Logfile of random's system information tool 1.09 (written by random/random)
Run by marleen at 2014-04-16 14:24:07
Microsoft Windows 7 Professional  Service Pack 1
System drive C: has 255 GB (53%) free of 483 GB
Total RAM: 3323 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:24:14, on 16/04/2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Fiery\Fiery Software Manager\Fiery Software Manager.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe
C:\Program Files\Fiery\Applications3\FieryRemoteScanApp\FRSSysTrayIcon.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\marleen\AppData\Local\Temp\RarSFX0\FSM\Fiery Software Manager.exe
C:\Windows\System32\mobsync.exe
C:\UPS\WSTD\upslnkmg.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\marleen\Downloads\RSIT.exe
C:\Program Files\trend micro\marleen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: (no name) - {8c5878d0-6106-423b-aaa8-144c143dbf44} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [Axon] "C:\Program Files\NCH Software\Axon\axon.exe" -logon
O4 - HKLM\..\Run: [IsaKbcCertUpdate] C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe
O4 - HKLM\..\Run: [FRSSysTrayIcon] "C:\Program Files\Fiery\Applications3\FieryRemoteScanApp\FRSSysTrayIcon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_6BC745B9B8850751A02C668B2F9E00C5] "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://cbc-pdf.cbc.be
O15 - Trusted Zone: http://static.cbc.be
O15 - Trusted Zone: http://www.cbccorporate.be
O15 - Trusted Zone: http://www.csob.cz
O15 - Trusted Zone: http://www.csob.sk
O15 - Trusted Zone: http://www.isabel.be
O15 - Trusted Zone: http://www.beta.isabel.be
O15 - Trusted Zone: http://www.isabel.eu
O15 - Trusted Zone: http://www.beta.isabel.eu
O15 - Trusted Zone: http://kbc-pdf.kbc.be
O15 - Trusted Zone: http://static.kbc.be
O15 - Trusted Zone: http://www.kbcam.be
O15 - Trusted Zone: http://www.kbcam.com
O15 - Trusted Zone: http://wp-a.kbcbankingforbusiness.com
O15 - Trusted Zone: http://www.kbcbankingforbusiness.com
O15 - Trusted Zone: http://www.kbccorporates.com
O15 - Trusted Zone: http://www.kbcfi.com
O15 - Trusted Zone: http://wp-a.kbcmerchantbanking.com
O15 - Trusted Zone: http://www.kbcmerchantbanking.com
O15 - Trusted Zone: http://www.kh.hu
O15 - Trusted Zone: http://www.samsungsetup.com
O15 - Trusted Zone: http://cbc-pdf.cbc.be (HKLM)
O15 - Trusted Zone: http://static.cbc.be (HKLM)
O15 - Trusted Zone: http://www.cbccorporate.be (HKLM)
O15 - Trusted Zone: http://www.csob.cz (HKLM)
O15 - Trusted Zone: http://www.csob.sk (HKLM)
O15 - Trusted Zone: http://www.isabel.be (HKLM)
O15 - Trusted Zone: http://www.beta.isabel.be (HKLM)
O15 - Trusted Zone: http://www.isabel.eu (HKLM)
O15 - Trusted Zone: http://www.beta.isabel.eu (HKLM)
O15 - Trusted Zone: http://kbc-pdf.kbc.be (HKLM)
O15 - Trusted Zone: http://static.kbc.be (HKLM)
O15 - Trusted Zone: http://www.kbcam.be (HKLM)
O15 - Trusted Zone: http://www.kbcam.com (HKLM)
O15 - Trusted Zone: http://wp-a.kbcbankingforbusiness.com (HKLM)
O15 - Trusted Zone: http://www.kbcbankingforbusiness.com (HKLM)
O15 - Trusted Zone: http://www.kbccorporates.com (HKLM)
O15 - Trusted Zone: http://www.kbcfi.com (HKLM)
O15 - Trusted Zone: http://wp-a.kbcmerchantbanking.com (HKLM)
O15 - Trusted Zone: http://www.kbcmerchantbanking.com (HKLM)
O15 - Trusted Zone: http://www.kh.hu (HKLM)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: Becloud PC Backup (Belgacombackup) - Belgacom - C:\Program Files\Becloud PC Backup\Belgacombackup.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EFI ES1000 - Electronics for Imaging, Inc. - C:\Program Files\Common Files\EFI\EFI ES-1000 Service\ES1000Service.exe
O23 - Service: EFI License Manager - Flexera Software LLC - C:\Program Files\EFI\EFILM\lmgrd.exe
O23 - Service: Fiery Mailbox Synchronization - Electronics For Imaging - C:\Program Files\Fiery\Applications3\FieryRemoteScanApp\FRSMailboxSyncService.exe
O23 - Service: FlexNet Licensing Service (FLEXnet Licensing Service) - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - SafeNet Inc. - C:\Windows\system32\hasplms.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: ofaApp - Unknown owner - C:\Program Files\EFI\OFASQ\ofaApp.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

--
