Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Uľytkownik on 2015-06-04 at 22:19:15,91. Microsoft Windows 7 Home Premium 6.1.7600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\UYTKOW~1\Desktop\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 2015-06-04 22:20:29 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Sony Ericsson deleted successfully C:\Users\UYTKOW~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Activision deleted successfully C:\Users\UYTKOW~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\AviSynth 2.5 deleted successfully C:\Users\UYTKOW~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\CodeBlocks deleted successfully C:\Users\UYTKOW~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Gadu-Gadu deleted successfully C:\Users\UYTKOW~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\San Andreas Multiplayer deleted successfully C:\Users\UYTKOW~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Sony Mobile deleted successfully C:\Users\UYTKOW~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\SopCast deleted successfully C:\PROGRA~3\Battle.net deleted successfully C:\PROGRA~3\Sony Ericsson deleted successfully C:\Users\Uľytkownik\AppData\Local\Adobe deleted successfully C:\Users\Uľytkownik\AppData\Local\Battle.net deleted successfully C:\Users\Uľytkownik\AppData\Local\CRE deleted successfully C:\Users\Uľytkownik\AppData\Local\Ubisoft Game Launcher deleted successfully C:\Users\Uľytkownik\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3529014019-469410967-791373992-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b608cc98-54de-4775-96c9-097de398500c} deleted successfully HKEY_USERS\S-1-5-21-3529014019-469410967-791373992-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F4E39681-15F8-4fda-B8A3-B5C98378F2F3} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3529014019-469410967-791373992-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{b608cc98-54de-4775-96c9-097de398500c} deleted successfully ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Sony Ericsson not found C:\Users\Użytkownik\.android not found C:\PROGRA~2\Rosetta Stone Version 3 deleted C:\PROGRA~2\SopCast deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\gpt.ini deleted C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted C:\Windows\SysWow64\AI_RecycleBin deleted ==== Fake Chromium Profiles Check ====================== Fake profile C:\Users\Użytkownik\AppData\Local\Google\Chrome deleted ==== Chromium Look ====================== Google Chrome Version: 43.0.2357.81 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions kfecnpmgnlnbmipaogfhoacoioifjgko - No path found[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions kfecnpmgnlnbmipaogfhoacoioifjgko - No path found[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.istartsurf.com/web/?type=dspp&ts=1432671597&z=7feb3c9bd38cdaf0c5628f5g9z7c0o1q9m2g9wft1g&from=squadm&uid=SAMSUNGXHD103SJ_S246J9CB303080&q={searchTerms}" "CustomizeSearch"="http://www.istartsurf.com/web/?type=dspp&ts=1432671597&z=7feb3c9bd38cdaf0c5628f5g9z7c0o1q9m2g9wft1g&from=squadm&uid=SAMSUNGXHD103SJ_S246J9CB303080&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.istartsurf.com/web/?type=dspp&ts=1432671597&z=7feb3c9bd38cdaf0c5628f5g9z7c0o1q9m2g9wft1g&from=squadm&uid=SAMSUNGXHD103SJ_S246J9CB303080&q={searchTerms}" "CustomizeSearch"="http://www.istartsurf.com/web/?type=dspp&ts=1432671597&z=7feb3c9bd38cdaf0c5628f5g9z7c0o1q9m2g9wft1g&from=squadm&uid=SAMSUNGXHD103SJ_S246J9CB303080&q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search] "CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search] "CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Users\Użytkownik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Użytkownik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=171 folders=55 137972360 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Użytkownik\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\UYTKOW~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" deleted ==== EOF on 2015-06-04 at 22:32:24,63 ======================