Zoek.exe v5.0.0.1 Updated 20-December-2015
Tool run by Laurens on zo 20-12-2015 at 12:44:29,07.
Microsoft Windows 10 Home 10.0.10240  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Laurens\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-10-18-135306.log	96674 bytes
C:\zoek-results2014-10-19-132829.log	8542 bytes
C:\zoek-results2015-03-28-164623.log	38841 bytes

==== VirusTotal Scan ======================
 
C:\Program Files\Hola\app\hola_svc.exe https://www.virustotal.com/file/1F6C58CAEF92FF547041D56FC9956D386E27020E7C2F36FE24632E8BE3CB46BC/analysis/
C:\Program Files\Hola\app\hola_updater.exe https://www.virustotal.com/file/3B8BE7070450CE9453E3C1BF3C7C856FD91C00A526C54810E6AFCD16A12E30B7/analysis/
C:\Program Files\Hola\app\hola.exe https://www.virustotal.com/file/287A1A597EEFB12D6CD9B224AD161C081FF0A9989A99E7A308F03BD9A8654166/analysis/

==== Empty Folders Check ======================

C:\PROGRA~2\COMMON~1\LWS deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\dbg deleted successfully
C:\Users\Default\AppData\LocalGoogle deleted successfully
C:\Users\DefaultAppPool\AppData\LocalGoogle deleted successfully
C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully
C:\Users\Laurens\AppData\LocalGoogle deleted successfully
C:\Users\Laurens\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Laurens\AppData\Local\EmieSiteList deleted successfully
C:\Users\Laurens\AppData\Local\EmieUserList deleted successfully
C:\Users\Laurens\AppData\Local\NetworkTiles deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1003127213-1762329582-1897142147-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DA4FFB68-22EC-4459-8B75-E2877D9B6617} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Installed Programs ======================

