Logfile of random's system information tool 1.10 (written by random/random)
Run by Rene at 2014-12-05 18:20:49
Microsoft Windows 8.1 
System drive C: has 65 GB (54%) free of 121 GB
Total RAM: 7872 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:20:53, on 5-12-2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Rene\AppData\Roaming\Spotify\spotify.exe
C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe
C:\Users\Rene\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Rene.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Bonus.SSR.FR12] "C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe" /autorun
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D381F003BB4051870D1FEC45D55E2467] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Spotify] "C:\Users\Rene\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: Dropbox.lnk = Rene\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Start Pervasive PSQL Workgroup Engine.lnk = ?
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: ABBYY FineReader 12 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.12.0) - ABBYY Production LLC - C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe
O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: ITbrain Agent - TeamViewer - C:\Program Files (x86)\ITbrain Agent\itbrain_agent.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: UsbClientService - Unknown owner - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10463 bytes

======Listing Processes======





wininit.exe


winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\HitmanPro\hmpsched.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
dashost.exe {8860fd4a-21ba-4649-98c239544a1de385}
"C:\Program Files (x86)\ITbrain Agent\itbrain_agent.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
ngservice.exe pipeserver
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-df330224-22de-4581-a944-2b8ad405d0ff -SystemEventPortName:HostProcess-ff8dfa17-50a2-4ecc-9aa1-bcfde3bce0dc -IoCancelEventPortName:HostProcess-c50fe267-666e-46d7-b718-ce25cf83da11 -NonStateChangingEventPortName:HostProcess-46235000-7fec-4661-8ad7-4edf0debbbed -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3f2a20df-20cf-4039-8dec-8481a42b69f3 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
igfxEM.exe 
igfxHK.exe 
igfxTray.exe 
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
taskeng.exe {995EA779-191D-4632-939B-A255569B6B0A}
"C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe" 
taskhostex.exe 
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe" --action hooks  --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log  
"C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe" --action hooks  --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log  
"C:\Windows\System32\aetcrss1.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Users\Rene\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
"C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe" -SRDE
"C:\Users\Rene\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5348.0.316244340\227857327" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x8086 --gpu-device-id=0x0152 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3958 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Control/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5348.1.1503264148\260223050" /prefetch:673131151
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Control/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5348.2.799704641\889028786" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Control/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5348.3.717082409\42515891" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Control/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5348.4.1553185864\2016863728" /prefetch:673131151
"C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe" --type=renderer --js-flags=--harmony-proxies --no-sandbox --lang=en-US --lang=en-US --log-severity=disable --channel="6116.0.1409930405\1820010196" /prefetch:673131151
"C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe" --type=renderer --js-flags=--harmony-proxies --no-sandbox --lang=en-US --lang=en-US --log-severity=disable --channel="6116.1.817094615\1989325531" /prefetch:673131151
"C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe" --type=renderer --js-flags=--harmony-proxies --no-sandbox --lang=en-US --lang=en-US --log-severity=disable --channel="6116.2.296492044\1902818352" /prefetch:673131151
"C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe" /AUTORUN
"C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe" --type=renderer --js-flags=--harmony-proxies --no-sandbox --lang=en-US --lang=en-US --log-severity=disable --channel="6116.3.1274930242\244058987" /prefetch:673131151
