Logfile of random's system information tool 1.10 (written by random/random) Run by Jenné at 2016-03-21 12:58:57 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 36 GB (25%) free of 142 GB Total RAM: 3061 MB (26% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:58:59, on 21/03/2016 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16749) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Dell\DellDock\DellDock.exe C:\Windows\system32\conime.exe C:\Windows\System32\hkcmd.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Windows\System32\WLTRAY.EXE C:\Windows\system32\igfxsrvc.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\IDT\WDM\sttray.exe C:\Windows\ehome\ehtray.exe C:\Program Files\CCleaner\CCleaner.exe C:\Windows\ehome\ehmsas.exe C:\Users\Jenné\AppData\Roaming\uTorrent\uTorrent.exe C:\Users\Jenné\AppData\Local\Microsoft\BingSvc\BingSvc.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\Users\Jenné\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Users\Jenné\AppData\Roaming\uTorrent\updates\3.4.5_41865\utorrentie.exe C:\Users\Jenné\AppData\Roaming\uTorrent\updates\3.4.5_41865\utorrentie.exe C:\Windows\system32\wermgr.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Windows Live\Mail\wlmail.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Jenné\Downloads\RSIT.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\Jenné\Downloads\RSIT (1).exe C:\Program Files\trend micro\Jenné.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/web/?type=ds&ts=1445536489&z=bd58b9f22d26b5645ab3a2cg3z1zcw1w3c0qbzfbdt&from=2sq&uid=st9160827as_5rf0zxm5xxxx5rf0zxm5&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/web/?type=ds&ts=1445536489&z=bd58b9f22d26b5645ab3a2cg3z1zcw1w3c0qbzfbdt&from=2sq&uid=st9160827as_5rf0zxm5xxxx5rf0zxm5&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/web/?type=ds&ts=1445536489&z=bd58b9f22d26b5645ab3a2cg3z1zcw1w3c0qbzfbdt&from=2sq&uid=st9160827as_5rf0zxm5xxxx5rf0zxm5&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer aangeboden door Dell R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe" O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe" /mode2 O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_99E9E8177E24041F9B6F92471FF68891] "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Jenné\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [Device Detection] C:\Program Files\HEMA Fotoservice\dd.exe O4 - HKCU\..\Run: [uTorrent] "C:\Users\Jenné\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED O4 - HKCU\..\Run: [BingSvc] C:\Users\Jenné\AppData\Local\Microsoft\BingSvc\BingSvc.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user') O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe O4 - Startup: Dropbox.lnk = ? O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.lofer.at/activex/AxisCamControl.ocx O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\aestsrv.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: Be sure to use the latest version of Mustang Service. (MustangService_2015_10_10) - MustangService - C:\ProgramData\TempMoudleSet\MustangSer294.exe O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\nlssrv32.exe O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\STacSV.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE -- End of file - 10965 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1881090249-3544453821-2753665653-1000Core.job - C:\Users\Jenné\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1881090249-3544453821-2753665653-1000UA.job - C:\Users\Jenné\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1881090249-3544453821-2753665653-1000Core.job - C:\Users\Jenné\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1881090249-3544453821-2753665653-1000UA.job - C:\Users\Jenné\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\KNQX.job - C:\Users\Jenn�\AppData\Roaming\KNQX.exe /infocmdline=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 C:\Windows\tasks\LWYYGLX.job - C:\Users\Jenn�\AppData\Roaming\LWYYGLX.exe /infocmdline=SCG3qwJ4iiTgTg7BA232Mg9l+flXnCqJclF9S8VWX5GydNpPUYEPjcnuEi59RLJwkRbuMJ2FeSYtV3Imjgye10dnlF3DZIu8VzHp2HgTNl8jbLrvSNNMD9JGrxgXwbF7Ed6PpiendWu5DFxsy4GV7juao3YWyMB14DwtwYQ8Z2pjvu8g6n3xkaFEnJKaizaCGfkC6juDQY5Y5MKmFZx+iOmD/qmPs7rNM9A40GGfpcBy+2xipekns5FOQIXsU9n+NMl3lyaTpW6Pw1dSHlOc5sn2Isqa8+l0bKxzKVlnMHbsXbTcF1aXlOoee3/6t6nSArQXX4sULCQgJ31QAkYxdikPlrC9H3pU8bujdYvKeATXQPukzlxMVYVYllhTmvnogZnF7SgDTbRzUqU7S1uFXSGvf1Mn5CUuXDRGSdvkkfsc8OfRKivasxV5O8QIPu+UgHV04qUhbHYLO8v6DzgLK6wYSSxf9Up/VrsxireOL8lPb2bpW+mntTy0Ih5RJLbV C:\Windows\tasks\Sk-Enabler-S-245486970.job - c:\programdata\quickset\sk-enabler\Sk-Enabler.exe /schedule /profile "c:\programdata\quickset\sk-enabler\245486970.ini" C:\Windows\tasks\WCH.job - C:\Users\Jenn�\AppData\Roaming\WCH.exe /infocmdline=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 