15 Puzzle 4.0  
3DMark 11  
4500_G510nz_Help  
4500G510nz  
4500G510nz_Software_Min  
4K Video Downloader 2.5  
64 Bit HP CIO Components Installer  
A360 Desktop  
Adobe Flash Player 10 ActiveX  
Adobe Flash Player 20 NPAPI  
Adobe Photoshop CS6  
Adobe Reader X (10.1.0) - Nederlands  
Age of Empires III - The Asian Dynasties  
Age of Empires III  
Age of Mythology - The Titans Expansion  
Age of Mythology  
AION Free-To-Play  
Akamai NetSession Interface  
AMD Accelerated Video Transcoding  
AMD APP SDK Runtime  
AMD Catalyst Control Center  
AMD Catalyst Install Manager  
AMD Drag and Drop Transcoding  
AMD Fuel  
AMD Media Foundation Decoders  
AMD Wireless Display v3.0  
Apple Application Support  
Apple Mobile Device Support  
Apple Software Update  
Asmedia ASM104x USB 3.0 Host Controller Driver  
Assassin's Creed Brotherhood  
ASUS Gamer OSD  
ASUS Smart Doctor  
ASUS VGA Driver  
ATI AVIVO64 Codecs  
Audacity 1.3.14 (Unicode)  
Auto Clicker v1.9  
Auto Keyboard v1.6  
Autodesk Application Manager  
Autodesk Configurator 360 addin  
Autodesk Design Review 2013  
Autodesk DWG TrueView 2016 - English  
Autodesk Inventor Content Center Libraries 2016 (Desktop Content)  
Autodesk Inventor Electrical Catalog Browser 2016 - English  
Autodesk Inventor Electrical Catalog Browser 2016 Language Pack - English  
Autodesk Inventor Professional 2016 - English  
Autodesk Inventor Professional 2016  
Autodesk Inventor Professional 2016 English Language Pack  
Autodesk Material Library 2016  
Autodesk Material Library Base Resolution Image Library 2016  
Autodesk Material Library Low Resolution Image Library 2016  
Autodesk ReCap 2016  
Autodesk Revit Interoperability for Inventor 2016  
Autodesk Vault Basic 2016 (Client)  
Autodesk Vault Basic 2016 (Client) English Language Pack  
AutoHotkey 1.1.21.03  
AutoIt v3.3.12.0  
Avast Free Antivirus  
Babylon toolbar on IE  
Bing Bar  
BitLord 2.3  
Bonjour  
Browser Configuration Utility  
BufferChm  
Bulletstorm  
CABAL Online Europe (Europe)  
CameraHelperMsi  
Catalyst Control Center - Branding  
Catalyst Control Center Graphics Previews Common  
Catalyst Control Center InstallProxy  
Catalyst Control Center Localization All  
ccc-utility64  
CCC Help Chinese Standard  
CCC Help Chinese Traditional  
CCC Help Czech  
CCC Help Danish  
CCC Help Dutch  
CCC Help English  
CCC Help Finnish  
CCC Help French  
CCC Help German  
CCC Help Greek  
CCC Help Hungarian  
CCC Help Italian  
CCC Help Japanese  
CCC Help Korean  
CCC Help Norwegian  
CCC Help Polish  
CCC Help Portuguese  
CCC Help Russian  
CCC Help Spanish  
CCC Help Swedish  
CCC Help Thai  
CCC Help Turkish  
CCleaner  
Cheat Engine 6.2  
CloneCD  
Cold Turkey (Basic)  
ConvertXtoDVD 4.1.7.343  
Core Temp 1.0 RC2  
Counter-Strike: Global Offensive  
CyberLink BD Advisor 2.0  
CyberLink Blu-ray Disc Suite  
CyberLink LabelPrint  
CyberLink LG Burning Tool  
CyberLink MediaShow  
CyberLink PowerDVD 9  
CyberLink PowerProducer  
CyberLink YouCam  
D3DX10  
DefaultTab Chrome  
Definition Update for Microsoft Office 2010 (KB3101540) 32-Bit Edition  
Destinations  
DeviceDiscovery  
DivX Setup  
DocMgr  
DocProc  
Dota 2  
Dota 2 Test  
Dragon Nest Europe  
Dropbox  
Dungeon Siege 2  
Eco Materials Adviser for Autodesk Inventor 2016 (64-bit)  
EpicBot  
erLT  
Facebook Video Calling 3.1.0.521  
FARO LS 1.1.503.3 (64bit)  
FastStone Capture 7.7  
Fax  
Fraps (remove only)  
Frontline Registry Cleaner  
Futuremark SystemInfo  
GameRanger  
GeoGebra 4  
Google Chrome  
Google Drive  
Google Toolbar for Internet Explorer  
Google Update Helper  
Google+ Auto Backup  
GPBaseService2  
GS Auto Clicker  
Guild Wars  
Guild Wars 2  
HiJackThis  
HolaT 1.10.631 - Better Internet  
HP Customer Participation Program 13.0  
HP Document Manager 2.0  
HP Imaging Device Functions 13.0  
HP Officejet 4500 G510n-z  
HP Smart Web Printing 4.5  
HP Solution Center 13.0  
HP Update  
HPProductAssistant  
HPSSupply  
ImageSlicer  
ImgBurn  
Intel(R) Management Engine Components  
iTunes  
Java 8 Update 25  
Java Auto Updater  
K-Lite Codec Pack 10.6.5 Basic  
Kerbal Space Program  
Kid-Key-Lock 2.2.0.0  
League of Legends  
LEGOŠ Pirates of the Caribbean The Video Game  
LG Tool Kit  
LightScribe System Software  
Logitech-webcamsoftware  
Logitech GamePanel Software 3.04.143  
Logitech Vid HD  
LOLReplay  
Lord of the Rings - War in the North  
LWS Facebook  
LWS Gallery  
LWS Help_main  
LWS Launcher  
LWS Motion Detection  
LWS Pictures And Video  
LWS Twitter  
LWS Webcam Software  
LWS WLM Plugin  
LWS YouTube Plugin  
Malwarebytes Anti-Malware versie 2.00.0.1000  
MarketResearch  
marvell 61xx  
MathType 6  
MATLAB R2011a  
Max Payne 3 v1.0.0.114 / RePack by irvins  
Microsoft .NET Framework 1.1  
Microsoft .NET Framework 4.5.1  
Microsoft .NET Framework 4.5.1 (NLD)  
Microsoft Access database engine 2010 (English)  
Microsoft Application Error Reporting  
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64)  
Microsoft Games for Windows - LIVE Redistributable  
Microsoft Games for Windows Marketplace  
Microsoft Office Access MUI (Dutch) 2010  
Microsoft Office Excel MUI (Dutch) 2010  
Microsoft Office Groove MUI (Dutch) 2010  
Microsoft Office InfoPath MUI (Dutch) 2010  
Microsoft Office Office 64-bit Components 2010  
Microsoft Office OneNote MUI (Dutch) 2010  
Microsoft Office Outlook MUI (Dutch) 2010  
Microsoft Office PowerPoint MUI (Dutch) 2010  
Microsoft Office Professional Plus 2010  
Microsoft Office Proof (Dutch) 2010  
Microsoft Office Proof (English) 2010  