-BootProc
"C:\Program Files (x86)\Browny02\BrYNSvc.exe"
"C:\Users\Rene\AppData\Roaming\Spotify\Data\SpotifyHelper.exe" --type=gpu-process --channel="6116.4.1119388063\1527025628" --no-sandbox --lang=en-US --log-severity=disable --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19 --gpu-vendor-id=0x8086 --gpu-device-id=0x0152 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3958 --lang=en-US --log-severity=disable /prefetch:822062411
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
-BootProc
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Control/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5348.10.2020786283\731004381" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Control/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5348.13.1046686680\1080126391" /prefetch:673131151
"C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
wmiadap.exe /F /T /R
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Control/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5348.18.1219866053\48295815" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 588 596 65536 592 

"C:\Users\Rene\Desktop\RSITx64.exe" 

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-12 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-11-12 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-12 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-12 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CertificateRegistration"=C:\WINDOWS\system32\aetcrss1.exe [2012-03-13 191488]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_D381F003BB4051870D1FEC45D55E2467"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-11-25 856904]
"Spotify"=C:\Users\Rene\AppData\Roaming\Spotify\Spotify.exe [2014-11-12 6553144]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"ASRockXTU"= []
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-25 5226600]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"Bonus.SSR.FR12"=C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [2014-10-24 1472312]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2012-09-06 143360]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2012-06-06 3076096]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Start Pervasive PSQL Workgroup Engine.lnk - C:\Windows\Installer\{0A3238D7-AB32-1030-B717-F3E3F18B4A8C}\WGE.14A03FCD_EA43_4130_A5C0_F02D38895A13.exe

C:\Users\Rene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Rene\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
wlnotify.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-05 18:20:49 ----D---- C:\rsit
2014-12-05 18:20:49 ----D---- C:\Program Files\trend micro
2014-12-05 18:14:31 ----A---- C:\WINDOWS\system32\drivers\hitmanpro37.sys
2014-12-05 18:12:05 ----D---- C:\Program Files\HitmanPro
2014-12-05 18:11:56 ----D---- C:\ProgramData\HitmanPro
2014-12-05 17:54:32 ----D---- C:\WINDOWS\system32\Logs
2014-12-05 17:52:14 ----D---- C:\Program Files\CCleaner
2014-12-03 08:45:35 ----D---- C:\Users\Rene\AppData\Roaming\FileZilla
2014-12-02 17:07:10 ----HDC---- C:\ProgramData\{651038AD-E038-410A-BD90-28FB006FD850}
2014-12-02 17:07:10 ----D---- C:\Program Files (x86)\ITbrain Agent
2014-11-28 14:00:45 ----D---- C:\ProgramData\Synology
2014-11-28 14:00:43 ----D---- C:\Program Files (x86)\Synology
2014-11-20 15:43:34 ----D---- C:\Program Files (x86)\ABN AMRO e.dentifier2
2014-11-20 15:43:12 ----D---- C:\ProgramData\{6CDCEBFA-D5FA-4ED0-A11F-AC1F8BD76DF2}
2014-11-19 08:03:22 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2014-11-19 08:03:22 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-11-19 08:03:22 ----A---- C:\WINDOWS\system32\pku2u.dll
2014-11-19 08:03:22 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-11-17 11:04:09 ----RD---- C:\WINDOWS\BrowserChoice
2014-11-17 10:08:10 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-11-17 10:07:34 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-17 10:07:34 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-17 10:07:34 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-17 10:07:33 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-17 10:07:33 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-17 10:05:38 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-17 10:05:38 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-17 10:05:38 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-17 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-17 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-17 10:05:37 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-17 10:05:37 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-17 