End of file - 12428 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\ROC_JAN2013_TB_rmv.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-16 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-16 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"=C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 137752]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 171032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 172568]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2011-09-16 63048]
"Axon"=C:\Program Files\NCH Software\Axon\axon.exe [2011-12-28 1287684]
"IsaKbcCertUpdate"=C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe [2013-10-22 1085976]
"FRSSysTrayIcon"=C:\Program Files\Fiery\Applications3\FieryRemoteScanApp\FRSSysTrayIcon.exe [2013-09-11 57344]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2014-04-15 3814736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_6BC745B9B8850751A02C668B2F9E00C5"=C:\Program Files\Google\Chrome\Application\chrome.exe [2014-04-02 841032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_UI]
C:\Program Files\AVG\AVG2014\avgui.exe [2014-03-19 4971024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files\Google\Drive\googledrivesync.exe [2014-01-30 21822128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gyazo]
C:\Program Files\Gyazo\GyStation.exe [2013-08-02 3293288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NA1Messenger]
C:\UPS\WSTD\UPSNA1Msgr.exe [2013-12-03 31840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\marleen\AppData\Roaming\Spotify\Spotify.exe [2014-04-14 6087224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\marleen\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-04-14 1171000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2011-04-19 39408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Becloud PC Backup Status.lnk]
C:\PROGRA~1\BECLOU~1\BELGAC~3.EXE [2012-05-28 4483488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^UPS WorldShip Messaging Utility.lnk]
C:\UPS\WSTD\WSTDME~1.EXE [2013-12-03 415840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^UPS WorldShip PLD Reminder Utility.lnk]
C:\UPS\WSTD\WSTDPL~1.EXE [2013-12-03 41056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^marleen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\marleen\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-01-03 30714328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-02-11 228864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll, schannel.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-04-16 14:24:07 ----D---- C:\rsit
2014-04-16 14:24:07 ----D---- C:\Program Files\trend micro
2014-04-16 14:09:25 ----D---- C:\Program Files\LogMeIn Hamachi
2014-04-16 14:06:31 ----A---- C:\Windows\system32\FNTCACHE.DAT
2014-04-16 13:58:36 ----D---- C:\Windows\pss
2014-04-16 13:21:46 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-04-16 13:21:22 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2014-04-16 13:21:22 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-04-16 13:21:22 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-04-16 11:40:49 ----A---- C:\Windows\wstdUPSWSHIP.INI
2014-04-16 11:32:34 ----D---- C:\Program Files\Microsoft SQL Server
2014-04-16 11:21:03 ----D---- C:\ProgramData\UPS
2014-04-16 11:21:02 ----A---- C:\Windows\ADinstall.ini
2014-04-16 11:20:07 ----D---- C:\UPS
2014-04-16 10:47:32 ----D---- C:\Program Files\Common Files\Java
2014-04-16 10:47:23 ----A---- C:\Windows\system32\javaws.exe
2014-04-16 10:46:46 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2014-04-16 10:46:46 ----A---- C:\Windows\system32\javaw.exe
2014-04-16 10:46:46 ----A---- C:\Windows\system32\java.exe
2014-04-16 10:46:31 ----D---- C:\Program Files\Java
2014-04-16 10:43:56 ----D---- C:\ProgramData\Oracle
2014-04-16 10:39:25 ----D---- C:\Users\marleen\AppData\Roaming\Sun
2014-04-15 13:54:11 ----HDC---- C:\ProgramData\~1
2014-04-15 13:00:33 ----D---- C:\Program Files\UPSThermal
2014-04-15 12:38:53 ----D---- C:\UPS Drivers
2014-04-15 09:46:08 ----D---- C:\ProgramData\Font Downloader
2014-04-15 09:44:07 ----A---- C:\Windows\system32\zdnPMntU.dll
2014-04-15 09:44:07 ----A---- C:\Windows\system32\zdnPMntS.dll
2014-04-15 09:42:47 ----D---- C:\ProgramData\Zebra Technologies
2014-04-15 09:42:47 ----D---- C:\Program Files\Zebra Technologies
2014-04-15 09:42:47 ----D---- C:\Program Files\Common Files\EuroPlus Shared
2014-04-15 09:41:48 ----HDC---- C:\ProgramData\{AD55E916-8A04-4218-8D53-A7653B27079D}
2014-04-12 08:41:06 ----D---- C:\ProgramData\siaVe net
2014-04-12 08:41:05 ----D---- C:\Program Files\siaVe net
