Logfile of random's system information tool 1.10 (written by random/random)
Run by Hoofdgebruiker at 2016-04-03 21:04:55
Microsoft® Windows Vista™ Home Premium  Service Pack 2
System drive C: has 5 GB (5%) free of 100 GB
Total RAM: 3071 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:05:34, on 3/04/2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe
C:\Program Files\Citrix\ICA Client\concentr.exe
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Citrix\ICA Client\Receiver\Receiver.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\conime.exe
C:\Users\Hoofdgebruiker\Documents\SyncToyData\Downloads\RSIT.exe
C:\Program Files\trend micro\Hoofdgebruiker.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O1 - Hosts: ::1 localhost
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Bdagent] C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
O4 - HKLM\..\Run: [IsaKbcCertUpdate] C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2743785091-1379319533-3311275594-1001\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'Kids')
O4 - HKUS\S-1-5-21-2743785091-1379319533-3311275594-1001\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (User 'Kids')
O4 - S-1-5-21-2743785091-1379319533-3311275594-1001 Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (User 'Kids')
O4 - S-1-5-21-2743785091-1379319533-3311275594-1001 Startup: OpenOffice.org 3.3 .lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Kids')
O4 - S-1-5-21-2743785091-1379319533-3311275594-1001 User Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (User 'Kids')
O4 - S-1-5-21-2743785091-1379319533-3311275594-1001 User Startup: OpenOffice.org 3.3 .lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Kids')
O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://cbc-pdf.cbc.be
O15 - Trusted Zone: http://static.cbc.be
O15 - Trusted Zone: http://www.cbccorporate.be
O15 - Trusted Zone: http://www.csob.cz
O15 - Trusted Zone: http://www.csob.sk
O15 - Trusted Zone: http://www.isabel.be
O15 - Trusted Zone: http://www.beta.isabel.be
O15 - Trusted Zone: *.isabel.be
O15 - Trusted Zone: http://www.isabel.eu
O15 - Trusted Zone: http://www.beta.isabel.eu
O15 - Trusted Zone: http://kbc-pdf.kbc.be
O15 - Trusted Zone: http://static.kbc.be
O15 - Trusted Zone: *.kbc.be
O15 - Trusted Zone: http://www.kbcam.be
O15 - Trusted Zone: http://www.kbcam.com
O15 - Trusted Zone: http://wp-a.kbcbankingforbusiness.com
O15 - Trusted Zone: http://www.kbcbankingforbusiness.com
O15 - Trusted Zone: http://www.kbccorporates.com
O15 - Trusted Zone: http://www.kbcfi.com
O15 - Trusted Zone: *.kbcgroup.eu
O15 - Trusted Zone: http://wp-a.kbcmerchantbanking.com
O15 - Trusted Zone: http://www.kbcmerchantbanking.com
O15 - Trusted Zone: http://www.kh.hu
O15 - Trusted Zone: http://cbc-pdf.cbc.be (HKLM)
O15 - Trusted Zone: http://static.cbc.be (HKLM)
O15 - Trusted Zone: http://www.cbccorporate.be (HKLM)
O15 - Trusted Zone: http://www.csob.cz (HKLM)
O15 - Trusted Zone: http://www.csob.sk (HKLM)
O15 - Trusted Zone: http://www.isabel.be (HKLM)
O15 - Trusted Zone: http://www.beta.isabel.be (HKLM)
O15 - Trusted Zone: http://www.isabel.eu (HKLM)
O15 - Trusted Zone: http://www.beta.isabel.eu (HKLM)
O15 - Trusted Zone: http://kbc-pdf.kbc.be (HKLM)
O15 - Trusted Zone: http://static.kbc.be (HKLM)
O15 - Trusted Zone: http://www.kbcam.be (HKLM)
O15 - Trusted Zone: http://www.kbcam.com (HKLM)
O15 - Trusted Zone: http://wp-a.kbcbankingforbusiness.com (HKLM)
O15 - Trusted Zone: http://www.kbcbankingforbusiness.com (HKLM)
O15 - Trusted Zone: http://www.kbccorporates.com (HKLM)
O15 - Trusted Zone: http://www.kbcfi.com (HKLM)
O15 - Trusted Zone: http://wp-a.kbcmerchantbanking.com (HKLM)
O15 - Trusted Zone: http://www.kbcmerchantbanking.com (HKLM)
O15 - Trusted Zone: http://www.kh.hu (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Google Updateservice (gupdate1c9fe633e8b6d00) (gupdate1c9fe633e8b6d00) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hotspot Shield Service (hshld) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\bin\cmw_srv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files\Hotspot Shield\bin\hsswd.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
O23 - Service: Bitdefender Virus Shield (vsserv) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
O23 - Service: SAMSUNG WiselinkPro Service (WiselinkPro) - Samsung - C:\Program Files\SAMSUNG\PC Auto Backup\WiselinkPro.exe

