PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Chromium Fix ======================

C:\Users\PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pbjikboenpfhbbejgkoklgkhjpfogcam_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/ig/redirectdomain?brand=FTSF&bmod=FTSF"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/ig/redirectdomain?brand=FTSF&bmod=FTSF"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{BE3466C4-6563-4B8D-A929-25D89D62C489}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} - http://www.default-search.net/search?sid=492&aid=328&itype=n&ver=14733&tm=548&src=ds&p={searchTerms}
HKLM\SearchScopes\{BE3466C4-6563-4B8D-A929-25D89D62C489} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7FTSF
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0942EC95-102C-41E5-AC6A-12FEFAC311D1}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\Wow6432Node\SearchScopes\{0942EC95-102C-41E5-AC6A-12FEFAC311D1} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7FTSF
HKLM\Wow6432Node\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} - http://www.default-search.net/search?sid=492&aid=328&itype=n&ver=14733&tm=548&src=ds&p={searchTerms}
HKCU\SearchScopes "DefaultScope"="{BE3466C4-6563-4B8D-A929-25D89D62C489}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKCU\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} - No_Url_Value
HKCU\SearchScopes\{BE3466C4-6563-4B8D-A929-25D89D62C489} - https://www.google.com/search?q={searchTerms}

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\740D20B6D65A49941B1F35ADB68958BA deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CC4D02CB904C9A247A383BCADBA5EB19 deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6B02D047-A56D-4994-B1F1-53DA6B9885AB} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{BC20D4CC-C409-42A9-A783-B3ACBD5ABE91} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\740D20B6D65A49941B1F35ADB68958BA deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\CC4D02CB904C9A247A383BCADBA5EB19 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC-bureau\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC-bureau\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\PC-bureau\Documents\oude pc\Documents and Settings\IVO\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC-bureau\Documents\oude pc\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC-bureau\Documents\oude pc\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC-bureau\Documents\oude pc\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC-bureau\Documents\oude pc\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC-bureau\Documents\oude pc\WINDOWS\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\PC-bureau\AppData\Local\Mozilla\Firefox\Profiles\nge165vz.default-1454417243647\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1157 folders=243 183373698 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\PC-bureau\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\PC-BUR~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\PC-bureau\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam" deleted

==== EOF on di 06/09/2016 at 10:43:26,73 ======================