Logfile of random's system information tool 1.10 (written by random/random)
Run by stadhouders at 2014-07-19 02:28:49
Microsoft Windows 7 Home Premium  Service Pack 1
System drive C: has 115 GB (12%) free of 954 GB
Total RAM: 3583 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:28:54, on 19-7-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17207)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\Garmin\Express Tray\ExpressTray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ZooToolbar\WBrowserProtect.exe
C:\Program Files\ZooToolbar\WBrokerProductivity.exe
C:\Program Files\Norton Identity Safe\Engine\2014.6.6.3\NST.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Norton AntiVirus\Engine\21.4.0.13\NAV.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE
C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\stadhouders\Downloads\RSIT (2).exe
C:\Program Files\trend micro\stadhouders.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://istart.webssearches.com/web/?type=ds&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://istart.webssearches.com/web/?type=ds&ts=1405354567&from=tugs&uid=WDCXWD10EALX-009BA0_WD-WCATR960380403804&q={searchTerms}
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:14362;https=127.0.0.1:14362
O2 - BHO: CrossriderApp0059599 - {11111111-1111-1111-1111-110511951199} - C:\Program Files\video MediaPlay-Air\video MediaPlay-Air-bho.dll
O2 - BHO: CrossriderApp0060346 - {11111111-1111-1111-1111-110611031146} - C:\Program Files\Browser_AppS 1.1\Browser_AppS 1.1-bho.dll
O2 - BHO: CrossriderApp0061177 - {11111111-1111-1111-1111-110611111177} - C:\Program Files\TheTorntv V10\TheTorntv V10-bho.dll
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\21.4.0.13\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2014.6.6.3\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files\PDF Architect\PDFIEPlugin.dll
O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2014.6.6.3\coIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [iSkysoft Helper Compact.exe] C:\Program Files\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [BrowserPlugInHelper] C:\Program Files\Wondershare\Video Converter Ultimate\BrowserPlugInHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\stadhouders\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\stadhouders\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\RunOnce: [Application Restart #2] C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe  --flag-switches-begin --flag-switches-end --restore-last-session -- https://www.google.com/url?q=http://www.gettyimages.nl/detail/nieuwsfoto's/ricky-lauren-benedict-cumberbatch-and-ralph-lauren-attend-nieuwsfotos/490220483&ct=ga&cd=CAEYACoUMTU1NzgwODA2MjI5OTM1NTUxMzYyGTBiMDBhZWNlOWY4NDRjNmU6bmw6bmw6Tkw&usg=AFQjCNEYQO7TDnZaLmsMdiwEQGMg1ijnig
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\PROGRA~1\SupTab\SEARCH~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\21.4.0.13\NAV.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files\Norton Identity Safe\Engine\2014.6.6.3\NST.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files\PDF Architect\ConversionService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: Re-Markable - Unknown owner - C:\Program Files\di2Re-Markable\m7Re-MarkableVx175.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe

--
End of file - 12092 bytes

======Scheduled tasks folder======

C:\Windows\tasks\6032d33f-1ba1-4231-baa1-523f85a53c0f-2.job - C:\Program Files\TheTorntv V10\6032d33f-1ba1-4231-baa1-523f85a53c0f-2.exe /RKFDG /gmfuHTYGZ='TheTorntv V10' /KpPSvWHw=61177 /AnQKvCR='001823' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /sDuGvIAC=1405354299 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /ERKlqfvq=11111111-1111-1111-1111-110611111177 /YNlyUA=ch /OzXHy /ZqxaJ='http://update.genstatsnet.