Logfile of random's system information tool 1.09 (written by random/random) Run by Anne van de Ven at 2014-03-18 14:54:25 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 49 GB (39%) free of 126 GB Total RAM: 2046 MB (63% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:54:28, on 18-3-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.16521) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\rundll32.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\SearchProtocolHost.exe C:\Users\Anne van de Ven\Desktop\RSIT.exe C:\Program Files\trend micro\Anne van de Ven.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.youtube.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_medium=vtt&from=vtt&uid=WDCXWD2500BEVS-22UST0_WD-WXE90777905379053&ts=1374231883 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=dnldstr1202&cd=2XzuyEtN2Y1L1QzutDtDtC0ByByB0B0BzztDyByCzztDyCtDtN0D0Tzu0CyBtBtBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1298050692&ir= R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s O4 - HKCU\..\Run: [NextLive] C:\Windows\system32\rundll32.exe "C:\Users\Anne van de Ven\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000 O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loaderx.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\Windows\system32\ASTSRV.EXE O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NitroPDFDriverCreatorReadSpool2 (NitroDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Nitro PDF\Professional 7\NitroPDFDriverService2.exe O23 - Service: NLS Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\NLSSRV32.EXE O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- End of file - 7572 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\AmiUpdXp.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\UpdaterEX.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}] HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-16 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-16 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}] HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 948440] "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-01-20 43848] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2014-01-20 152392] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-10-04 12013272] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "NextLive"=C:\Users\Anne van de Ven\AppData\Roaming\newnext.me\nengine.dll [2013-11-14 1283584] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager] C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe [2007-09-20 202024] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dvd43] C:\Program Files\dvd43\dvd43_tray.exe [2009-10-23 827904] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] C:\Users\Anne van de Ven\AppData\Local\Google\Update\GoogleUpdate.exe /c [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [2014-01-20 152392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-09-20 1836328] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PocketCloud Location] C:\Program Files\Wyse\PocketCloud Windows Companion\WyseBrowser.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files\QuickTime\QTTask.exe -atboottime [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2009-10-26 1458176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loaderx.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NofolderOptions"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "VIDC.I420"=lvcodec2.