C:\Windows\tasks\YKRMSG.job - C:\Users\Jenn�\AppData\Roaming\YKRMSG.exe /infocmdline=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 =========Mozilla firefox========= ProfilePath - C:\Users\Jenné\AppData\Roaming\Mozilla\Firefox\Profiles\vfwjq1uv.default prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=SK2MDF&PC=SK2M&q=" prefs.js - "browser.startup.homepage" - "http://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=nl-be" "{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ "{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext "{FCE04E1F-9378-4f39-96F6-5689A9159E45}"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/EPPEX] "Description"=Canon Easy-PhotoPrint EX "Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin] "Description"=Google Earth in your browser "Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5] "Description"=Windows Presentation Foundation plug-in for Mozilla browsers "Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32] "Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In "Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2] "Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2] "Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2] "Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32] "Description"=RealPlayer Download Plugin "Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@realnetworks.com/npdlplugin;version=1] "Description"=RealDownloader Plugin "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll C:\Program Files\Mozilla Firefox\searchplugins\ piesearch.xml C:\Users\Jenné\AppData\Roaming\Mozilla\Firefox\Profiles\vfwjq1uv.default\extensions\ 1445536499_xpi d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com deskCutv2@gmail.com staged C:\Users\Jenné\AppData\Roaming\Mozilla\Firefox\Profiles\vfwjq1uv.default\searchplugins\ bingp.xml WebSearch.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-04-16 540328] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-04 462752] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-21 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-04 171424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-21 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ECenter"=C:\Dell\E-Center\EULALauncher.exe [2008-02-29 17920] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-03-13 166424] "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-10-03 178712] "Broadcom Wireless Manager UI"=C:\Windows\system32\WLTRAY.exe [2008-03-12 3563520] "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2013-04-09 30192] "dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2008-03-11 16384] "Dell Webcam Central"=C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe [2008-02-19 438403] "SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] "AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432] "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-01-29 986872] "CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2516296] "CanonSolutionMenuEx"=C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112] "SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2008-06-25 442467] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "AdobeBridge"= [] "ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2015-05-08 6369048] "GoogleChromeAutoLaunch_99E9E8177E24041F9B6F92471FF68891"=C:\Program Files\Google\Chrome\Application\chrome.exe [2016-03-08 874136] "Dropbox Update"=C:\Users\Jenné\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16 134512] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-05-08 6369048] "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952] "Device Detection"=C:\Program Files\HEMA Fotoservice\dd.exe [2015-09-16 861264] "uTorrent"=C:\Users\Jenné\AppData\Roaming\uTorrent\uTorrent.exe [2016-02-26 2094080] "BingSvc"=C:\Users\Jenné\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-12-29 144008] "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint] C:\Program Files\DellTPad\Apoint.exe [2008-03-13 163840] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe] C:\Windows\ehome\ehTray.exe [2008-01-18 125952] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe [2008-06-25 442467] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe C:\Users\Jenné\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Dell Dock.lnk - C:\Program Files\Dell\DellDock\DellDock.exe Dropbox.lnk - C:\Users\Jenné\AppData\Roaming\Dropbox\bin\Dropbox.