10:05:37 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-17 10:05:25 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-17 10:05:24 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-17 10:05:24 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-17 10:05:23 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-17 10:05:23 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-17 10:05:21 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-17 10:05:21 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-17 10:04:20 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-17 10:04:19 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-17 10:04:14 ----A---- C:\WINDOWS\system32\schedsvc.dll
2014-11-17 10:04:13 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-11-17 10:04:13 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2014-11-17 10:04:13 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-11-17 10:04:13 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-11-17 10:04:13 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-11-17 10:04:13 ----A---- C:\WINDOWS\system32\rastls.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-17 10:04:12 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-17 10:04:12 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-17 10:04:11 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-17 10:04:11 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-17 10:04:11 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-17 10:04:11 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-17 10:04:11 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-17 10:04:11 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-17 10:04:10 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-17 10:04:10 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-17 10:04:08 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-11-17 10:04:08 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-11-17 10:03:57 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-11-17 10:03:57 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-11-17 10:03:56 ----A---- C:\WINDOWS\system32\vpnike.dll
2014-11-17 10:03:56 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-11-17 10:03:56 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\framedynos.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\framedyn.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-11-17 10:03:55 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-11-17 10:03:54 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2014-11-17 10:03:54 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll
2014-11-17 10:03:54 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2014-11-17 10:03:54 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2014-11-17 10:03:54 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\srms.dat
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\Robocopy.exe
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2014-11-17 10:03:54 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2014-11-17 10:03:49 ----A---- C:\WINDOWS\explorer.exe
2014-11-17 10:03:48 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-11-17 10:03:48 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-11-17 10:03:48 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-11-17 10:03:48 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-11-17 10:03:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-17 10:03:47 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-17 10:03:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-17 10:03:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-17 10:03:46 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-17 10:03:46 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-17 10:03:46 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-17 10:03:46 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-17 10:03:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-17 10:03:46 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-17 10:03:45 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-17 10:03:45 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-17 10:03:45 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-17 10:03:44 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-17 10:03:44 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-17 10:03:44 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-17 10:03:44 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-17 10:03:44 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-17 10:03:43 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-17 10:03:42 