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "msacm.siren"=sirenacm.dll "MSVideo8"=VfWWDM32.dll "wave1"=serwvdrv.dll "MSVideo"=vfwwdm32.dll "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave3"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 3 months====== 2014-03-18 14:48:23 ----D---- C:\rsit 2014-03-17 23:46:35 ----D---- C:\ProgramData\HP Product Assistant 2014-03-17 23:45:14 ----D---- C:\Program Files\Common Files\HP 2014-03-17 23:42:41 ----N---- C:\Windows\hpomdl27.dat 2014-03-17 23:42:41 ----A---- C:\Windows\hpoins27.dat 2014-03-16 11:30:22 ----A---- C:\Windows\system32\qedit.dll 2014-03-16 11:30:21 ----A---- C:\Windows\system32\jsproxy.dll 2014-03-16 11:30:21 ----A---- C:\Windows\system32\iernonce.dll 2014-03-16 11:30:21 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-03-16 11:30:21 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-03-16 11:30:20 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-03-16 11:30:20 ----A---- C:\Windows\system32\jscript9diag.dll 2014-03-16 11:30:20 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-03-16 11:30:20 ----A---- C:\Windows\system32\ieapfltr.dll 2014-03-16 11:30:19 ----A---- C:\Windows\system32\wininet.dll 2014-03-16 11:30:17 ----A---- C:\Windows\system32\ieui.dll 2014-03-16 11:30:16 ----A---- C:\Windows\system32\ieUnatt.exe 2014-03-16 11:30:15 ----A---- C:\Windows\system32\jscript9.dll 2014-03-16 11:30:15 ----A---- C:\Windows\system32\iertutil.dll 2014-03-16 11:30:13 ----A---- C:\Windows\system32\mshtml.dll 2014-03-16 11:30:11 ----A---- C:\Windows\system32\urlmon.dll 2014-03-16 11:30:10 ----A---- C:\Windows\system32\msfeeds.dll 2014-03-16 11:30:08 ----A---- C:\Windows\system32\msrating.dll 2014-03-16 11:30:08 ----A---- C:\Windows\system32\iesetup.dll 2014-03-16 11:30:08 ----A---- C:\Windows\system32\ie4uinit.exe 2014-03-16 11:30:07 ----A---- C:\Windows\system32\ieframe.dll 2014-03-16 11:29:46 ----A---- C:\Windows\system32\wwansvc.dll 2014-03-16 11:29:26 ----A---- C:\Windows\system32\win32k.sys 2014-03-16 11:29:18 ----A---- C:\Windows\system32\WindowsCodecs.dll 2014-03-16 11:29:07 ----A---- C:\Windows\system32\wer.dll 2014-02-28 10:17:04 ----D---- C:\Program Files\MediaViewV1 2014-02-27 11:54:51 ----D---- C:\HP Universal Print Driver 2014-02-26 16:09:48 ----A---- C:\Windows\system32\mstscax.dll 2014-02-24 23:18:27 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\DropboxMaster 2014-02-24 11:11:02 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\Easeware 2014-02-24 10:14:58 ----D---- C:\Program Files\Common Files\Skype 2014-02-24 00:40:54 ----D---- C:\ProgramData\DriverGenius 2014-02-24 00:39:13 ----D---- C:\Program Files\Driver-Soft 2014-02-23 23:24:51 ----D---- C:\Program Files\MediaViewerV1 2014-02-18 14:50:35 ----D---- C:\ProgramData\Windows Genuine Advantage 2014-02-16 23:26:21 ----D---- C:\SWSetup 2014-02-16 22:39:41 ----D---- C:\Windows\system32\RTCOM 2014-02-16 22:38:22 ----A---- C:\Windows\system32\WavesLib.dll 2014-02-16 22:38:21 ----A---- C:\Windows\system32\WavesGUILib.dll 2014-02-16 22:38:21 ----A---- C:\Windows\system32\tosade.dll 2014-02-16 22:38:21 ----A---- C:\Windows\system32\TepeqAPO.dll 2014-02-16 22:38:21 ----A---- C:\Windows\system32\tadefxapo2.dll 2014-02-16 22:38:20 ----A---- C:\Windows\system32\tadefxapo.dll 2014-02-16 22:38:20 ----A---- C:\Windows\system32\SRSWOW.dll 2014-02-16 22:38:20 ----A---- C:\Windows\system32\SRSTSXT.dll 2014-02-16 22:38:20 ----A---- C:\Windows\system32\SRSTSHD.dll 2014-02-16 22:38:20 ----A---- C:\Windows\system32\SRSHP360.dll 2014-02-16 22:38:20 ----A---- C:\Windows\system32\sltech32.dll 2014-02-16 22:38:20 ----A---- C:\Windows\system32\slprp32.dll 2014-02-16 22:38:19 ----A---- C:\Windows\system32\slcnt32.dll 2014-02-16 22:38:19 ----A---- C:\Windows\system32\sl3apo32.dll 2014-02-16 22:38:19 ----A---- C:\Windows\system32\SFSS_APO.dll 2014-02-16 22:38:19 ----A---- C:\Windows\system32\SFNHK.dll 2014-02-16 22:38:19 ----A---- C:\Windows\system32\SFCOM.dll 2014-02-16 22:38:19 ----A---- C:\Windows\system32\SFAPO.dll 2014-02-16 22:38:18 ----A---- C:\Windows\system32\drivers\rtvienna.dat 2014-02-16 22:38:17 ----A---- C:\Windows\system32\RTKSMSettingsIPC.dll 2014-02-16 22:38:17 ----A---- C:\Windows\system32\RTKSMlfx.dll 2014-02-16 22:38:17 ----A---- C:\Windows\system32\RtkPgExt.dll 2014-02-16 22:38:17 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys 2014-02-16 22:38:16 ----A---- C:\Windows\system32\RtkCoLDR.dll 2014-02-16 22:38:16 ----A---- C:\Windows\system32\RtkCoInstII.dll 2014-02-16 22:38:15 ----A---- C:\Windows\system32\RtkApoApi.dll 2014-02-16 22:38:14 ----A---- C:\Windows\system32\RtkAPO.dll 2014-02-16 22:38:10 ----A---- C:\Windows\system32\RTEEP32A.dll 2014-02-16 22:38:10 ----A---- C:\Windows\system32\RTEEL32A.dll 2014-02-16 22:38:10 ----A---- C:\Windows\system32\RTEEG32A.dll 2014-02-16 22:38:10 ----A---- C:\Windows\system32\RTEED32A.dll 2014-02-16 22:38:09 ----A---- C:\Windows\system32\RP3DHT32.dll 2014-02-16 22:38:09 ----A---- C:\Windows\system32\RP3DAA32.dll 2014-02-16 22:38:09 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT 2014-02-16 22:38:06 ----A---- C:\Windows\system32\RCoRes.dat 2014-02-16 22:38:06 ----A---- C:\Windows\system32\R4EEP32A.dll 2014-02-16 22:38:06 ----A---- C:\Windows\system32\R4EEL32A.dll 2014-02-16 22:38:06 ----A---- C:\Windows\system32\R4EEG32A.dll 2014-02-16 22:38:06 ----A---- C:\Windows\system32\R4EED32A.dll 2014-02-16 22:38:06 ----A---- C:\Windows\system32\R4EEA32A.dll 2014-02-16 22:38:06 ----A---- C:\Windows\system32\MISS_APO.dll 2014-02-16 22:38:04 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-02-16 22:38:04 ----A---- C:\Windows\system32\MaxxVoiceAPO20.dll 2014-02-16 22:38:04 ----A---- C:\Windows\system32\MaxxSpeechAPO.dll 2014-02-16 22:38:04 ----A---- C:\Windows\system32\MaxxAudioVnN.dll 2014-02-16 22:38:04 ----A---- C:\Windows\system32\MaxxAudioVnA.dll 2014-02-16 22:38:03 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll 2014-02-16 22:38:03 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll 2014-02-16 22:38:03 ----A---- C:\Windows\system32\MaxxAudioEQ.dll 2014-02-16 22:38:03 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll 2014-02-16 22:38:02 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll 2014-02-16 22:38:02 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll 2014-02-16 22:38:02 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll 2014-02-16 22:38:02 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll 2014-02-16 22:38:02 ----A---- C:\Windows\system32\MaxxAudioAPO.dll 2014-02-16 22:38:02 ----A---- C:\Windows\system32\KAAPORT.dll 2014-02-16 22:38:00 ----A---- C:\Windows\system32\FMAPO.dll 2014-02-16 22:38:00 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll 2014-02-16 22:38:00 ----A---- C:\Windows\system32\DTSU2PREC32.dll 2014-02-16 22:38:00 ----A---- C:\Windows\system32\DTSU2PLFX32.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSU2PGFX32.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSLimiterDLL.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSLFXAPO.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSGFXAPONS.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSGFXAPO.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll 2014-02-16 22:37:59 ----A---- C:\Windows\system32\DTSBoostDLL.dll 2014-02-16 22:37:58 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll 2014-02-16 22:37:58 ----A---- C:\Windows\system32\DDPP32A.dll 2014-02-16 22:37:58 ----A---- C:\Windows\system32\DDPO32A.dll 2014-02-16 22:37:57 ----A---- C:\Windows\system32\DDPD32A.dll 2014-02-16 22:37:57 ----A---- C:\Windows\system32\DDPA32.dll 2014-02-16 22:37:56 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-02-16 22:37:55 ----A---- C:\Windows\system32\audioLibVc.dll 2014-02-16 22:37:55 ----A---- C:\Windows\system32\AERTARen.dll 2014-02-16 22:37:54 ----D---- C:\Program Files\Realtek 2014-02-16 22:37:54 ----A---- C:\Windows\system32\AERTACap.dll 2014-02-16 22:37:54 ----A---- C:\Windows\system32\AcpiServiceVnA.dll 2014-02-16 22:37:48 ----A---- C:\Windows\RtlExUpd.dll 2014-02-16 22:29:08 ----A---- C:\Windows\Language_trs.ini 2014-02-16 22:23:17 ----D---- C:\Program Files\Intel 2014-02-16 22:23:17 ----A---- C:\Windows\system32\CSVer.dll 2014-02-16 22:21:32 ----D---- C:\Intel 2014-02-16 22:20:59 ----HD---- C:\Program Files\Temp 2014-02-16 22:19:56 ----D---- C:\Program Files\DIFX 2014-02-16 21:54:22 ----D---- C:\Program Files\DriverTuner 2014-02-16 20:07:59 ----D---- C:\Program Files\SystemRequirementsLab 2014-02-16 20:07:53 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\SystemRequirementsLab 2014-02-16 20:06:41 ----A---- C:\Windows\system32\javaws.exe 2014-02-16 20:06:30 ----A---- C:\Windows\system32\WindowsAccessBridge.dll 2014-02-16 20:06:30 ----A---- C:\Windows\system32\javaw.exe 2014-02-16 20:06:30 ----A---- C:\Windows\system32\java.exe 2014-02-16 15:10:44 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-02-16 15:10:41 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-02-16 15:10:40 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys 2014-02-16 15:10:39 ----A---- C:\Windows\system32\wksprtPS.dll 2014-02-16 15:10:39 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-02-16 15:10:39 ----A---- C:\Windows\system32\MsRdpWebAccess.dll 2014-02-16 15:10:38 ----A---- C:\Windows\system32\wksprt.exe 2014-02-16 15:10:38 ----A---- C:\Windows\system32\TSWbPrxy.exe 2014-02-16 15:10:38 ----A---- C:\Windows\system32\tsgqec.dll 2014-02-16 15:10:38 ----A---- C:\Windows\system32\rdvidcrl.dll 2014-02-16 15:10:38 ----A---- C:\Windows\system32\mstsc.exe 2014-02-16 15:08:48 ----A---- C:\Windows\system32\TSWorkspace.dll 2014-02-16 14:43:56 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\HP 2014-02-16 14:43:56 ----D---- C:\ProgramData\WEBREG 2014-02-16 14:29:00 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\Carambis 2014-02-16 14:02:31 ----D---- C:\Program Files\Common Files\Hewlett-Packard 2014-02-16 14:01:15 ----D---- C:\Program Files\HP 2014-02-16 13:59:31 ----A---- C:\Windows\system32\hppldcoi.dll 2014-02-16 13:59:30 ----A---- C:\Windows\system32\hpowiax7.dll 2014-02-16 13:59:30 ----A---- C:\Windows\system32\hpovst15.dll 2014-02-16 13:59:29 ----A---- C:\Windows\system32\hpotscl6.dll 2014-02-13 21:01:19 ----A---- C:\Windows\system32\vbscript.dll 2014-02-13 19:47:46 ----A---- C:\Windows\system32\msxml3r.dll 2014-02-13 19:47:46 ----A---- C:\Windows\system32\msxml3.dll 2014-02-13 19:47:30 ----A---- C:\Windows\system32\d3d10warp.dll 2014-02-13 19:47:30 ----A---- C:\Windows\system32\d2d1.dll 2014-02-13 19:47:27 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe 2014-02-13 19:47:27 ----A---- C:\Windows\system32\RMActivate_isv.exe 2014-02-13 19:47:27 ----A---- C:\Windows\system32\RMActivate.exe 2014-02-13 19:47:26 ----A---- C:\Windows\system32\secproc_ssp_isv.dll 2014-02-13 19:47:26 ----A---- C:\Windows\system32\secproc_ssp.dll 2014-02-13 19:47:26 ----A---- C:\Windows\system32\secproc_isv.dll 2014-02-13 19:47:26 ----A---- C:\Windows\system32\secproc.dll 2014-02-13 19:47:26 ----A---- C:\Windows\system32\RMActivate_ssp.exe 2014-02-13 19:47:26 ----A---- C:\Windows\system32\msdrm.dll 2014-02-10 00:42:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys 2014-02-10 00:42:25 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-02-10 00:42:19 ----A---- C:\Windows\system32\rdpudd.dll 2014-02-10 00:42:18 ----A---- C:\Windows\system32\rdpendp_winip.dll 2014-02-10 00:42:17 ----A---- C:\Windows\system32\rdpcorets.dll 2014-02-09 23:53:42 ----D---- C:\Windows\Migration 2014-02-02 23:30:25 ----D---- C:\Program Files\MediaPlayerV1 2014-01-25 11:53:15 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-01-14 21:49:42 ----A---- C:\Windows\system32\drivers\netio.sys 2014-01-14 21:49:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys 2014-01-14 21:49:41 ----A---- C:\Windows\system32\drivers\usbport.sys 2014-01-14 21:49:41 ----A---- C:\Windows\system32\drivers\usbhub.sys 2014-01-14 21:49:41 ----A---- C:\Windows\system32\drivers\usbehci.sys 2014-01-14 21:49:41 ----A---- C:\Windows\system32\drivers\usbccgp.sys 2014-01-14 21:49:40 ----A---- C:\Windows\system32\drivers\usbohci.sys 2014-01-14 21:49:40 ----A---- C:\Windows\system32\drivers\usbd.sys 2014-01-12 14:36:04 ----D---- C:\Program Files\VideoPlayerV3 2013-12-28 21:33:20 ----D---- C:\Program Files\DAEMON Tools Lite 2013-12-22 13:15:20 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\newnext.me 2013-12-22 13:14:44 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\UpdaterEX 2013-12-22 13:14:21 ----D---- C:\Program Files\Mobogenie 2013-12-22 00:33:36 ----D---- C:\Program Files\WebexpEnhancedV1 ======List of files/folders modified in the last 3 months====== 2014-03-18 14:54:27 ----D---- C:\Program Files\Trend Micro 2014-03-18 14:53:52 ----AD---- C:\Windows 2014-03-18 14:53:50 ----D---- C:\Windows\Temp 2014-03-18 02:01:02 ----D---- C:\Windows\system32\config 