Zoek.exe v5.0.0.0 Updated 01-September-2015 Tool run by Gebruiker on do 03/09/2015 at 9:49:08,72. Microsoft Windows 8.1 Pro 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2015-09-02-111045.log 87656 bytes C:\zoek-results2015-09-03-074443.log 79594 bytes ==== Empty Folders Check ====================== C:\PROGRA~2\Lavasoft deleted successfully C:\PROGRA~3\Lavasoft deleted successfully C:\Users\Gebruiker\AppData\Local\Lavasoft deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Batch Command(s) Run By Tool====================== Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Lavasoft not found ==== Folders Found ====================== 2015-05-30 12:50:28 2015-09-02 10:59:54 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2015-05-30 12:50:28 2015-09-02 10:59:54 -------- d-----w- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Lavasoft 2015-05-30 12:51:15 2015-05-30 12:51:15 -------- d-----w- C:\Windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService ==== Files Found ====================== ==== Registry Search Results for "Lavasoft" ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftLSPInstaller.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftLSPInstaller.ini"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftLSPInstaller64.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService64.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\LavasoftTcpService.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] @="LavasoftTcpService" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] "LocalService"="LavasoftTcpService" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\ProgID] @="LavasoftTcpServiceLib.DataController.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataController" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\ProgID] @="LavasoftTcpServiceLib.DataContainer.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataContainer" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\ProgID] @="LavasoftTcpServiceLib.DataTableHolder.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataTableHolder" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\ProgID] @="LavasoftTcpServiceLib.ReadOnlyManager.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\VersionIndependentProgID] @="LavasoftTcpServiceLib.ReadOnlyManager" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\ProgID] @="LavasoftTcpServiceLib.DataTable.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataTable" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\ProgID] @="LavasoftTcpServiceLib.LSPLogic.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\VersionIndependentProgID] @="LavasoftTcpServiceLib.LSPLogic" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\ProgID] @="LavasoftTcpServiceLib.DataTableFields.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataTableFields" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\ProgID] @="LavasoftTcpServiceLib.WFPController.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\VersionIndependentProgID] @="LavasoftTcpServiceLib.WFPController" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CurVer] @="LavasoftTcpServiceLib.DataContainer.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CurVer] @="LavasoftTcpServiceLib.DataController.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CurVer] @="LavasoftTcpServiceLib.DataTable.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CurVer] @="LavasoftTcpServiceLib.DataTableFields.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CurVer] @="LavasoftTcpServiceLib.DataTableHolder.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CurVer] @="LavasoftTcpServiceLib.LSPLogic.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CurVer] @="LavasoftTcpServiceLib.ReadOnlyManager.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CurVer] @="LavasoftTcpServiceLib.WFPController.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0] @="LavaSoft 1.0 Type Library" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\0\win32] @="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\HELPDIR] @="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\ProgID] @="LavasoftTcpServiceLib.DataController.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataController" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\ProgID] @="LavasoftTcpServiceLib.DataContainer.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataContainer" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\ProgID] @="LavasoftTcpServiceLib.DataTableHolder.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataTableHolder" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\ProgID] @="LavasoftTcpServiceLib.ReadOnlyManager.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\VersionIndependentProgID] @="LavasoftTcpServiceLib.ReadOnlyManager" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\ProgID] @="LavasoftTcpServiceLib.DataTable.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataTable" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\ProgID] @="LavasoftTcpServiceLib.LSPLogic.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\VersionIndependentProgID] @="LavasoftTcpServiceLib.LSPLogic" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\ProgID] @="LavasoftTcpServiceLib.DataTableFields.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\VersionIndependentProgID] @="LavasoftTcpServiceLib.DataTableFields" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\LocalServer32] @="\"C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\ProgID] @="LavasoftTcpServiceLib.WFPController.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\VersionIndependentProgID] @="LavasoftTcpServiceLib.WFPController" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\LavasoftTcpService.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] @="LavasoftTcpService" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] "LocalService"="LavasoftTcpService" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0] @="LavaSoft 1.0 Type Library" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\0\win32] @="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\HELPDIR] @="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WinSock2\Parameters\AppId_Catalog\2FDB6170] "AppFullPath"="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\2FDB6170] "AppFullPath"="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe" [HKEY_USERS\S-1-5-21-174170113-1959642047-2039998945-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\lavasoftfirewall.com] [HKEY_USERS\S-1-5-21-174170113-1959642047-2039998945-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\lavasoftpersonalfirewall.com] [HKEY_USERS\S-1-5-21-174170113-1959642047-2039998945-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\lavasoftpersonallfirewall.com] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\Mozilla\Firefox\Profiles\ys5vlsb1.default user_pref("browser.startup.homepage", "http://www.hln.be/hln/nl/1/home/actua/index.dhtml"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\coFFPlgn" [03/09/2015 09:44] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{22119944-ED35-4ab1-910B-E619EA06A115}"="C:\Program Files (x86)\Siber Systems\AI RoboForm\Firefox\roboform.xpi" [28/08/2015 22:50] ==== Firefox Extensions ====================== ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\Mozilla\Firefox\Profiles\ys5vlsb1.default - Clickamp;Clean - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\ys5vlsb1.default\extensions\clickclean@hotcleaner.com - Clickamp;Clean - %ProfilePath%\extensions\clickclean@hotcleaner.com - Belgium eID - %ProfilePath%\extensions\belgiumeid@eid.belgium.be.xpi - Google Translator for Firefox - %ProfilePath%\extensions\translator@zoli.bod.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\Thunderbird\Profiles\ksyv81rp.default - Lightning - C:\Users\Gebruiker\AppData\Roaming\Thunderbird\Profiles\ksyv81rp.default\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103} - Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103} - Allow Empty Subject - %ProfilePath%\extensions\{59f0fe53-cd29-49fe-8ae3-2ad2fa7f1c46}.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\TomTom\HOME\Profiles\zu7qqgjm.default - Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\ys5vlsb1.default EC55112EDB2CE5BC2BFCACDB9C2150F4 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll - Shockwave Flash ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions cjabmdjcfcfdmffimndhafhblfmpjdpe - C:\Program Files (x86)\Norton 360\Engine\22.5.2.15\Exts\Chrome.crx[10/07/2015 06:03] iikflkcanblccfahdhdonehdalibjnif - No path found[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hln.be/hln/nl/1/home/actua/index.dhtml" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hln.be/hln/nl/1/home/actua/index.dhtml" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {93729DE3-FBAF-4856-9464-81EC9E89AA8A} Google Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TEUA;" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif deleted successfully ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Gebruiker\AppData\Local\Mozilla\Firefox\Profiles\ys5vlsb1.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=161 folders=88 156312264 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\DefaultAppPool\AppData\Local\Temp emptied successfully C:\Users\DefaultAppPool.IIS APPPOOL\AppData\Local\Temp emptied successfully C:\Users\Gebruiker\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on do 03/09/2015 at 10:43:33,40 ======================