Logfile of random's system information tool 1.10 (written by random/random)
Run by Wilco at 2014-11-11 14:37:26
Microsoft Windows 7 Home Premium  Service Pack 1
System drive C: has 147 GB (49%) free of 300 GB
Total RAM: 3071 MB (84% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:38:05, on 11-11-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\DllHost.exe
C:\Windows\explorer.exe
C:\Users\Wilco\Downloads\RSIT.exe
C:\Program Files\trend micro\Wilco.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://trovi.com?SearchSource=10&CUI=UN20940738143003919&UM=4&ctid=CT3329621
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R3 - URLSearchHook: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Wilco\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: BS Player ControlBar B - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Wilco\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O2 - BHO: FastestTube BHO - {3E532CE8-C6D9-4A10-8ACE-4348C96E8B6A} - C:\Program Files\FastestTube\2.2.0.3\WombatBHO.dll
O2 - BHO: Google Analytics Opt-out Browser Add-on - {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} - C:\Program Files\Google\Google Analytics Opt-Out\gaoptout.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll
O3 - Toolbar: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Wilco\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O4 - HKLM\..\Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [NVRaidService] C:\Windows\system32\nvraidservice.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [F-Secure Hoster (45123)] "C:\Program Files\Internetbeveiliging\fshoster32.exe" -app -hosterid:1
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [Greenshot] C:\Program Files\Greenshot\Greenshot.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKCU\..\Run: [HP Photosmart 5520 series (NET)] "C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN3981330M0602:NW" -scfn "HP Photosmart 5520 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [Google Update] "C:\Users\Wilco\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Spotify] "C:\Users\Wilco\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_6ED97802CEDA0576BDCF631126D91757] "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Wilco\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [MyDriveConnect.exe] C:\Program Files\MyDrive Connect\MyDriveConnect.exe
O4 - HKCU\..\Run: [B96496BDCBE9D60B693EEE688C6986BC756C8358._service_run] "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [Skitch] C:\Program Files\Evernote\Skitch\Skitch.exe -start-on-hide
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-18\..\Run: [Copy] "C:\Users\Wilco\AppData\Roaming\Copy\CopyAgent.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Copy] "C:\Users\Wilco\AppData\Roaming\Copy\CopyAgent.exe" (User 'Default user')
O4 - Startup: Dropbox.lnk = Wilco\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Inktwaarschuwingen controleren - HP Photosmart 5520 series (netwerk).lnk = ?
O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Global Startup: Install LastPass FF RunOnce.lnk = C:\Program Files\Common Files\lpuninstall.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Afbeelding knippen - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Kopieer selectie - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Kopieer URL - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: Nieuwe notitie - C:\Program Files\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Pagina opemen - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra button: (no name) - {BC3F6B6D-2E49-4603-B028-7411655713F3} - C:\Program Files\Iconix\IEAddOn\IconixBHO_46.dll
O9 - Extra 'Tools' menuitem: About Email ID - {BC3F6B6D-2E49-4603-B028-7411655713F3} - C:\Program Files\Iconix\IEAddOn\IconixBHO_46.dll
O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: !SASWinLogon - Invalid registry found
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O21 - SSODL: EldosMountNotificator-cbfs4 - {CDF86991-33A6-4493-BA44-14F6B1CB3280} - C:\Windows\system32\cbfsMntNtf4.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {CDF86991-33A6-4493-BA44-14F6B1CB3280} - C:\Windows\system32\cbfsMntNtf4.dll
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: F-Secure Dll Hoster (fshoster) - F-Secure Corporation - C:\Program Files\Internetbeveiliging\fshoster32.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe
O23 - Service: Google Update Service (gupdate1c9861ddb57cde0) (gupdate1c9861ddb57cde0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Iconix Update Service (IconixService) - Unknown owner - C:\Program Files\Common Files\Iconix\IconixService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Windows\system32\mfevtps.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--
End of file - 12057 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job - C:\Windows\TEMP\{CF3DE967-D9A7-45E6-80FB-BFA7E0AC5EBD}.exe  --uninstall=1 
