Logfile of random's system information tool 1.10 (written by random/random)
Run by caecccc at 2015-02-10 13:46:57
Microsoft Windows 7 Ultimate  Service Pack 1
System drive C: has 263 GB (86%) free of 305 GB
Total RAM: 3069 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:47:02, on 10/02/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\caecccc.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=http://www.default-search.net?sid=498&aid=157&itype=r&ver=14591&tm=539&src=hmp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=http://www.msn.com/?pc=AV01
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: 166090e0f32601317e4e5118752c52d60061752 - {11111111-1111-1111-1111-110611171152} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Registry Helper] "C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe" /boot
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\caecccc\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-568048905-3917680449-3251823053-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-568048905-3917680449-3251823053-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: rvlkl.lnk = C:\ProgramData\rvlkl\rvlkl.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O20 - AppInit_DLLs:  c:\users\caecccc\appdata\local\linkey\ieexte~1\iedll.dll c:\progra~2\searchprotect\searchprotect\bin\spvc32loader.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9328 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
winlogon.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\Hpservice.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k bthsvcs
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {5A399A9B-4E4E-45D1-9848-F1CAC74444EE}
"C:\Windows\System32\StikyNot.exe" 
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" 
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"taskhost.exe"
ctfmon.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9223
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="8068.0.1932109770\283126509" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,39,47 --gpu-vendor-id=0x10de --gpu-device-id=0x0649 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3165 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group18 pct:1i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/UwSInterstitialStatus/Off/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="8068.2.1684176437\2032089163" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group18 pct:1i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/UwSInterstitialStatus/Off/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="8068.3.1260437776\954503608" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group18 pct:1i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/UwSInterstitialStatus/Off/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="8068.9.844333082\1378470057" /prefetch:673131151

"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=renderer --no-sandbox --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (10.0.2208)" --lang=en-US --lang=en-US --log-file="C:\Users\caecccc\AppData\Roaming\AVAST Software\Avast\log\avastium.log" --log-severity=error --disable-webgl --disable-pepper-3d --disable-gl-multisampling --disable-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-video-decode --channel="2900.16.1441428600\1265181421" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="8068.67.280746126\383826985" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group18 pct:1i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/UwSInterstitialStatus/Off/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="8068.76.1045510254\496431927" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe25_ Global\UsGthrCtrlFltPipeMssGthrPipe25 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528 
"C:\Users\caecccc\Downloads\RSITx64.exe" 
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\9472bf32-801e-4380-a93a-312d3363a0e3.job - C:\Program Files (x86)\Internet Speed Checker\9472bf32-801e-4380-a93a-312d3363a0e3.exe  001726 2403962916D1411AB762BB067FC7327EIE 61752 1416637187 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 Internet Speed Checker 
C:\Windows\tasks\abcbc285-3637-41b2-832a-af47b6df0881-1.job - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe  /rawdata=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 