Microsoft Office Proof (French) 2010  
Microsoft Office Proof (German) 2010  
Microsoft Office Proofing (Dutch) 2010  
Microsoft Office Publisher MUI (Dutch) 2010  
Microsoft Office Shared 64-bit MUI (Dutch) 2010  
Microsoft Office Shared MUI (Dutch) 2010  
Microsoft Office Word MUI (Dutch) 2010  
Microsoft Silverlight  
Microsoft SQL Server 2005 Compact Edition [ENU]  
Microsoft Visual Basic for Applications 7.1 (x64)  
Microsoft Visual Basic for Applications 7.1 (x64) English  
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053  
Microsoft Visual C++ 2005 Redistributable  
Microsoft Visual C++ 2005 Redistributable (x64)  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  
Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729  
Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729  
Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729  
Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729  
Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729  
Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729  
Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729  
Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727  
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610  
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030  
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727  
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610  
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030  
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727  
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727  
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD  
Microsoft WSE 3.0 Runtime  
Microsoft XNA Framework Redistributable 4.0  
Microsoft_VC80_CRT_x86  
Microsoft_VC90_CRT_x86  
Mozilla Firefox 14.0.1 (x86 en-US)  
Mozilla Maintenance Service  
MSI Afterburner 3.0.0 Beta 16  
MSVCRT  
MSXML 4.0 SP2 (KB954430)  
MSXML 4.0 SP2 (KB973688)  
MSXML4 Parser  
Network64  
Neverwinter  
NirSoft BlueScreenView  
NVIDIA PhysX  
OCR Software by I.R.I.S. 13.0  
Opera Stable 18.0.1284.68  
Ori and the Blind Forest  
osu  
Overwolf  
PDF Settings CS6  
Picasa 3  
Popcorn Time  
Python 2.7.3  
Raptr  
Razer Synapse  
Realtek Ethernet Controller Driver  
Realtek High Definition Audio Driver  
Recuva  
Registry Repair 4.1.0.388  
Remo Recover for Android  
Robocraft  
ROCCAT Kova[+] Mouse Driver  
Rockstar Games Social Club  
Scan  
Security Update for CAPICOM (KB931906)  
Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition  
Security Update for Microsoft Excel 2010 (KB3101543) 32-Bit Edition  
Security Update for Microsoft InfoPath 2010 (KB2878230) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2598244) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB3054848) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB3101521) 32-Bit Edition  
Security Update for Microsoft OneNote 2010 (KB3054978) 32-Bit Edition  
Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition  
Security Update for Microsoft PowerPoint 2010 (KB3085594) 32-Bit Edition  
Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition  
Security Update for Microsoft Visio 2010 (KB3101526) 32-Bit Edition  
Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition  
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition  
ShiftWindow 1.02  
Shop for HP Supplies  
Skype Click to Call  
SkypeT 7.10  
SmartWebPrinting  
SolutionCenter  
Sony PC Companion 2.10.188  
Spotify  
Status  
Steam  
SwiftKit  
System Requirements Lab CYRI  
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD  
TeamSpeak 3 Client  
TeamViewer 7  
TERA  
The Battle for Middle-earthT II  
The Lord of the Rings OnlineT v03.07.00.8037  
Toolbox  
TP-LINK Wireless Client Utility  
TrayApp  
Ubisoft Game Launcher  
Uniblue Powersuite  
Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition  
Update for Microsoft Filter Pack 2.0 (KB2881026) 32-Bit Edition  
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2494150)  
Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2837592) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3085512) 32-Bit Edition  
Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition  
Update for Microsoft OneNote 2010 (KB2965297) 32-Bit Edition  
Update for Microsoft Outlook 2010 (KB3085604) 32-Bit Edition  
Update for Microsoft Outlook 2010 (KB3101535) 32-Bit Edition  
Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition  
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition  
Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition  
VC80CRTRedist - 8.0.50727.6195  
VirtualDJ Home FREE  
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177  
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177  
VLC media player 2.1.1  
VSFilter 2.41.35 (d08a416) Nightly  
VSFilter 2.41.35 (d08a416) Nightly (64-bit)  
Vuze  
Vuze Remote Toolbar  
WebReg  
Windows Live Communications Platform  
Windows Live Essentials  
Windows Live ID Sign-in Assistant  
Windows Live Installer  
Windows Live Language Selector  
Windows Live Messenger  
Windows Live Movie Maker  
Windows Live Photo Common  
Windows Live Photo Gallery  
Windows Live PIMT Platform  
Windows Live SOXE  
Windows Live SOXE Definitions  
Windows Live UX Platform  
Windows Live UX Platform Language Pack  
Wing IDE 101 4.1.10-1  
WinMount V3.4.1020  
WinPcap 4.1.3  
WinZip 15.5  
Wise Registry Cleaner 6.14  
Wolfenstein - Enemy Territory  
XviD MPEG-4 Video Codec  
Youtube Music Downloader V3.7.8  
ZD Soft Screen Recorder 4.1.3.0  