--
End of file - 13517 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2743785091-1379319533-3311275594-1001Core.job - C:\Users\Kids\AppData\Local\Facebook\Update\FacebookUpdate.exe  /c /nocrashserver 
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2743785091-1379319533-3311275594-1001UA.job - C:\Users\Kids\AppData\Local\Facebook\Update\FacebookUpdate.exe  /ua /installsource scheduler 
C:\Windows\tasks\Google Software Updater.job - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe  scheduled_start 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineCore1d0bf455f8e8a10.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
C:\Windows\tasks\GoogleUpdateTaskMachineUA1d0bf45615530b0.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
C:\Windows\tasks\RMAutoUpdate.job - C:\Program Files\PC Tools Registry Mechanic\SULauncher.exe  
C:\Windows\tasks\RMSchedule.job - C:\Program Files\PC Tools Registry Mechanic\RegMech.exe  /F 

=========Mozilla firefox=========

ProfilePath - C:\Users\Hoofdgebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\abap5kan.default

prefs.js - "browser.startup.homepage" -  "http://www.google.be/"

"belgiumeid@eid.belgium.be"=C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.197 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_197.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pack.google.com/Google Updater;version=14]
"Description"=Google Updater
"Path"=C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.2\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.2\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
belgiumeid@eid.belgium.be

C:\Program Files\Mozilla Firefox\components\
IICAClient.xpt

C:\Program Files\Mozilla Firefox\plugins\
CCMSDK.dll
CgpCore.dll
confmgr.dll
ctxlogging.dll
ctxmui.dll
ICAClObj.class
icafile.dll
icalogon.dll
npicaN.dll
nppdf32.dll
sslsdk_b.dll
TcpPServ.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre7\bin\ssv.dll [2014-10-30 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-04-01 1144072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-10-30 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-10-12 4702208]
"BrMfcWnd"=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2006-11-24 622592]
"ControlCenter3"=C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2006-07-19 65536]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-05-30 59280]
"Bdagent"=C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe [2013-11-15 1618488]
"IsaKbcCertUpdate"=C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe [2015-02-06 1335832]
"Skytel"=C:\Windows\Skytel.exe [2007-10-12 1826816]
"ConnectionCenter"=C:\Program Files\Citrix\ICA Client\concentr.exe [2011-08-11 358336]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 718688]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-03-11 6667992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
C:\Windows\ehome\ehTray.exe [2008-01-19 125952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Updater]
C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2011-09-13 161336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTurbo]
C:\Program Files\iNTERNET Turbo\ITTray.exe [2012-01-26 176640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-10-18 455968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-02-08 488984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [2007-02-08 774168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shockwave Updater]
C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~3.EXE -Update -1103471 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; GTB6.6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618; .NET4.0C) -http://www.leukespellen.be/spelletjes/body/c2tlaTE3NjJza2Vp.php []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
C:\Windows\Skytel.exe [2007-10-12 1826816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSDMonitor]
C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2012-08-21 105120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-23 39408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\38B0D1~1.150\SSSCHE~1.EXE [2014-04-09 279456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PC Auto Backup.lnk]
C:\PROGRA~1\SAMSUNG\PCAUTO~1\AUTOBA~1.EXE [2012-03-08 835072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Hoofdgebruiker^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.3 .lnk]
C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Hoofdgebruiker^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3 .lnk]
C:\Program Files\OpenOffice.org 3\program\quickstart.exe []

C:\Users\Hoofdgebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OneNote 2007 Schermopname en Snel starten.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\Windows\system32\Ati2evxx.dll [2013-08-30 192512]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll, schannel.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro36]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro36.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro36Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro36CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=lvcodec2.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux1"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.inf - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.ini - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "%SystemRoot%\System32\WScript.exe" "%1" %*
.txt - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1