C:\Windows\tasks\abcbc285-3637-41b2-832a-af47b6df0881-11.job - C:\Program Files (x86)\Internet Speed Checker\abcbc285-3637-41b2-832a-af47b6df0881-11.exe  /rawdata=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 
C:\Windows\tasks\abcbc285-3637-41b2-832a-af47b6df0881-4.job - C:\Program Files (x86)\Internet Speed Checker\abcbc285-3637-41b2-832a-af47b6df0881-4.exe  /rawdata=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 
C:\Windows\tasks\abcbc285-3637-41b2-832a-af47b6df0881-5.job - C:\Program Files (x86)\Internet Speed Checker\abcbc285-3637-41b2-832a-af47b6df0881-5.exe  /rawdata=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 
C:\Windows\tasks\abcbc285-3637-41b2-832a-af47b6df0881-5_user.job - C:\Program Files (x86)\Internet Speed Checker\abcbc285-3637-41b2-832a-af47b6df0881-5.exe  /rawdata=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 
C:\Windows\tasks\abcbc285-3637-41b2-832a-af47b6df0881-6.job - C:\Program Files (x86)\Internet Speed Checker\abcbc285-3637-41b2-832a-af47b6df0881-6.exe  /rawdata=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 
C:\Windows\tasks\abcbc285-3637-41b2-832a-af47b6df0881-7.job - C:\Program Files (x86)\Internet Speed Checker\abcbc285-3637-41b2-832a-af47b6df0881-7.exe  /rawdata=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 
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-568048905-3917680449-3251823053-1000Core.job - C:\Users\caecccc\AppData\Local\Facebook\Update\FacebookUpdate.exe  /c /nocrashserver 
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-568048905-3917680449-3251823053-1000UA.job - C:\Users\caecccc\AppData\Local\Facebook\Update\FacebookUpdate.exe  /ua /installsource scheduler 
C:\Windows\tasks\fc6a064f-a2dd-4cc3-9a73-369f24d55904.job - C:\Program Files (x86)\Internet Speed Checker\fc6a064f-a2dd-4cc3-9a73-369f24d55904.exe  /agentregpath='Internet Speed Checker' /appid=61752 /srcid='001726' /subid='0' /zdata='0' /bic=2403962916D1411AB762BB067FC7327EIE /verifier=8c830803ef0f1a37e52e68b43a162d8a /installerversion=1_35_09_29 /installationtime=1416637187 /statsdomain=http://stats.newonlinedemoserv.com /errorsdomain=http://errors.newonlinedemoserv.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newonlinedemoserv.com /runfrom='task' /externallog='' 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-02-10 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-02-10 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\caecccc\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-12-03 138096]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Registry Helper"=C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe /boot []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-02-10 5225064]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
rvlkl.lnk - C:\ProgramData\rvlkl\rvlkl.exe

C:\Users\caecccc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OneNote 2007 Schermopname en Snel starten.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-02-10 11:39:56 ----D---- C:\Program Files (x86)\ESET
2015-02-10 00:48:22 ----D---- C:\Users\caecccc\AppData\Roaming\AVAST Software
2015-02-10 00:41:01 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-02-10 00:41:01 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-02-10 00:41:01 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-02-10 00:41:01 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-02-10 00:41:01 ----A---- C:\Windows\system32\drivers\aswmonflt.sys
2015-02-10 00:41:01 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-02-10 00:41:00 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-02-10 00:41:00 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-02-10 00:41:00 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2015-02-10 00:40:57 ----A---- C:\Windows\system32\aswBoot.exe
2015-02-10 00:40:45 ----A---- C:\Windows\avastSS.scr
2015-02-10 00:40:29 ----A---- C:\Windows\system32\drivers\aswNdisFlt.sys
2015-02-10 00:39:05 ----D---- C:\Program Files\AVAST Software
2015-01-24 14:37:41 ----SD---- C:\Windows\SYSWOW64\Microsoft
2015-01-15 09:57:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-01-15 09:57:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-01-15 09:57:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-01-15 09:57:00 ----A---- C:\Windows\system32\srcore.dll