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist] C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll [2008-08-06 10536] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2008-03-13 204800] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\GoToAssist] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=221 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2016-03-21 12:57:27 ----DC---- C:\rsit 2016-03-21 12:57:27 ----DC---- C:\Program Files\trend micro 2016-03-11 19:09:38 ----A---- C:\Windows\system32\advapi32.dll 2016-03-11 19:09:37 ----A---- C:\Windows\system32\rpcrt4.dll 2016-03-11 19:09:36 ----A---- C:\Windows\system32\smss.exe 2016-03-11 19:09:36 ----A---- C:\Windows\system32\ntdll.dll 2016-03-11 19:09:36 ----A---- C:\Windows\system32\csrsrv.dll 2016-03-11 19:09:35 ----A---- C:\Windows\system32\ntoskrnl.exe 2016-03-11 19:09:35 ----A---- C:\Windows\system32\ntkrnlpa.exe 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-11 19:09:12 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-03-11 19:09:11 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-03-11 19:09:10 ----A---- C:\Windows\system32\ucrtbase.dll 2016-03-11 19:09:10 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2016-03-11 19:09:10 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-11 19:09:10 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2016-03-11 19:08:49 ----A---- C:\Windows\system32\seclogon.dll 2016-03-11 19:08:31 ----A---- C:\Windows\system32\atmlib.dll 2016-03-11 19:08:31 ----A---- C:\Windows\system32\atmfd.dll 2016-03-11 19:08:15 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS 2016-03-11 19:07:33 ----A---- C:\Windows\system32\olepro32.dll 2016-03-11 19:07:33 ----A---- C:\Windows\system32\asycfilt.dll 2016-03-11 19:07:32 ----A---- C:\Windows\system32\oleaut32.dll 2016-03-11 19:05:35 ----SHDC---- C:\Config.Msi 2016-03-11 18:52:52 ----A---- C:\Windows\system32\win32k.sys 2016-03-11 11:07:06 ----A---- C:\Windows\system32\vbscript.dll 2016-03-11 11:07:06 ----A---- C:\Windows\system32\msfeedsbs.dll 2016-03-11 11:07:05 ----A---- C:\Windows\system32\urlmon.dll 2016-03-11 11:07:05 ----A---- C:\Windows\system32\mshta.exe 2016-03-11 11:07:05 ----A---- C:\Windows\system32\msfeeds.dll 2016-03-11 11:07:05 ----A---- C:\Windows\system32\jscript.dll 2016-03-11 11:07:05 ----A---- C:\Windows\system32\ieUnatt.exe 2016-03-11 11:07:04 ----A---- C:\Windows\system32\jsproxy.dll 2016-03-11 11:07:04 ----A---- C:\Windows\system32\iertutil.dll 2016-03-11 11:07:02 ----A---- C:\Windows\system32\wininet.dll 2016-03-11 11:07:02 ----A---- C:\Windows\system32\mshtmled.dll 2016-03-11 11:07:02 ----A---- C:\Windows\system32\msfeedssync.exe 2016-03-11 11:07:01 ----A---- C:\Windows\system32\dxtmsft.dll 2016-03-11 11:07:00 ----A---- C:\Windows\system32\url.dll 2016-03-11 11:06:58 ----A---- C:\Windows\system32\jscript9.dll 2016-03-11 11:06:58 ----A---- C:\Windows\system32\dxtrans.dll 2016-03-11 11:06:57 ----A---- C:\Windows\system32\ieui.dll 2016-03-11 11:06:57 ----A---- C:\Windows\system32\ieframe.dll 2016-03-11 11:06:53 ----A---- C:\Windows\system32\mshtml.dll ======List of files/folders modified in the last 1 month====== 2016-03-21 12:58:52 ----D---- C:\Windows\Temp 2016-03-21 12:57:39 ----D---- C:\Windows\Prefetch 2016-03-21 12:57:27 ----DC---- C:\Program Files 2016-03-21 12:57:01 ----D---- C:\Users\Jenné\AppData\Roaming\uTorrent 2016-03-21 12:34:03 ----D---- C:\Windows\inf 2016-03-21 12:32:25 ----D---- C:\Users\Jenné\AppData\Roaming\Dropbox 2016-03-21 12:29:45 ----D---- C:\Windows\system32\Tasks 2016-03-21 07:59:39 ----D---- C:\Windows\SoftwareDistribution 2016-03-21 07:55:55 ----D---- C:\Windows\system32\catroot2 2016-03-19 16:11:53 ----D---- C:\Windows\System32 2016-03-19 16:11:53 ----A---- C:\Windows\system32\PerfStringBackup.INI 2016-03-18 09:17:29 ----SHD---- C:\System Volume Information 2016-03-12 10:19:26 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2016-03-12 10:18:31 ----D---- C:\Windows\Microsoft.NET 2016-03-12 10:15:36 ----RSD---- C:\Windows\assembly 2016-03-12 09:58:21 ----D---- C:\Windows\rescache 2016-03-12 09:08:17 ----D---- C:\Windows\Debug 2016-03-12 08:55:58 ----AD---- C:\Windows 2016-03-12 08:55:52 ----D---- C:\Windows\system32\nl-NL 2016-03-12 08:55:50 ----D---- C:\Program Files\Windows Mail 2016-03-12 08:55:49 ----DC---- C:\Program Files\Common Files\System 2016-03-12 08:55:47 ----D---- C:\Windows\system32\XPSViewer 2016-03-12 08:55:47 ----D---- C:\Windows\system32\migration 2016-03-12 08:55:46 ----DC---- C:\Program Files\Internet Explorer 2016-03-12 08:55:22 ----D---- C:\Windows\system32\drivers 2016-03-11 19:10:04 ----D---- C:\Windows\winsxs 2016-03-11 19:10:02 ----D---- C:\Windows\system32\catroot 2016-03-11 19:09:10 ----SHD---- C:\Windows\Installer 2016-03-11 19:04:52 ----D---- C:\Windows\system32\MRT 2016-03-11 18:57:19 ----A---- C:\Windows\system32\mrt.exe 2016-03-09 17:26:46 ----D---- C:\ProgramData\CanonIJPLM 2016-03-08 14:59:55 ----D---- C:\Users\Jenné\AppData\Roaming\Canon 2016-02-26 15:34:47 ----HD---- C:\ProgramData 2016-02-24 11:12:04 ----D---- C:\Program Files\Microsoft Security Client ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2008-03-13 