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\6032d33f-1ba1-4231-baa1-523f85a53c0f-4.job - C:\Program Files\TheTorntv V10\6032d33f-1ba1-4231-baa1-523f85a53c0f-4.exe /OwlnAe /gmfuHTYGZ='TheTorntv V10' /WFDWky='C:\Program Files\TheTorntv V10\6032d33f-1ba1-4231-baa1-523f85a53c0f.xpi' /KpPSvWHw=61177 /AnQKvCR='001823' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /DRaAvza=1.34.7.1 /sDuGvIAC=1405354299 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /bYxzjRWK=300 /xEEZnzOL=IMNVDH20251862@MBUBXUJ104005176.com /RzOUGUGVu=0.95 /vVhxJ=aIMNVDH20251862MBUBXUJ104005176com61177 /IkpKpGow=https://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/61177.rdf /vAgshE='TheTorntv V10' /QRhROyrp='The must-have App extensions for Television fans! Watch free TV channels, live sports and more' /olKODVjF='esc' /YNlyUA=ch /BOufx='{"asw":[67108896, 8388609, 0]}' /OzXHy /GxioJhRK /ArKXpC /ZqxaJ='http://update.genstatsnet.com/ff_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\6032d33f-1ba1-4231-baa1-523f85a53c0f-7.job - C:\Program Files\TheTorntv V10\TheTorntv V10-nova.exe /gmfuHTYGZ='TheTorntv V10' /KpPSvWHw=61177 /AnQKvCR='001823' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /DRaAvza=1.34.7.1 /sDuGvIAC=1405354299 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /sRhHdPyVP=http://cr.install-daddy.com /YNlyUA=ch /OVqMfIlvx /JJjHrFnKJ=TheTorntv V10 /fzItSK='nova' /sKJtDFr=http://cr.install-daddy.com /BOufx='{"asw":[67108896, 8388609, 0]}' /ZqxaJ='http://update.genstatsnet.com/novarun/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\8b591b5c-b064-4d74-84de-e1383eb0786e-1.job - C:\Program Files\Browser_AppS 1.1\Browser_AppS 1.1-codedownloader.exe /mNURZyZV /DQfMY=task /gmfuHTYGZ='Browser_AppS 1.1' /KpPSvWHw=60346 /AnQKvCR='001738' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /DRaAvza=1.34.7.1 /sDuGvIAC=1405354715 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /sRhHdPyVP=http://js.genstatsnet.com /YNlyUA=ch /JJjHrFnKJ='Browser_AppS 1.1' /sKJtDFr=http://js.clientdemocloud.com /OzXHy /BOufx='{"asw":[67108896, 8388609, 0]}' /ZqxaJ='http://update.genstatsnet.com/ie_code_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\8b591b5c-b064-4d74-84de-e1383eb0786e-11.job - C:\Program Files\Browser_AppS 1.1\8b591b5c-b064-4d74-84de-e1383eb0786e-11.exe /sWafILNqg=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
C:\Windows\tasks\8b591b5c-b064-4d74-84de-e1383eb0786e-2.job - C:\Program Files\Browser_AppS 1.1\8b591b5c-b064-4d74-84de-e1383eb0786e-2.exe /RKFDG /gmfuHTYGZ='Browser_AppS 1.1' /KpPSvWHw=60346 /AnQKvCR='001738' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /sDuGvIAC=1405354715 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /ERKlqfvq=11111111-1111-1111-1111-110611031146 /YNlyUA=ch /GJoPrCkh /OzXHy /ZqxaJ='http://update.genstatsnet.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\8b591b5c-b064-4d74-84de-e1383eb0786e-3.job - C:\Program Files\Browser_AppS 1.1\8b591b5c-b064-4d74-84de-e1383eb0786e-3.exe /sWafILNqg=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
C:\Windows\tasks\8b591b5c-b064-4d74-84de-e1383eb0786e-5.job - C:\Program Files\Browser_AppS 1.1\8b591b5c-b064-4d74-84de-e1383eb0786e-5.exe /bNRXdWXp /gmfuHTYGZ='Browser_AppS 1.1' /KpPSvWHw=60346 /AnQKvCR='001738' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /sDuGvIAC=1405354715 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /qlkvYuqmO=http://ipgeoapi.com/ /UDikjqjO=http://update.genstatsnet.com /StzxeMC=2 /qsxQZMOO=http://logs.genstatsnet.com /ZqxaJ='http://update.genstatsnet.com/updater_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\8b591b5c-b064-4d74-84de-e1383eb0786e-5_user.job - C:\Program Files\Browser_AppS 1.1\8b591b5c-b064-4d74-84de-e1383eb0786e-5.exe /bNRXdWXp /gmfuHTYGZ='Browser_AppS 1.1' /KpPSvWHw=60346 /AnQKvCR='001738' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /sDuGvIAC=1405354715 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /qlkvYuqmO=http://ipgeoapi.com/ /UDikjqjO=http://update.genstatsnet.com /StzxeMC=2 /qsxQZMOO=http://logs.genstatsnet.com /ZqxaJ='http://update.genstatsnet.com/updater_agent_updates/{CAMP_ID}/update.json' /qzAxQ /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\8b591b5c-b064-4d74-84de-e1383eb0786e-6.job - C:\Program Files\Browser_AppS 1.1\Browser_AppS 1.1-novainstaller.exe /XllBl /gmfuHTYGZ='Browser_AppS 1.1' /KpPSvWHw=60346 /AnQKvCR='001738' /psRgiX='0' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /DRaAvza=1.34.7.1 /sDuGvIAC=1405354715 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /sRhHdPyVP=http://js.genstatsnet.com /YNlyUA=ch /OVqMfIlvx /JJjHrFnKJ=Browser_AppS 1.1 /fzItSK='nova' /sKJtDFr=http://js.clientdemocloud.com /BOufx='{"asw":[67108896, 8388609, 0]}' /DQfMY=task /ZqxaJ='http://update.genstatsnet.com/novacode/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\a5529e60-71d1-4a6c-aec4-17e54897674d-2.job - C:\Program Files\TheTorntv V10\a5529e60-71d1-4a6c-aec4-17e54897674d-2.exe /AfhoD /aehprsIDP='TheTorntv V10' /JtMiRvU=61177 /DNalVQgLa='001823' /yzlmNxwl='0' /cfDig='0' /SuDGDWind=B245962D6B4F455BA819B8F38F191675IE /IgVjVn=8c00bf3b340eca53028a0754e625e026 /afmWnOyh=1_34_07_01 /RxTwbou=1405347167 /ZiKKzflZG=http://stats.geninfocloud.com /HNqSqcpW=http://errors.geninfocloud.com /mTemOQMx=11111111-1111-1111-1111-110611111177 /PzJiGeTa=ch /RzuZT /yxidi='http://update.geninfocloud.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /AvLzw='task' /jLOikSaDM=''
C:\Windows\tasks\a5529e60-71d1-4a6c-aec4-17e54897674d-4.job - C:\Program Files\TheTorntv V10\a5529e60-71d1-4a6c-aec4-17e54897674d-4.exe /LJFrQ /aehprsIDP='TheTorntv V10' /tEVHKN='C:\Program Files\TheTorntv V10\61177.xpi' /JtMiRvU=61177 /DNalVQgLa='001823' /yzlmNxwl='0' /cfDig='0' /SuDGDWind=B245962D6B4F455BA819B8F38F191675IE /IgVjVn=8c00bf3b340eca53028a0754e625e026 /afmWnOyh=1_34_07_01 /YfMzC=1.34.7.1 /RxTwbou=1405347167 /ZiKKzflZG=http://stats.geninfocloud.com /HNqSqcpW=http://errors.geninfocloud.com /GKPAivWBd=300 /cyzYz=IMNVDH20251862@MBUBXUJ104005176.com /VTDwH=0.95 /BzRpJO=aIMNVDH20251862MBUBXUJ104005176com61177 /TjwJlAIM=https://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/61177.rdf /lQsslqhd='TheTorntv V10' /CWCksVYNc='The must-have App extensions for Television fans! Watch free TV channels, live sports and more' /epdOa='esc' /PzJiGeTa=ch /CfSaB='{"asw":[67108896, 1, 0]}' /RzuZT /mKehK /BVbopJSl /yxidi='http://update.geninfocloud.com/ff_agent_updates/{CAMP_ID}/update.json' /AvLzw='task' /jLOikSaDM=''
C:\Windows\tasks\a5529e60-71d1-4a6c-aec4-17e54897674d-7.job - C:\Program Files\TheTorntv V10\TheTorntv V10-nova.exe /aehprsIDP='TheTorntv V10' /JtMiRvU=61177 /DNalVQgLa='001823' /yzlmNxwl='0' /cfDig='0' /SuDGDWind=B245962D6B4F455BA819B8F38F191675IE /IgVjVn=8c00bf3b340eca53028a0754e625e026 /afmWnOyh=1_34_07_01 /YfMzC=1.34.7.1 /RxTwbou=1405347167 /ZiKKzflZG=http://stats.geninfocloud.com /HNqSqcpW=http://errors.geninfocloud.com /cxVOvoJo=http://cr.install-daddy.com /PzJiGeTa=ch /RHIOU /uiRJfpmB=TheTorntv V10 /VxCYqtHXn='nova' /UeEmsGoq=http://cr.install-daddy.com /CfSaB='{"asw":[67108896, 1, 0]}' /yxidi='http://update.geninfocloud.com/novarun/{CAMP_ID}/update.json' /AvLzw='task' /jLOikSaDM=''
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-1.job - C:\Program Files\video MediaPlay-Air\video MediaPlay-Air-codedownloader.exe /mNURZyZV /DQfMY=task /gmfuHTYGZ='video MediaPlay-Air' /KpPSvWHw=59599 /AnQKvCR='001673' /psRgiX='verticals-ads,intext,pops,shopping' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /DRaAvza=1.34.7.1 /sDuGvIAC=1405354700 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /sRhHdPyVP=http://js.genstatsnet.com /YNlyUA=ch /JJjHrFnKJ='video MediaPlay-Air' /sKJtDFr=http://js.clientdemocloud.com /OzXHy /BOufx='{"asw":[67108896, 8388609, 0]}' /ZqxaJ='http://update.genstatsnet.com/ie_code_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-11.job - C:\Program Files\video MediaPlay-Air\b4485999-768d-4989-88ae-ed0beab63105-11.exe /sWafILNqg=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