2015-01-15 09:56:59 ----A---- C:\Windows\system32\srclient.dll
2015-01-15 09:56:59 ----A---- C:\Windows\system32\rstrui.exe
2015-01-15 09:56:58 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-01-14 12:36:45 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 12:36:45 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 12:36:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 12:36:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-14 12:36:44 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 12:36:43 ----A---- C:\Windows\system32\drivers\mrxdav.sys

======List of files/folders modified in the last 1 month======

2015-02-10 13:47:00 ----D---- C:\Program Files\trend micro
2015-02-10 13:46:56 ----D---- C:\Windows\Prefetch
2015-02-10 13:46:50 ----D---- C:\Windows\Temp
2015-02-10 13:12:54 ----D---- C:\Windows\SysWOW64
2015-02-10 12:56:01 ----D---- C:\Windows\system32\config
2015-02-10 12:43:28 ----SHD---- C:\System Volume Information
2015-02-10 11:39:56 ----RD---- C:\Program Files (x86)
2015-02-10 01:03:52 ----D---- C:\Windows\system32\Tasks
2015-02-10 00:42:16 ----D---- C:\Windows\system32\drivers
2015-02-10 00:42:16 ----D---- C:\Windows\inf
2015-02-10 00:42:13 ----D---- C:\Windows\system32\catroot
2015-02-10 00:42:11 ----D---- C:\Windows\system32\DriverStore
2015-02-10 00:40:57 ----D---- C:\Windows\System32
2015-02-10 00:40:53 ----D---- C:\Windows
2015-02-10 00:39:05 ----D---- C:\ProgramData\AVAST Software
2015-02-10 00:39:05 ----D---- C:\Program Files
2015-02-10 00:20:35 ----D---- C:\Users\caecccc\AppData\Roaming\Skype
2015-02-05 18:36:09 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-02-05 16:24:02 ----SHD---- C:\Windows\Installer
2015-02-05 16:19:45 ----D---- C:\Windows\Tasks
2015-02-04 18:30:15 ----D---- C:\Windows\system32\catroot2
2015-02-01 19:33:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-15 22:30:12 ----D---- C:\Windows\winsxs
2015-01-14 13:39:53 ----D---- C:\Windows\system32\MRT
2015-01-14 13:20:35 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_xata;amd_xata; C:\Windows\system32\drivers\amd_xata.sys [2012-04-11 42624]
R0 aswNdisFlt;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2015-02-10 449936]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-02-10 267632]
R0 DC3410;DC3410; C:\Windows\system32\drivers\DC3410.sys [2011-05-02 48328]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-10-17 559384]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2012-06-20 578008]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2012-06-29 26072]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SiFilter;SATALink driver accelerator; C:\Windows\system32\drivers\SiWinAcc.sys [2007-10-03 22056]
R0 SiRemFil;SATALink External Device Filter; C:\Windows\system32\drivers\SiRemFil.sys [2007-10-03 17448]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2015-02-10 28184]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-02-10 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-02-10 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-02-10 436624]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-02-10 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-02-10 87912]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-02-10 116728]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2012-09-05 80384]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-10-22 128352]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2007-05-11 50208]
R3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETw5s64.sys [2010-01-13 7675392]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-10-27 196384]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-02-10 65776]
S1 ccnfd_1_10_0_2;ccnfd_1_10_0_2; C:\Windows\system32\drivers\ccnfd_1_10_0_2.sys []
S3 2310_00;2310_00; C:\Windows\system32\drivers\2310_00.sys [2009-06-12 170528]
S3 272x_1x;272x_1x; C:\Windows\system32\drivers\272x_1x.sys [2012-04-24 612672]
S3 274x_3x;274x_3x; C:\Windows\system32\drivers\274x_3x.sys [2012-04-24 240960]
S3 ahcix64s;ahcix64s; C:\Windows\system32\drivers\ahcix64s.sys [2011-12-29 292136]
S3 amd_sata;amd_sata; C:\Windows\system32\drivers\amd_sata.sys [2012-04-11 82560]
S3 arcm_a64;arcm_a64; C:\Windows\system32\drivers\arcm_a64.sys [2009-11-09 52768]