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{9F1A5233-5045-4A9D-AAC6-411C4448211E}.exe  --uninstall=1 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-862677247-1756649656-1137367909-1000Core1cf8fb3e3727200.job - C:\Users\Wilco\AppData\Local\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-862677247-1756649656-1137367909-1000Core1cfef8228035e10.job - C:\Users\Wilco\AppData\Local\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-862677247-1756649656-1137367909-1000UA.job - C:\Users\Wilco\AppData\Local\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
C:\Windows\tasks\NeroLiveEpgUpdate-WILCO_Wilco.job - C:\Program Files\Nero\Nero 9\Nero Live\NeroLive.exe  /silentepgupdate 

=========Mozilla firefox=========

ProfilePath - C:\Users\Wilco\AppData\Roaming\Mozilla\Firefox\Profiles\o0g3l72o.default-1388916247328

prefs.js - "browser.search.useDBForOrder" -  true
prefs.js - "browser.startup.homepage" -  "www.seniorweb.nl"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"smartwebprinting@hp.com"=C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
"quickprint@hp.com"=C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=Virtual Earth 3D
"Path"=C:\Program Files\Virtual Earth 3D\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{B7DC7831-B684-4099-9778-C9E9F687256E}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
nsIOGAPlugin.xpt
Scriptff.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npFoxitReaderPlugin.dll
npIconixProxy100.dll
NPOFFICE.DLL
npOGAPlugin.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Users\Wilco\AppData\Roaming\Mozilla\Firefox\Profiles\o0g3l72o.default-1388916247328\extensions\
ascsurfingprotection@iobit.com
donottrackplus@abine.com
isreaditlater@ideashower.com
support@lastpass.com
{31264a33-a653-46c4-af49-1232c59a7da5}
{E0B8C461-F8FB-49b4-8373-FE32E9252800}

C:\Users\Wilco\AppData\Roaming\Mozilla\Firefox\Profiles\o0g3l72o.default-1388916247328\searchplugins\
duckduckgo.xml
ixquick-https---nederlands.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
BS Player ControlBar B Toolbar - C:\Users\Wilco\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-04-10 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3E532CE8-C6D9-4A10-8ACE-4348C96E8B6A}]
FastestTube - C:\Program Files\FastestTube\2.2.0.3\WombatBHO.dll [2013-12-27 185344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EF13CE-B59E-41ba-8A5A-A944031BD8B4}]
Google Analytics Opt-out Browser Add-on - C:\Program Files\Google\Google Analytics Opt-Out\gaoptout.dll [2014-04-03 312648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2014-11-09 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files\Evernote\Evernote\EvernoteIE.dll [2014-11-05 626528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2014-09-25 710352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-02-20 669504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-09 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]
{31264a33-a653-46c4-af49-1232c59a7da5} - BS Player ControlBar B Toolbar - C:\Users\Wilco\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-04-10 423744]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-11-11 12021464]
"NVRaidService"=C:\Windows\system32\nvraidservice.exe [2008-06-06 203296]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-12-21 86016]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2009-07-14 660480]
"F-Secure Hoster (45123)"=C:\Program Files\Internetbeveiliging\fshoster32.exe [2012-11-26 183864]
"F-Secure Manager"=C:\Program Files\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE [2013-08-27 310208]
"Greenshot"=C:\Program Files\Greenshot\Greenshot.exe [2014-05-12 495616]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
"SDTray"=C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Photosmart 5520 series (NET)"=C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2012-10-17 1837672]
"Google Update"=C:\Users\Wilco\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-24 107912]
"Spotify"=C:\Users\Wilco\AppData\Roaming\Spotify\spotify.exe [2014-10-09 6553144]
"GoogleChromeAutoLaunch_6ED97802CEDA0576BDCF631126D91757"=C:\Program Files\Google\Chrome\Application\chrome.exe [2014-10-22 854344]
"Spotify Web Helper"=C:\Users\Wilco\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-10-09 1514040]
"MyDriveConnect.exe"=C:\Program Files\MyDrive Connect\MyDriveConnect.exe [2014-08-22 1792376]
"B96496BDCBE9D60B693EEE688C6986BC756C8358._service_run"=C:\Program Files\Google\Chrome\Application\chrome.exe [2014-10-22 854344]
"Skitch"=C:\Program Files\Evernote\Skitch\Skitch.exe [2014-10-20 4851520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent Sync]
C:\Program Files\BitTorrent Sync\BTSync.exe [2014-06-27 3020136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Copy]
C:\Users\Wilco\AppData\Roaming\Copy\CopyAgent.exe [2014-03-17 13473936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GBMLite8AgentLaCie]
C:\Program Files\LaCie\Genie Backup Assistant\GBMAgent.exe [2008-09-18 189056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
C:\Program Files\Samsung\Kies\Kies.exe [2013-11-06 1564528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2013-11-06 311152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyPoi Monitor]
C:\Program Files\Common Files\MyPoiWorld Shared\MyPoiMonitor\MyPoiMonitor.exe [2010-03-26 2114808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMMediaSharing]
