Logfile of random's system information tool 1.10 (written by random/random) Run by Jack at 2014-12-20 18:32:05 Microsoft Windows 7 Professional Service Pack 1 System drive C: has 10 GB (20%) free of 51 GB Total RAM: 3327 MB (54% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:32:27, on 20-12-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17496) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\DllHost.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe D:\Avast\avastui.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE C:\Users\Jack\AppData\Local\Google\Update\GoogleUpdate.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Windows\system32\wbem\unsecapp.exe C:\Users\Jack\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Jack\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Jack\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Jack\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\Jack\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Jack\Downloads\RSIT (1).exe C:\Users\Jack\Downloads\RSIT (1).exe C:\Program Files\trend micro\Jack.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file) O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [AvastUI.exe] "D:\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE O4 - HKCU\..\Run: [Google Update] "C:\Users\Jack\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe O23 - Service: avast! Antivirus - AVAST Software - D:\Avast\AvastSvc.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - D:\Avast\ng\vbox\AvastVBoxSVC.exe O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe O23 - Service: Realtek11nCU - Realtek - C:\Program Files\ICIDU\ICIDU 11n USB Wireless LAN\RtlService.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- End of file - 5240 bytes ======Scheduled tasks folder====== C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job - C:\Windows\TEMP\{FAABF180-7D40-4C72-811B-E283D5E41518}.exe --uninstall=1 C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{4C1BB9F8-30D2-4FB6-AE72-B6B34F731804}.exe --uninstall=1 C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job - C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe scan C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job - C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe -updatecheck C:\Windows\tasks\DriverToolkit Autorun.job - C:\Program Files\DriverToolkit\DriverToolkit.exe --autorun C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1789666498-911104854-1326491243-1000Core.job - C:\Users\Jack\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1789666498-911104854-1326491243-1000UA.job - C:\Users\Jack\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - D:\Avast\aswWebRepIE.dll [2014-11-27 586968] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-11-20 1021128] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-10-21 7858720] "AvastUI.exe"=D:\Avast\AvastUI.exe [2014-12-12 5227112] "UnlockerAssistant"=C:\Program Files\Unlocker\UnlockerAssistant.exe [2010-07-04 17408] "IJNetworkScanUtility"=C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [2010-01-18 124256] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"=C:\Users\Jack\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-24 116648] "TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2013-08-27 248208] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "SoftwareSASGeneration"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "VIDC.I420"=lvcodec2.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "MSVideo"=vfwwdm32.dll "msacm.siren"=sirenacm.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-12-20 18:32:05 ----D---- C:\rsit 2014-12-20 18:32:05 ----D---- C:\Program Files\trend micro 2014-12-20 17:12:31 ----A---- C:\Windows\system32\PerfStringBackup.TMP 2014-12-19 13:47:48 ----D---- C:\Users\Jack\AppData\Roaming\driver 2014-12-12 14:03:22 ----D---- C:\Windows\system32\appraiser 2014-12-11 16:22:12 ----A---- C:\Windows\system32\rrinstaller.exe 2014-12-11 16:22:12 ----A---- C:\Windows\system32\mfps.dll 2014-12-11 16:22:12 ----A---- C:\Windows\system32\mfpmp.exe 2014-12-11 16:22:12 ----A---- C:\Windows\system32\mferror.dll 2014-12-11 16:22:12 ----A---- C:\Windows\system32\mf.dll 2014-12-11 