======List of files/folders created in the last 1 month======

2016-04-03 21:04:55 ----D---- C:\rsit
2016-04-03 21:04:55 ----D---- C:\Program Files\trend micro
2016-04-03 20:34:48 ----D---- C:\Program Files\Speccy
2016-03-30 09:36:52 ----D---- C:\AdwCleaner
2016-03-30 09:17:40 ----D---- C:\Users\Hoofdgebruiker\AppData\Roaming\Registry Mechanic
2016-03-28 16:33:50 ----ASH---- C:\pagefile.sys
2016-03-19 15:36:34 ----D---- C:\Program Files\Mozilla Firefox
2016-03-14 04:29:23 ----A---- C:\Windows\system32\advapi32.dll
2016-03-14 04:29:21 ----A---- C:\Windows\system32\smss.exe
2016-03-14 04:29:21 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-14 04:29:21 ----A---- C:\Windows\system32\ntdll.dll
2016-03-14 04:29:21 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-14 04:29:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-14 04:29:20 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-14 04:28:46 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-14 04:28:45 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-14 04:28:44 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-14 04:28:44 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-14 04:28:44 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-14 04:28:44 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-14 04:28:44 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-14 04:28:44 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-14 04:28:44 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-14 04:27:01 ----A---- C:\Windows\system32\seclogon.dll
2016-03-14 04:26:39 ----A---- C:\Windows\system32\atmlib.dll
2016-03-14 04:26:39 ----A---- C:\Windows\system32\atmfd.dll
2016-03-14 04:25:21 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-14 04:24:35 ----A---- C:\Windows\system32\olepro32.dll
2016-03-14 04:24:35 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-14 04:24:35 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-14 04:02:25 ----A---- C:\Windows\system32\win32k.sys
2016-03-13 19:02:34 ----A---- C:\Windows\system32\vbscript.dll
2016-03-13 19:02:34 ----A---- C:\Windows\system32\urlmon.dll
2016-03-13 19:02:34 ----A---- C:\Windows\system32\mshta.exe
2016-03-13 19:02:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-03-13 19:02:34 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-13 19:02:34 ----A---- C:\Windows\system32\jscript.dll
2016-03-13 19:02:34 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-13 19:02:33 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-13 19:02:33 ----A---- C:\Windows\system32\iertutil.dll
2016-03-13 19:02:31 ----A---- C:\Windows\system32\wininet.dll
2016-03-13 19:02:31 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-13 19:02:31 ----A---- C:\Windows\system32\msfeedssync.exe
2016-03-13 19:02:31 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-13 19:02:30 ----A---- C:\Windows\system32\url.dll
2016-03-13 19:02:29 ----A---- C:\Windows\system32\jscript9.dll
2016-03-13 19:02:28 ----A---- C:\Windows\system32\ieui.dll
2016-03-13 19:02:28 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-13 19:02:27 ----A---- C:\Windows\system32\ieframe.dll
2016-03-13 19:02:25 ----A---- C:\Windows\system32\mshtml.dll
2016-03-11 19:06:03 ----D---- C:\Program Files\Microsoft Xbox 360 Accessories