==== Running Processes ======================

C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\SysWOW64\ASDR.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\WINDOWS\SysWOW64\svchost.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\syswow64\MsiExec.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Cold Turkey\CTService.exe
C:\Program Files (x86)\ASUS\SmartDoctor\SmartDoctor.exe
C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe
C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Laurens\AppData\Local\Akamai\netsession_win.exe
C:\Users\Laurens\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\LOLReplay\LOLRecorder.exe
C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Users\Laurens\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Users\Laurens\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Laurens\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Laurens\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Laurens\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Laurens\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Laurens\Desktop\zoek.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Users\Laurens\AppData\Local\Temp\virustotal.exe
C:\Users\Laurens\AppData\Local\Temp\virustotal.exe
C:\Users\Laurens\AppData\Local\Temp\virustotal.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted
C:\PROGRA~3\{93E26451-CD9A-43A5-A2FA-C42392EA4001} deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\Syswow64\SET5C46.tmp deleted
C:\WINDOWS\Syswow64\SET5D32.tmp deleted
C:\WINDOWS\Syswow64\SET74C0.tmp deleted
C:\WINDOWS\Syswow64\SET9C0E.tmp deleted
C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\kixebvvr.default\searchplugins\bingp.xml deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 8170 MB
CPU Info: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
CPU Speed: 3413,5 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Realtek Digital Output (Realtek | 
Realtek Digital Output(Optical) | 
Display Adapters: AMD Radeon HD 6900 Series | AMD Radeon HD 6900 Series | AMD Radeon HD 6900 Series | AMD Radeon HD 6900 Series | AMD Radeon HD 6900 Series | AMD Radeon HD 6900 Series
Monitors: 1x; 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: TP-LINK 150Mbps Wireless Lite N Adapter | Realtek PCIe GBE Family Controller | Microsoft Hosted Network Virtual Adapter
CD / DVD Drives: 1x (D: | ) D: HL-DT-STBDDVDRW CH10LS20
Ports: COM1 LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  931,0GB
Hard Disks - Free: C:  280,9GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 02/05/10 | BIOS Date: 02/05/10 19:13:52 Ver: 08.00.10
Time Zone: Romance (standaardtijd)
Motherboard *: ASUSTeK Computer INC. P8H67-M EVO
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Default Browser: Google Chrome	47.0.2526.106
Internet Explorer Version: 11.0.10240.16590 
Mozilla Firefox version: 14.0.1 (x86 en-US)
Opera Browser version: 18.0.1284.68
Google Chrome version: 47.0.2526.106
Adobe Reader version: 10.1.0.534
Sun Java version: 1.8.0_25 (32-bit) 
Sun Java version: 1.8.0_25 (64-bit) 
Flash Player version: 20.0.0.235