S3 asahci64;asahci64; C:\Windows\system32\drivers\asahci64.sys [2012-01-06 49760]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-09-05 552960]
S3 DC133;DC133; C:\Windows\system32\drivers\DC133.sys [2011-05-02 39320]
S3 DC150;DC150; C:\Windows\system32\drivers\DC150.sys [2011-05-02 39832]
S3 DC154;DC154; C:\Windows\system32\drivers\DC154.sys [2011-05-02 48136]
S3 DC300e;DC300e; C:\Windows\system32\drivers\DC300e.sys [2011-05-02 40344]
S3 DC324e;DC324e; C:\Windows\system32\drivers\DC324e.sys [2011-05-02 49752]
S3 DC4300;DC4300; C:\Windows\system32\drivers\DC4300.sys [2011-05-02 48360]
S3 DC600e;DC600e; C:\Windows\system32\drivers\DC600e.sys [2011-05-02 40744]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 hptiop;hptiop; C:\Windows\system32\drivers\hptiop.sys [2009-05-25 17440]
S3 hptmv;hptmv; C:\Windows\system32\drivers\hptmv.sys [2006-09-18 93472]
S3 hptmv6;hptmv6; C:\Windows\system32\drivers\hptmv6.sys [2007-11-01 152096]
S3 iaStorS;iaStorS; C:\Windows\system32\drivers\iaStorS.sys [2012-06-29 651224]
S3 iteatapi;iteatapi; C:\Windows\system32\drivers\iteatapi.sys [2008-05-14 38680]
S3 iteraid;iteraid; C:\Windows\system32\drivers\iteraid.sys [2007-05-02 32768]
S3 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2011-05-19 120920]
S3 lvpopf64;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopf64.sys [2007-05-11 1361952]
S3 LVUVC64;Logitech QuickCam Pro 5000(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2007-05-11 3612704]
S3 megasas2;megasas2; C:\Windows\system32\drivers\megasas2.sys [2012-02-28 51496]
S3 megasr1;megasr1; C:\Windows\system32\drivers\MegaSR1.sys [2009-04-16 461320]
S3 mv61xx;mv61xx; C:\Windows\system32\drivers\mv61xx.sys [2011-05-06 182576]
S3 mv91cons;mv91cons; C:\Windows\system32\drivers\mv91cons.sys [2012-02-23 27440]
S3 mvs91xx;mvs91xx; C:\Windows\system32\drivers\mvs91xx.sys [2012-02-23 317744]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 nvrd64;nvrd64; C:\Windows\system32\drivers\nvrd64.sys [2010-04-09 175720]
S3 nvstor64;nvstor64; C:\Windows\system32\drivers\nvstor64.sys [2010-04-09 244328]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 Pnp680;Pnp680; C:\Windows\system32\drivers\pnp680.sys [2007-11-13 80424]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]
S3 rr172x;rr172x; C:\Windows\system32\drivers\rr172x.sys [2007-11-01 124448]
S3 rr174x;rr174x; C:\Windows\system32\drivers\rr174x.sys [2007-11-01 159264]
S3 rr2210;rr2210; C:\Windows\system32\drivers\rr2210.sys [2007-11-01 153632]
S3 rr232x;rr232x; C:\Windows\system32\drivers\rr232x.sys [2008-05-05 152096]
S3 rr2340;rr2340; C:\Windows\system32\drivers\rr2340.sys [2009-12-31 162400]
S3 rr2522;rr2522; C:\Windows\system32\drivers\rr2522.sys [2009-12-31 168032]
S3 rr276x;rr276x; C:\Windows\system32\drivers\rr276x.sys [2012-04-24 241472]
S3 rr278x;rr278x; C:\Windows\system32\drivers\rr278x.sys [2012-04-24 240960]
S3 rr62x;rr62x; C:\Windows\system32\drivers\rr62x.sys [2010-06-16 156256]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SI3112r;SI3112r; C:\Windows\system32\drivers\SI3112r.sys [2007-02-01 164656]
S3 SI3114;SI3114; C:\Windows\system32\drivers\SI3114.sys [2006-11-10 99120]
S3 SI3114r;SI3114r; C:\Windows\system32\drivers\SI3114R.sys [2007-04-11 163632]
S3 SI3124;SI3124; C:\Windows\system32\drivers\SI3124.sys [2006-11-02 113456]
S3 Si3124r5;Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [2006-09-20 334640]
S3 SI3132;SI3132; C:\Windows\system32\drivers\SI3132.sys [2007-10-03 90664]
S3 Si3531;Si3531; C:\Windows\system32\drivers\Si3531.sys [2009-02-09 333864]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viamrx64;viamrx64; C:\Windows\system32\drivers\viamrx64.sys [2010-12-02 161904]
S3 videX64;videX64; C:\Windows\system32\drivers\videX64.sys [2010-02-11 15000]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 vmci;vmci; C:\Windows\system32\drivers\vmci.sys [2012-01-17 116336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-02-10 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2015-02-10 104416]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-27 1364256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-31 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-31 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 cpocvpwhljgypk;cpocvpwhljgypk; c:\windows\SysWOW64\hebnqzzc.exe [2013-05-04 76800]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------