======List of files/folders modified in the last 1 month======

2016-04-03 21:05:19 ----D---- C:\Windows\Temp
2016-04-03 21:04:55 ----RD---- C:\Program Files
2016-04-03 21:03:38 ----D---- C:\Windows\system32\drivers\etc
2016-04-03 21:03:00 ----D---- C:\Windows\System32
2016-04-03 20:35:41 ----D---- C:\Windows\Prefetch
2016-04-03 20:35:33 ----D---- C:\Windows
2016-04-03 20:35:04 ----D---- C:\Windows\inf
2016-04-03 19:55:39 ----AD---- C:\ProgramData\TEMP
2016-04-03 19:15:07 ----D---- C:\Program Files\PC Tools Registry Mechanic
2016-04-03 13:46:47 ----A---- C:\bdlog.txt
2016-04-03 13:42:43 ----D---- C:\Windows\Panther
2016-04-03 13:42:42 ----D---- C:\Windows\Logs
2016-04-03 00:00:32 ----SHD---- C:\System Volume Information
2016-03-30 10:08:57 ----D---- C:\Windows\system32\Tasks
2016-03-30 09:51:25 ----HD---- C:\ProgramData
2016-03-30 09:16:34 ----SD---- C:\Windows\Downloaded Program Files
2016-03-30 08:56:30 ----D---- C:\Windows\Debug
2016-03-30 08:56:24 ----SD---- C:\Users\Hoofdgebruiker\AppData\Roaming\Microsoft
2016-03-27 16:28:47 ----HD---- C:\Windows\system32\GroupPolicyUsers
2016-03-27 16:28:20 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-03-26 21:17:35 ----D---- C:\Windows\Minidump
2016-03-26 21:17:33 ----D---- C:\found.000
2016-03-26 01:01:02 ----D---- C:\Windows\system32\catroot2
2016-03-25 13:20:15 ----D---- C:\Program Files\Farming Simulator 2015
2016-03-21 12:39:26 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-03-14 05:01:10 ----D---- C:\Windows\rescache
2016-03-14 04:52:57 ----D---- C:\Windows\Microsoft.NET
2016-03-14 04:51:34 ----RSD---- C:\Windows\assembly
2016-03-14 04:38:20 ----SHD---- C:\Config.Msi
2016-03-14 04:36:18 ----D---- C:\Windows\system32\nl-NL
2016-03-14 04:36:14 ----D---- C:\Program Files\Windows Mail
2016-03-14 04:36:14 ----D---- C:\Program Files\Common Files\System
2016-03-14 04:36:13 ----D---- C:\Windows\system32\XPSViewer
2016-03-14 04:36:13 ----D---- C:\Windows\system32\migration
2016-03-14 04:36:10 ----D---- C:\Program Files\Internet Explorer
2016-03-14 04:33:11 ----D---- C:\Windows\system32\drivers
2016-03-14 04:30:05 ----D---- C:\Windows\winsxs
2016-03-14 04:30:00 ----D---- C:\Windows\system32\catroot
2016-03-14 04:28:43 ----SHD---- C:\Windows\Installer
2016-03-14 04:28:32 ----D---- C:\ProgramData\Microsoft Help
2016-03-14 04:18:22 ----D---- C:\Windows\system32\MRT
2016-03-14 04:05:05 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-31 7680]
R0 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2013-11-15 640560]
R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2013-11-15 165744]
R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2013-11-15 360376]
R1 bdftdif;bdftdif; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdftdif.sys [2011-11-14 130640]
R1 bdselfpr;bdselfpr; \??\C:\Program Files\Bitdefender\Bitdefender 2013\bdselfpr.sys [2013-11-15 135600]
R1 ctxusbm;Citrix USB Monitor Driver; C:\Windows\system32\DRIVERS\ctxusbm.sys [2011-08-11 66776]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\Windows\system32\DRIVERS\hssdrv6.sys [2013-12-17 39624]
R1 RapportCerberus_1507082;RapportCerberus_1507082; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_1507082.sys [2016-03-13 569472]
R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2016-03-03 306016]
R3 ati2mtag;ati2mtag; C:\Windows\system32\DRIVERS\ati2mtag.sys [2013-08-30 6852096]
R3 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2013-11-15 490144]
R3 BrSerIf;Brother MFC Serial Port Interface WDM Driver; C:\Windows\System32\Drivers\BrSerIf.sys [2006-09-03 53248]
R3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-10-12 1951000]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2007-02-06 25632]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-06-07 83456]
R3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-12-17 37064]
R3 USBCCID;USB Smart Card reader; C:\Windows\system32\DRIVERS\usbccid.sys [2009-03-10 29184]
R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-07-22 2920448]
S3 BDSandBox;BDSandBox; \??\C:\Windows\system32\drivers\bdsandbox.sys [2013-11-15 66832]
S3 cpudrv;cpudrv; \??\C:\Program Files\SystemRequirementsLab\cpudrv.sys [2011-06-02 11336]
S3 cxbu0wdm;CardMan 1021; C:\Windows\system32\DRIVERS\cxbu0wdm.sys [2009-03-10 97792]
S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 hitmanpro36;Hitman Pro 3.5 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro36.sys [2012-07-09 27424]
S3 LVcKap;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap.sys [2007-02-06 1691808]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys [2007-02-06 1964064]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys []
S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2009-08-21 66592]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2012-02-09 10816832]
S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561AV.SYS []
S3 RapportHades;RapportHades; C:\Windows\System32\Drivers\RapportHades.sys [2016-03-03 82400]
S3 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2016-03-03 235360]
S3 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2016-03-03 363424]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-01-05 32768]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-09-09 62424]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\Windows\system32\Ati2evxx.exe [2013-08-30 643072]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 hshld;Hotspot Shield Service; C:\Program Files\Hotspot Shield\bin\cmw_srv.exe [2013-12-18 920872]
R2 HssWd;Hotspot Shield Monitoring Service; C:\Program Files\Hotspot Shield\bin\hsswd.exe [2013-12-18 555304]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-10-18 79136]
R2 LVPrcSrv;Process Monitor; c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe [2007-02-06 109344]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-27 215656]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2016-03-03 2266160]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\BingBar\SeaPort.EXE [2011-03-28 249648]
R2 TeamViewer6;TeamViewer 6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-15 2280312]
R2 UPDATESRV;Bitdefender Desktop Update Service; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [2013-11-15 54960]
R2 vsserv;Bitdefender Virus Shield; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [2013-11-15 1343472]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2013-08-30 643072]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate1c9fe633e8b6d00;Google Updateservice (gupdate1c9fe633e8b6d00); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-16 194032]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-02-06 105248]
S2 WiselinkPro;SAMSUNG WiselinkPro Service; C:\Program Files\SAMSUNG\PC Auto Backup\WiselinkPro.exe [2012-01-18 7262263]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-27 269504]
S3 BBSvc;Bing Bar Update Service; C:\Program Files\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 HssTrayService;Hotspot Shield Tray Service; C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE [2013-12-17 78512]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 235696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-19 146888]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2012-03-05 800040]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-11 772296]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------