2014-04-12 08:40:57 ----D---- C:\ProgramData\bf4292a37ecd9b9e
2014-04-12 08:40:13 ----D---- C:\ProgramData\InstallMate
2014-04-09 15:06:00 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-04-09 15:05:59 ----A---- C:\Windows\system32\iologmsg.dll
2014-04-09 15:05:59 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-09 15:05:59 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-04-09 15:05:50 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-04-09 15:05:45 ----A---- C:\Windows\system32\kernel32.dll
2014-04-09 15:05:39 ----A---- C:\Windows\system32\mshtml.dll
2014-04-09 10:17:20 ----HDC---- C:\ProgramData\{4BAB842F-9859-4C20-8EC4-F7A54F29AF09}
2014-04-08 15:08:27 ----D---- C:\Program Files\Trusteer
2014-03-30 20:30:22 ----A---- C:\Windows\system32\drivers\RapportKELL.sys
2014-03-27 12:13:52 ----D---- C:\ProgramData\Trusteer

======List of files/folders modified in the last 1 month======

2014-04-16 14:24:08 ----D---- C:\Windows\Temp
2014-04-16 14:24:07 ----RD---- C:\Program Files
2014-04-16 14:20:15 ----D---- C:\Windows\system32\config
2014-04-16 14:09:45 ----SHD---- C:\Windows\Installer
2014-04-16 14:09:45 ----SHD---- C:\Config.Msi
2014-04-16 14:09:40 ----D---- C:\Windows\tracing
2014-04-16 14:09:30 ----D---- C:\Windows\inf
2014-04-16 14:08:43 ----D---- C:\Users\marleen\AppData\Roaming\Fiery Software Manager
2014-04-16 14:06:56 ----D---- C:\Windows
2014-04-16 14:06:47 ----D---- C:\ProgramData\NVIDIA
2014-04-16 14:06:31 ----D---- C:\Windows\System32
2014-04-16 14:06:28 ----D---- C:\ProgramData\AVG2014
2014-04-16 14:03:47 ----RSD---- C:\Windows\assembly
2014-04-16 14:03:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-04-16 14:02:43 ----D---- C:\Windows\Registration
2014-04-16 14:00:56 ----SHD---- C:\System Volume Information
2014-04-16 13:58:22 ----D---- C:\Users\marleen\AppData\Roaming\Dropbox
2014-04-16 13:54:51 ----D---- C:\ProgramData\LogMeIn
2014-04-16 13:54:46 ----D---- C:\Windows\system32\LogFiles
2014-04-16 13:54:45 ----D---- C:\Windows\debug
2014-04-16 13:49:36 ----D---- C:\Program Files\CCleaner
2014-04-16 13:46:45 ----D---- C:\ProgramData
2014-04-16 13:25:34 ----D---- C:\ProgramData\MFAData
2014-04-16 13:24:32 ----D---- C:\Windows\system32\drivers
2014-04-16 13:22:58 ----D---- C:\Program Files\AVG SafeGuard toolbar
2014-04-16 13:22:57 ----D---- C:\Program Files\Common Files
2014-04-16 13:22:43 ----D---- C:\ProgramData\AVG Security Toolbar
2014-04-16 13:21:28 ----D---- C:\Users\marleen\AppData\Roaming\Malwarebytes
2014-04-16 13:21:22 ----D---- C:\ProgramData\Malwarebytes
2014-04-16 13:21:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-04-16 13:04:27 ----D---- C:\Users\marleen\AppData\Roaming\Spotify
2014-04-16 11:41:39 ----HD---- C:\Program Files\InstallShield Installation Information
2014-04-16 11:40:49 ----A---- C:\Windows\ODBC.INI
2014-04-16 11:35:24 ----D---- C:\Windows\winsxs
2014-04-16 11:35:11 ----D---- C:\Program Files\Microsoft.NET
2014-04-16 11:32:38 ----D---- C:\Program Files\Microsoft Analysis Services
2014-04-16 11:32:37 ----D---- C:\Program Files\Common Files\microsoft shared
2014-04-16 11:29:35 ----D---- C:\Windows\Prefetch
2014-04-16 11:23:37 ----HDC---- C:\ProgramData\~0
2014-04-16 10:10:32 ----D---- C:\ProgramData\KBC.Local
2014-04-16 09:37:21 ----A---- C:\Windows\system32\bootdelete.exe
2014-04-15 14:18:31 ----SD---- C:\ProgramData\Microsoft
2014-04-15 13:14:43 ----D---- C:\Windows\system32\catroot2
2014-04-15 13:00:33 ----D---- C:\Windows\Downloaded Program Files
2014-04-15 12:47:56 ----A---- C:\Windows\WINKING2.INI
2014-04-15 12:46:29 ----D---- C:\Windows\system32\Tasks
2014-04-15 09:45:53 ----RSD---- C:\Windows\Fonts
2014-04-15 09:45:46 ----D---- C:\Windows\system32\catroot
2014-04-15 09:45:39 ----D---- C:\Windows\system32\DriverStore
2014-04-15 09:39:23 ----D---- C:\Program Files\Common Files\Adobe
2014-04-15 09:39:20 ----D---- C:\Users\marleen\AppData\Roaming\Macromedia
2014-04-14 09:35:49 ----D---- C:\ophaling Dacher
2014-04-12 08:40:53 ----RD---- C:\Users
2014-04-10 08:25:09 ----D---- C:\Windows\system32\MRT
2014-04-10 04:01:20 ----D---- C:\Windows\rescache
2014-04-10 03:23:37 ----D---- C:\Windows\system32\drivers\UMDF
2014-04-10 03:22:27 ----D---- C:\Windows\system32\nl-NL
2014-04-10 03:06:42 ----D---- C:\ProgramData\Microsoft Help
2014-04-10 03:02:21 ----A---- C:\Windows\system32\MRT.exe
2014-04-09 10:16:24 ----D---- C:\Program Files\logivert
2014-04-08 17:58:28 ----D---- C:\Users\marleen\AppData\Roaming\PrimoPDF