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe [2008-05-20 204908]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rohos]
C:\Program Files\Rohos\agent.exe [2011-05-17 801080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skitch]
C:\Program Files\Evernote\Skitch\Skitch.exe [2014-10-20 4851520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\Wilco\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-10-09 1514040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2014-06-05 248176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toolwiz BSafe]
F:\Toolwiz BSafe\BSafe.exe -autorun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UsbBoost]
C:\Program Files\UsbBoost\TurboHddUsb.exe [2010-08-21 3788800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Empowering Technology Launcher.lnk]
C:\Acer\EMPOWE~1\EAPLAU~1.EXE [2007-04-14 535336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^iPrint.lnk]
C:\PROGRA~1\iPrint\iPrint.exe [2009-12-21 2893824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Wilco^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Wilco\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-09-13 36414624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Wilco^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk]
C:\PROGRA~1\Evernote\Evernote\EVERNO~2.EXE [2014-11-05 1111904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Wilco^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^FreeClip.lnk]
 []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Install LastPass FF RunOnce.lnk - C:\Program Files\Common Files\lpuninstall.exe

C:\Users\Wilco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Wilco\AppData\Roaming\Dropbox\bin\Dropbox.exe
Inktwaarschuwingen controleren - HP Photosmart 5520 series (netwerk).lnk - C:\Windows\system32\RunDll32.exe
Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon]
SDWinLogon.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
EldosMountNotificator-cbfs4 - {CDF86991-33A6-4493-BA44-14F6B1CB3280} - C:\Windows\system32\cbfsMntNtf4.dll [2013-11-15 156456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Virtual Storage Mount Notification - {CDF86991-33A6-4493-BA44-14F6B1CB3280} - C:\Windows\system32\cbfsMntNtf4.dll [2013-11-15 156456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticetext"=

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"
"C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"
"C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"
"C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"
"C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"
"C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"
"C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.l3codecp"=l3codecp.acm
"msacm.siren"=sirenacm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - NOTEPAD.EXE "%1"
.vbs - open - NOTEPAD.EXE "%1"

======List of files/folders created in the last 1 month======

2014-11-11 14:25:09 ----A---- C:\Windows\ntbtlog.txt
2014-11-11 14:08:19 ----D---- C:\Program Files\ALDI Foto bestelsoftware
2014-11-11 09:03:48 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-11-11 09:03:48 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-11-11 09:03:48 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-11-11 09:03:47 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-11-11 09:03:47 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-11-11 09:03:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-11-11 09:03:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-11-11 09:03:47 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-11-11 09:03:46 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-11-11 09:03:46 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-11-11 09:03:46 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-11-11 09:03:46 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-11-11 09:03:45 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-11-11 09:03:45 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-11-11 09:03:44 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-11-11 09:03:44 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-11-11 09:03:44 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-11-11 09:03:44 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-11-11 09:03:44 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-11-11 09:03:43 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-11-11 09:03:43 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-11-11 09:03:43 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-11-11 09:03:42 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-11-11 09:03:42 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-11-11 09:03:42 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-11-11 09:03:42 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-11-11 09:03:42 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-11-11 09:03:42 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-11-11 09:03:41 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-11-11 09:03:41 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-11-11 09:03:41 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-11-11 09:03:41 