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-2.job - C:\Program Files\video MediaPlay-Air\b4485999-768d-4989-88ae-ed0beab63105-2.exe /RKFDG /gmfuHTYGZ='video MediaPlay-Air' /KpPSvWHw=59599 /AnQKvCR='001673' /psRgiX='verticals-ads,intext,pops,shopping' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /sDuGvIAC=1405354700 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /ERKlqfvq=11111111-1111-1111-1111-110511951199 /YNlyUA=ch /GJoPrCkh /OzXHy /ZqxaJ='http://update.genstatsnet.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-3.job - C:\Program Files\video MediaPlay-Air\b4485999-768d-4989-88ae-ed0beab63105-3.exe /sWafILNqg=eNUFVZL8/2vv+aUHxBYNcRuuhDPtIcg4aR+bPMKVr6aCektf6T+cCt2lHOM1O6Si+/Y2eN7B5DYa/kSuEgxmkIB8TjuGcwm1nS7qPLbH7bjbSzvOA8MYqHL37+l3Bq56tz60OBj45Ze5getOjwMFUD8+WU0UzS5/VetHkb4BRZNY7x9JPvUzp3qZjnwgOZd/gr6w+myvnRe4tXh/uAi7xNEKAzEDEki+YqrMDfny4YNkykHSkmdSgJv8NpOybafz8P+shE/ZoWbwFks/eG9UYenlEUhEkE3ycPvzBjh7U7NbudEcl7pXVvSZMiUz8HquCO5bpPwgtX0o/DFNPIeCyBdknLuvwkiIkIqD+0XBP0pRNBwXGreAT4sFFtuuxVWcl1wXxi4NVQZQF73tmJvDjagqxO7MqP2lyaz21y7mL5N6T1WpyJK9YQYCAnsaauGI8MfeWi4W50QwmlFYWuQ4EDCTftU0sb7Ahu7lRN17aNijm475gAu0LhYAJS8Ca3CILqoeiAOSc2CtHLu17D4ANOLeoLoSOr0Ybxd06y6qTLZwEAhXYdNoDwHLceUZYpxMpqFBl1zrMYNOG8IoLE7qNu0kOSz1R/1bV2Igmd1Bm+h8NiBhExCLFd3+oAWB2M59xy7Fd/n8SHRSjz8xdLVOCmCE0qdb15l9nD6iPQegxRa1c2jpuc86Zw9+Def4k4dcuQR4WAvu4kxPVBlzH4chuG5uxuSvueQQdpPvsTZYNtzOiH95f7f1gXb8hpjdIbW8tslB0PsHMfx3OlQOBiqLHbRTCyDWaWyMrg2wQooCDA8r7VgPHwmjAYU9e3FBz0OI1991oqLjqglw0wr9RDO2VDuXVLyhfS+5eBpQYDjckZsSe7Op/JiZF382o5czTE8nBmrMUa0IzHgjHjKr7p+VEVN+2RFlnqVq4wFTeUW3u4Vbi+rpcan1w3zf4jFzFtdtIUBzpw6+vZjIoyBZjHfLc7Li143LQ63N76saJJXWM6059PzwDQSoAELYi3ghl/4aaR//FTJBjZXSaTo7GlzuIP8X/C3u0kuJimromYR5xRPzrOO1HewX2+3qyDvQ7rshEDN60QypT8dXy1OHB0NK4MaRr20+V5vyqTu4P1UAM77kpXI33R8yZO0HcQ30GOsYQdu52Yt+JcjCqWkNfhtMJ+jBUf8k61/EmSTMZJQWgUpsQ3Tjl++sj0rhvcxav07TWwGaqYvlkSHcJWqcxo8WZJ1Dotx+o3m44Sj3O9HwZLgNZ+AwLr1iTOfvIx7xPYPrByA5C0mKSLFLUqHYNa8vVR/zIPRLjvT0bkLMjeHcc48UKhxU0ZowWyzqgncxRZIaygGJK5Kv44LzeSmOQPtj0Q==
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-5.job - C:\Program Files\video MediaPlay-Air\b4485999-768d-4989-88ae-ed0beab63105-5.exe /bNRXdWXp /gmfuHTYGZ='video MediaPlay-Air' /KpPSvWHw=59599 /AnQKvCR='001673' /psRgiX='verticals-ads,intext,pops,shopping' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /sDuGvIAC=1405354700 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /qlkvYuqmO=http://ipgeoapi.com/ /UDikjqjO=http://update.genstatsnet.com /StzxeMC=2 /qsxQZMOO=http://logs.genstatsnet.com /ZqxaJ='http://update.genstatsnet.com/updater_agent_updates/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-5_user.job - C:\Program Files\video MediaPlay-Air\b4485999-768d-4989-88ae-ed0beab63105-5.exe /bNRXdWXp /gmfuHTYGZ='video MediaPlay-Air' /KpPSvWHw=59599 /AnQKvCR='001673' /psRgiX='verticals-ads,intext,pops,shopping' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /sDuGvIAC=1405354700 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /qlkvYuqmO=http://ipgeoapi.com/ /UDikjqjO=http://update.genstatsnet.com /StzxeMC=2 /qsxQZMOO=http://logs.genstatsnet.com /ZqxaJ='http://update.genstatsnet.com/updater_agent_updates/{CAMP_ID}/update.json' /qzAxQ /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-6.job - C:\Program Files\video MediaPlay-Air\video MediaPlay-Air-novainstaller.exe /XllBl /gmfuHTYGZ='video MediaPlay-Air' /KpPSvWHw=59599 /AnQKvCR='001673' /psRgiX='verticals-ads,intext,pops,shopping' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /DRaAvza=1.34.7.1 /sDuGvIAC=1405354700 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /sRhHdPyVP=http://js.genstatsnet.com /YNlyUA=ch /OVqMfIlvx /JJjHrFnKJ=video MediaPlay-Air /fzItSK='nova' /sKJtDFr=http://js.clientdemocloud.com /BOufx='{"asw":[67108896, 8388609, 0]}' /DQfMY=task /ZqxaJ='http://update.genstatsnet.com/novacode/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\b4485999-768d-4989-88ae-ed0beab63105-7.job - C:\Program Files\video MediaPlay-Air\video MediaPlay-Air-nova.exe /gmfuHTYGZ='video MediaPlay-Air' /KpPSvWHw=59599 /AnQKvCR='001673' /psRgiX='verticals-ads,intext,pops,shopping' /yDuANFEE='0' /qwJhMR=B245962D6B4F455BA819B8F38F191675IE /DmkBmVH=8c00bf3b340eca53028a0754e625e026 /UVOoz=1_34_07_01 /DRaAvza=1.34.7.1 /sDuGvIAC=1405354700 /BrJhWNrnp=http://stats.genstatsnet.com /bxYcIAD=http://errors.genstatsnet.com /sRhHdPyVP=http://js.genstatsnet.com /YNlyUA=ch /OVqMfIlvx /JJjHrFnKJ=video MediaPlay-Air /fzItSK='nova' /sKJtDFr=http://js.clientdemocloud.com /BOufx='{"asw":[67108896, 8388609, 0]}' /ZqxaJ='http://update.genstatsnet.com/novarun/{CAMP_ID}/update.json' /DQfMY='task' /oYHHnygZ=''
