corbu

Lid

Bekijk profiel Bekijk hun activiteit

Items
9
Registratiedatum
25 maart 2015
Laatst bezocht
9 augustus 2015

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door corbu

Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 08-April-2015 Tool run by anneke on wo 22-04-2015 at 9:29:28,34. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anneke Saariste\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2015-03-26-140957.log 109493 bytes C:\zoek-results2015-03-30-143337.log 49410 bytes C:\zoek-results2015-03-31-074159.log 34524 bytes C:\zoek-results2015-04-01-082303.log 26251 bytes C:\zoek-results2015-04-01-121623.log 18641 bytes C:\zoek-results2015-04-02-074737.log 1519 bytes C:\zoek-results2015-04-21-135928.log 17781 bytes ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Internet Explorer\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}] "FaviconPath"=- ==== C:\zoek_backup content ====================== C:\zoek_backup (files=13032 folders=422 1488854213 bytes) ==== EOF on wo 22-04-2015 at 9:30:34,63 ======================
- 22 april 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 08-April-2015 Tool run by anneke on di 21-04-2015 at 15:56:42,66. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anneke Saariste\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2015-03-26-140957.log 109493 bytes C:\zoek-results2015-03-30-143337.log 49410 bytes C:\zoek-results2015-03-31-074159.log 34524 bytes C:\zoek-results2015-04-01-082303.log 26251 bytes C:\zoek-results2015-04-01-121623.log 18641 bytes C:\zoek-results2015-04-02-074737.log 1519 bytes ==== Folders Found ====================== 2015-03-30 14:24:43 2015-03-30 14:24:43 -------- d---a-w- C:\zoek_backup\C_Program Files_Common Files_Lavasoft 2015-03-30 14:24:06 2015-03-30 14:24:06 -------- d---a-w- C:\zoek_backup\C_Program Files_Lavasoft 2015-03-30 14:24:43 2015-03-30 14:24:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Lavasoft 2015-03-30 14:24:48 2015-03-30 14:24:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Microsoft_Windows_Start Menu_Programs_Lavasoft 2015-03-26 13:59:29 2015-03-26 13:59:29 -------- d---a-w- C:\zoek_backup\C_ProgramData_Microsoft_Windows_Start Menu_Programs_lavasoft_WebCompanion 2015-03-26 13:57:18 2015-03-26 13:57:19 -------- d---a-w- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion 2015-03-26 13:58:03 2015-03-26 13:59:33 -------- d---a-w- C:\zoek_backup\C_PROGRA~3_Lavasoft_Web Companion 2015-03-30 14:24:48 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Lavasoft 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Microsoft_Windows_Start Menu_Programs_Lavasoft 2015-03-26 13:58:05 2015-03-26 13:58:05 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Local_Lavasoft_WebCompanion.exe_Url_siq0lwf3tzgxp2khfkllybk3idtbehng 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_Lavasoft 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_LavasoftStatistics ==== Files Found ====================== --- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Local_Lavasoft_AdBlockApprovedList.txt.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 0 Created time: 2015-03-26 13:59:30 Modified time: 2015-02-16 10:34:00 MD5: D41D8CD98F00B204E9800998ECF8427E SHA1: DA39A3EE5E6B4B0D3255BFEF95601890AFD80709 --- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_Microsoft_Windows_Recent_LavasoftTcpService.log.lnk.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 789 Created time: 2015-03-30 14:24:49 Modified time: 2015-03-10 21:39:59 MD5: F7006AE0DC3868AC5AFBCB45D19EAF53 SHA1: ED1B7808C2B28BA77C9EE651D7DCA90525848FEF --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpService.dll.vir --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.dll Copyright: Original Filename: File type: ----a-w- File size: 332216 Created time: 2015-03-26 13:59:31 Modified time: 2015-01-23 05:39:52 MD5: 71D311C224FF8690D7CF7C2BA7219009 SHA1: 4E625E1536AE21EF16121F600E6D2CD519A78F88 --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpService.ini.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 5160 Created time: 2015-03-26 13:59:31 Modified time: 2015-02-16 10:33:22 MD5: 67FACE597B10A793F34C43CC7761FB77 SHA1: E563A81D6C98AE857284A791F2E40C30340E8DAA --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpServiceOff.ini.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 2856 Created time: 2015-03-26 13:59:31 Modified time: 2015-02-16 10:33:22 MD5: B0DC5D5E8F120E2BC1AC29EF2855F4C4 SHA1: 34EC659DAA9165E9B0A21BA9DED54EE299A88AE8 --- C:\zoek_backup\C_Program Files_Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\extern\Lavasoft.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 2246 Created time: 2015-03-30 14:24:42 Modified time: 2014-10-09 09:09:26 MD5: 878B2CB9072ED6EB61B22EE175B176B2 SHA1: 7203DCBE920894D32F48DA98C1BF1B119469F585 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Interop.LavasoftTcpServiceLib.dll --- Company: File Description: File Version: 1.0.0.0 Product Name: Assembly imported from type library 'LavasoftTcpServiceLib'. Copyright: Original Filename: Interop.LavasoftTcpServiceLib.dll File type: ----a-w- File size: 51552 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:20 MD5: C2B92B80D2E9169E4F349D28C9C7FCD5 SHA1: 9C061721C85BC454FB567CE3BF74756D264CB95E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.AdAware.dll --- Company: File Description: AdAware File Version: 1.0.0.0 Product Name: AdAware Copyright: Copyright © 2014 Original Filename: Lavasoft.AdAware.dll File type: ----a-w- File size: 13128 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:22 MD5: 9DE5ECCAD0A310D8C405F7D41569D6C3 SHA1: 452D8D577C2A1A77DA5291A210C9A71501EE3777 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.adblocker.dll --- Company: File Description: Lavasoft.adblocker File Version: 1.0.0.0 Product Name: Lavasoft.adblocker Copyright: Copyright © 2014 Original Filename: Lavasoft.adblocker.dll File type: ----a-w- File size: 94536 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:34 MD5: F6BB060C019BB44D95205FF132502E28 SHA1: 4951CA0A62AD8FA9766A9B1A6FF33ABDEB6A62C7 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Automation.dll --- Company: File Description: Lavasoft.Automation File Version: 1.0.0.0 Product Name: Automation Copyright: Copyright © 2014 Original Filename: Lavasoft.Automation.dll File type: ----a-w- File size: 18256 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:24 MD5: AB06C18DDB6470BAA2500C02CBDB8F87 SHA1: 39EA2E637F53C1F19FD7EA9DF65D73F3282A70FC --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.CSharp.Utilities.dll --- Company: File Description: Lavasoft.CSharp.Utilities File Version: 1.0.5501.11593 Product Name: Lavasoft.CSharp.Utilities Copyright: Copyright © 2012 Original Filename: Lavasoft.CSharp.Utilities.dll File type: ----a-w- File size: 39256 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:24 MD5: 856DB616E46E6017A0DF6EE635D0158D SHA1: 94C8C58CA7B0EB9CA92A3BE6C80EA52E46613DD3 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.IEController.dll --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 172368 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:26 MD5: 7F279F299B651B87C6E7C31101746D09 SHA1: CF6DF67ABE8969526C2CCF7A89D8D497D1589260 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.PUP.Management.dll --- Company: File Description: Lavasoft.PUP.Management File Version: 1.0.0.0 Product Name: Lavasoft.PUP.Management Copyright: Copyright © 2014 Original Filename: Lavasoft.PUP.Management.dll File type: ----a-w- File size: 119128 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:22 MD5: E6DFDFA58F89273DBDCEF558F674BD26 SHA1: 0149A452E58957600BF9CE078F6D06347962067F --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Business.dll --- Company: File Description: SearchProtect.Business File Version: 1.0.0.0 Product Name: SearchProtect.Business Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Business.dll File type: ----a-w- File size: 174440 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:28 MD5: 74B68CFBB976710DE46B920A86219C89 SHA1: EF4ACA78A98DFF1B652936836EBED90C60924F88 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Business.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 755 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:36 MD5: C65A69188413E28741FB6DF9F45C024C SHA1: E92ED6DA52264214A74DA46AC12FE1928134DBD6 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll --- Company: File Description: SearchProtect.Repositories File Version: 1.0.0.0 Product Name: SearchProtect.Repositories Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Repositories.dll File type: ----a-w- File size: 33136 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:28 MD5: E15617F9C04B9C7D7B515AF9582B1B64 SHA1: CAA0FBA0C5F7A628858412ADE15FA1635DEB17C9 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 80 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:38 MD5: A286796695995884F4087756F92422D4 SHA1: 1EC84A362E28A5D6B0D01DB8430339CDD3FF5B2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Service.Logger.dll --- Company: File Description: ServiceLogger File Version: 1.0.0.0 Product Name: ServiceLogger Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Service.Logger.dll File type: ----a-w- File size: 12144 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:30 MD5: F2EBFD3ABA19AD53B4B4088FFED7EEB0 SHA1: CD5B4DC0D7A44C4BBE26A26CD742D8C0EEAB6B76 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WcfService.dll --- Company: File Description: SPWcfLib File Version: 1.0.0.0 Product Name: SPWcfLib Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.WcfService.dll File type: ----a-w- File size: 32616 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:30 MD5: 97582CBC82233733C1D3D6764B97298E SHA1: A52BF0FC3E53EAAA123E4317A775CB7A93767C99 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WinService.exe --- Company: File Description: SPWindowsService File Version: 1.0.0.0 Product Name: SPWindowsService Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.WinService.exe File type: ----a-w- File size: 15208 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:32 MD5: DA3827D45021462B8328337221EB357E SHA1: 569296554792CA30BA77751214444CBF8020D340 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WinService.exe.