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\Laurens\AppData\Local\Temp ====
====== Java Cache =====
2015-12-20 11:42:14	7AB27B7FE0413BE8EFC5244C5D95418C	480350	----a-w-	C:\Users\Laurens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\1784d7c2-3d5851f6
2015-12-20 11:42:14	4E0D1BE5D0796D743837822EC9B902CC	99	----a-w-	C:\Users\Laurens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-31dd21483c370f10d50919e7f606200b29b1a28ae4eed846ca2c3c62f1816baa-6.0.lap
2015-12-20 11:42:13	C611538EFED63F122E4A07F748AC01B3	793	----a-w-	C:\Users\Laurens\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-74c11fd5
====== C:\WINDOWS\SysWOW64 =====
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-12-20 11:27:56	03C86DA5EC85C0478D8DFBE651761861	16148	----a-w-	C:\WINDOWS\Sysnative\LAURENS-PC_Laurens_HistoryPrediction.bin
====== C:\WINDOWS\Sysnative\drivers =====
2015-11-20 13:48:40	B355CDD82F914D681DADEF1049D8174A	15104	----a-w-	C:\WINDOWS\Sysnative\drivers\KovaPlusFltr.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2015-12-19 12:24:41	--------	d-----w-	C:\Program Files\WinPcap
======= C:\PROGRA~2 =====
2015-12-19 12:24:39	--------	d-----w-	C:\PROGRA~2\Cold Turkey
2015-11-20 13:52:16	--------	d-----w-	C:\PROGRA~2\ROCCAT
======= C: =====
====== C:\Users\Laurens\AppData\Roaming ======
2015-12-19 11:04:04	--------	d-----w-	C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
====== C:\Users\Laurens ======
2015-12-20 11:42:26	617FA6D604C5C5B5A9C141D9BC819F47	584288	----a-w-	C:\Users\Laurens\Downloads\jxpiinstall(1).exe
2015-12-20 11:40:40	617FA6D604C5C5B5A9C141D9BC819F47	584288	----a-w-	C:\Users\Laurens\Downloads\jxpiinstall.exe
2015-12-20 11:37:30	54760F6D9991A94FE0B6CD83AE8377B4	584288	----a-w-	C:\Users\Laurens\Downloads\JavaSetup8u66 (2).exe
2015-12-20 11:36:38	54760F6D9991A94FE0B6CD83AE8377B4	584288	----a-w-	C:\Users\Laurens\Downloads\JavaSetup8u66 (1).exe
2015-12-20 11:35:58	54760F6D9991A94FE0B6CD83AE8377B4	584288	----a-w-	C:\Users\Laurens\Downloads\JavaSetup8u66.exe
2015-12-19 12:24:40	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cold Turkey
2015-12-19 12:24:05	F4CD51868DBD36BF1368B6AB5BAD6438	7209153	----a-w-	C:\Users\Laurens\Downloads\Cold_Turkey_Basic_Installer.exe
2015-12-19 11:15:11	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Laurens\Downloads\RSITx64 (3).exe
2015-11-20 13:52:18	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT

====== C: exe-files ==
2015-12-19 12:24:41	636C0F536C46CC168A2C57A69D93B563	58127	----a-w-	C:\Program Files\WinPcap\uninstall.exe
2015-12-19 12:24:39	FB84DE77B00806CE956AC4C25436CE95	323072	----a-w-	C:\Program Files (x86)\Cold Turkey\CTService.exe
2015-12-19 12:24:39	B88228D5FEF4B6DC019D69D4471F23EC	5073240	----a-w-	C:\Program Files (x86)\Cold Turkey\vcredist_x86.exe
2015-12-19 12:24:39	916CD45F88E5DC5E7E18891510722E27	1077248	----a-w-	C:\Program Files (x86)\Cold Turkey\Cold Turkey.exe
2015-12-19 12:24:39	8DC21EEE272A401719EA0C63D81DC3FC	1002657	----a-w-	C:\Program Files (x86)\Cold Turkey\unins000.exe
2015-12-19 12:24:39	535AF1CF75A5481AC5C8B3D1DF298576	305664	----a-w-	C:\Program Files (x86)\Cold Turkey\CTPostUninstall.exe
2015-12-19 12:24:39	2D3091896D53B95E107D8EF414ACEAA3	11776	----a-w-	C:\Program Files (x86)\Cold Turkey\CTServiceInstaller.exe
2015-12-19 12:24:39	12722A9AB65F921E83556C4B31860C6D	432753	----a-w-	C:\Program Files (x86)\Cold Turkey\winpcap-4.13.exe
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-1003127213-1762329582-1897142147-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Users\Laurens\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"MurGee.com Auto Clicker"="C:\Users\Laurens\AppData\Local\Auto Clicker\AutoClicker.exe :silent"
"MurGee.com Auto Keyboard"="C:\ProgramData\Auto Keyboard\AutoKeyboard.exe :silent"
"Dropbox Update"="C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"
"OneDrive"="C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Akamai NetSession Interface"="C:\Users\Laurens\AppData\Local\Akamai\netsession_win.exe"
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
"Spotify"="C:\Users\Laurens\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"