2014-04-08 17:56:31 ----D---- C:\winkin3
2014-04-08 14:56:45 ----D---- C:\Program Files\Common Files\Isabel CSP
2014-04-08 14:56:45 ----D---- C:\Program Files\Common Files\Isabel
2014-03-27 12:12:55 ----D---- C:\ProgramData\Isabel Services

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2014-03-30 107256]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 BelgacomFilter;BelgacomFilter; C:\Windows\system32\DRIVERS\Belgacom.sys [2012-05-28 55040]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 raddrvv3;raddrvv3; \??\C:\Windows\system32\rserver30\raddrvv3.sys [2010-04-21 46280]
R1 RapportCerberus_59849;RapportCerberus_59849; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_59849.sys [2014-04-08 340432]
R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2014-03-30 156024]
R1 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2014-03-30 228888]
R2 aksfridge;aksfridge; \??\C:\Windows\system32\drivers\aksfridge.sys [2013-08-01 376200]
R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2013-08-01 608648]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [2013-05-31 13624]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2011-09-16 47640]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 mirrorv3;mirrorv3; C:\Windows\system32\DRIVERS\rminiv3.sys [2010-04-21 3328]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-11-19 62208]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-11-19 141568]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
R3 RTL8167;Realtek 8167 NT-stuurprogramma; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800]
S3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2011-09-16 10144]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SrvHsfPCI;SrvHsfPCI; C:\Windows\system32\DRIVERS\VSTBS23.SYS [2009-07-14 266752]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-14 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-14 661504]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\drivers\WinUSB.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 Belgacombackup;Becloud PC Backup; C:\Program Files\Becloud PC Backup\Belgacombackup.exe [2012-05-28 26528]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 EFI ES1000;EFI ES1000; C:\Program Files\Common Files\EFI\EFI ES-1000 Service\ES1000Service.exe [2009-10-19 11776]
R2 EFI License Manager;EFI License Manager; C:\Program Files\EFI\EFILM\lmgrd.exe [2014-01-16 1448752]
R2 Fiery Mailbox Synchronization;Fiery Mailbox Synchronization; C:\Program Files\Fiery\Applications3\FieryRemoteScanApp\FRSMailboxSyncService.exe [2013-09-11 11264]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2014-04-15 1682256]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-04-08 375056]
R2 MSSQL$UPSWSDBSERVER;SQL Server (UPSWSDBSERVER); C:\UPS\WSTD\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 639776]
R2 ofaApp;ofaApp; C:\Program Files\EFI\OFASQ\ofaApp.exe [2014-01-16 2349568]
R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2014-03-30 1444120]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2013-06-13 4150112]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
R3 FLEXnet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-01-16 1074480]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-02-23 3782672]
S2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2013-09-24 348008]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-04-19 136176]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2012-07-30 8192]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-26 1260320]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12 257928]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-04-19 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-14 194032]
S3 hasplms;Sentinel LDK License Manager; C:\Windows\system32\hasplms.exe [2013-08-01 4609928]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 108032]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office  Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;Adobe SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-20 1343400]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 AxonService;Axon Virtual PBX; C:\Program Files\NCH Software\Axon\axon.exe [2011-12-28 1287684]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2014-01-28 203088]
S4 LogMeIn;LogMeIn; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2011-09-16 390528]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------