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 1574 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:38 MD5: 519F1D65E6F64833E4E8B35C2C5C0743 SHA1: A9913D8FE3241AE66BE2D71107A0BC5702A5E75D --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SysInfo.dll --- Company: File Description: Lavasoft.SysInfo File Version: 1.0.0.0 Product Name: Lavasoft.SysInfo Copyright: Copyright © 2014 Original Filename: Lavasoft.SysInfo.dll File type: ----a-w- File size: 65352 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:24 MD5: DAEA309B60CDF7EFA75A85B3AE1C6D56 SHA1: 5E37C519DD916F0406CF49D809B0C788E54DEB5C --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.dll --- Company: File Description: Utils File Version: 1.0.0.0 Product Name: Utils Copyright: Copyright © 2014 Original Filename: Lavasoft.Utils.dll File type: ----a-w- File size: 72000 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:34 MD5: 72886E4BD30DDD9D12284A5CA2921BAC SHA1: D4C7AC0A9F072D91FEA3AD49ADB60160CE1DEDF6 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.SqlLite.dll --- Company: File Description: Utils.SqlLite File Version: 1.0.0.0 Product Name: Utils.SqlLite Copyright: Copyright © 2014 Original Filename: Lavasoft.Utils.SqlLite.dll File type: ----a-w- File size: 15696 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:32 MD5: 41C79A4C05B023B22281C2F4DFD63BD1 SHA1: BA2AD8FCB538B56C4FC1E2B3A1443437C7EF1A2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.SqlLite.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 80 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:28 MD5: A286796695995884F4087756F92422D4 SHA1: 1EC84A362E28A5D6B0D01DB8430339CDD3FF5B2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftLSPInstaller.exe Copyright: Original Filename: File type: ----a-w- File size: 291032 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:50 MD5: 9BFF17A104CC9F301DDE5C9B121F6C35 SHA1: E193C8B0AD69D2DEE8310DCDED1BC1428462909F --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller.ini --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 116 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:34 MD5: 1B97D004C654307E875388012D0292DE SHA1: 148C8DF905EC0520B6A7651F39E655F3F045E4F8 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller64.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftLSPInstaller64.exe Copyright: Original Filename: File type: ----a-w- File size: 335056 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:52 MD5: 0380853114708FF97B3FC98BAA39C82A SHA1: 647FC5071B12CA267088127731A8B35693FF47E4 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.dll Copyright: Original Filename: File type: ----a-w- File size: 332216 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:52 MD5: 71D311C224FF8690D7CF7C2BA7219009 SHA1: 4E625E1536AE21EF16121F600E6D2CD519A78F88 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.exe Copyright: Original Filename: File type: ----a-w- File size: 1364392 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:54 MD5: 9BE23D81CE76E1DB0B5BF4E4E7359307 SHA1: 24CB6E53828254CF93043B00B53A4DA4F57D9325 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.tlb --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 51660 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:34 MD5: 04ECAE4E4F9D8DF9A235A9ACD5CFA74A SHA1: 7AB3AD7296ABFD1B5851E6596D01175CD994A91A --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService64.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService64.dll Copyright: Original Filename: File type: ----a-w- File size: 378832 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:54 MD5: 9E324D1774D1D2FC656B04523E20C456 SHA1: 0A424791F99F9B1D1406511CE630E1B51832DDE7 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpServiceCert.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpServiceCert.dll Copyright: Copyright © 2013 Original Filename: File type: ----a-w- File size: 190712 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:56 MD5: AAAC84812CA437A9FF7C715D372F67CF SHA1: 6FFC2FF6A8CBB70397AAA8DF7D4CB71B65CC21B8 ==== Registry Search Results for "lavasoft" ====================== [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Internet Explorer\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}] "FaviconPath"="C:\\ProgramData\\Lavasoft\\Web Companion\\Icons\\google.ico" ==== C:\zoek_backup content ====================== C:\zoek_backup (files=13032 folders=422 1488854213 bytes) ==== EOF on di 21-04-2015 at 15:59:28,76 ======================
- 21 april 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 31-March-2015 Tool run by anneke on do 02-04-2015 at 9:46:46,85. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anneke Saariste\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2015-03-26-140957.log 109493 bytes C:\zoek-results2015-03-30-143337.log 49410 bytes C:\zoek-results2015-03-31-074159.log 34524 bytes C:\zoek-results2015-04-01-082303.log 26251 bytes C:\zoek-results2015-04-01-121623.log 18641 bytes ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\InProcServer32] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|zh-Hans|WebCompanion.resources.dll] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WinSock2\Parameters\AppId_Catalog\27D3E74E] "AppFullPath"=- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\27D3E74E] "AppFullPath"=- [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\ATI\ACE\Settings\Graphics\PowerXpress\Px4.0\ProfilelessAppList\3] "Filepath"=- Explorer\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}] "FaviconPath"=- ==== C:\zoek_backup content ====================== C:\zoek_backup (files=13032 folders=422 1488854213 bytes) ==== EOF on do 02-04-2015 at 9:47:37,91 ======================
- 2 april 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 31-March-2015 Tool run by anneke on wo 01-04-2015 at 14:13:11,77. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anneke Saariste\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2015-03-26-140957.log 109493 bytes C:\zoek-results2015-03-30-143337.log 49410 bytes C:\zoek-results2015-03-31-074159.log 34524 bytes C:\zoek-results2015-04-01-082303.log 26251 bytes ==== Folders Found ====================== 2015-03-30 14:24:43 2015-03-30 14:24:43 -------- d---a-w- C:\zoek_backup\C_Program Files_Common Files_Lavasoft 2015-03-30 14:24:06 2015-03-30 14:24:06 -------- d---a-w- C:\zoek_backup\C_Program Files_Lavasoft 2015-03-30 14:24:43 2015-03-30 14:24:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Lavasoft 2015-03-30 14:24:48 2015-03-30 14:24:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Microsoft_Windows_Start Menu_Programs_Lavasoft 2015-03-26 13:59:29 2015-03-26 13:59:29 -------- d---a-w- C:\zoek_backup\C_ProgramData_Microsoft_Windows_Start Menu_Programs_lavasoft_WebCompanion 2015-03-26 13:57:18 2015-03-26 13:57:19 -------- d---a-w- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion 2015-03-26 13:58:03 2015-03-26 13:59:33 -------- d---a-w- C:\zoek_backup\C_PROGRA~3_Lavasoft_Web Companion 2015-03-30 14:24:48 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Lavasoft 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Microsoft_Windows_Start Menu_Programs_Lavasoft 2015-03-26 13:58:05 2015-03-26 13:58:05 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Local_Lavasoft_WebCompanion.exe_Url_siq0lwf3tzgxp2khfkllybk3idtbehng 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_Lavasoft 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_LavasoftStatistics ==== Files Found ====================== --- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Local_Lavasoft_AdBlockApprovedList.txt.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 0 Created time: 2015-03-26 13:59:30 Modified time: 2015-02-16 10:34:00 MD5: D41D8CD98F00B204E9800998ECF8427E SHA1: DA39A3EE5E6B4B0D3255BFEF95601890AFD80709 --- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_Microsoft_Windows_Recent_LavasoftTcpService.log.lnk.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 789 Created time: 2015-03-30 14:24:49 Modified time: 2015-03-10 21:39:59 MD5: F7006AE0DC3868AC5AFBCB45D19EAF53 SHA1: ED1B7808C2B28BA77C9EE651D7DCA90525848FEF --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpService.dll.vir --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.dll Copyright: Original Filename: File type: ----a-w- File size: 332216 Created time: 2015-03-26 13:59:31 Modified time: 2015-01-23 05:39:52 MD5: 71D311C224FF8690D7CF7C2BA7219009 SHA1: 4E625E1536AE21EF16121F600E6D2CD519A78F88 --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpService.ini.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 5160 Created time: 2015-03-26 13:59:31 Modified time: 2015-02-16 10:33:22 MD5: 67FACE597B10A793F34C43CC7761FB77 SHA1: E563A81D6C98AE857284A791F2E40C30340E8DAA --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpServiceOff.ini.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 2856 Created time: 2015-03-26 13:59:31 Modified time: 2015-02-16 10:33:22 MD5: B0DC5D5E8F120E2BC1AC29EF2855F4C4 SHA1: 34EC659DAA9165E9B0A21BA9DED54EE299A88AE8 --- C:\zoek_backup\C_Program Files_Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\extern\Lavasoft.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 2246 Created time: 2015-03-30 14:24:42 Modified time: 2014-10-09 09:09:26 MD5: 878B2CB9072ED6EB61B22EE175B176B2 SHA1: 7203DCBE920894D32F48DA98C1BF1B119469F585 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Interop.LavasoftTcpServiceLib.dll --- Company: File Description: File Version: 1.0.0.0 Product Name: Assembly imported from type library 'LavasoftTcpServiceLib'. Copyright: Original Filename: Interop.LavasoftTcpServiceLib.dll File type: ----a-w- File size: 51552 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:20 MD5: C2B92B80D2E9169E4F349D28C9C7FCD5 SHA1: 9C061721C85BC454FB567CE3BF74756D264CB95E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.AdAware.dll --- Company: File Description: AdAware File Version: 1.0.0.0 Product Name: AdAware Copyright: Copyright © 2014 Original Filename: Lavasoft.AdAware.dll File type: ----a-w- File size: 13128 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:22 MD5: 9DE5ECCAD0A310D8C405F7D41569D6C3 SHA1: 452D8D577C2A1A77DA5291A210C9A71501EE3777 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.adblocker.dll --- Company: File Description: Lavasoft.adblocker File Version: 1.0.0.0 Product Name: Lavasoft.adblocker Copyright: Copyright © 2014 Original Filename: Lavasoft.adblocker.dll File type: ----a-w- File size: 94536 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:34 MD5: F6BB060C019BB44D95205FF132502E28 SHA1: 4951CA0A62AD8FA9766A9B1A6FF33ABDEB6A62C7 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Automation.dll --- Company: File Description: Lavasoft.Automation File Version: 1.0.0.0 Product Name: Automation Copyright: Copyright © 2014 Original Filename: Lavasoft.Automation.dll File type: ----a-w- File size: 18256 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:24 MD5: AB06C18DDB6470BAA2500C02CBDB8F87 SHA1: 39EA2E637F53C1F19FD7EA9DF65D73F3282A70FC --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.CSharp.Utilities.dll --- Company: File Description: Lavasoft.CSharp.Utilities File Version: 1.0.5501.11593 Product Name: Lavasoft.CSharp.Utilities Copyright: Copyright © 2012 Original Filename: Lavasoft.CSharp.Utilities.dll File type: ----a-w- File size: 39256 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:24 MD5: 856DB616E46E6017A0DF6EE635D0158D SHA1: 94C8C58CA7B0EB9CA92A3BE6C80EA52E46613DD3 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.IEController.dll --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 172368 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:26 MD5: 7F279F299B651B87C6E7C31101746D09 SHA1: CF6DF67ABE8969526C2CCF7A89D8D497D1589260 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.PUP.Management.dll --- Company: File Description: Lavasoft.PUP.Management File Version: 1.0.0.0 Product Name: Lavasoft.PUP.Management Copyright: Copyright © 2014 Original Filename: Lavasoft.PUP.Management.dll File type: ----a-w- File size: 119128 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:22 MD5: E6DFDFA58F89273DBDCEF558F674BD26 SHA1: 0149A452E58957600BF9CE078F6D06347962067F --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Business.dll --- Company: File Description: SearchProtect.Business File Version: 1.0.0.0 Product Name: SearchProtect.Business Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Business.dll File type: ----a-w- File size: 174440 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:28 MD5: 74B68CFBB976710DE46B920A86219C89 SHA1: EF4ACA78A98DFF1B652936836EBED90C60924F88 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Business.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 755 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:36 MD5: C65A69188413E28741FB6DF9F45C024C SHA1: E92ED6DA52264214A74DA46AC12FE1928134DBD6 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll --- Company: File Description: SearchProtect.Repositories File Version: 1.0.0.0 Product Name: SearchProtect.Repositories Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Repositories.dll File type: ----a-w- File size: 33136 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:28 MD5: E15617F9C04B9C7D7B515AF9582B1B64 SHA1: CAA0FBA0C5F7A628858412ADE15FA1635DEB17C9 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 80 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:38 MD5: A286796695995884F4087756F92422D4 SHA1: 1EC84A362E28A5D6B0D01DB8430339CDD3FF5B2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Service.Logger.dll --- Company: File Description: ServiceLogger File Version: 1.0.0.0 Product Name: ServiceLogger Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Service.Logger.dll File type: ----a-w- File size: 12144 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:30 MD5: F2EBFD3ABA19AD53B4B4088FFED7EEB0 SHA1: CD5B4DC0D7A44C4BBE26A26CD742D8C0EEAB6B76 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WcfService.dll --- Company: File Description: SPWcfLib File Version: 1.0.0.0 Product Name: SPWcfLib Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.WcfService.dll File type: ----a-w- File size: 32616 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:30 MD5: 97582CBC82233733C1D3D6764B97298E SHA1: A52BF0FC3E53EAAA123E4317A775CB7A93767C99 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WinService.exe --- Company: File Description: SPWindowsService File Version: 1.0.0.0 Product Name: SPWindowsService Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.WinService.exe File type: ----a-w- File size: 15208 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:32 MD5: DA3827D45021462B8328337221EB357E SHA1: 569296554792CA30BA77751214444CBF8020D340 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WinService.exe.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 1574 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:38 MD5: 519F1D65E6F64833E4E8B35C2C5C0743 SHA1: A9913D8FE3241AE66BE2D71107A0BC5702A5E75D --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SysInfo.dll --- Company: File Description: Lavasoft.SysInfo File Version: 1.0.0.0 Product Name: Lavasoft.SysInfo Copyright: Copyright © 2014 Original Filename: Lavasoft.SysInfo.dll File type: ----a-w- File size: 65352 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:24 MD5: DAEA309B60CDF7EFA75A85B3AE1C6D56 SHA1: 5E37C519DD916F0406CF49D809B0C788E54DEB5C --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.dll --- Company: File Description: Utils File Version: 1.0.0.0 Product Name: Utils Copyright: Copyright © 2014 Original Filename: Lavasoft.Utils.dll File type: ----a-w- File size: 72000 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:34 MD5: 72886E4BD30DDD9D12284A5CA2921BAC SHA1: D4C7AC0A9F072D91FEA3AD49ADB60160CE1DEDF6 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.SqlLite.dll --- Company: File Description: Utils.SqlLite File Version: 1.0.0.0 Product Name: Utils.SqlLite Copyright: Copyright © 2014 Original Filename: Lavasoft.Utils.SqlLite.dll File type: ----a-w- File size: 15696 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:32 MD5: 41C79A4C05B023B22281C2F4DFD63BD1 SHA1: BA2AD8FCB538B56C4FC1E2B3A1443437C7EF1A2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.SqlLite.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 80 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:28 MD5: A286796695995884F4087756F92422D4 SHA1: 1EC84A362E28A5D6B0D01DB8430339CDD3FF5B2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftLSPInstaller.exe Copyright: Original Filename: File type: ----a-w- File size: 291032 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:50 MD5: 9BFF17A104CC9F301DDE5C9B121F6C35 SHA1: E193C8B0AD69D2DEE8310DCDED1BC1428462909F --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller.ini --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 116 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:34 MD5: 1B97D004C654307E875388012D0292DE SHA1: 148C8DF905EC0520B6A7651F39E655F3F045E4F8 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller64.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftLSPInstaller64.exe Copyright: Original Filename: File type: ----a-w- File size: 335056 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:52 MD5: 0380853114708FF97B3FC98BAA39C82A SHA1: 647FC5071B12CA267088127731A8B35693FF47E4 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.dll Copyright: Original Filename: File type: ----a-w- File size: 332216 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:52 MD5: 71D311C224FF8690D7CF7C2BA7219009 SHA1: 4E625E1536AE21EF16121F600E6D2CD519A78F88 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.exe Copyright: Original Filename: File type: ----a-w- File size: 1364392 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:54 MD5: 9BE23D81CE76E1DB0B5BF4E4E7359307 SHA1: 24CB6E53828254CF93043B00B53A4DA4F57D9325 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.tlb --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 51660 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:34 MD5: 04ECAE4E4F9D8DF9A235A9ACD5CFA74A SHA1: 7AB3AD7296ABFD1B5851E6596D01175CD994A91A --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService64.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService64.dll Copyright: Original Filename: File type: ----a-w- File size: 378832 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:54 MD5: 9E324D1774D1D2FC656B04523E20C456 SHA1: 0A424791F99F9B1D1406511CE630E1B51832DDE7 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpServiceCert.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpServiceCert.dll Copyright: Copyright © 2013 Original Filename: File type: ----a-w- File size: 190712 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:56 MD5: AAAC84812CA437A9FF7C715D372F67CF SHA1: 6FFC2FF6A8CBB70397AAA8DF7D4CB71B65CC21B8 ==== Registry Search Results for "lavasoft" ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\InProcServer32] @="C:\\PROGRA~1\\Lavasoft\\AD-AWA~1\\AD-AWA~1\\115202~1.729\\ADAWAR~1.DLL" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|zh-Hans|WebCompanion.resources.dll] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WinSock2\Parameters\AppId_Catalog\27D3E74E] "AppFullPath"="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService.exe" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\27D3E74E] "AppFullPath"="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService.exe" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\ATI\ACE\Settings\Graphics\PowerXpress\Px4.0\ProfilelessAppList\3] "Filepath"="\\device\\harddiskvolume4\\program files (x86)\\lavasoft\\web companion\\application\\webcompanion.exe" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Internet Explorer\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}] "FaviconPath"="C:\\ProgramData\\Lavasoft\\Web Companion\\Icons\\google.ico" ==== C:\zoek_backup content ====================== C:\zoek_backup (files=13032 folders=422 1488854213 bytes) ==== EOF on wo 01-04-2015 at 14:16:23,59 ====================== # AdwCleaner v4.200 - Logbestand aangemaakt 01/04/2015 op 13:56:14 # Laatste update 29/03/2015 door Xplode # Database : 2015-03-29.1 [server] # Besturingssysteem : Windows 8.1 (x64) # Gebruikersnaam : anneke - ANNEKE # Gestart vanuit : C:\Users\Anneke Saariste\Downloads\adwcleaner_4.200.exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** ***** [ Geplande taken ] ***** Taak Verwijderd : avayvaxvaa ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd Sleutel Verwijderd : HKCU\Software\Classes\pokki Sleutel Verwijderd : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com Sleutel Verwijderd : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect Sleutel Verwijderd : HKCU\Software\Mozilla\Extends Sleutel Verwijderd : HKLM\SOFTWARE\5664411b-a35b-db47-91d0-f3d49cefe777 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB} Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD} Sleutel Verwijderd : HKCU\Software\InstallCore Sleutel Verwijderd : HKCU\Software\Optimizer Pro Sleutel Verwijderd : HKCU\Software\Pokki Sleutel Verwijderd : HKCU\Software\Softonic Sleutel Verwijderd : HKCU\Software\WEDLMNGR Sleutel Verwijderd : HKCU\Software\Vosteran Browser Sleutel Verwijderd : HKCU\Software\Appscion Sleutel Verwijderd : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Sleutel Verwijderd : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\adawarebp Sleutel Verwijderd : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F} Sleutel Verwijderd : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Sleutel Verwijderd : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} Sleutel Verwijderd : HKLM\SOFTWARE\mystartsearchSoftware Sleutel Verwijderd : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} Sleutel Verwijderd : HKLM\SOFTWARE\IHProtect Sleutel Verwijderd : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\outlook-express.nl.softonic.