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1697967434-1681607132-3168893933-1001Core.job - C:\Users\stadhouders\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1697967434-1681607132-3168893933-1001UA.job - C:\Users\stadhouders\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1697967434-1681607132-3168893933-1001Core.job - C:\Users\stadhouders\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1697967434-1681607132-3168893933-1001UA.job - C:\Users\stadhouders\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Re-Markable Update.job -  
C:\Windows\tasks\SpeedUpMyPC Maintenance.job - C:\Program Files\Uniblue\SpeedUpMyPC\speedupmypc.exe -m
C:\Windows\tasks\SpeedUpMyPC Startup.job - C:\Program Files\Uniblue\SpeedUpMyPC\speedupmypc.exe 

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511951199}]
video MediaPlay-Air - C:\Program Files\video MediaPlay-Air\video MediaPlay-Air-bho.dll [2014-07-14 551448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611031146}]
Browser_AppS 1.1 - C:\Program Files\Browser_AppS 1.1\Browser_AppS 1.1-bho.dll [2014-07-14 551448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611111177}]
TheTorntv V10 - C:\Program Files\TheTorntv V10\TheTorntv V10-bho.dll [2014-07-14 591272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
IETabPage Class - C:\Program Files\SupTab\SupTab.dll [2014-07-14 515464]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files\Norton AntiVirus\Engine\21.4.0.13\IPS\IPSBHO.DLL [2014-02-21 392344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-02 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]
Norton Identity Protection - C:\Program Files\Norton Identity Safe\Engine\2014.6.6.3\coIEPlg.dll [2014-02-07 527712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files\PDF Architect\PDFIEPlugin.dll [2013-04-08 654384]
{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files\Norton Identity Safe\Engine\2014.6.6.3\coIEPlg.dll [2014-02-07 527712]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-02 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-03-19 642656]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-07-03 43816]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"iSkysoft Helper Compact.exe"=C:\Program Files\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2013-05-29 1734144]
"Wondershare Helper Compact.exe"=C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe []
"BrowserPlugInHelper"=C:\Program Files\Wondershare\Video Converter Ultimate\BrowserPlugInHelper.exe []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2014-01-17 421888]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2014-07-08 152392]
"fst_nl_61"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2012-10-07 39408]
"HydraVisionDesktopManager"=C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe [2009-11-10 380928]
"Google Update"=C:\Users\stadhouders\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-19 116648]
"GarminExpressTrayApp"=C:\Program Files\Garmin\Express Tray\ExpressTray.exe [2014-06-09 122200]
"AdobeBridge"= []
"Steam"=C:\Program Files\Steam\Steam.exe [2014-07-16 1753280]
"Facebook Update"=C:\Users\stadhouders\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-30 138096]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #2"=C:\Users\stadhouders\AppData\Local\Google\Chrome\Application\chrome.exe [2014-06-05 860488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\amd_dc_opt]
C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-07-03 43816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\stadhouders\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-19 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2014-07-08 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2014-01-17 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [2014-05-23 466656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-03-19 642656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2012-10-07 39408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
C:\PROGRA~1\MIF5BA~1\Office10\OSA.EXE [2001-02-13 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^stadhouders^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Schermopname en Snel starten.lnk]