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-11-11 09:03:41 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-11-11 09:03:41 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-11-11 09:03:40 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-11-11 09:03:40 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-11-11 09:03:40 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-11-11 09:03:40 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-11-11 09:03:40 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-11-11 09:03:39 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-11-11 09:03:39 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-11-11 09:03:39 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-11-11 09:03:39 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-11-11 09:03:39 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-11-11 09:03:39 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-11-11 09:03:38 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-11-11 09:03:37 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-11-11 09:03:37 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-11-11 09:03:37 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-11-11 09:03:37 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-11-11 09:03:35 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-11-11 09:03:35 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-11-11 09:03:34 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-11-11 09:03:34 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-11-11 09:03:34 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-11-11 09:03:33 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-11-11 09:03:33 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-11-11 09:03:33 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-11-11 09:03:32 ----A---- C:\Windows\system32\xinput1_3.dll
2014-11-11 09:03:32 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-11-11 09:03:31 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-11-11 09:03:31 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-11-11 09:03:29 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-11-11 09:03:29 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-11-11 09:03:29 ----A---- C:\Windows\system32\d3dx10.dll
2014-11-11 09:03:27 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-11-11 09:03:27 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-11-11 09:03:27 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-11-11 09:03:26 ----A---- C:\Windows\system32\xinput1_2.dll
2014-11-11 09:03:26 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-11-11 09:03:26 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-11-11 09:03:25 ----A---- C:\Windows\system32\xinput1_1.dll
2014-11-11 09:03:25 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-11-11 09:03:12 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-11-11 09:03:12 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-11-11 09:03:12 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-11-11 09:03:11 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-11-11 09:03:11 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-11-11 09:03:10 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-11-11 09:03:10 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-11-11 09:03:09 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-11-11 09:03:09 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-11-11 09:00:27 ----A---- C:\Windows\system32\WavesGUILib.dll
2014-11-11 09:00:27 ----A---- C:\Windows\system32\SStudio.dll
2014-11-11 09:00:26 ----A---- C:\Windows\system32\sltech32.dll
2014-11-11 09:00:26 ----A---- C:\Windows\system32\slprp32.dll
2014-11-11 09:00:26 ----A---- C:\Windows\system32\slcnt32.dll
2014-11-11 09:00:26 ----A---- C:\Windows\system32\sl3apo32.dll
2014-11-11 09:00:26 ----A---- C:\Windows\system32\RtkPgExt.dll
2014-11-11 09:00:26 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-11-11 09:00:26 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2014-11-11 09:00:25 ----A---- C:\Windows\system32\RtkCoInstII.dll
2014-11-11 09:00:25 ----A---- C:\Windows\system32\RtkApoApi.dll
2014-11-11 09:00:20 ----A---- C:\Windows\system32\RltkAPO.dll
2014-11-11 09:00:20 ----A---- C:\Windows\system32\RCoRes.dat
2014-11-11 09:00:20 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-11-11 09:00:20 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-11-11 09:00:20 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-11-11 09:00:19 ----A---- C:\Windows\system32\MaxxVoiceAPO30.dll
2014-11-11 09:00:19 ----A---- C:\Windows\system32\MaxxVoiceAPO20.dll
2014-11-11 09:00:19 ----A---- C:\Windows\system32\MaxxSpeechAPO.dll
2014-11-11 09:00:19 ----A---- C:\Windows\system32\MaxxAudioVnN.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioVnA.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioAPO60.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll
2014-11-11 09:00:18 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll
2014-11-11 09:00:17 ----A---- C:\Windows\system32\ICEsoundAPO.dll
2014-11-11 09:00:16 ----A---- C:\Windows\system32\FMAPO.dll
2014-11-11 09:00:16 ----A---- C:\Windows\system32\DDPP32A.dll