[HKEY_USERS\S-1-5-21-1003127213-1762329582-1897142147-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"BCU"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"Raptr"="C:\PROGRA~2\Raptr\RAPTRS~1.EXE --startup"
"Razer Synapse"="C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"LWS"="C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide"
"ADSKAppManager"="C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe -showminimized -checkautorun"
"RoccatKova+"="C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.EXE"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Users\Laurens\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"MurGee.com Auto Clicker"="C:\Users\Laurens\AppData\Local\Auto Clicker\AutoClicker.exe :silent"
"MurGee.com Auto Keyboard"="C:\ProgramData\Auto Keyboard\AutoKeyboard.exe :silent"
"Dropbox Update"="C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"
"OneDrive"="C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Akamai NetSession Interface"="C:\Users\Laurens\AppData\Local\Akamai\netsession_win.exe"
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
"Spotify"="C:\Users\Laurens\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
"Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"hola"="C:\Program Files\Hola\app\hola.exe --silent"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS6ServiceManager]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeCS6ServiceManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\CS6ServiceManager\\CS6ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUSGamerOSD]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ASUSGamerOSD"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\ASUS\\GamerOSD\\GamerOSD.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BCSSync"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCU]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BCU"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\DeviceVM\\Browser Configuration Utility\\BCU.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BDRegion]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BDRegion"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Cyberlink\\Shared files\\brs.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CLMLServer"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CloneCDTray]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CloneCDTray"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\SlySoft\\CloneCD\\CloneCDTray.exe\" /s"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DivXUpdate]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DivXUpdate"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\DivX\\DivX Update\\DivXUpdate.exe\" /CHECKNOW"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Facebook Update"
"hkey"="HKCU"
"command"="\"C:\\Users\\Laurens\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HydraVisionDesktopManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HydraVisionDesktopManager"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\ATI Technologies\\HydraVision\\HydraDM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Launch LGDCore]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Launch LGDCore"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Logitech\\GamePanel Software\\G-series Software\\LGDCore.exe\" /SHOWHIDE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Launch LgDeviceAgent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Launch LgDeviceAgent"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Logitech\\GamePanel Software\\LgDevAgt.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LGODDFU]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LGODDFU"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\lg_fwupdate\\fwupdate.exe\" blrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LightScribe Control Panel]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LightScribe Control Panel"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Common Files\\LightScribe\\LightScribeControlPanel.exe -hidden"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Logitech Vid]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Logitech Vid"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Logitech\\Vid HD\\Vid.exe\" -bootmode"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LWS]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LWS"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Logitech\\LWS\\Webcam Software\\LWS.exe -hide"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MDS_Menu]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MDS_Menu"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\MediaShow4\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\MediaShow4\" UpdateWithCreateOnce \"Software\\CyberLink\\MediaShow\\4.1\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Overwolf]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Overwolf"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Overwolf\\Overwolf.exe -silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Powersuite Monitor]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Powersuite Monitor"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Uniblue\\Powersuite\\powersuite_monitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Raptr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Raptr"
"hkey"="HKCU"
"command"="C:\\PROGRA~2\\Raptr\\RAPTRS~1.EXE --startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Razer Synapse]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Razer Synapse"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Razer\\Synapse\\RzSynapse.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RemoteControl9]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RemoteControl9"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\PowerDVD9\\PDVD9Serv.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RtHDVCpl"
"hkey"="HKLM"
"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sony PC Companion]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Sony PC Companion"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Sony\\Sony PC Companion\\PCCompanion.exe\" /Background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify"
"hkey"="HKCU"
"command"="\"C:\\Users\\Laurens\\AppData\\Roaming\\Spotify\\spotify.exe\" /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\StartCCC]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="StartCCC"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\ATI Technologies\\ATI.ACE\\Core-Static\\amd64\\CLIStart.exe\" MSRun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Steam"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Steam\\Steam.exe\" -silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\swg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="swg"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SwitchBoard"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UCam_Menu]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UCam_Menu"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\YouCam\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\YouCam\" UpdateWithCreateOnce \"Software\\CyberLink\\YouCam\\1.0\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateLBPShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdateLBPShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\LabelPrint\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\LabelPrint\" UpdateWithCreateOnce \"Software\\CyberLink\\LabelPrint\\2.5\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateP2GoShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdateP2GoShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\Power2Go\" UpdateWithCreateOnce \"SOFTWARE\\CyberLink\\Power2Go\\6.0\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdatePPShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdatePPShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\PowerProducer\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\PowerProducer\" UpdateWithCreateOnce \"Software\\CyberLink\\PowerProducer\\5.0\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdatePSTShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdatePSTShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\Blu-ray Disc Suite\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\Blu-ray Disc Suite\" UpdateWithCreateOnce \"Software\\CyberLink\\PowerStarter\""