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-17 10:03:42 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-17 10:03:42 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-17 10:03:42 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-17 10:03:41 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-17 10:03:41 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-17 10:03:41 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-17 10:03:41 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-17 10:03:40 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-17 10:03:40 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-17 10:03:40 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-17 10:03:40 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-17 10:03:39 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-17 10:03:39 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-17 10:03:39 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-17 10:03:39 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-17 10:03:38 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-17 10:03:37 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\url.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-17 10:03:36 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-17 10:03:35 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-17 10:03:33 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-11-17 10:03:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-11-17 10:03:32 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-11-17 10:03:31 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-11-17 10:03:31 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-11-17 10:03:31 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-11-17 10:03:31 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\system32\Wldap32.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\system32\propsys.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-11-17 10:03:30 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\ProximityService.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-11-17 10:03:29 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-11-17 10:03:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-17 10:03:28 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-17 10:03:28 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-17 10:03:28 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-17 10:03:27 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-17 10:03:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-17 10:03:24 ----A---- C:\WINDOWS\SYSWOW64\DaOtpCredentialProvider.dll
2014-11-17 10:03:24 ----A---- C:\WINDOWS\system32\WUDFSvc.dll
2014-11-17 10:03:24 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2014-11-17 10:03:24 ----A---- C:\WINDOWS\system32\WUDFHost.exe
2014-11-17 10:03:24 ----A---- C:\WINDOWS\system32\hal.dll
2014-11-17 10:03:24 ----A---- C:\WINDOWS\system32\drivers\WUDFRd.sys
2014-11-17 10:03:24 ----A---- C:\WINDOWS\system32\drivers\WUDFPf.sys
2014-11-17 10:03:24 ----A---- C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-11-17 10:03:21 ----A---- C:\WINDOWS\system32\lockscreencn.dll
2014-11-17 10:03:21 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-11-17 10:03:21 ----A---- C:\WINDOWS\system32\devinv.dll
2014-11-17 10:03:21 ----A---- C:\WINDOWS\system32\aepic.dll
2014-11-17 10:03:21 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-11-17 10:03:21 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-11-17 10:03:19 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-11-17 10:01:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-17 10:01:10 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-17 10:01:09 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-11-17 10:01:08 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-17 10:01:08 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-17 10:01:07 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-17 10:01:06 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-17 10:01:05 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-17 10:01:05 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-17 10:01:05 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-17 10:01:05 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-17 10:01:04 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-17 10:01:03 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-17 10:01:03 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-17 10:01:03 ----A---- C:\WINDOWS\system32\winbici.dll