2014-11-11 09:00:16 ----A---- C:\Windows\system32\DDPO32A.dll
2014-11-11 09:00:16 ----A---- C:\Windows\system32\DDPD32A.dll
2014-11-11 09:00:16 ----A---- C:\Windows\system32\DDPA32.dll
2014-11-11 09:00:16 ----A---- C:\Windows\system32\audioLibVc.dll
2014-11-11 08:59:44 ----A---- C:\Windows\system32\drivers\RtsUStor.sys
2014-11-11 08:59:43 ----A---- C:\Windows\system32\RsCRIcon.dll
2014-11-11 08:59:21 ----A---- C:\Windows\system32\nvhdap32.dll
2014-11-11 08:59:21 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2014-11-11 08:58:37 ----A---- C:\Windows\system32\RtkHDMI.dll
2014-11-11 08:58:37 ----A---- C:\Windows\system32\RTEEP32H.dll
2014-11-11 08:58:37 ----A---- C:\Windows\system32\RTEEL32H.dll
2014-11-11 08:58:37 ----A---- C:\Windows\system32\drivers\RtHDMIV.sys
2014-11-11 08:58:36 ----A---- C:\Windows\system32\RTEEG32H.dll
2014-11-11 08:58:36 ----A---- C:\Windows\system32\RTEED32H.dll
2014-11-11 08:58:36 ----A---- C:\Windows\system32\RHDMIExt.dll
2014-11-11 08:58:36 ----A---- C:\Windows\system32\RHCoInst.dll
2014-11-11 08:58:36 ----A---- C:\Windows\system32\RH3DHT32.dll
2014-11-11 08:58:36 ----A---- C:\Windows\system32\RH3DAA32.dll
2014-11-11 08:58:35 ----A---- C:\Windows\system32\R4EEP32H.dll
2014-11-11 08:58:35 ----A---- C:\Windows\system32\R4EEL32H.dll
2014-11-11 08:58:35 ----A---- C:\Windows\system32\R4EEG32H.dll
2014-11-11 08:58:35 ----A---- C:\Windows\system32\R4EED32H.dll
2014-11-11 08:58:35 ----A---- C:\Windows\system32\R4EEA32H.dll
2014-11-11 08:58:17 ----A---- C:\Windows\system32\cohelper.dll
2014-11-11 08:58:08 ----A---- C:\Windows\system32\nvconrm.dll
2014-11-11 08:58:08 ----A---- C:\Windows\system32\drivers\nvmf6232.sys
2014-11-11 08:58:06 ----A---- C:\Windows\system32\fdco2.dll
2014-11-11 08:53:38 ----A---- C:\Windows\system32\NVCOSMU.DLL
2014-11-11 08:53:38 ----A---- C:\Windows\system32\drivers\nvsmu.sys
2014-11-11 08:52:15 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2014-11-11 08:48:52 ----A---- C:\Windows\system32\drivers\point32.sys
2014-11-11 08:48:52 ----A---- C:\Windows\system32\coin94.dll
2014-11-10 15:45:17 ----D---- C:\rsit
2014-11-10 10:52:20 ----D---- C:\Program Files\Fotoalbum
2014-11-09 14:28:05 ----A---- C:\Windows\system32\sdnclean.exe
2014-11-09 14:20:33 ----D---- C:\Program Files\Common Files\Java
2014-11-06 13:51:34 ----D---- C:\Program Files\LibreOffice 4
2014-11-05 07:45:00 ----D---- C:\Users\Wilco\AppData\Roaming\Greenshot
2014-11-05 07:44:37 ----D---- C:\Program Files\Greenshot
2014-11-05 07:37:06 ----D---- C:\Program Files\stinger
2014-11-05 07:29:53 ----D---- C:\ProgramData\Unchecky
2014-11-04 07:00:15 ----D---- C:\ProgramData\VS Revo Group
2014-11-04 07:00:15 ----A---- C:\Windows\system32\drivers\revoflt.sys
2014-11-04 07:00:10 ----D---- C:\Program Files\VS Revo Group
2014-11-03 09:20:21 ----A---- C:\Windows\system32\drivers\rawdsk3.sys
2014-11-03 09:17:41 ----D---- C:\logs
2014-10-15 16:47:51 ----A---- C:\Windows\system32\generaltel.dll
2014-10-15 16:47:50 ----A---- C:\Windows\system32\aepdu.dll
2014-10-15 16:47:47 ----A---- C:\Windows\system32\aeinv.dll
2014-10-15 16:47:46 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 16:47:31 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 16:47:24 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 16:47:24 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-10-15 16:47:24 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-10-15 16:47:23 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 16:47:23 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 16:47:23 ----A---- C:\Windows\system32\jsproxy.dll
2014-10-15 16:47:23 ----A---- C:\Windows\system32\ieUnatt.exe
2014-10-15 16:47:23 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 16:47:23 ----A---- C:\Windows\system32\dxtmsft.dll
2014-10-15 16:47:22 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 16:47:21 ----A---- C:\Windows\system32\ieui.dll
2014-10-15 16:47:21 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 16:47:20 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-10-15 16:47:20 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 16:47:19 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 16:47:19 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 16:47:18 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 16:47:17 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 16:47:16 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 16:47:15 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 16:47:14 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 16:47:14 ----A---- C:\Windows\system32\iernonce.dll
2014-10-15 16:47:13 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 16:47:12 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 16:47:12 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 16:47:10 ----A---- C:\Windows\system32\msrating.dll
2014-10-15 16:47:10 ----A---- C:\Windows\system32\iesetup.dll
2014-10-15 16:47:09 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 16:47:04 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 16:47:03 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 16:47:03 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 16:46:46 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 16:46:39 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 16:46:15 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 16:46:15 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 16:46:15 ----A---- C:\Windows\system32\TSpkg.dll