2014-03-18 00:35:06 ----SHD---- C:\System Volume Information 2014-03-18 00:33:06 ----D---- C:\Windows\pss 2014-03-18 00:31:29 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\uTorrent 2014-03-18 00:31:23 ----D---- C:\Windows\inf 2014-03-18 00:31:21 ----D---- C:\Windows\debug 2014-03-17 23:59:14 ----D---- C:\Windows\twain_32 2014-03-17 23:51:40 ----D---- C:\Windows\system32\DriverStore 2014-03-17 23:51:40 ----D---- C:\Windows\system32\catroot 2014-03-17 23:49:39 ----D---- C:\Windows\System32 2014-03-17 23:48:06 ----SHD---- C:\Windows\Installer 2014-03-17 23:48:05 ----HD---- C:\Config.Msi 2014-03-17 23:46:48 ----RSD---- C:\Windows\Fonts 2014-03-17 23:46:48 ----D---- C:\ProgramData\HP 2014-03-17 23:46:35 ----HD---- C:\ProgramData 2014-03-17 23:45:35 ----D---- C:\Windows\winsxs 2014-03-17 23:45:14 ----D---- C:\Program Files\Common Files 2014-03-17 23:33:51 ----RSD---- C:\Windows\assembly 2014-03-17 23:33:48 ----RD---- C:\Program Files 2014-03-17 15:03:06 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\Nitro PDF 2014-03-17 10:57:22 ----D---- C:\Windows\system32\drivers 2014-03-17 10:21:02 ----D---- C:\Windows\system32\MRT 2014-03-17 10:18:08 ----D---- C:\Windows\Prefetch 2014-03-17 10:18:02 ----A---- C:\Windows\system32\MRT.exe 2014-03-17 10:17:50 ----D---- C:\Windows\system32\catroot2 2014-03-17 09:57:42 ----D---- C:\Program Files\Internet Explorer 2014-03-17 09:57:35 ----D---- C:\Program Files\Microsoft Silverlight 2014-03-16 20:48:42 ----D---- C:\Windows\system32\wfp 2014-03-16 20:48:38 ----D---- C:\Windows\system32\wbem 2014-03-16 20:48:38 ----D---- C:\Windows\registration 2014-03-16 11:21:43 ----A---- C:\extensions.ini 2014-03-16 08:52:10 ----D---- C:\Windows\Tasks 2014-03-16 08:52:06 ----D---- C:\Windows\system32\CodeIntegrity 2014-03-13 11:43:16 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-03-11 07:56:20 ----D---- C:\Windows\system32\Tasks 2014-03-11 07:56:11 ----RHD---- C:\MSOCache 2014-03-10 18:18:17 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\Belastingdienst 2014-03-03 00:10:28 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\vlc 2014-02-27 13:28:36 ----D---- C:\Windows\rescache 2014-02-27 12:12:29 ----D---- C:\Program Files\CCleaner 2014-02-27 10:25:03 ----D---- C:\Windows\system32\nl-NL 2014-02-27 10:25:03 ----D---- C:\Windows\system32\en-US 2014-02-24 23:27:47 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\Dropbox 2014-02-24 10:14:58 ----RD---- C:\Program Files\Skype 2014-02-24 10:14:52 ----D---- C:\ProgramData\Skype 2014-02-24 10:14:44 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\Skype 2014-02-24 00:35:37 ----HD---- C:\Program Files\InstallShield Installation Information 2014-02-23 23:37:19 ----D---- C:\Windows\AppPatch 2014-02-16 22:37:41 ----D---- C:\Program Files\Common Files\InstallShield 2014-02-16 22:23:40 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-02-16 20:07:25 ----D---- C:\ProgramData\Oracle 2014-02-16 19:51:15 ----A---- C:\Windows\win.ini 2014-02-16 18:11:55 ----AD---- C:\ProgramData\TEMP 2014-02-16 17:54:03 ----D---- C:\Windows\system32\drivers\en-US 2014-02-16 15:54:38 ----D---- C:\Windows\Microsoft.NET 2014-02-16 13:52:18 ----D---- C:\Windows\Resources 2014-02-13 21:01:28 ----D---- C:\ProgramData\Microsoft Help 2014-02-10 00:43:43 ----D---- C:\Windows\PolicyDefinitions 2014-02-10 00:43:42 ----D---- C:\Windows\system32\drivers\nl-NL 2014-02-09 23:53:42 ----SD---- C:\ProgramData\Microsoft 2014-02-09 23:45:06 ----D---- C:\Program Files\Microsoft.NET 2014-02-08 23:45:25 ----D---- C:\Windows\LiveKernelReports 2014-02-03 22:16:44 ----D---- C:\Windows\AutoKMS 2014-02-02 23:30:26 ----HD---- C:\Windows\system32\GroupPolicy 2014-01-25 11:54:51 ----D---- C:\Program Files\iTunes 2014-01-25 11:53:17 ----D---- C:\Program Files\iPod 2014-01-25 11:53:16 ----D---- C:\Program Files\Common Files\Apple 2014-01-25 11:47:28 ----D---- C:\ProgramData\Apple 2014-01-19 08:32:23 ----N---- C:\Windows\system32\MpSigStub.exe 2014-01-11 09:09:33 ----D---- C:\Windows\AppCompat 2013-12-29 21:58:42 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\dvdcss 2013-12-29 