C:\PROGRA~1\COMMON~1\MICROS~1\VIRTUA~1\CVH.EXE [2013-07-23 3207912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\SupTab\SEARCH~1.DLL"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-07-16 20:35:25 ----A---- C:\Windows\disney.ini
2014-07-15 13:02:11 ----D---- C:\Program Files\1 Media Player
2014-07-15 13:01:47 ----A---- C:\Windows\Launcher.exe
2014-07-15 13:01:45 ----D---- C:\Program Files\ZooToolbar
2014-07-14 19:25:29 ----D---- C:\Program Files\predm
2014-07-14 18:35:45 ----D---- C:\ProgramData\IePluginServices
2014-07-14 18:35:41 ----D---- C:\Program Files\SupTab
2014-07-14 18:35:15 ----D---- C:\ProgramData\WindowsMangerProtect
2014-07-14 18:20:00 ----D---- C:\Program Files\video MediaPlay-Air
2014-07-14 18:20:00 ----D---- C:\Program Files\Browser_AppS 1.1
2014-07-14 18:17:24 ----D---- C:\Program Files\di2Re-Markable
2014-07-14 16:13:19 ----D---- C:\Program Files\globalUpdate
2014-07-14 16:13:12 ----D---- C:\Program Files\TheTorntv V10
2014-07-13 00:57:05 ----D---- C:\Program Files\Sony Media Go Install
2014-07-12 22:58:11 ----D---- C:\Program Files\iPod
2014-07-12 22:58:09 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-12 22:58:09 ----D---- C:\Program Files\iTunes
2014-07-12 22:54:16 ----D---- C:\s5
2014-07-11 09:27:55 ----A---- C:\Windows\system32\qedit.dll
2014-07-11 09:27:24 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-11 09:27:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-07-11 09:27:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-07-11 09:27:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-11 09:27:20 ----A---- C:\Windows\system32\urlmon.dll
2014-07-11 09:27:20 ----A---- C:\Windows\system32\iernonce.dll
2014-07-11 09:27:19 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-11 09:27:19 ----A---- C:\Windows\system32\ieUnatt.exe
2014-07-11 09:27:19 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-11 09:27:18 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-11 09:27:18 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-11 09:27:18 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-11 09:27:16 ----A---- C:\Windows\system32\msrating.dll
2014-07-11 09:27:16 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-11 09:27:15 ----A---- C:\Windows\system32\iesetup.dll
2014-07-11 09:27:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-07-11 09:27:14 ----A---- C:\Windows\system32\wininet.dll
2014-07-11 09:27:13 ----A---- C:\Windows\system32\ieui.dll
2014-07-11 09:27:13 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-11 09:27:12 ----A---- C:\Windows\system32\ieframe.dll
2014-07-11 09:27:11 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-11 09:27:10 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-07-11 09:27:10 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-07-11 09:27:09 ----A---- C:\Windows\system32\iertutil.dll
2014-07-11 09:27:08 ----A---- C:\Windows\system32\mshtml.dll
2014-07-11 09:27:08 ----A---- C:\Windows\system32\jscript9diag.dll
2014-07-11 09:27:06 ----A---- C:\Windows\system32\vbscript.dll
2014-07-11 09:27:06 ----A---- C:\Windows\system32\jscript9.dll
2014-07-11 09:26:55 ----A---- C:\Windows\system32\win32k.sys
2014-07-11 09:26:54 ----A---- C:\Windows\system32\osk.exe
2014-07-11 09:26:32 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-11 09:26:23 ----A---- C:\Windows\system32\kerberos.dll
2014-07-11 09:26:22 ----A---- C:\Windows\system32\schannel.dll
2014-07-11 09:26:22 ----A---- C:\Windows\system32\msv1_0.dll
2014-07-11 09:26:21 ----A---- C:\Windows\system32\wdigest.dll
2014-07-11 09:26:21 ----A---- C:\Windows\system32\TSpkg.dll
2014-07-11 09:26:21 ----A---- C:\Windows\system32\ncrypt.dll
2014-07-11 09:26:19 ----A---- C:\Windows\system32\credssp.dll
2014-07-11 09:25:57 ----A---- C:\Windows\system32\aepdu.dll
2014-07-11 09:25:53 ----A---- C:\Windows\system32\aeinv.dll
2014-07-11 09:25:24 ----A---- C:\Windows\system32\lsasrv.dll
2014-06-26 22:52:40 ----D---- C:\Program Files\Trusteer
2014-06-26 22:51:13 ----D---- C:\ProgramData\Trusteer
