Zoek.exe v5.0.0.0 Updated 01-September-2015 Tool run by Gebruiker on do 03/09/2015 at 14:41:03,69. Microsoft Windows 8.1 Pro 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2015-09-02-111045.log 87656 bytes C:\zoek-results2015-09-03-074443.log 79594 bytes C:\zoek-results2015-09-03-084333.log 24050 bytes ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftLSPInstaller.exe"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftLSPInstaller.ini"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] Companion\\TcpService\\2.3.4.2\\LavasoftLSPInstaller64.exe"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.dll"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] "C:\\Program Files (x86)\\Lavasoft\\Web Companion\\TcpService\\2.3.4.2\\LavasoftTcpService.exe"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls] Companion\\TcpService\\2.3.4.2\\LavasoftTcpService64.dll"=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\LavasoftTcpService.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] "LocalService"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\VersionIndependentProgID] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CLSID] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CurVer] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController\CurVer] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1] [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1\CLSID] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\0\win32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\HELPDIR] @=- [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WinSock2\Parameters\AppId_Catalog\2FDB6170] "AppFullPath"=- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\AppId_Catalog\2FDB6170] "AppFullPath"=- Settings\ZoneMap\Domains\lavasoftfirewall.com] [-HKEY_USERS\S-1-5-21-174170113-1959642047-2039998945-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\lavasoftpersonalfirewall.com] [-HKEY_USERS\S-1-5-21-174170113-1959642047-2039998945-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\lavasoftpersonallfirewall.com] ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}\VersionIndependentProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\LocalServer32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\ProgID] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}\VersionIndependentProgID] @=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\LavasoftTcpService.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}] "LocalService"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\0\win32] @=- [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}\1.0\HELPDIR] @=- ==== Deleting Files \ Folders ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService deleted ==== C:\zoek_backup content ====================== C:\zoek_backup (files=162 folders=91 156317946 bytes) ==== EOF on do 03/09/2015 at 14:46:45,57 ======================