2014-11-17 10:01:03 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-17 10:01:03 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-17 10:01:03 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-11-17 10:01:02 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2014-11-17 10:01:02 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-17 10:01:02 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-11-17 10:00:53 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2014-11-17 10:00:53 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2014-11-12 20:05:28 ----D---- C:\Program Files\ASRock Utility
2014-11-12 20:05:28 ----A---- C:\WINDOWS\system32\drivers\AsrRamDisk.sys
2014-11-12 20:05:25 ----D---- C:\Program Files (x86)\ASRock Utility
2014-11-12 19:28:43 ----D---- C:\ProgramData\Cisco Systems
2014-11-12 18:51:38 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-11-12 18:51:31 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2014-11-12 18:51:31 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-11-12 18:51:31 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2014-11-12 18:51:30 ----D---- C:\ProgramData\Malwarebytes
2014-11-12 18:51:30 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-12 18:45:01 ----A---- C:\Users\Rene\AppData\Roaming\AdobeWLCMCache.dat
2014-11-12 18:44:14 ----D---- C:\ProgramData\ALM
2014-11-12 18:37:59 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-11-12 18:37:09 ----D---- C:\ProgramData\Package Cache
2014-11-12 18:36:25 ----D---- C:\Program Files\Adobe
2014-11-12 17:36:59 ----D---- C:\Users\Rene\AppData\Roaming\ControlCenter4
2014-11-12 17:36:32 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-11-12 17:32:59 ----A---- C:\WINDOWS\Brpfx04a.ini
2014-11-12 17:32:59 ----A---- C:\WINDOWS\brpcfx.ini
2014-11-12 17:32:40 ----D---- C:\Brother
2014-11-12 17:32:39 ----D---- C:\ProgramData\ControlCenter4
2014-11-12 17:32:39 ----D---- C:\Program Files (x86)\Browny02
2014-11-12 17:32:36 ----D---- C:\Program Files (x86)\ControlCenter4
2014-11-12 17:32:36 ----A---- C:\WINDOWS\Brfaxrx.ini
2014-11-12 17:32:35 ----N---- C:\WINDOWS\system32\BrfxDA5c.dll
2014-11-12 17:32:35 ----A---- C:\WINDOWS\system32\NSSRH64.dll
2014-11-12 17:32:35 ----A---- C:\WINDOWS\system32\BrWiaNCp.dll
2014-11-12 17:32:35 ----A---- C:\WINDOWS\system32\BrSNMP64.dll
2014-11-12 17:32:35 ----A---- C:\WINDOWS\system32\Brnsplg.dll
2014-11-12 17:32:35 ----A---- C:\WINDOWS\system32\BrNetSti.dll
2014-11-12 17:32:35 ----A---- C:\WINDOWS\brdfxspd.dat
2014-11-12 17:32:34 ----A---- C:\WINDOWS\SYSWOW64\BRTCPCON.DLL
2014-11-12 17:32:34 ----A---- C:\WINDOWS\system32\BrWi209d.dll
2014-11-12 17:32:34 ----A---- C:\WINDOWS\system32\BrJDec.dll
2014-11-12 17:32:33 ----A---- C:\WINDOWS\SYSWOW64\BRRBTOOL.EXE
2014-11-12 17:32:33 ----A---- C:\WINDOWS\SYSWOW64\BROSNMP.DLL
2014-11-12 17:32:33 ----A---- C:\WINDOWS\SYSWOW64\BRLMW03A.INI
2014-11-12 17:32:33 ----A---- C:\WINDOWS\SYSWOW64\BRLMW03A.DLL
2014-11-12 17:32:33 ----A---- C:\WINDOWS\SYSWOW64\BRLM03A.DLL
2014-11-12 17:32:33 ----A---- C:\WINDOWS\system32\BRADM10A.DAT
2014-11-12 17:32:32 ----N---- C:\WINDOWS\SYSWOW64\NSSearch.dll
2014-11-12 17:32:32 ----N---- C:\WINDOWS\SYSWOW64\BrDctF2S.dll
2014-11-12 17:32:32 ----N---- C:\WINDOWS\SYSWOW64\BrDctF2L.dll
2014-11-12 17:32:32 ----N---- C:\WINDOWS\SYSWOW64\BrDctF2.dll
2014-11-12 17:32:32 ----D---- C:\Program Files (x86)\Brother
2014-11-12 17:32:26 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-11-12 17:19:45 ----D---- C:\ProgramData\Brother
2014-11-12 17:19:43 ----D---- C:\Users\Rene\AppData\Roaming\InstallShield
2014-11-12 17:07:28 ----D---- C:\Users\Rene\AppData\Roaming\Identities
2014-11-12 16:37:59 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2014-11-12 16:35:23 ----SD---- C:\Users\Rene\AppData\Roaming\Microsoft
2014-11-12 16:33:59 ----D---- C:\Program Files\Common Files\logishrd
2014-11-12 16:32:50 ----D---- C:\Program Files\Intel
2014-11-12 16:32:50 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2014-11-12 16:32:50 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2014-11-12 16:32:33 ----D---- C:\WINDOWS\Prefetch
2014-11-12 16:32:16 ----DC---- C:\WINDOWS\Panther
2014-11-12 16:31:32 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-11-12 16:31:32 ----D---- C:\Program Files (x86)\MSBuild
2014-11-12 16:31:31 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-11-12 16:31:31 ----D---- C:\Program Files\Reference Assemblies
2014-11-12 16:31:31 ----D---- C:\Program Files\MSBuild
2014-11-12 16:31:21 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-11-12 16:31:21 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-11-12 16:31:21 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-11-12 16:31:21 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-11-12 16:15:36 ----D---- C:\Program Files (x86)\ABBYY FineReader 12