2014-06-23 12:15:38 ----A---- C:\Windows\system32\drivers\RapportKELL.sys

======List of files/folders modified in the last 1 month======

2014-07-19 02:28:52 ----D---- C:\Program Files\Trend Micro
2014-07-19 02:22:32 ----D---- C:\Windows\Temp
2014-07-19 01:47:34 ----D---- C:\Windows\system32\config
2014-07-19 01:46:15 ----D---- C:\Windows\system32\Tasks
2014-07-19 01:46:02 ----D---- C:\Windows\Tasks
2014-07-19 01:31:16 ----D---- C:\Program Files\Common Files\Steam
2014-07-19 01:30:13 ----D---- C:\Program Files\Steam
2014-07-19 01:28:55 ----SHD---- C:\System Volume Information
2014-07-16 20:59:40 ----D---- C:\Windows\System32
2014-07-16 20:59:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-07-16 20:59:39 ----D---- C:\Windows\inf
2014-07-16 20:56:06 ----RD---- C:\Program Files
2014-07-16 20:55:54 ----D---- C:\Windows
2014-07-16 20:55:53 ----HD---- C:\Program Files\InstallShield Installation Information
2014-07-16 20:51:20 ----D---- C:\Windows\Prefetch
2014-07-14 22:24:42 ----D---- C:\Program Files\Windows Sidebar
2014-07-14 19:45:33 ----D---- C:\foto-video vakantie kroatie 2013
2014-07-14 19:11:27 ----D---- C:\Windows\system32\drivers\NAV
2014-07-14 19:09:12 ----D---- C:\ProgramData
2014-07-14 19:07:35 ----HD---- C:\Windows\system32\GroupPolicy
2014-07-14 18:21:17 ----SHD---- C:\Windows\Installer
2014-07-14 18:21:16 ----SHD---- C:\Config.Msi
2014-07-14 16:13:28 ----D---- C:\Users\stadhouders\AppData\Roaming\Vso
2014-07-14 16:12:19 ----D---- C:\Users\stadhouders\AppData\Roaming\BitTorrent
2014-07-13 22:21:36 ----D---- C:\foto-video londen met jules 30-04-2014 tm 06-05-2014
2014-07-13 01:17:25 ----D---- C:\Windows\system32\catroot
2014-07-13 01:17:22 ----D---- C:\Windows\system32\DriverStore
2014-07-13 01:05:05 ----D---- C:\Program Files\Common Files\Sony Shared
2014-07-13 01:02:46 ----D---- C:\Program Files\Sony
2014-07-13 01:01:07 ----D---- C:\ProgramData\Package Cache
2014-07-12 22:58:10 ----D---- C:\Program Files\Common Files\Apple
2014-07-12 13:05:48 ----D---- C:\Windows\rescache
2014-07-12 10:33:20 ----D---- C:\Windows\winsxs
2014-07-12 10:31:26 ----D---- C:\Windows\system32\en-US
2014-07-12 10:31:26 ----D---- C:\Program Files\Windows Journal
2014-07-12 10:31:24 ----D---- C:\Program Files\Internet Explorer
2014-07-12 10:31:21 ----D---- C:\Windows\ehome
2014-07-12 02:40:12 ----D---- C:\Windows\system32\Dism
2014-07-11 18:07:06 ----D---- C:\Windows\system32\nl-NL
2014-07-11 18:07:06 ----D---- C:\Windows\system32\drivers
2014-07-11 18:07:05 ----SD---- C:\Windows\system32\CompatTel
2014-07-11 09:24:42 ----D---- C:\Windows\system32\catroot2
2014-07-11 09:21:25 ----D---- C:\Windows\system32\MRT
2014-07-11 09:04:34 ----A---- C:\Windows\system32\MRT.exe
2014-07-07 02:22:32 ----D---- C:\Users\stadhouders\AppData\Roaming\SoftGrid Client
2014-07-06 12:46:09 ----D---- C:\Windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2014-06-23 123544]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NAV\1504000.00D\SYMDS.SYS [2013-09-10 367704]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NAV\1504000.00D\SYMEFA.SYS [2014-03-04 936152]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2012-04-21 12400]
R1 BHDrvx86;BHDrvx86; \??\C:\Program Files\Norton AntiVirus\NortonData\21.1.1.7\Definitions\BASHDefs\20140703.001\BHDrvx86.sys [2014-05-10 1101616]
R1 ccSet_NAV;NAV Settings Manager; C:\Windows\system32\drivers\NAV\1504000.00D\ccSetx86.sys [2013-09-26 127064]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\Windows\system32\drivers\NST\7DE06060.003\ccSetx86.sys [2013-09-27 127064]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2014-06-11 377648]
R1 IDSVix86;IDSVix86; \??\C:\Program Files\Norton AntiVirus\NortonData\21.1.1.7\Definitions\IPSDefs\20140718.001\IDSvix86.sys [2014-03-26 395992]
R1 RapportCerberus_69108;RapportCerberus_69108; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_69108.sys [2014-06-30 358040]
R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2014-06-23 171000]
R1 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2014-06-23 249688]