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\vosteran.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wajam.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\windows-live-mail.nl.softonic.com Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.wajam.com ***** [ Webbrowsers ] ***** -\\ Internet Explorer v11.0.9600.17416 -\\ Mozilla Firefox v36.0.4 (x86 nl) -\\ Google Chrome v41.0.2272.101 [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Verwijderd [search Provider] : hxxp://vosteran.com/results.php?f=4&q={searchTerms}&a=vst_ggbc_15_05_ie&cd=2XzuyEtN2Y1L1Qzu0AtDtB0B0BzzyDyDyE0Dzy0B0FyC0EtCtN0D0Tzu0StCtCtBtCtN1L2XzutAtFyBtFtBtFtCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBtDyB0AyB0DtCtG0AzzyB0CtGyCyB0A0CtG0DyB0EtDtGtCyB0C0BzztA0F0FtD0EtCtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzyzzyByBzz0BtBzztGtB0AyB0BtGyE0EtDyCtG0AyC0CzztGtCyDtBtDyEyD0DtCtAyEyC0B2Q&cr=126731716&ir= [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Verwijderd [search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3331493&octid=EB_ORIGINAL_CTID&ISID=F60A67D6-1243-46B5-9BB6-49B302884526&SearchSource=58&CUI=&UM=8&UP=SP21C7A77C-A0BB-4853-99EA-8F78C63D796F&q={searchTerms}&SSPV= [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Verwijderd [search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts=1422373342&from=sien&uid=ST1000LM014-1EJ164-SSHD_W381XVR8&q={searchTerms} [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Verwijderd [search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts=1422373342&from=sien&uid=ST1000LM014-1EJ164-SSHD_W381XVR8&q={searchTerms} [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Verwijderd [Extension] : booedmolknjekdopkepjjeckmjkdpfgl [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Verwijderd [Extension] : flpcjncodpafbgdpnkljologafpionhb [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Verwijderd [Extension] : fcfenmboojpjinhpgggodefccipikbpd [C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Verwijderd [Default_Search_Provider_Data] : ************************* AdwCleaner[R0].txt - [30434 bytes] - [01/04/2015 13:53:37] AdwCleaner[s0].txt - [7532 bytes] - [01/04/2015 13:56:14] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [7591 bytes] ##########
- 1 april 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 31-March-2015 Tool run by anneke on wo 01-04-2015 at 10:18:23,79. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anneke Saariste\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2015-03-26-140957.log 109493 bytes C:\zoek-results2015-03-30-143337.log 49410 bytes C:\zoek-results2015-03-31-074159.log 34524 bytes ==== Running Processes ====================== C:\Windows\SysWOW64\tbaseprovisioning.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Anneke Saariste\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|de-DE|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.Automation.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.SearchProtect.WinService.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|ru-RU|WebCompanion.resources.dll] (x86)|Lavasoft|Web Companion|Application|zh-Hans|WebCompanion.resources.dll] [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs\53e6a9e6-d0ad-11e4-8283-0071cc6610a8] "key"=- [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs\53e6a9e6-d0ad-11e4-8283-0071cc6610a8] "name"=- [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs\53e6a9e6-d0ad-11e4-8283-0071cc6610a8] "folderPath"=- ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 11200 MB CPU Info: AMD A8-6410 APU with AMD Radeon R5 Graphics CPU Speed: 2054,2 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: AMD Radeon R5 Graphics | AMD Radeon R5 Graphics Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1536 X 864 - 32 bit Network: Network Present Network Adapters: Bluetooth-apparaat (Personal Area Network) #2 | Microsoft Wi-Fi Direct Virtual Adapter #3 | Realtek RTL8723BE 802.11 b/g/n Wi-Fi Adapter | Realtek PCIe FE Family Controller CD / DVD Drives: 1x (E: | ) E: hp DVDRW UJ8FBA Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 912,4GB | D: 18,1GB Hard Disks - Free: C: 833,7GB | D: 1,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | HPQOEM - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: Hewlett-Packard 2269 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Firefox 36.0.4 Internet Explorer Version: 11.0.9600.17690 Mozilla Firefox version: 36.0.4 (x86 nl) Google Chrome version: 41.0.2272.101 Adobe Reader version: 11.0.10.32 Flash Player version: 17.0.0.134 Shockwave Player version: 12.0.4r144 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-03-11 09:24:07 C10A66189DC8C090E7C84873EDCEBC88 2501368 ----a-w- C:\Windows\explorer.exe ====== C:\Users\ANNEKE~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-03-25 08:46:07 DD301FDB003F9B48EB7628A48BF32D23 677888 ----a-w- C:\Windows\Sysnative\generaltel.dll 2015-03-25 08:46:07 B770418F0FE64D3E986505A6285E91E9 943104 ----a-w- C:\Windows\Sysnative\appraiser.dll 2015-03-25 08:46:07 A871B38A544058768F082598412278DB 30720 ----a-w- C:\Windows\Sysnative\acmigration.dll 2015-03-25 08:46:06 BB86098B80BC4911B52F4C6095E82381 760320 ----a-w- C:\Windows\Sysnative\invagent.dll 2015-03-25 08:46:06 7F19365C2D9CD0AA5E517A96A22AE7C8 1107456 ----a-w- C:\Windows\Sysnative\aeinv.dll 2015-03-25 08:46:06 4BAF6A3B8DFDDCE080275B236F4B64BC 414208 ----a-w- C:\Windows\Sysnative\devinv.dll 2015-03-25 08:46:05 4E791CFE387374E8651493557B7F9993 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll ====== C:\Windows\Sysnative\drivers ===== 2015-03-11 12:50:58 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2015-03-11 09:25:30 D296D0F0DB2CD1504F90405603664493 264000 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys 2015-03-11 09:25:29 9F4DF0043965808973023A9B51A11136 114496 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys 2015-03-11 09:25:29 1751F6B031ADAC34724511057D2E455D 44024 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys 2015-03-11 09:24:34 6D3A2565E01B3E4B0F1BEDB0D4B00B3F 1113920 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys 2015-03-11 09:24:32 DC66AE45816614D2999DCD3834DCCC4E 167424 -c--a-w- C:\Windows\Sysnative\drivers\rfcomm.sys 2015-03-11 09:24:32 C37F4930795B771400C63C3C87E7A6C2 1198080 -c--a-w- C:\Windows\Sysnative\drivers\bthport.sys 2015-03-11 09:24:32 42F88B57CAE42FC10059C887B3FCFCEA 97792 -c--a-w- C:\Windows\Sysnative\drivers\hidbth.sys 2015-03-11 09:24:32 1104A31260CCF4318C884E0AE6C513BF 53248 -c--a-w- C:\Windows\Sysnative\drivers\bthenum.sys 2015-03-11 09:24:32 08EA90955AED2D959EE67DF6EDF0E2B6 81920 -c--a-w- C:\Windows\Sysnative\drivers\BTHUSB.SYS 2015-03-11 09:24:28 BC8A79C625568DDB7DCA49D0C2741A64 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Anneke Saariste\AppData\Roaming ====== 2015-03-30 14:36:20 445189A5622515F8A30810DBAE465BEE 20 ----a-w- C:\Users\Anneke Saariste\AppData\Roaming\appdataFr3.bin 2015-03-30 14:32:43 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2015-03-30 14:32:42 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2015-03-30 14:32:42 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2015-03-30 14:32:42 -------- d-----w- C:\Users\Anneke Saariste\AppData\Local\Temp 2015-03-08 15:30:35 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft ====== C:\Users\Anneke Saariste ====== 2015-03-31 08:23:36 -------- d-----w- C:\ProgramData\Bic 2015-03-31 07:13:50 -------- d-----r- C:\Windows\SysNative\config\systemprofile\Searches 2015-03-26 08:59:42 -------- d-----w- C:\Users\Anneke Saariste\Tracing ====== C: exe-files == 2015-03-26 09:11:22 2FBC280F4028CA1A5846403E1A893C2C 560456 ----a-w- C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\SwReporter\2.16.3\software_reporter_tool.exe 2015-03-26 08:59:42 18383A2379441406FC0BA47386508628 2645136 ----a-w- C:\Users\Anneke Saariste\AppData\Local\Microsoft\DefaultSetup\DefaultSetup.exe 2015-03-25 08:46:06 F22794B93C9FC55A934C1544F9600B43 70832 ----a-w- C:\Windows\System32\CompatTel\diagtrackrunner.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Power2GoExpress8"="C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Windows\CurrentVersion\RunOnce] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe" "HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Power2GoExpress8"="C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" "SimplePass"="C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe /hideui" "OPBHOBroker"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe" "OPBHOBrokerDesktop"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe" "AdAwareTray"="C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\AdAwareTray.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" ==== Startup Folders ====================== 2015-01-24 05:19:03 1280 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk 2015-01-28 15:35:24 2017 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16-03-2015 10:57] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27-01-2015 12:21] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- [undetermined Task] C:\Windows\tasks\HPCeeScheduleForanneke.