2014-11-12 16:15:30 ----D---- C:\ProgramData\ABBYY
2014-11-12 16:15:03 ----D---- C:\Program Files\Common Files\Adobe
2014-11-12 16:14:05 ----D---- C:\temp
2014-11-12 16:13:36 ----D---- C:\ProgramData\ashampoo
2014-11-12 16:13:33 ----D---- C:\Program Files (x86)\Ashampoo
2014-11-12 16:13:31 ----A---- C:\WINDOWS\system32\drivers\PxHlpa64.sys
2014-11-12 16:13:31 ----A---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2014-11-12 16:13:31 ----A---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2014-11-12 16:08:54 ----D---- C:\Users\Rene\AppData\Roaming\WinRAR
2014-11-12 16:08:16 ----D---- C:\Program Files (x86)\Adobe
2014-11-12 16:08:09 ----D---- C:\Program Files (x86)\QuickPar
2014-11-12 16:02:40 ----D---- C:\Users\Rene\AppData\Roaming\TeamViewer
2014-11-12 16:02:37 ----D---- C:\Program Files (x86)\TeamViewer
2014-11-12 15:38:30 ----D---- C:\ProgramData\Adobe
2014-11-12 15:36:32 ----A---- C:\WINDOWS\ODBCINST.INI
2014-11-12 15:36:26 ----D---- C:\ProgramData\Pervasive Software
2014-11-12 15:36:26 ----D---- C:\Program Files (x86)\Pervasive Software
2014-11-12 15:35:58 ----D---- C:\Program Files\A.E.T. Europe B.V
2014-11-12 15:35:57 ----D---- C:\ProgramData\A.E.T. Europe B.V
2014-11-12 15:35:48 ----D---- C:\OMNIKEY
2014-11-12 15:18:01 ----D---- C:\Program Files (x86)\Microsoft Works
2014-11-12 15:17:53 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2014-11-12 15:16:56 ----D---- C:\Users\Rene\AppData\Roaming\uTorrent
2014-11-12 15:16:42 ----D---- C:\Program Files\Microsoft Office
2014-11-12 15:16:25 ----D---- C:\ProgramData\Microsoft Help
2014-11-12 15:16:25 ----D---- C:\Program Files (x86)\Microsoft Office
2014-11-12 15:16:18 ----RHD---- C:\MSOCache
2014-11-12 15:12:53 ----D---- C:\Users\Rene\AppData\Roaming\KeePass
2014-11-12 15:12:34 ----D---- C:\Program Files (x86)\KeePass Password Safe
2014-11-12 15:11:07 ----D---- C:\Program Files (x86)\KeePass Password Safe 2
2014-11-12 15:09:49 ----D---- C:\ProgramData\Sun
2014-11-12 15:09:48 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2014-11-12 15:09:41 ----D---- C:\ProgramData\Oracle
2014-11-12 15:09:40 ----D---- C:\Program Files (x86)\Java
2014-11-12 15:05:24 ----D---- C:\Users\Rene\AppData\Roaming\AVAST Software
2014-11-12 15:03:26 ----D---- C:\WINDOWS\SYSWOW64\vbox
2014-11-12 15:03:26 ----D---- C:\WINDOWS\system32\vbox
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-11-12 15:03:18 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-11-12 15:03:16 ----A---- C:\WINDOWS\avastSS.scr
2014-11-12 15:02:28 ----D---- C:\Program Files\AVAST Software
2014-11-12 14:55:21 ----D---- C:\ProgramData\AVAST Software
2014-11-12 14:51:46 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2014-11-12 14:51:44 ----D---- C:\Users\Rene\AppData\Roaming\DAEMON Tools Lite
2014-11-12 14:51:41 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-11-12 14:50:58 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-11-12 14:48:20 ----D---- C:\Users\Rene\AppData\Roaming\Macromedia
2014-11-12 14:48:10 ----D---- C:\Users\Rene\AppData\Roaming\Spotify
2014-11-12 14:47:56 ----D---- C:\Program Files (x86)\Google
2014-11-12 14:47:15 ----D---- C:\Program Files (x86)\WinRAR
2014-11-12 14:46:42 ----D---- C:\Users\Rene\AppData\Roaming\Dropbox
2014-11-12 14:44:34 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-11-12 13:24:19 ----D---- C:\Program Files (x86)\Intel
2014-11-12 13:24:19 ----D---- C:\Intel
2014-11-12 13:09:37 ----A---- C:\WINDOWS\system32\MpSigStub.exe
2014-11-12 13:08:00 ----D---- C:\WINDOWS\system32\MRT
2014-11-12 13:07:58 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 12:50:09 ----D---- C:\Users\Rene\AppData\Roaming\Adobe
2014-11-12 12:49:55 ----D---- C:\ProgramData\PRICache
2014-11-12 12:49:51 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-12 12:49:06 ----A---- C:\WINDOWS\system32\netcfg-55484.txt
2014-11-12 12:49:03 ----A---- C:\WINDOWS\system32\netcfg-52453.txt
2014-11-12 12:48:24 ----SHD---- C:\ProgramData\Sjablonen
2014-11-12 12:48:24 ----SHD---- C:\ProgramData\Menu Start
2014-11-12 12:48:24 ----SHD---- C:\ProgramData\Documenten
2014-11-12 12:48:24 ----SHD---- C:\ProgramData\Bureaublad
2014-11-12 12:48:14 ----ASH---- C:\hiberfil.sys
2014-11-12 12:47:38 ----A---- C:\WINDOWS\system32\netcfg-18812.txt
2014-11-12 12:47:36 ----A---- C:\WINDOWS\system32\netcfg-17343.txt
2014-11-12 12:47:36 ----A---- C:\WINDOWS\system32\netcfg-17218.txt
2014-11-12 12:47:36 ----A---- C:\WINDOWS\system32\netcfg-17078.txt
2014-11-12 12:47:36 ----A---- C:\WINDOWS\system32\netcfg-16953.txt
2014-11-12 12:47:36 ----A---- C:\WINDOWS\system32\netcfg-16796.txt
2014-11-12 12:47:35 ----A---- C:\WINDOWS\system32\netcfg-16671.txt
2014-11-12 12:47:35 ----A---- C:\WINDOWS\system32\netcfg-16546.txt