2014-10-15 16:46:15 ----A---- C:\Windows\system32\termsrv.dll
2014-10-15 16:46:15 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 16:46:15 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 16:46:14 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 16:46:14 ----A---- C:\Windows\system32\credssp.dll
2014-10-15 16:45:58 ----A---- C:\Windows\system32\msi.dll
2014-10-15 16:45:44 ----A---- C:\Windows\system32\packager.dll
2014-10-15 16:45:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 16:45:20 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 16:45:19 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 16:45:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 16:45:16 ----A---- C:\Windows\system32\mf.dll
2014-10-15 16:45:16 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 16:45:16 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-10-15 16:45:15 ----A---- C:\Windows\system32\winload.exe
2014-10-15 16:45:15 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 16:45:15 ----A---- C:\Windows\system32\ci.dll
2014-10-15 16:45:15 ----A---- C:\Windows\system32\AudioSes.dll
2014-10-15 16:45:14 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 16:45:14 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 16:45:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 16:45:14 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 16:45:14 ----A---- C:\Windows\system32\EncDump.dll
2014-10-15 16:45:14 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 16:45:13 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 16:45:13 ----A---- C:\Windows\system32\evr.dll
2014-10-15 16:45:13 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 16:45:13 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 16:45:12 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 16:45:12 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 16:45:12 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 16:45:12 ----A---- C:\Windows\system32\AudioEng.dll
2014-10-15 16:45:11 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 16:45:11 ----A---- C:\Windows\system32\audiosrv.dll
2014-10-15 16:45:10 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 16:45:10 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 16:45:10 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 16:45:10 ----A---- C:\Windows\system32\audiodg.exe
2014-10-15 16:45:10 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 16:45:09 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 16:45:09 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 16:45:09 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 16:45:09 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 16:45:08 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 16:45:08 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 16:45:04 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 16:45:04 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 16:45:04 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 16:45:03 ----A---- C:\Windows\system32\wmploc.DLL

======List of files/folders modified in the last 1 month======

2014-11-11 14:38:05 ----D---- C:\Program Files\Trend Micro
2014-11-11 14:37:12 ----D---- C:\Users\Wilco\AppData\Roaming\Copy
2014-11-11 14:33:47 ----D---- C:\Windows\Temp
2014-11-11 14:32:23 ----D---- C:\Windows\system32\config
2014-11-11 14:30:21 ----D---- C:\Users\Wilco\AppData\Roaming\Spotify
2014-11-11 14:30:07 ----D---- C:\Users\Wilco\AppData\Roaming\Dropbox
2014-11-11 14:29:14 ----D---- C:\Windows\System32
2014-11-11 14:25:09 ----D---- C:\Windows
2014-11-11 14:13:43 ----SHD---- C:\System Volume Information
2014-11-11 14:08:19 ----D---- C:\Program Files
2014-11-11 12:36:12 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-11 09:09:26 ----D---- C:\Program Files\Mozilla Firefox
2014-11-11 09:04:58 ----D---- C:\Windows\system32\catroot
2014-11-11 09:03:25 ----RSD---- C:\Windows\assembly
2014-11-11 09:03:15 ----D---- C:\Windows\Microsoft.NET
2014-11-11 09:02:43 ----D---- C:\Windows\inf
2014-11-11 09:02:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-11 09:02:41 ----D---- C:\Windows\Logs
2014-11-11 09:02:26 ----D---- C:\Windows\system32\catroot2
2014-11-11 09:01:42 ----D---- C:\Windows\system32\RTCOM
2014-11-11 09:01:42 ----D---- C:\Windows\system32\drivers
2014-11-11 09:01:13 ----D---- C:\Windows\system32\DriverStore
2014-11-11 08:59:21 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2014-11-11 08:56:25 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-11 08:54:35 ----D---- C:\Windows\system32\Tasks
2014-11-11 08:54:13 ----D---- C:\Windows\Prefetch
2014-11-11 08:53:47 ----D---- C:\Program Files\NVIDIA Corporation
2014-11-11 08:53:38 ----A---- C:\Windows\system32\nvusmu.exe
2014-11-11 08:53:38 ----A---- C:\Windows\system32\nvuninst.exe
2014-11-11 08:53:11 ----SD---- C:\Users\Wilco\AppData\Roaming\Microsoft
2014-11-11 08:52:56 ----SHD---- C:\Windows\Installer