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15-07-2011 04:43] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{36253A43-C08A-4B8E-BCC3-47782BA94CB9}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\YCMServiceAgent" [C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\ANNEKE~1\AppData\Roaming\Mozilla\Firefox\Profiles\o3lnh8lk.default user_pref("browser.startup.homepage", "https://www.google.nl/"); user_pref("browser.newtab.url", "https://www.google.nl/"); user_pref("browser.search.defaultenginename", "Google Default"); user_pref("browser.search.selectedEngine", "Bing"); ==== Firefox Extensions Registry ====================== [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "DSE"="true" [] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Anneke Saariste\AppData\Roaming\Mozilla\Firefox\Profiles\o3lnh8lk.default 0C0C5C207121C7A78414A8250E8E099A - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll - Shockwave for Director / Shockwave for Director 43583AB4DFD406F4C188342F41B1F91C - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll - Shockwave Flash ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.101 (Latest Stable version: 41.0.2272.101) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14-07-2014 19:22] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions fcfenmboojpjinhpgggodefccipikbpd - No path found[] Google Slides - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Yahoo Extension - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\acjpdakpjonkfmggcmanlhdakfkhloii Google Docs - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Wallet - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=nl-nl", "homepage": "http://www.google.com/", "startup_urls": [ "https://us-mg6.mail.yahoo.com/neo/launch?.rand=1lvaq94hkcot3" ] ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?pc=COSP&ptag=D021615-AE491287838034FE996F&form=CONBDF&conlogo=CT3331986&q={searchTerms}" {85A60A59-D3D8-468F-B598-FB4393789EF4} Google Url="https://www.google.nl/search?q={searchTerms}" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe" O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1427876155 O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Afbeelding knippen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 O8 - Extra context menu item: Kopieer selectie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 O8 - Extra context menu item: Kopieer URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 O8 - Extra context menu item: Nieuwe notitie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html O8 - Extra context menu item: Pagina opemen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: @oem14.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing) O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: tbaseprovisioning - Advanced Micro Devices, Inc. - C:\Windows\SysWOW64\tbaseprovisioning.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== C:\zoek_backup content ====================== C:\zoek_backup (files=13032 folders=422 1488854213 bytes) ==== EOF on wo 01-04-2015 at 10:23:03,14 ======================
- 1 april 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 29-March-2015 Tool run by anneke on di 31-03-2015 at 9:39:21,55. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anneke Saariste\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2015-03-26-140957.log 109493 bytes C:\zoek-results2015-03-30-143337.log 49410 bytes ==== Folders Found ====================== 2015-03-30 14:24:43 2015-03-30 14:24:43 -------- d---a-w- C:\zoek_backup\C_Program Files_Common Files_Lavasoft 2015-03-30 14:24:06 2015-03-30 14:24:06 -------- d---a-w- C:\zoek_backup\C_Program Files_Lavasoft 2015-03-30 14:24:43 2015-03-30 14:24:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Lavasoft 2015-03-30 14:24:48 2015-03-30 14:24:48 -------- d---a-w- C:\zoek_backup\C_ProgramData_Microsoft_Windows_Start Menu_Programs_Lavasoft 2015-03-26 13:59:29 2015-03-26 13:59:29 -------- d---a-w- C:\zoek_backup\C_ProgramData_Microsoft_Windows_Start Menu_Programs_lavasoft_WebCompanion 2015-03-26 13:57:18 2015-03-26 13:57:19 -------- d---a-w- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion 2015-03-26 13:58:03 2015-03-26 13:59:33 -------- d---a-w- C:\zoek_backup\C_PROGRA~3_Lavasoft_Web Companion 2015-03-30 14:24:48 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Lavasoft 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_All Users_Microsoft_Windows_Start Menu_Programs_Lavasoft 2015-03-26 13:58:05 2015-03-26 13:58:05 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Local_Lavasoft_WebCompanion.exe_Url_siq0lwf3tzgxp2khfkllybk3idtbehng 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_Lavasoft 2015-03-30 14:24:49 2015-03-30 14:24:49 -------- d---a-w- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_LavasoftStatistics ==== Files Found ====================== --- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Local_Lavasoft_AdBlockApprovedList.txt.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 0 Created time: 2015-03-26 13:59:30 Modified time: 2015-02-16 10:34:00 MD5: D41D8CD98F00B204E9800998ECF8427E SHA1: DA39A3EE5E6B4B0D3255BFEF95601890AFD80709 --- C:\zoek_backup\C_Users_Anneke Saariste_AppData_Roaming_Microsoft_Windows_Recent_LavasoftTcpService.log.lnk.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 789 Created time: 2015-03-30 14:24:49 Modified time: 2015-03-10 21:39:59 MD5: F7006AE0DC3868AC5AFBCB45D19EAF53 SHA1: ED1B7808C2B28BA77C9EE651D7DCA90525848FEF --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpService.dll.vir --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.dll Copyright: Original Filename: File type: ----a-w- File size: 332216 Created time: 2015-03-26 13:59:31 Modified time: 2015-01-23 05:39:52 MD5: 71D311C224FF8690D7CF7C2BA7219009 SHA1: 4E625E1536AE21EF16121F600E6D2CD519A78F88 --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpService.ini.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 5160 Created time: 2015-03-26 13:59:31 Modified time: 2015-02-16 10:33:22 MD5: 67FACE597B10A793F34C43CC7761FB77 SHA1: E563A81D6C98AE857284A791F2E40C30340E8DAA --- C:\zoek_backup\C_Windows_SysWOW64_LavasoftTcpServiceOff.ini.vir --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 2856 Created time: 2015-03-26 13:59:31 Modified time: 2015-02-16 10:33:22 MD5: B0DC5D5E8F120E2BC1AC29EF2855F4C4 SHA1: 34EC659DAA9165E9B0A21BA9DED54EE299A88AE8 --- C:\zoek_backup\C_Program Files_Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\extern\Lavasoft.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 2246 Created time: 2015-03-30 14:24:42 Modified time: 2014-10-09 09:09:26 MD5: 878B2CB9072ED6EB61B22EE175B176B2 SHA1: 7203DCBE920894D32F48DA98C1BF1B119469F585 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Interop.LavasoftTcpServiceLib.dll --- Company: File Description: File Version: 1.0.0.0 Product Name: Assembly imported from type library 'LavasoftTcpServiceLib'. Copyright: Original Filename: Interop.LavasoftTcpServiceLib.dll File type: ----a-w- File size: 51552 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:20 MD5: C2B92B80D2E9169E4F349D28C9C7FCD5 SHA1: 9C061721C85BC454FB567CE3BF74756D264CB95E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.AdAware.dll --- Company: File Description: AdAware File Version: 1.0.0.0 Product Name: AdAware Copyright: Copyright © 2014 Original Filename: Lavasoft.AdAware.dll File type: ----a-w- File size: 13128 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:22 MD5: 9DE5ECCAD0A310D8C405F7D41569D6C3 SHA1: 452D8D577C2A1A77DA5291A210C9A71501EE3777 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.adblocker.dll --- Company: File Description: Lavasoft.adblocker File Version: 1.0.0.0 Product Name: Lavasoft.adblocker Copyright: Copyright © 2014 Original Filename: Lavasoft.adblocker.dll File type: ----a-w- File size: 94536 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:34 MD5: F6BB060C019BB44D95205FF132502E28 SHA1: 4951CA0A62AD8FA9766A9B1A6FF33ABDEB6A62C7 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Automation.dll --- Company: File Description: Lavasoft.Automation File Version: 1.0.0.0 Product Name: Automation Copyright: Copyright © 2014 Original Filename: Lavasoft.Automation.dll File type: ----a-w- File size: 18256 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:24 MD5: AB06C18DDB6470BAA2500C02CBDB8F87 SHA1: 39EA2E637F53C1F19FD7EA9DF65D73F3282A70FC --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.CSharp.Utilities.dll --- Company: File Description: Lavasoft.CSharp.Utilities File Version: 1.0.5501.11593 Product Name: Lavasoft.CSharp.Utilities Copyright: Copyright © 2012 Original Filename: Lavasoft.CSharp.Utilities.dll File type: ----a-w- File size: 39256 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:24 MD5: 856DB616E46E6017A0DF6EE635D0158D SHA1: 94C8C58CA7B0EB9CA92A3BE6C80EA52E46613DD3 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.IEController.dll --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 172368 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:26 MD5: 7F279F299B651B87C6E7C31101746D09 SHA1: CF6DF67ABE8969526C2CCF7A89D8D497D1589260 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.PUP.Management.dll --- Company: File Description: Lavasoft.PUP.Management File Version: 1.0.0.0 Product Name: Lavasoft.PUP.Management Copyright: Copyright © 2014 Original Filename: Lavasoft.PUP.Management.dll File type: ----a-w- File size: 119128 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:22 MD5: E6DFDFA58F89273DBDCEF558F674BD26 SHA1: 0149A452E58957600BF9CE078F6D06347962067F --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Business.dll --- Company: File Description: SearchProtect.Business File Version: 1.0.0.0 Product Name: SearchProtect.Business Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Business.dll File type: ----a-w- File size: 174440 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:28 MD5: 74B68CFBB976710DE46B920A86219C89 SHA1: EF4ACA78A98DFF1B652936836EBED90C60924F88 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Business.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 755 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:36 MD5: C65A69188413E28741FB6DF9F45C024C SHA1: E92ED6DA52264214A74DA46AC12FE1928134DBD6 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll --- Company: File Description: SearchProtect.Repositories File Version: 1.0.0.0 Product Name: SearchProtect.Repositories Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Repositories.dll File type: ----a-w- File size: 33136 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:28 MD5: E15617F9C04B9C7D7B515AF9582B1B64 SHA1: CAA0FBA0C5F7A628858412ADE15FA1635DEB17C9 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 80 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:38 MD5: A286796695995884F4087756F92422D4 SHA1: 1EC84A362E28A5D6B0D01DB8430339CDD3FF5B2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.Service.Logger.dll --- Company: File Description: ServiceLogger File Version: 1.0.0.0 Product Name: ServiceLogger Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.Service.Logger.dll File type: ----a-w- File size: 12144 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:30 MD5: F2EBFD3ABA19AD53B4B4088FFED7EEB0 SHA1: CD5B4DC0D7A44C4BBE26A26CD742D8C0EEAB6B76 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WcfService.dll --- Company: File Description: SPWcfLib File Version: 1.0.0.0 Product Name: SPWcfLib Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.WcfService.dll File type: ----a-w- File size: 32616 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:30 MD5: 97582CBC82233733C1D3D6764B97298E SHA1: A52BF0FC3E53EAAA123E4317A775CB7A93767C99 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WinService.exe --- Company: File Description: SPWindowsService File Version: 1.0.0.0 Product Name: SPWindowsService Copyright: Copyright © 2014 Original Filename: Lavasoft.SearchProtect.WinService.exe File type: ----a-w- File size: 15208 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:32 MD5: DA3827D45021462B8328337221EB357E SHA1: 569296554792CA30BA77751214444CBF8020D340 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SearchProtect.WinService.exe.