21:58:41 ----D---- C:\Program Files\PowerISO 2013-12-26 08:51:02 ----D---- C:\Program Files\Common Files\Adobe 2013-12-22 14:20:17 ----D---- C:\Users\Anne van de Ven\AppData\Roaming\pdfforge 2013-12-22 14:01:02 ----D---- C:\ProgramData\Adobe 2013-12-22 14:00:58 ----D---- C:\Program Files\Adobe 2013-12-22 13:53:43 ----D---- C:\Program Files\Apple Software Update 2013-12-22 13:22:03 ----D---- C:\Program Files\WinRAR 2013-12-20 06:28:25 ----D---- C:\ProgramData\Apple Computer 2013-12-19 22:52:54 ----D---- C:\Program Files\Google ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-02-18 355352] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 214696] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-10-29 324096] R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096] R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-01-01 26024] R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2007-08-07 33052] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768] R3 atikmdag;atikmdag; C:\Windows\system32\drivers\atikmdag.sys [2009-07-13 4194816] R3 dvd43llh;dvd43llh; C:\Windows\System32\DRIVERS\dvd43llh.sys [2012-10-03 18816] R3 ElbyDelay;ElbyDelay; C:\Windows\System32\Drivers\ElbyDelay.sys [2007-02-16 11984] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-10-07 2867544] R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2010-07-13 65640] R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2009-07-14 18432] R3 NETwLv32; Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETwLv32.sys [2010-10-07 6639616] R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856] R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-10-26 1095936] S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072] S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 16384] S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2008-07-26 627864] S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2008-07-26 41752] S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168] S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [] S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-08-23 47360] S3 pepifilter;Volume Adapter; C:\Windows\system32\DRIVERS\lv302af.sys [2008-07-26 13848] S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V32.SYS [2008-07-26 2570520] S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2013-09-30 15688] S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 10320] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032] S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 49152] S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [] S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [] S3 usb_rndisx;USB RNDIS Adapter; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 15872] S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-12-13 45056] S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920] S3 WINUSB;WinUsb Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-01-07 43336] R2 astcc;AST Service; C:\Windows\system32\ASTSRV.EXE [2009-09-15 61760] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504] R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 22208] R2 NitroDriverReadSpool2;NitroPDFDriverCreatorReadSpool2; C:\Program Files\Nitro PDF\Professional 7\NitroPDFDriverService2.exe [2012-07-08 184840] R2 nlsX86cc;NLS Service; C:\Windows\system32\NLSSRV32.EXE [2010-07-09 65856] R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-01-20 553288] R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288] R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-09 136176] S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-13 257928] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-09 136176] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 108032] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-09-20 382248] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-23 1343400] S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 CscService;Offline Files; C:\Windows\System32\svchost.exe [2009-07-14 20992] S4 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------