2014-11-12 12:47:35 ----A---- C:\WINDOWS\system32\netcfg-16437.txt
2014-11-12 12:47:35 ----A---- C:\WINDOWS\system32\netcfg-16328.txt
2014-11-12 12:47:35 ----A---- C:\WINDOWS\system32\netcfg-16203.txt
2014-11-12 12:47:23 ----ASH---- C:\swapfile.sys
2014-11-12 12:47:23 ----ASH---- C:\pagefile.sys
2014-11-12 12:47:22 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 month======

2014-12-05 18:20:49 ----RD---- C:\Program Files
2014-12-05 18:16:03 ----D---- C:\WINDOWS\Temp
2014-12-05 18:15:54 ----D---- C:\WINDOWS\system32\Tasks
2014-12-05 18:15:52 ----D---- C:\WINDOWS\SYSWOW64\drivers
2014-12-05 18:15:05 ----RD---- C:\WINDOWS\System32
2014-12-05 18:14:31 ----D---- C:\WINDOWS\system32\drivers
2014-12-05 18:14:28 ----D---- C:\Windows
2014-12-05 18:13:47 ----HD---- C:\ProgramData
2014-12-05 18:06:09 ----D---- C:\WINDOWS\system32\config
2014-12-05 18:00:59 ----D---- C:\WINDOWS\Inf
2014-12-05 18:00:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-05 18:00:00 ----D---- C:\WINDOWS\system32\sru
2014-12-05 17:59:18 ----RD---- C:\Program Files (x86)
2014-12-05 17:57:03 ----D---- C:\WINDOWS\debug
2014-12-05 17:56:55 ----D---- C:\WINDOWS\system32\wdi
2014-12-05 17:54:41 ----D---- C:\WINDOWS\apppatch
2014-12-05 17:54:02 ----D---- C:\WINDOWS\Tasks
2014-12-05 17:53:20 ----D---- C:\WINDOWS\CbsTemp
2014-12-05 17:52:55 ----D---- C:\WINDOWS\system32\catroot2
2014-12-05 17:52:24 ----D---- C:\WINDOWS\WinSxS
2014-12-05 17:25:29 ----D---- C:\WINDOWS\Microsoft.NET
2014-12-02 17:11:00 ----HD---- C:\Program Files\WindowsApps
2014-12-02 17:11:00 ----D---- C:\WINDOWS\AppReadiness
2014-12-02 17:07:10 ----SHD---- C:\WINDOWS\Installer
2014-11-28 14:00:47 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-28 11:39:59 ----D---- C:\WINDOWS\SysWOW64
2014-11-25 13:42:52 ----SHD---- C:\$Recycle.Bin
2014-11-20 21:51:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-11-20 15:47:30 ----D---- C:\WINDOWS\system32\catroot
2014-11-20 10:11:07 ----D---- C:\WINDOWS\Logs
2014-11-19 08:14:33 ----D---- C:\WINDOWS\rescache
2014-11-17 12:28:39 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2014-11-17 12:28:39 ----D---- C:\WINDOWS\system32\nl-NL
2014-11-17 12:28:38 ----SD---- C:\WINDOWS\system32\CompatTel
2014-11-17 12:28:38 ----D---- C:\WINDOWS\WinStore
2014-11-17 12:28:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-17 12:28:38 ----D---- C:\WINDOWS\system32\migration
2014-11-17 12:28:38 ----D---- C:\WINDOWS\PolicyDefinitions
2014-11-17 12:28:38 ----D---- C:\Program Files\Internet Explorer
2014-11-17 12:28:38 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-17 12:28:37 ----D---- C:\Program Files\Windows Defender
2014-11-17 12:28:37 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-17 11:23:05 ----RD---- C:\WINDOWS\assembly
2014-11-17 11:04:55 ----D---- C:\WINDOWS\system32\wbem
2014-11-17 11:04:14 ----RD---- C:\WINDOWS\ToastData
2014-11-17 10:49:55 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-11-17 10:49:55 ----D---- C:\WINDOWS\system32\en-US
2014-11-17 10:49:54 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-17 10:49:54 ----D---- C:\WINDOWS\MediaViewer
2014-11-17 10:49:54 ----D---- C:\WINDOWS\FileManager
2014-11-17 10:49:54 ----D---- C:\WINDOWS\Camera
2014-11-17 09:49:29 ----SD---- C:\ProgramData\Microsoft
2014-11-12 20:05:26 ----RSD---- C:\WINDOWS\Fonts
2014-11-12 18:35:56 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-12 17:32:49 ----D---- C:\WINDOWS\twain_32
2014-11-12 17:32:15 ----D---- C:\WINDOWS\system32\restore
2014-11-12 17:31:55 ----D---- C:\WINDOWS\system32\LogFiles
2014-11-12 17:21:33 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-11-12 17:15:20 ----D---- C:\WINDOWS\system32\NDF
2014-11-12 16:38:36 ----D---- C:\Program Files\Windows NT
2014-11-12 16:38:30 ----D---- C:\WINDOWS\Registration
2014-11-12 16:37:37 ----RSD---- C:\WINDOWS\Media
2014-11-12 16:36:41 ----D---- C:\WINDOWS\ShellNew
2014-11-12 16:36:25 ----D---- C:\WINDOWS\SYSWOW64\WCN
2014-11-12 16:36:25 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2014-11-12 16:36:25 ----D---- C:\WINDOWS\SYSWOW64\SMI
2014-11-12 16:36:24 ----D---- C:\WINDOWS\SYSWOW64\MUI
2014-11-12 16:36:24 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2014-11-12 16:36:24 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2014-11-12 16:36:24 ----D---- C:\WINDOWS\SYSWOW64\IME
2014-11-12 16:36:24 ----D---- C:\WINDOWS\SYSWOW64\catroot
2014-11-12 16:36:23 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2014-11-12 16:36:23 ----D---- C:\WINDOWS\system32\WCN
2014-11-12 16:36:23 ----D---- C:\WINDOWS\system32\spool
2014-11-12 16:36:23 ----D---- C:\WINDOWS\system32\MUI
2014-11-12 16:36:23 ----D---- C:\WINDOWS\system32\IME
2014-11-12 16:36:17 ----D---- C:\WINDOWS\IME