2014-11-11 08:52:55 ----D---- C:\Config.Msi
2014-11-11 08:45:29 ----D---- C:\ProgramData\ProductData
2014-11-09 14:31:26 ----D---- C:\Program Files\Spybot - Search & Destroy 2
2014-11-09 14:28:13 ----SD---- C:\ProgramData\Microsoft
2014-11-09 14:28:00 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-11-09 14:22:52 ----A---- C:\Windows\wininit.ini
2014-11-09 14:20:33 ----D---- C:\Program Files\Common Files
2014-11-09 14:19:26 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2014-11-09 14:19:08 ----D---- C:\Program Files\Java
2014-11-09 14:18:39 ----D---- C:\Users\Wilco\AppData\Roaming\Foxit Software
2014-11-09 14:14:48 ----D---- C:\Program Files\FileHippo.com
2014-11-09 14:11:26 ----D---- C:\Program Files\Evernote
2014-11-08 06:59:32 ----D---- C:\ProgramData\HitmanPro
2014-11-07 15:08:27 ----D---- C:\Windows\system32\NDF
2014-11-06 13:52:13 ----RSD---- C:\Windows\Fonts
2014-11-05 09:56:26 ----D---- C:\Windows\system32\drivers\etc
2014-11-05 08:17:41 ----D---- C:\Program Files\CCleaner
2014-11-05 08:14:45 ----D---- C:\ProgramData\firebird
2014-11-05 07:42:23 ----A---- C:\Windows\system32\mfevtps.exe
2014-11-05 07:29:53 ----D---- C:\ProgramData
2014-11-04 16:03:32 ----D---- C:\Program Files\PrivaZer
2014-11-02 13:54:16 ----D---- C:\Windows\Tasks
2014-10-31 05:41:15 ----D---- C:\Program Files\Opera
2014-10-30 10:03:46 ----D---- C:\Users\Wilco\AppData\Roaming\dvdcss
2014-10-30 09:51:09 ----D---- C:\ProgramData\tmp
2014-10-30 08:45:35 ----D---- C:\Windows\rescache
2014-10-30 08:45:35 ----D---- C:\Users\Wilco\AppData\Roaming\ProductData
2014-10-30 08:45:30 ----D---- C:\Program Files\Internetbeveiliging
2014-10-30 08:45:26 ----D---- C:\Windows\registration
2014-10-30 07:46:37 ----D---- C:\Windows\system32\wfp
2014-10-30 07:46:35 ----D---- C:\Windows\system32\wbem
2014-10-24 07:58:27 ----D---- C:\Windows\debug
2014-10-22 16:20:02 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-10-22 16:18:42 ----D---- C:\Program Files\Microsoft Office 15
2014-10-16 08:29:34 ----D---- C:\Program Files\TomTom International B.V
2014-10-16 08:10:40 ----D---- C:\Windows\winsxs
2014-10-16 08:10:37 ----SHD---- C:\Boot
2014-10-16 08:07:40 ----SD---- C:\Windows\system32\CompatTel
2014-10-16 08:07:38 ----D---- C:\Windows\system32\en-US
2014-10-16 08:07:37 ----D---- C:\Program Files\Internet Explorer
2014-10-16 08:07:24 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:07:23 ----D---- C:\Windows\system32\nl-NL
2014-10-16 08:07:23 ----D---- C:\Windows\system32\Dism
2014-10-16 08:07:20 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 08:07:20 ----D---- C:\Windows\system32\Boot
2014-10-16 07:52:47 ----D---- C:\Windows\system32\MRT
2014-10-16 07:40:13 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fsbts;fsbts; C:\Windows\system32\Drivers\fsbts.sys [2014-02-05 44240]
R0 KSafeDISK;KSafeDISK; C:\Windows\system32\Drivers\KSafeDISK.sys [2012-11-25 48152]
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [2009-05-04 64160]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2014-11-05 575984]
R0 nvrd32;NVIDIA nForce RAID Driver; C:\Windows\system32\DRIVERS\nvrd32.sys [2007-09-11 123424]
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2007-09-11 114208]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 PSDFilter;PSDFilter; C:\Windows\system32\DRIVERS\psdfilter.sys [2008-03-04 18992]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 FNETURPX;FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [2010-08-21 7936]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2010-10-13 64304]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-03-25 65200]
R3 FNETTBOH;FNETTBOH; C:\Windows\System32\drivers\FNETTBOH.SYS [2010-08-21 23680]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2010-10-13 313288]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-04-21 6144]
R3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2014-01-05 25712]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2014-11-11 296936]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2014-11-11 18944]
R3 Point32;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point32.sys [2014-11-11 44208]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2014-11-11 216280]
S0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 211560]
S1 A2DDA;A2 Direct Disk Access Support Driver; \??\C:\Users\Wilco\Desktop\EMSISOFT_EMERGENCY_KIT\RUN\a2ddax86.sys []
S1 cbfs4;cbfs4; \??\C:\Windows\system32\drivers\cbfs4.sys [2013-11-15 323392]
S1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\ElRawDsk.sys [2012-10-18 26248]
S1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files\Internetbeveiliging\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2014-06-23 73896]
S1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2013-08-27 12736]
S1 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys []
S1 MpKsl37b30931;MpKsl37b30931; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C61A0BD4-7F71-487B-832F-86A3A84E5437}\MpKsl37b30931.sys []
S1 RawDisk3;RawDisk3; \??\C:\Windows\system32\drivers\rawdsk3.sys [2014-10-23 28256]
S2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys [2007-07-03 15392]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-03-04 16944]