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 1574 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:38 MD5: 519F1D65E6F64833E4E8B35C2C5C0743 SHA1: A9913D8FE3241AE66BE2D71107A0BC5702A5E75D --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.SysInfo.dll --- Company: File Description: Lavasoft.SysInfo File Version: 1.0.0.0 Product Name: Lavasoft.SysInfo Copyright: Copyright © 2014 Original Filename: Lavasoft.SysInfo.dll File type: ----a-w- File size: 65352 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:24 MD5: DAEA309B60CDF7EFA75A85B3AE1C6D56 SHA1: 5E37C519DD916F0406CF49D809B0C788E54DEB5C --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.dll --- Company: File Description: Utils File Version: 1.0.0.0 Product Name: Utils Copyright: Copyright © 2014 Original Filename: Lavasoft.Utils.dll File type: ----a-w- File size: 72000 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:34 MD5: 72886E4BD30DDD9D12284A5CA2921BAC SHA1: D4C7AC0A9F072D91FEA3AD49ADB60160CE1DEDF6 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.SqlLite.dll --- Company: File Description: Utils.SqlLite File Version: 1.0.0.0 Product Name: Utils.SqlLite Copyright: Copyright © 2014 Original Filename: Lavasoft.Utils.SqlLite.dll File type: ----a-w- File size: 15696 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:38:32 MD5: 41C79A4C05B023B22281C2F4DFD63BD1 SHA1: BA2AD8FCB538B56C4FC1E2B3A1443437C7EF1A2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\Application\Lavasoft.Utils.SqlLite.dll.config --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 80 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:28 MD5: A286796695995884F4087756F92422D4 SHA1: 1EC84A362E28A5D6B0D01DB8430339CDD3FF5B2E --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftLSPInstaller.exe Copyright: Original Filename: File type: ----a-w- File size: 291032 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:50 MD5: 9BFF17A104CC9F301DDE5C9B121F6C35 SHA1: E193C8B0AD69D2DEE8310DCDED1BC1428462909F --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller.ini --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 116 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:34 MD5: 1B97D004C654307E875388012D0292DE SHA1: 148C8DF905EC0520B6A7651F39E655F3F045E4F8 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftLSPInstaller64.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftLSPInstaller64.exe Copyright: Original Filename: File type: ----a-w- File size: 335056 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:52 MD5: 0380853114708FF97B3FC98BAA39C82A SHA1: 647FC5071B12CA267088127731A8B35693FF47E4 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.dll Copyright: Original Filename: File type: ----a-w- File size: 332216 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:52 MD5: 71D311C224FF8690D7CF7C2BA7219009 SHA1: 4E625E1536AE21EF16121F600E6D2CD519A78F88 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.exe --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService.exe Copyright: Original Filename: File type: ----a-w- File size: 1364392 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:54 MD5: 9BE23D81CE76E1DB0B5BF4E4E7359307 SHA1: 24CB6E53828254CF93043B00B53A4DA4F57D9325 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService.tlb --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File type: ----a-w- File size: 51660 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:25:34 MD5: 04ECAE4E4F9D8DF9A235A9ACD5CFA74A SHA1: 7AB3AD7296ABFD1B5851E6596D01175CD994A91A --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpService64.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpService64.dll Copyright: Original Filename: File type: ----a-w- File size: 378832 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:54 MD5: 9E324D1774D1D2FC656B04523E20C456 SHA1: 0A424791F99F9B1D1406511CE630E1B51832DDE7 --- C:\zoek_backup\C_PROGRA~2_Lavasoft_Web Companion\TcpService\2.3.1.4\LavasoftTcpServiceCert.dll --- Company: Lavasoft Limited File Description: File Version: 2.3.1.4 Product Name: LavasoftTcpServiceCert.dll Copyright: Copyright © 2013 Original Filename: File type: ----a-w- File size: 190712 Created time: 2015-03-26 13:57:19 Modified time: 2015-01-23 05:39:56 MD5: AAAC84812CA437A9FF7C715D372F67CF SHA1: 6FFC2FF6A8CBB70397AAA8DF7D4CB71B65CC21B8 ==== Registry Search Results for "lavasoft" ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files\\Common Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus Updater\\11.5.202.7299\\AdAwareWebInstaller.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\App.config"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\ICSharpCode.SharpZipLib.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Installer.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Interop.LavasoftTcpServiceLib.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Interop.SHDocVw.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.AdAware.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.Automation.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.CSharp.Utilities.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.IEController.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.Business.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.Business.dll.config"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.Repositories.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.Repositories.dll.config"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.Service.Logger.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.WcfService.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.WinService.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SearchProtect.WinService.exe.config"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.Utils.SqlLite.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.Utils.SqlLite.dll.config"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.Utils.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.adblocker.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Newtonsoft.Json.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\x86\\SQLite.Interop.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\System.Data.SQLite.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\WebCompanion.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\WebCompanion.exe.config"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\WebCompanionIcon.ico"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\WebCompanionIcon_Pro.ico"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\log4net.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\de-DE\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\en-US\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\es-ES\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\fr-CA\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\it-IT\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\ja-JP\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\pt-BR\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\ru-RU\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\tr-TR\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\zh-Hans\\WebCompanion.resources.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Interop.Shell32.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.PUP.Management.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\Application\\Lavasoft.SysInfo.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftLSPInstaller.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftLSPInstaller.ini"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftLSPInstaller64.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService.tlb"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService64.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpServiceCert.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\PCProxy.tlb"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\freebl3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\libnspr4.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\libplc4.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\libplds4.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\nss3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\nssckbi.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\nssdbm3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\nssutil3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\smime3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\softokn3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\sqlite3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\ssl3.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\bdnimbus.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\WSUtils.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\WSPack.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\WSLib.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\WSDNS.dll"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\AdAwareServiceHelper.exe"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\InProcServer32] @="C:\\PROGRA~1\\Lavasoft\\AD-AWA~1\\AD-AWA~1\\115202~1.729\\ADAWAR~1.DLL" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|de-DE|WebCompanion.resources.dll] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.Automation.dll] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.Automation.dll] "Lavasoft.Automation,Version=\"1.0.0.0\",Culture=\"neutral\",FileVersion=\"1.0.0.0\",ProcessorArchitecture=\"X86\""=hex(7):46,\ [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.SearchProtect.WinService.