14:28:24 ----A---- C:\Windows\system32\drivers\tdx.sys 2014-12-11 14:28:23 ----A---- C:\Windows\system32\WindowsCodecs.dll 2014-12-11 14:28:22 ----A---- C:\Windows\system32\invagent.dll 2014-12-11 14:28:22 ----A---- C:\Windows\system32\appraiser.dll 2014-12-11 14:28:22 ----A---- C:\Windows\system32\aitstatic.exe 2014-12-11 14:28:22 ----A---- C:\Windows\system32\aepic.dll 2014-12-11 14:28:22 ----A---- C:\Windows\system32\aeinv.dll 2014-12-11 14:28:21 ----A---- C:\Windows\system32\generaltel.dll 2014-12-11 14:28:21 ----A---- C:\Windows\system32\devinv.dll 2014-12-11 14:28:21 ----A---- C:\Windows\system32\aepdu.dll 2014-12-11 14:28:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-12-11 14:28:18 ----A---- C:\Windows\system32\jsproxy.dll 2014-12-11 14:28:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-12-11 14:28:18 ----A---- C:\Windows\system32\ieUnatt.exe 2014-12-11 14:28:18 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-12-11 14:28:18 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-12-11 14:28:17 ----A---- C:\Windows\system32\wininet.dll 2014-12-11 14:28:17 ----A---- C:\Windows\system32\vbscript.dll 2014-12-11 14:28:17 ----A---- C:\Windows\system32\jscript9diag.dll 2014-12-11 14:28:17 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-12-11 14:28:17 ----A---- C:\Windows\system32\dxtmsft.dll 2014-12-11 14:28:16 ----A---- C:\Windows\system32\mshtmled.dll 2014-12-11 14:28:16 ----A---- C:\Windows\system32\ieui.dll 2014-12-11 14:28:16 ----A---- C:\Windows\system32\dxtrans.dll 2014-12-11 14:28:15 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-12-11 14:28:15 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-12-11 14:28:15 ----A---- C:\Windows\system32\iertutil.dll 2014-12-11 14:28:14 ----A---- C:\Windows\system32\jscript9.dll 2014-12-11 14:28:13 ----A---- C:\Windows\system32\mshtml.dll 2014-12-11 14:28:12 ----A---- C:\Windows\system32\urlmon.dll 2014-12-11 14:28:12 ----A---- C:\Windows\system32\msfeeds.dll 2014-12-11 14:28:12 ----A---- C:\Windows\system32\iernonce.dll 2014-12-11 14:28:12 ----A---- C:\Windows\system32\iedkcs32.dll 2014-12-11 14:28:12 ----A---- C:\Windows\system32\ieapfltr.dll 2014-12-11 14:28:12 ----A---- C:\Windows\system32\ie4uinit.exe 2014-12-11 14:28:11 ----A---- C:\Windows\system32\msrating.dll 2014-12-11 14:28:10 ----A---- C:\Windows\system32\iesetup.dll 2014-12-11 14:28:10 ----A---- C:\Windows\system32\ieframe.dll 2014-12-11 14:27:23 ----A---- C:\Windows\system32\tzres.dll 2014-12-11 14:27:22 ----A---- C:\Windows\system32\charmap.exe 2014-12-11 14:27:21 ----A---- C:\Windows\system32\WsmWmiPl.dll 2014-12-11 14:27:21 ----A---- C:\Windows\system32\WsmSvc.dll 2014-12-11 14:27:21 ----A---- C:\Windows\system32\WsmAuto.dll 2014-12-11 14:27:21 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll 2014-12-11 14:27:21 ----A---- C:\Windows\system32\WSManHTTPConfig.exe 2014-12-02 15:40:06 ----A---- C:\Windows\system32\nitrolocalui2.dll 2014-12-02 15:40:06 ----A---- C:\Windows\system32\nitrolocalmon2.dll 2014-12-02 15:39:56 ----D---- C:\Program Files\Nitro 2014-12-02 15:39:56 ----D---- C:\Program Files\Common Files\Nitro 2014-11-28 10:12:30 ----D---- C:\Windows\system32\vbox 2014-11-27 14:21:04 ----A---- C:\Windows\system32\aswBoot.exe 2014-11-27 14:20:56 ----A---- C:\Windows\avastSS.scr 2014-11-25 15:07:14 ----D---- C:\Users\Jack\AppData\Roaming\Intenium 2014-11-25 11:24:17 ----D---- C:\Windows\rescache ======List of files/folders modified in the last 1 month====== 2014-12-20 18:32:27 ----D---- C:\Windows\Temp 2014-12-20 18:32:05 ----RD---- C:\Program Files 2014-12-20 18:30:54 ----D---- C:\Windows\system32\config 2014-12-20 18:29:52 ----D---- C:\Windows\System32 2014-12-20 17:46:36 ----SHD---- C:\System Volume Information 2014-12-20 17:44:19 ----D---- C:\Windows\inf 2014-12-20 17:37:12 ----HD---- C:\ProgramData 2014-12-20 17:37:12 ----D---- C:\Windows\Downloaded Program Files 2014-12-20 17:37:11 ----D---- C:\Windows\system32\drivers 2014-12-20 17:14:09 ----D---- C:\Windows\system32\CodeIntegrity 2014-12-20 17:04:42 ----AD---- C:\Windows 2014-12-19 14:50:56 ----D---- C:\Windows\system32\LogFiles 2014-12-19 14:08:39 ----D---- C:\Windows\Prefetch 2014-12-19 13:46:59 ----D---- C:\Windows\system32\catroot 2014-12-19 