S2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-03-04 60464]
S2 RHDISK;RHDISK; \??\C:\Program Files\Rohos\RHDISK.SYS [2009-07-24 33280]
S2 tvicport;tvicport; \??\C:\Windows\system32\drivers\tvicport.sys [2007-11-06 14544]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-01-05 10070016]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-01-05 290304]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-01-05 10070016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 catchme;catchme; \??\C:\Users\Wilco\AppData\Local\Temp\catchme.sys []
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2010-10-13 55840]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 88576]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2014-11-04 145960]
S3 fsni;fsni; \??\C:\Program Files\Internetbeveiliging\apps\CCF_Scanning\fsni32.sys [2013-04-25 66496]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 49664]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-11-11 3086040]
S3 libusb0;libusb-win32 - Kernel Driver, Version 1.2.4.0; C:\Windows\system32\drivers\libusb0.sys [2012-03-02 21504]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2010-10-13 95600]
S3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2010-10-13 152960]
S3 mfebopk;McAfee Inc. mfebopk; C:\Windows\system32\drivers\mfebopk.sys [2010-10-13 52104]
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2014-11-05 94520]
S3 netr28u;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28u.sys [2010-05-26 856928]
S3 NVENETFD;NVIDIA nForce-netwerkcontroller; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2014-11-11 162592]
S3 odysseyIM4;Odyssey Network Agent Miniport; C:\Windows\system32\DRIVERS\odysseyIM4.sys [2004-09-24 173056]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys [2014-11-11 204432]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 184192]
S3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 9216]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usb_rndisx;USB RNDIS-adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2014-11-05 179600]
S2 AcerMemUsageCheckService;ePerformance Service; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [2007-10-17 28672]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
S2 BBSvc;BingBar Service; C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-11 193696]
S2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2014-09-25 1669296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2014-06-17 242216]
S2 fshoster;F-Secure Dll Hoster; C:\Program Files\Internetbeveiliging\fshoster32.exe [2012-11-26 183864]
S2 FSORSPClient;F-Secure ORSP Client; C:\Program Files\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe [2014-02-05 60352]
S2 gupdate1c9861ddb57cde0;Google Update Service (gupdate1c9861ddb57cde0); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-02 107912]
S2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 IconixService;Iconix Update Service; C:\Program Files\Common Files\Iconix\IconixService.exe [2011-05-12 283992]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-05-04 2152736]
S2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-10-13 171168]
S2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-08-12 22208]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
S2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
S2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-10-19 105472]
S2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2014-06-05 93040]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-11 267440]
S3 BBUpdate;BBUpdate; C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-11 247968]
S3 FSMA;F-Secure Management Agent; C:\Program Files\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE [2013-08-27 207808]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-02 107912]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-10-08 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-11 114288]
S3 ose;Office  Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-30 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-06-26 4846168]
S4 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service; C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-05-20 269448]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-01-05 217088]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 eDataSecurity Service;eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-03-04 500784]
S4 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [2007-09-10 57344]
S4 eSettingsService;eSettings Service; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [2007-12-19 24576]
S4 HitmanProScheduler;HitmanPro Scheduler; C:\Program Files\HitmanPro\hmpsched.exe [2014-10-30 106248]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
S4 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-10-13 188136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files\Ralink\Common\RaRegistry.exe [2010-06-01 193888]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2008-06-13 241734]
S4 Rohos Disk;Rohos Disk service; C:\Program Files\Rohos\agent.exe [2011-05-17 801080]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]

-----------------EOF-----------------