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.SearchProtect.WinService.exe] "Lavasoft.SearchProtect.WinService,Version=\"1.0.0.0\",Culture=\"neutral\",FileVersion=\"1.0.0.0\",ProcessorArchitecture=\"MSIL\""=hex(7):46,\ [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|ru-RU|WebCompanion.resources.dll] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|zh-Hans|WebCompanion.resources.dll] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WinSock2\Parameters\AppId_Catalog\27D3E74E] "AppFullPath"="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService.exe" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\27D3E74E] "AppFullPath"="C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.1.4\\LavasoftTcpService.exe" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\ATI\ACE\Settings\Graphics\PowerXpress\Px4.0\ProfilelessAppList\3] "Filepath"="\\device\\harddiskvolume4\\program files (x86)\\lavasoft\\web companion\\application\\webcompanion.exe" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] "FaviconPath"="C:\\ProgramData\\Lavasoft\\Web Companion\\Icons\\bing.ico" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Internet Explorer\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}] "FaviconPath"="C:\\ProgramData\\Lavasoft\\Web Companion\\Icons\\google.ico" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\AdAwareTray.exe"=hex:53,\ [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store] "C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.5.202.7299\\AdAwareDesktop.exe"=hex:53,\ [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store] "C:\\Program Files\\Common Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus Updater\\11.5.202.7299\\AdAwareUpdater.exe"=hex:53,\ [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs\53e6a9e6-d0ad-11e4-8283-0071cc6610a8] "key"="Lavasoft" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs\53e6a9e6-d0ad-11e4-8283-0071cc6610a8] "name"="Lavasoft" [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs\53e6a9e6-d0ad-11e4-8283-0071cc6610a8] "folderPath"="c:\\programdata\\microsoft\\windows\\start menu\\Programs\\Lavasoft" ==== C:\zoek_backup content ====================== C:\zoek_backup (files=13032 folders=422 1488854213 bytes) ==== EOF on di 31-03-2015 at 9:41:59,18 ======================
- 31 maart 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 29-March-2015 Tool run by anneke on ma 30-03-2015 at 16:05:54,40. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anneke Saariste\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-03-26-140957.log 109493 bytes ==== Empty Folders Check ====================== C:\PROGRA~2\Lavasoft deleted successfully C:\PROGRA~3\Bic deleted successfully C:\Users\Anneke Saariste\AppData\Local\Lavasoft deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Windows\SysWOW64\tbaseprovisioning.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Anneke Saariste\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LavasoftAdAwareService11 deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft] Antivirus] [-HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware Antivirus\11] Companion] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2CA2E1CC-2491-45BF-908D-7E7CE8DF3063}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8BC95771-8634-499F-9EA5-1498A2701C7A}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8BC95771-8634-499F-9EA5-1498A2701C7A}_WebCompanion] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\LavasoftTcpService.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\VersionIndependentProgID] Files (x86)|Lavasoft|Web Companion|Application|de-DE|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|en-US|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|es-ES|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|fr-CA|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|ICSharpCode.SharpZipLib.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Interop.LavasoftTcpServiceLib.dll] Companion|Application|Interop.LavasoftTcpServiceLib.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Interop.SHDocVw.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|it-IT|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|ja-JP|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.AdAware.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.adblocker.dll] Companion|Application|Lavasoft.Automation.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.CSharp.Utilities.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.SearchProtect.Business.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.SearchProtect.Repositories.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.SearchProtect.Service.Logger.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.SearchProtect.WcfService.dll] Companion|Application|Lavasoft.SearchProtect.WinService.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.Utils.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Lavasoft.Utils.SqlLite.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|log4net.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|Newtonsoft.Json.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|pt-BR|WebCompanion.resources.dll] Companion|Application|ru-RU|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|System.Data.SQLite.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|tr-TR|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Lavasoft|Web Companion|Application|WebCompanion.exe] Companion|Application|zh-Hans|WebCompanion.resources.dll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\CC1E2AC21942FB5409D8E7C78EFD0336] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CurVer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{CD6D67F4-E331-4F02-A773-FBA9F6EBF7F6}\1.0\0\win64] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{CD6D67F4-E331-4F02-A773-FBA9F6EBF7F6}\1.0\HELPDIR] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\0\win32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\HELPDIR] [-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\LavasoftAdAwareService11] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LavasoftAdAwareService11] Companion"=- [-HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs|lavasoft|ad-aware antivirus] [-HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs|lavasoft|ad-aware antivirus\53e6a9b9-d0ad-11e4-8283-0071cc6610a8] [-HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs|lavasoft|webcompanion] [-HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FileItems\c:|programdata|microsoft|windows|start menu|programs|lavasoft|webcompanion\53e6a9ba-d0ad-11e4-8283-0071cc6610a8] menu|programs\53e6a9e6-d0ad-11e4-8283-0071cc6610a8] [-HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs|lavasoft] [-HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Pokki\IndexCache\FolderItems\c:|programdata|microsoft|windows|start menu|programs|lavasoft\53e6a9bb-d0ad-11e4-8283-0071cc6610a8] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Web Companion"=- ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\LocalServer32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\ProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\VersionIndependentProgID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\LavasoftTcpService.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{CD6D67F4-E331-4F02-A773-FBA9F6EBF7F6}\1.0\0\win64] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{CD6D67F4-E331-4F02-A773-FBA9F6EBF7F6}\1.0\HELPDIR] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\0\win32] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\HELPDIR] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AdAwareTray"= ==== Batch Command(s) Run By Tool====================== Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Lavasoft not found C:\Program Files (x86)\Lavasoft not found C:\Users\Anneke Saariste\AppData\Local\Lavasoft not found C:\Users\Anneke Saariste\AppData\Roaming\1H1Q1V1N1N1S1R deleted C:\Program Files\Common Files\Lavasoft deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft deleted C:\Users\Anneke Saariste\AppData\Roaming\Lavasoft deleted C:\Users\Anneke Saariste\AppData\Roaming\LavasoftStatistics deleted C:\Users\Anneke Saariste\AppData\Roaming\appdataFr3.bin deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Windows\Syswow64\Lavasearch deleted "C:\Users\Anneke Saariste\AppData\Roaming\Microsoft\Windows\Recent\LavasoftTcpService.log.lnk" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\AdAwareTray.exe" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\AdAwareTrayDefaultSkin.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_chrono-vc100-mt-1_57.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_date_time-vc100-mt-1_57.dll" not deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_filesystem-vc100-mt-1_57.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_locale-vc100-mt-1_57.dll" not deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_system-vc100-mt-1_57.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_thread-vc100-mt-1_57.dll" not deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\DllStorage.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\htmlayout.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\HtmlFramework.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\Localization.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\msvcp100.dll" deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\msvcr100.dll" not deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\RCF.dll" deleted "C:\ProgramData\Lavasoft\Ad-Aware 11\Logs\20150330T132435.468116PID27452_AdAwareTray.log" not deleted "C:\Users\All Users\Lavasoft\Ad-Aware 11\Logs\20150330T132435.468116PID27452_AdAwareTray.log" not deleted "C:\Program Files\Lavasoft" not deleted "C:\ProgramData\Lavasoft" not deleted "C:\Users\All Users\Lavasoft" not deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus" not deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus" not deleted "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299" not deleted "C:\ProgramData\Lavasoft\Ad-Aware 11" not deleted "C:\ProgramData\Lavasoft\Ad-Aware 11\Logs" not deleted "C:\Users\All Users\Lavasoft\Ad-Aware 11" not deleted "C:\Users\All Users\Lavasoft\Ad-Aware 11\Logs" not deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 11200 MB CPU Info: AMD A8-6410 APU with AMD Radeon R5 Graphics CPU Speed: 2024,2 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: AMD Radeon R5 Graphics | AMD Radeon R5 Graphics Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1536 X 864 - 32 bit Network: Network Present Network Adapters: Bluetooth-apparaat (Personal Area Network) #2 | Microsoft Wi-Fi Direct Virtual Adapter #3 | Realtek RTL8723BE 802.11 b/g/n Wi-Fi Adapter | Realtek PCIe FE Family Controller CD / DVD Drives: 1x (E: | ) E: hp DVDRW UJ8FBA Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 912,4GB | D: 18,1GB Hard Disks - Free: C: 834,3GB | D: 1,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | HPQOEM - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: Hewlett-Packard 2269 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Ad-Aware Antivirus On-access scanning disabled (Outdated) Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Ad-Aware Antivirus disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Firewall: Ad-Aware Firewall disabled Default Browser: Firefox 36.0.1 Internet Explorer Version: 11.0.9600.17690 Mozilla Firefox version: 36.0.1 (x86 nl) Google Chrome version: 41.0.2272.101 Adobe Reader version: 11.0.10.32 Flash Player version: 17.0.0.134 Shockwave Player version: 12.0.4r144 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-03-11 09:24:07 C10A66189DC8C090E7C84873EDCEBC88 2501368 ----a-w- C:\Windows\explorer.exe ====== C:\Users\ANNEKE~1\AppData\Local\Temp ==== 2015-03-27 18:38:29 BF538FDA511AB9B21B6A0CB1FCDEF2DD 856888 ----a-w- C:\Users\Anneke Saariste\AppData\Local\Temp\HPWarrantyChecker\HPWarrantyCheck\HPWarrantyChecker.