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\HP Digital Imaging Monitor.lnk"
"backup"="C:\\Windows\\pss\\HP Digital Imaging Monitor.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Program Files (x86)\\HP\\Digital Imaging\\bin\\hpqtra08.exe"
"item"="HP Digital Imaging Monitor"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\LOLRecorder.lnk"
"backup"="C:\\Windows\\pss\\LOLRecorder.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\LOLREP~1\\LOLREC~1.EXE -minimize"
"item"="LOLRecorder"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk"
"backup"="C:\\Windows\\pss\\McAfee Security Scan Plus.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Program Files (x86)\\McAfee Security Scan\\3.0.318\\SSScheduler.exe"
"item"="McAfee Security Scan Plus"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Laurens^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
"path"="C:\\Users\\Laurens\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Dropbox.lnk"
"backup"="C:\\Windows\\pss\\Dropbox.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\Users\\Laurens\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe /systemstartup"
"item"="Dropbox"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Laurens^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^GameRanger.lnk]
"path"="C:\\Users\\Laurens\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\GameRanger.lnk"
"backup"="C:\\Windows\\pss\\GameRanger.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\Users\\Laurens\\AppData\\Roaming\\GAMERA~1\\GAMERA~2\\GAMERA~1.EXE /autostart"
"item"="GameRanger"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Laurens^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Productregistratie.lnk]
"path"="C:\\Users\\Laurens\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Logitech . Productregistratie.lnk"
"backup"="C:\\Windows\\pss\\Logitech . Productregistratie.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\Logitech\\Ereg\\eReg.exe /remind /language=NLB /_WFM=\".\""
"item"="Logitech . Productregistratie"


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [19-12-2015 12:20]
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000Core.job --a-------- C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe [19-06-2015 19:12]
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000UA.job --a-------- C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe [19-06-2015 19:12]
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000Core.job --a-------- [Undetermined Task]
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000UA.job --a-------- C:\Users\Laurens\AppData\Local\Facebook\Update\FacebookUpdate.exe [18-08-2012 22:30]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [04-09-2015 15:14]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [04-09-2015 15:14]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000Core" [C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000UA" [C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000Core" [C:\Users\Laurens\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1003127213-1762329582-1897142147-1000UA" [C:\Users\Laurens\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\MSIAfterburner" [C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{15453AA1-ED91-4441-9219-97006D279CE1}" [C:\Windows\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\{1F737E2B-85DF-47FA-81D8-768AEB8A05CE}" [C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth II\lotrbfme2.exe]
"C:\WINDOWS\SysNative\tasks\{7D77E8F1-AF62-4A9B-BB8A-AB3F799DF429}" [C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth II\lotrbfme2.exe]
"C:\WINDOWS\SysNative\tasks\{C9E14A2A-D1A4-4F30-8F7C-30C8A7C4470A}" [C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth II\lotrbfme2.exe]
"C:\WINDOWS\SysNative\tasks\{EAEE518A-C35B-417E-BCD5-9B2357B6B4B4}" [C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth II\lotrbfme2.exe]
"C:\WINDOWS\SysNative\tasks\{FDB2200C-F605-4896-91EB-C6BF2A7E5520}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]
"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\kixebvvr.default
user_pref("browser.startup.homepage", "http://www.msn.com/?PC=AV01");
user_pref("browser.search.defaulturl", "http://www.bing.com/search");
user_pref("browser.search.defaultengine", "Bing (Microsoft)");
user_pref("browser.search.defaultenginename", "Bing (Microsoft)");
user_pref("browser.search.selectedEngine", "Bing (Microsoft)");
user_pref("keyword.URL", "http://www.bing.com/search");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [04-11-2012 20:53]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [04-11-2012 20:53]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\kixebvvr.default
5DF56521E8985BFD8F21A3D97A4D4574	- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll -	Shockwave Flash
3CD19649B2C3023D65E67C056457A2BC	- C:\Users\Laurens\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll -	Facebook Video Calling Plugin