R1 SRTSP;Symantec Real Time Storage Protection; C:\Windows\System32\Drivers\NAV\1504000.00D\SRTSP.SYS [2014-02-11 664280]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\Windows\system32\drivers\NAV\1504000.00D\SRTSPX.SYS [2014-02-11 32344]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2013-09-10 63576]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NAV\1504000.00D\Ironx86.SYS [2013-09-27 206936]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NAV\1504000.00D\SYMNETS.SYS [2014-02-18 447704]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-19 9951744]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-19 460288]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2013-01-15 80384]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-06-11 109872]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2012-04-21 6504]
R3 NAVENG;NAVENG; \??\C:\Program Files\Norton AntiVirus\NortonData\21.1.1.7\Definitions\VirusDefs\20140718.009\NAVENG.SYS [2014-05-07 93272]
R3 NAVEX15;NAVEX15; \??\C:\Program Files\Norton AntiVirus\NortonData\21.1.1.7\Definitions\VirusDefs\20140718.009\NAVEX15.SYS [2014-05-07 1612376]
R3 PAC207;SoC PC-Camera; C:\Windows\system32\DRIVERS\PFC027.SYS [2006-12-05 507136]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 583848]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 197800]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 24232]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 20136]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2014-03-10 142936]
R3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2011-07-01 26624]
R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 104976]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-19 9951744]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 catchme;catchme; \??\C:\Users\STADHO~1\AppData\Local\Temp\catchme.sys []
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2013-03-11 23456]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-08-11 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-08-11 25200]
S3 motccgp;Motorola USB Composite Device Driver; C:\Windows\system32\DRIVERS\motccgp.sys []
S3 motccgpfl;MotCcgpFlService; C:\Windows\system32\DRIVERS\motccgpfl.sys []
S3 MotDev;Motorola Inc. USB Device; C:\Windows\system32\DRIVERS\motodrv.sys []
S3 motmodem;Motorola USB CDC ACM Driver; C:\Windows\system32\DRIVERS\motmodem.sys []
S3 netr28u;Stuurprogramma voor RT2870 USB draadloze LAN-kaart voor Vista; C:\Windows\system32\DRIVERS\netr28u.sys [2009-07-14 657408]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-12-13 45056]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-19 219136]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-06-12 43336]
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 Garmin Core Update Service;Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2014-06-09 435032]
R2 NAV;Norton AntiVirus; C:\Program Files\Norton AntiVirus\Engine\21.4.0.13\NAV.exe [2014-06-27 262968]
R2 NCO;Norton Identity Safe; C:\Program Files\Norton Identity Safe\Engine\2014.6.6.3\NST.exe [2014-02-07 130104]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-01-23 76888]
R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2014-06-23 1886488]
R2 Re-Markable;Re-Markable; C:\Program Files\di2Re-Markable\m7Re-MarkableVx175.exe [2014-07-14 159744]
R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [2014-07-14 535936]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-07-08 553288]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2014-07-16 542912]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-07-14 68608]
S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-19 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-07-14 68608]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-19 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-10-07 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-06-19 108032]
S3 ose;Office  Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-04-20 1343400]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 IePluginServices;IePlugin Services; C:\ProgramData\IePluginServices\PluginService.exe [2014-07-14 759688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------