Logfile of random's system information tool 1.10 (written by random/random)
Run by Andy at 2014-12-01 14:47:38
Microsoft Windows 7 Home Premium  Service Pack 1
System drive C: has 83 GB (72%) free of 114 GB
Total RAM: 1279 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:48:11, on 1/12/2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\ScreenshotCaptor\ScreenshotCaptor.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Andy\Downloads\SOFTWARE\RSIT.exe
C:\Program Files\trend micro\Andy.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = auto:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = auto:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: WSISAllmytubechrome - {4724F5AF-4E6D-41CA - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files\Bluetooth Suite\adminservice.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 4271 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\EYPKLTH.job - C:\Users\Andy\AppData\Roaming\EYPKLTH.exe  /infocmdline=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 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
C:\Windows\tasks\LG.job - C:\Users\Andy\AppData\Roaming\LG.exe  /infocmdline=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 
C:\Windows\tasks\RIA.job - C:\Users\Andy\AppData\Roaming\RIA.exe  /infocmdline=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 
C:\Windows\tasks\TPORYVRW.job - C:\Users\Andy\AppData\Roaming\TPORYVRW.exe  /infocmdline=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 
C:\Windows\tasks\Wise Registry Cleaner Schedule Task.job - C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe  -a 

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-08-05 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files\Bluetooth Suite\IEPlugIn.dll [2011-03-31 64672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonQuickMenu]
C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [2014-03-25 1284680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
C:\Windows\SOUNDMAN.EXE [2009-04-14 604704]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-01 14:44:39 ----D---- C:\Program Files\trend micro
2014-12-01 14:44:37 ----D---- C:\rsit
2014-12-01 11:25:43 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-12-01 11:24:58 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-12-01 11:24:58 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-12-01 11:24:58 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-12-01 11:24:54 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2014-11-30 09:31:55 ----D---- C:\Program Files\Panda Security
2014-11-29 17:33:42 ----A---- C:\Windows\system32\drivers\EsgScanner.sys
2014-11-29 17:33:20 ----D---- C:\Program Files\Enigma Software Group
2014-11-28 22:06:56 ----A---- C:\Users\Andy\AppData\Roaming\LG.exe
2014-11-28 22:03:17 ----A---- C:\Users\Andy\AppData\Roaming\EYPKLTH.exe
2014-11-24 06:22:08 ----D---- C:\ProgramData\Emsisoft
2014-11-24 05:44:08 ----D---- C:\Program Files\Emsisoft Anti-Malware
2014-11-22 15:54:40 ----D---- C:\Program Files\All in One Converter
2014-11-22 12:08:17 ----D---- C:\ProgramData\kingpkaddkmhedkpaalcmedfljocdeak
2014-11-22 10:10:25 ----D---- C:\ProgramData\vsosdk
2014-11-19 05:45:42 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 05:45:42 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 05:45:42 ----A---- C:\Windows\system32\adtschema.dll
2014-11-18 21:56:42 ----A---- C:\Users\Andy\AppData\Roaming\pcouffin.sys
2014-11-18 21:56:42 ----A---- C:\Users\Andy\AppData\Roaming\inst.exe
2014-11-18 21:56:41 ----D---- C:\Users\Andy\AppData\Roaming\Vso
2014-11-18 21:56:31 ----A---- C:\Windows\system32\wvc1dmod.dll
2014-11-18 21:56:31 ----A---- C:\Windows\system32\vp7vfw.dll
2014-11-18 21:56:20 ----D---- C:\ProgramData\VSO
2014-11-18 21:56:20 ----D---- C:\Program Files\VSO
2014-11-17 19:10:11 ----D---- C:\Program Files\PowerTools Lite 2013
2014-11-17 19:05:03 ----D---- C:\Users\Andy\AppData\Roaming\Wise Registry Cleaner
2014-11-17 19:04:44 ----D---- C:\Program Files\Wise
2014-11-12 06:17:11 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-12 06:17:03 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 06:16:59 ----A---- C:\Windows\system32\msi.dll
2014-11-12 06:16:49 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 06:16:48 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 06:16:48 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 06:16:48 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 06:16:47 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 06:16:47 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 06:16:47 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 06:16:46 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 06:16:35 ----A---- C:\Windows\system32\generaltel.dll
2014-11-12 06:16:34 ----A---- C:\Windows\system32\aepdu.dll
2014-11-12 06:16:33 ----A---- C:\Windows\system32\aeinv.dll
2014-11-12 06:16:32 ----A---- C:\Windows\system32\packager.dll
2014-11-12 06:16:27 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 06:16:27 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 06:16:27 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 06:16:27 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 06:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 06:16:26 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 06:16:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 06:16:18 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 06:16:18 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 06:16:17 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 06:16:17 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 06:16:17 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 06:16:16 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 06:16:16 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 06:16:15 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 06:16:15 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 06:16:15 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 06:16:15 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 06:16:15 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 06:16:14 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 06:16:11 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 06:16:11 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 06:16:09 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 06:16:09 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 06:16:07 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 06:16:07 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 06:16:06 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 06:16:03 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 06:16:02 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-12 06:16:01 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 06:16:00 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 06:15:58 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 06:15:56 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 06:15:56 ----A---- C:\Windows\system32\jscript9.dll