2014-11-12 16:36:17 ----D---- C:\WINDOWS\Help
2014-11-12 16:36:17 ----D---- C:\WINDOWS\DigitalLocker
2014-11-12 16:36:16 ----RD---- C:\Users
2014-11-12 16:36:15 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2014-11-12 16:36:15 ----D---- C:\Program Files (x86)\Windows Media Player
2014-11-12 16:36:15 ----D---- C:\Program Files (x86)\Common Files
2014-11-12 16:36:14 ----SHD---- C:\Program Files\Windows Sidebar
2014-11-12 16:36:14 ----D---- C:\Program Files\Windows Media Player
2014-11-12 16:36:14 ----D---- C:\Program Files\Common Files
2014-11-12 16:35:37 ----D---- C:\WINDOWS\system32\Recovery
2014-11-12 16:34:23 ----D---- C:\WINDOWS\system32\Sysprep
2014-11-12 16:12:18 ----D---- C:\WINDOWS\AUInstallAgent
2014-11-12 15:16:33 ----A---- C:\WINDOWS\win.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsrRamDisk;AsrRamDisk; C:\WINDOWS\system32\DRIVERS\AsrRamDisk.sys [2012-08-09 34640]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-11-12 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-11-12 267632]
R0 PxHlpa64;PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 Wof;Windows Overlay File System Filter Driver; C:\WINDOWS\system32\drivers\Wof.sys [2014-09-24 157016]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-11-12 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-11-25 1050432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-11-12 436624]
R1 dtsoftbus01;@oem8.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-11-12 283064]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-11-12 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-11-12 83280]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-11-12 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-12 271752]
R3 ArdDrv;ArdDrv; \??\C:\WINDOWS\SysWOW64\Drivers\ArdDrv.sys []
R3 AxtuDrv;AxtuDrv; \??\C:\WINDOWS\SysWOW64\Drivers\AxtuDrv.sys []
R3 busenum;@oem17.inf,%busenum.SVCDESC%;Synology Virtual USB Hub; C:\WINDOWS\System32\drivers\busenum.sys [2012-08-03 57824]
R3 cxbu0x64;@oem2.inf,%VID1PID1ReaderDescription%;OMNIKEY 3x21; C:\WINDOWS\system32\DRIVERS\cxbu0x64.sys [2014-05-14 147576]
R3 e.dentifier2;@oem15.inf,%SvcDesc%;SmartCard Reader ABN AMRO e.dentifier2; C:\WINDOWS\system32\DRIVERS\aabed2.sys [2008-03-20 28672]
R3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\WINDOWS\system32\drivers\hitmanpro37.sys [2014-12-05 43664]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-10-01 3828152]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-08-01 27032]
R3 LVRS64;@oem4.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem3.inf,%PID_082D_DD%(UVC);Logitech HD Pro Webcam C920(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2014-11-21 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2014-12-05 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2014-11-21 64216]
R3 MEIx64;@oem5.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT-stuurprogramma; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Stuurprogramma voor seriële digitale fotocamera; C:\WINDOWS\system32\DRIVERS\serscan.sys [2013-08-22 11776]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Stuurprogramma voor USB-audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-09-24 121088]
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-08-01 38296]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Professional.12.0;ABBYY FineReader 12 PE Licensing Service; C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [2014-01-23 925904]
R2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-09-14 169624]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-12 50344]
R2 HitmanProScheduler;HitmanPro Scheduler; C:\Program Files\HitmanPro\hmpsched.exe [2014-12-05 127752]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-10-01 319376]
R2 ITbrain Agent;ITbrain Agent; C:\Program Files (x86)\ITbrain Agent\itbrain_agent.exe [2013-08-22 5567488]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-11-21 1871160]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-11-21 969016]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 UsbClientService;UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [2014-02-25 248736]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-12 4012248]
R3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2012-06-05 266240]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 51cdb72;Optimizer Pro Crash Monitor; C:\WINDOWS\syswow64\rundll32.exe [2013-08-22 49664]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-12 107912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-10-01 281488]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-12 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------