13:46:52 ----D---- C:\Windows\winsxs 2014-12-16 14:51:36 ----D---- C:\Windows\system32\catroot2 2014-12-12 14:03:22 ----SD---- C:\Windows\system32\CompatTel 2014-12-12 14:03:22 ----D---- C:\Windows\AppCompat 2014-12-12 14:03:21 ----SD---- C:\ProgramData\Microsoft 2014-12-12 14:03:21 ----D---- C:\Windows\PolicyDefinitions 2014-12-12 14:03:20 ----D---- C:\Windows\system32\nl-NL 2014-12-12 14:03:20 ----D---- C:\Windows\system32\en-US 2014-12-12 14:03:20 ----D---- C:\Program Files\Internet Explorer 2014-12-11 16:22:57 ----SHD---- C:\Windows\Installer 2014-12-11 16:22:57 ----SHD---- C:\Config.Msi 2014-12-11 16:22:57 ----D---- C:\ProgramData\Microsoft Help 2014-12-11 16:20:55 ----D---- C:\Windows\system32\MRT 2014-12-11 16:18:03 ----D---- C:\Windows\debug 2014-12-11 16:18:00 ----A---- C:\Windows\system32\MRT.exe 2014-12-09 14:53:50 ----D---- C:\Windows\system32\NDF 2014-12-02 16:53:17 ----D---- C:\Users\Jack\AppData\Roaming\ShamanGS 2014-12-02 15:39:56 ----D---- C:\Program Files\Common Files 2014-12-02 10:56:38 ----D---- C:\Users\Jack\AppData\Roaming\Downloaded Installations 2014-11-27 14:21:10 ----D---- C:\Windows\system32\Tasks 2014-11-24 14:04:58 ----N---- C:\Windows\system32\MpSigStub.exe 2014-11-24 12:07:53 ----D---- C:\Users\Jack\AppData\Roaming\Artogon 2014-11-24 12:05:41 ----D---- C:\Users\Jack\AppData\Roaming\Eipix ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-27 49944] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-27 206248] R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360] R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-27 81768] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-27 787800] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-27 423784] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128] R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-27 24184] R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-27 70384] R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-27 91496] R2 VBoxAswDrv;VBoxAsw Support Driver; \??\D:\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-27 218192] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-12 8598528] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-12 257024] R3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\DRIVERS\FLxHCIc.sys [2011-07-06 152064] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-10-21 2782560] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2011-09-08 363112] R3 RTL8192cu;ICIDU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192cu.sys [2011-07-20 728064] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 9216] S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704] S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 CBTNDIS4;CBTNDIS4 NDIS Protocol Driver; \??\C:\Windows\system32\CBTNDIS4.SYS [] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2013-02-05 49664] S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\lvusbsta.sys [2005-01-31 22016] S3 odysseyIM4;Odyssey Network Agent Miniport; C:\Windows\system32\DRIVERS\odysseyIM4.sys [2004-09-24 173056] S3 PID_0920;Logitech QuickCam Express(PID_0920); C:\Windows\system32\DRIVERS\LV532AV.SYS [2005-01-31 163328] S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2013-09-30 15688] S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 10320] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632] S3 RTL8167;Realtek 8167 NT-stuurprogramma; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-12 176128] R2 avast! Antivirus;avast! Antivirus; D:\Avast\AvastSvc.exe [2014-11-27 50344] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8; C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe [2013-01-14 196616] R2 Realtek11nCU;Realtek11nCU; C:\Program Files\ICIDU\ICIDU 11n USB Wireless LAN\RtlService.exe [2010-04-16 36864] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 1713904] R3 AvastVBoxSvc;AvastVBox COM Service; D:\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-27 3192344] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2013-02-05 1512448] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 102912] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-24 1343400] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------