==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[01-07-2015 21:54]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[17-01-2012 10:45]
nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[12-12-2011 14:13]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
fcfenmboojpjinhpgggodefccipikbpd - No path found[]

Google Slides - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
selector is not a valid CSS selector - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Avast Online Security - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Skype - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Chrome Web Store Payments - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
DivX Plus Web Player HTML5 \u003Cvideo> - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm
Gmail - Laurens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Fix ======================

C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.go.affec.tv_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.go.affec.tv_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_aduun.net_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage-journal deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d3jdlwnuo8nsnr.cloudfront.net_0.localstorage deleted successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d3jdlwnuo8nsnr.cloudfront.net_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{DA4FFB68-22EC-4459-8B75-E2877D9B6617}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DA4FFB68-22EC-4459-8B75-E2877D9B6617}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{F7C78C08-3CC7-416F-B827-7C1785ABBDA8} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKLM\Wow6432Node\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} - http://search.iminent.com/?appId=9BE40EE3-FF7B-4975-8CDC-D4D3F433234D&ref=toolbox&q={searchTerms}
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
HKCU\SearchScopes\{69C5F41D-12C4-4275-9CF2-82076926D8DF} - http://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=nl&q={searchTerms}

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HydraVisionDesktopManager deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\RAPTRS~1.EXE --startup
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
O4 - HKLM\..\Run: [RoccatKova+] "C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.EXE"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Laurens\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [MurGee.com Auto Clicker] C:\Users\Laurens\AppData\Local\Auto Clicker\AutoClicker.exe :silent
O4 - HKCU\..\Run: [MurGee.com Auto Keyboard] C:\ProgramData\Auto Keyboard\AutoKeyboard.exe :silent
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Laurens\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Laurens\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Spotify] "C:\Users\Laurens\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Laurens\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user')
O4 - Startup: Dropbox.lnk = Laurens\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: LOLRecorder.lnk = C:\Program Files (x86)\LOLReplay\LOLRecorder.exe
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.hola.org
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{d371b8cf-1758-4086-bf20-b15cd756e309}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASDR - Unknown owner - C:\Windows\SysWOW64\ASDR.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Product - 2011/08/25 14:33:27 (CLKMSVC10_9EC60124) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
O23 - Service: CTService - Felix Belzile - C:\Program Files (x86)\Cold Turkey\\CTService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hola Better Internet Engine (hola_svc) - Hola Networks Ltd. - C:\Program Files\Hola\app\hola_svc.exe
O23 - Service: Hola Internet Acceleration Updater (hola_updater) - Hola Networks Ltd. - C:\Program Files\Hola\app\hola_updater.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Autodesk Simulation Moldflow MITSI 2016 Job Manager (mitsijm2016) - Autodesk, Inc. - C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Overwolf Updater Service (OverwolfUpdaterService) - Overwolf Ltd - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Laurens\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Laurens\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Laurens\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Laurens\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Laurens\AppData\Local\Mozilla\Firefox\Profiles\kixebvvr.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Laurens\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Laurens\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=5476 folders=1061 43416117484 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Laurens\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 20-12-2015 at 13:30:38,46 ======================