305176] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-11-13 253704] R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2009-04-17 44944] R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2008-03-13 46592] R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2008-03-13 43008] R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2008-03-13 38400] R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2008-03-13 164400] R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2008-03-12 18424] R3 BCM43XX;Stuurprogramma voor de Dell draadloze WLAN-kaart; C:\Windows\system32\DRIVERS\bcmwl6.sys [2008-03-12 1205240] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-03-13 2302976] R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service; C:\Windows\system32\drivers\IntcHdmi.sys [2008-03-13 111616] R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2008-03-14 54784] R3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60x.sys [2008-03-13 203264] R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-11-13 104664] R3 OA001Ufd;Creative Camera OA001 Upper Filter Driver; C:\Windows\system32\DRIVERS\OA001Ufd.sys [2008-03-11 149208] R3 OA001Vid;Creative Camera OA001 Function Driver; C:\Windows\system32\DRIVERS\OA001Vid.sys [2008-03-11 277624] R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-10 89088] R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2008-06-25 380928] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-18 9216] R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2013-06-21 32064] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-10 22528] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-18 92160] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208] S3 cpuz134;cpuz134; \??\C:\Users\JENN~1\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-21 84248] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632] S3 e1express;Stuurprogramma voor Intel(R) PRO/1000 PCI Express-netwerkverbinding; C:\Windows\system32\DRIVERS\e1e6032.sys [2006-11-02 200704] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2013-02-05 37344] S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016] S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-10 148992] S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2013-06-21 136904] S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2013-06-21 17864] S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2013-06-21 153672] S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2013-06-21 130248] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-21 181912] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 WSDPrintDevice;WSD-ondersteuning voor afdrukken via UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2008-01-18 16896] S3 WSDScan;Ondersteuning voor WSD-scan via UMB; C:\Windows\system32\DRIVERS\WSDScan.sys [2009-04-10 19968] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\aestsrv.exe [2008-06-25 73728] R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-18 21504] R2 DockLoginService;Dock Login Service; C:\Program Files\Dell\DellDock\DockLogin.exe [2008-04-28 161048] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504] R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-10-03 358936] R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104] R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-01-29 22216] R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\system32\nlssrv32.exe [2011-11-22 66560] R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-04-16 39056] R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_238116a1\STacSV.exe [2008-06-25 221273] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\Windows\System32\WLTRYSVC.EXE [2008-03-12 24064] R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2016-01-29 292816] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200] S2 MustangService_2015_10_10;Be sure to use the latest version of Mustang Service.; C:\ProgramData\TempMoudleSet\MustangSer294.exe [2015-10-09 236816] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-12 269504] S3 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2013-02-05 233472] S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2013-04-09 30192] S3 GoToAssist;GoToAssist; C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe [2008-08-06 16680] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-01-11 194032] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-05 119408] S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384] S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-11 772296] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-11 139944] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-11 139944] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-11 139944] -----------------EOF-----------------