======List of files/folders modified in the last 1 month======

2014-12-01 14:47:42 ----D---- C:\Windows\Temp
2014-12-01 14:44:39 ----D---- C:\Program Files
2014-12-01 13:41:01 ----D---- C:\Windows\system32\config
2014-12-01 13:31:42 ----D---- C:\Users\Andy\AppData\Roaming\SlimBrowser
2014-12-01 13:25:54 ----D---- C:\Windows
2014-12-01 13:25:41 ----RSD---- C:\Windows\Media
2014-12-01 13:25:41 ----D---- C:\Windows\system32\drivers
2014-12-01 11:21:30 ----AD---- C:\ProgramData\TEMP
2014-12-01 11:19:16 ----D---- C:\AdwCleaner
2014-12-01 11:03:34 ----D---- C:\Users\Andy\AppData\Roaming\uTorrent
2014-12-01 11:03:24 ----D---- C:\Windows\inf
2014-12-01 10:54:39 ----D---- C:\Windows\system32\Tasks
2014-12-01 10:54:34 ----HD---- C:\ProgramData
2014-11-30 17:54:19 ----D---- C:\Windows\Tasks
2014-11-30 17:54:19 ----D---- C:\Program Files\Common Files
2014-11-30 12:14:55 ----D---- C:\Windows\System32
2014-11-30 09:30:49 ----A---- C:\Windows\wininit.ini
2014-11-30 09:30:46 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-11-30 09:30:45 ----SD---- C:\ProgramData\Microsoft
2014-11-30 09:16:02 ----D---- C:\Windows\system32\drivers\etc
2014-11-29 20:25:21 ----D---- C:\ProgramData\firebird
2014-11-28 22:29:46 ----SHD---- C:\Windows\Installer
2014-11-28 22:29:46 ----D---- C:\Config.Msi
2014-11-28 21:57:35 ----D---- C:\Program Files\WinRAR
2014-11-28 20:15:37 ----SHD---- C:\System Volume Information
2014-11-27 19:32:51 ----D---- C:\Users\Andy\AppData\Roaming\Skype
2014-11-24 21:03:30 ----A---- C:\Windows\HideWin.exe
2014-11-24 20:49:39 ----D---- C:\Users\Andy\AppData\Roaming\vlc
2014-11-24 20:34:53 ----D---- C:\Windows\system32\NDF
2014-11-24 20:25:42 ----D---- C:\Windows\system32\DriverStore
2014-11-24 20:24:45 ----HD---- C:\Program Files\InstallShield Installation Information
2014-11-23 20:31:16 ----D---- C:\Windows\AppPatch
2014-11-23 20:30:33 ----D---- C:\Windows\system32\catroot2
2014-11-23 12:10:31 ----SHD---- C:\Boot
2014-11-22 17:04:55 ----D---- C:\ProgramData\privazer
2014-11-22 13:34:13 ----D---- C:\Windows\ModemLogs
2014-11-22 13:33:57 ----D---- C:\Windows\debug
2014-11-22 06:47:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-20 05:40:12 ----D---- C:\Windows\winsxs
2014-11-20 05:36:41 ----D---- C:\Windows\system32\nl-NL
2014-11-17 19:05:12 ----D---- C:\Windows\Prefetch
2014-11-14 05:17:10 ----D---- C:\Windows\Microsoft.NET
2014-11-14 05:16:08 ----RSD---- C:\Windows\assembly
2014-11-13 06:08:03 ----SD---- C:\Windows\system32\CompatTel
2014-11-13 06:08:01 ----D---- C:\Windows\system32\en-US
2014-11-13 06:07:59 ----D---- C:\Program Files\Internet Explorer
2014-11-12 06:54:37 ----D---- C:\Windows\system32\MRT
2014-11-12 06:50:43 ----A---- C:\Windows\system32\MRT.exe
2014-11-11 15:31:35 ----A---- C:\Users\Andy\AppData\Roaming\burnaware.ini
2014-11-04 14:30:58 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-10-15 173440]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\ElRawDsk.sys [2013-12-03 26248]
R1 RawDisk3;RawDisk3; \??\C:\Windows\system32\drivers\rawdsk3.sys [2014-07-13 28256]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 103112]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-13 4194816]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-31 24736]
R3 smwdm;smwdm; C:\Windows\system32\drivers\smwdm.sys [2005-03-28 220992]
S0 tuhlbom;tuhlbom; C:\Windows\System32\drivers\bohofa.sys []
S2 SPDRIVER_1.37.0.1418;SPDRIVER_1.37.0.1418; \??\C:\Program Files\ShopperPro\JSDriver\1.37.0.1418\jsdrv.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS []
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 anvsnddrv;AnvSoft Virtual Sound Device; C:\Windows\system32\drivers\anvsnddrv.sys []
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-31 35488]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2013-07-03 45968]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-31 226976]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-03-31 97440]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-31 147104]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2012-06-28 60544]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-31 266272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-31 247968]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-15 60416]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2014-11-29 19984]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2014-01-03 214232]
S3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-11-09 57856]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2014-08-05 13464]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usb_rndisx;USB RNDIS-adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AtherosSvc;AtherosSvc; C:\Program Files\Bluetooth Suite\adminservice.exe [2011-03-31 68768]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [2010-09-17 98304]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [2010-09-17 3735552]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-03 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-03 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 102912]
S3 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2012-03-28 140456]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-08-03 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-17 267440]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------