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-03-25 08:46:07 DD301FDB003F9B48EB7628A48BF32D23 677888 ----a-w- C:\Windows\Sysnative\generaltel.dll 2015-03-25 08:46:07 B770418F0FE64D3E986505A6285E91E9 943104 ----a-w- C:\Windows\Sysnative\appraiser.dll 2015-03-25 08:46:07 A871B38A544058768F082598412278DB 30720 ----a-w- C:\Windows\Sysnative\acmigration.dll 2015-03-25 08:46:06 BB86098B80BC4911B52F4C6095E82381 760320 ----a-w- C:\Windows\Sysnative\invagent.dll 2015-03-25 08:46:06 7F19365C2D9CD0AA5E517A96A22AE7C8 1107456 ----a-w- C:\Windows\Sysnative\aeinv.dll 2015-03-25 08:46:06 4BAF6A3B8DFDDCE080275B236F4B64BC 414208 ----a-w- C:\Windows\Sysnative\devinv.dll 2015-03-25 08:46:05 4E791CFE387374E8651493557B7F9993 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll ====== C:\Windows\Sysnative\drivers ===== 2015-03-11 12:50:58 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2015-03-11 09:25:30 D296D0F0DB2CD1504F90405603664493 264000 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys 2015-03-11 09:25:29 9F4DF0043965808973023A9B51A11136 114496 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys 2015-03-11 09:25:29 1751F6B031ADAC34724511057D2E455D 44024 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys 2015-03-11 09:24:34 6D3A2565E01B3E4B0F1BEDB0D4B00B3F 1113920 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys 2015-03-11 09:24:32 DC66AE45816614D2999DCD3834DCCC4E 167424 -c--a-w- C:\Windows\Sysnative\drivers\rfcomm.sys 2015-03-11 09:24:32 C37F4930795B771400C63C3C87E7A6C2 1198080 -c--a-w- C:\Windows\Sysnative\drivers\bthport.sys 2015-03-11 09:24:32 42F88B57CAE42FC10059C887B3FCFCEA 97792 -c--a-w- C:\Windows\Sysnative\drivers\hidbth.sys 2015-03-11 09:24:32 1104A31260CCF4318C884E0AE6C513BF 53248 -c--a-w- C:\Windows\Sysnative\drivers\bthenum.sys 2015-03-11 09:24:32 08EA90955AED2D959EE67DF6EDF0E2B6 81920 -c--a-w- C:\Windows\Sysnative\drivers\BTHUSB.SYS 2015-03-11 09:24:28 BC8A79C625568DDB7DCA49D0C2741A64 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Anneke Saariste\AppData\Roaming ====== 2015-03-26 14:08:33 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2015-03-26 14:08:33 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2015-03-26 14:08:33 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2015-03-26 14:08:32 -------- d-----w- C:\Users\Anneke Saariste\AppData\Local\Temp 2015-03-08 15:30:35 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft ====== C:\Users\Anneke Saariste ====== 2015-03-26 08:59:42 -------- d-----w- C:\Users\Anneke Saariste\Tracing ====== C: exe-files == 2015-03-27 18:38:29 BF538FDA511AB9B21B6A0CB1FCDEF2DD 856888 ----a-w- C:\Users\Anneke Saariste\AppData\Local\Temp\HPWarrantyChecker\HPWarrantyCheck\HPWarrantyChecker.exe 2015-03-26 09:11:22 2FBC280F4028CA1A5846403E1A893C2C 560456 ----a-w- C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\SwReporter\2.16.3\software_reporter_tool.exe 2015-03-26 08:59:42 18383A2379441406FC0BA47386508628 2645136 ----a-w- C:\Users\Anneke Saariste\AppData\Local\Microsoft\DefaultSetup\DefaultSetup.exe 2015-03-25 08:46:06 F22794B93C9FC55A934C1544F9600B43 70832 ----a-w- C:\Windows\System32\CompatTel\diagtrackrunner.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-585850754-2346500513-583478177-1002\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Power2GoExpress8"="C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe" "HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Power2GoExpress8"="C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" "SimplePass"="C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe /hideui" "OPBHOBroker"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe" "OPBHOBrokerDesktop"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe" "AdAwareTray"="C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\AdAwareTray.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe Update" ==== Startup Folders ====================== 2015-01-24 05:19:03 1280 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk 2015-01-28 15:35:24 2017 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16-03-2015 10:57] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27-01-2015 12:21] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- [undetermined Task] C:\Windows\tasks\HPCeeScheduleForanneke.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15-07-2011 04:43] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{36253A43-C08A-4B8E-BCC3-47782BA94CB9}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\YCMServiceAgent" [C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\ANNEKE~1\AppData\Roaming\Mozilla\Firefox\Profiles\o3lnh8lk.default user_pref("browser.startup.homepage", "https://www.google.nl/"); user_pref("browser.newtab.url", "https://www.google.nl/"); user_pref("browser.search.defaultenginename", "Google Default"); user_pref("browser.search.selectedEngine", "Bing"); ==== Firefox Extensions Registry ====================== [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "DSE"="true" [] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Anneke Saariste\AppData\Roaming\Mozilla\Firefox\Profiles\o3lnh8lk.default 0C0C5C207121C7A78414A8250E8E099A - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll - Shockwave for Director / Shockwave for Director 43583AB4DFD406F4C188342F41B1F91C - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll - Shockwave Flash ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.101 (Latest Stable version: 41.0.2272.101) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14-07-2014 19:22] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions fcfenmboojpjinhpgggodefccipikbpd - No path found[] Google Slides - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Yahoo Extension - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\acjpdakpjonkfmggcmanlhdakfkhloii Google Docs - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Wallet - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=nl-nl", "homepage": "http://www.google.com/", "startup_urls": [ "https://us-mg6.mail.yahoo.com/neo/launch?.rand=1lvaq94hkcot3" ] ==== Chromium Fix ====================== C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage deleted successfully C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage deleted successfully C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?pc=COSP&ptag=D021615-AE491287838034FE996F&form=CONBDF&conlogo=CT3331986&q={searchTerms}" {85A60A59-D3D8-468F-B598-FB4393789EF4} Google Url="https://www.google.nl/search?q={searchTerms}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Open Office Packages deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe" O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Afbeelding knippen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 O8 - Extra context menu item: Kopieer selectie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 O8 - Extra context menu item: Kopieer URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 O8 - Extra context menu item: Nieuwe notitie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html O8 - Extra context menu item: Pagina opemen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: @oem14.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing) O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: tbaseprovisioning - Advanced Micro Devices, Inc. - C:\Windows\SysWOW64\tbaseprovisioning.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Anneke Saariste\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Anneke Saariste\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Anneke Saariste\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Anneke Saariste\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Anneke Saariste\AppData\Local\Mozilla\Firefox\Profiles\o3lnh8lk.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Anneke Saariste\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=13032 folders=422 1488854213 bytes) ==== Empty Temp Folders ====================== C:\Users\Anneke Saariste\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ANNEKE~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_date_time-vc100-mt-1_57.dll" not found "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_locale-vc100-mt-1_57.dll" not found "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\boost_thread-vc100-mt-1_57.dll" not found "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\msvcr100.dll" not found "C:\ProgramData\Lavasoft\Ad-Aware 11\Logs\20150330T132435.468116PID27452_AdAwareTray.log" deleted "C:\Users\All Users\Lavasoft\Ad-Aware 11\Logs\20150330T132435.468116PID27452_AdAwareTray.log" not found "C:\Program Files\Lavasoft" not found "C:\ProgramData\Lavasoft" deleted "C:\Users\All Users\Lavasoft" not found "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on ma 30-03-2015 at 16:33:37,07 ======================
- 30 maart 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu reageerde op corbu's topic in Archief Bestrijding malware & virussen

zoek-results.log zoek-results.log
- 27 maart 2015
- 18 antwoorden
Ad-aware van lavasoft verwijderen

corbu plaatste een topic in Archief Bestrijding malware & virussen

Hoe moet ik Ad-aware van lavasoft van mijn computer (8.1) verwijderen? De koninklijke weg werkt niet.
- 25 maart 2015
- 18 antwoorden

Inloggen

corbu

Items

Registratiedatum

Laatst bezocht

Inhoudstype

Profielen

Forums

Store

Alles dat geplaatst werd door corbu

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

Ad-aware van lavasoft verwijderen

OVER ONS

SITEMAP

Home

Info

Handleidingen & Tips

Activiteit

Belangrijke informatie