Logfile of random's system information tool 1.10 (written by random/random) Run by Simon at 2016-09-21 19:23:56 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 28 GB (11%) free of 244 GB Total RAM: 16314 MB (87% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:23:57, on 21-9-2016 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.18450) Boot mode: Normal Running processes: C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe C:\Windows\SysWOW64\muachost.exe C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe C:\Program Files (x86)\Gyazo\GyStation.exe C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe C:\Program Files (x86)\HDD Health\hddhealth.exe C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe C:\Program Files (x86)\ROGRAMCACHE\RamCache.exe C:\Program Files (x86)\MSI\Live Update\Live Update.exe C:\Program Files (x86)\Corsair\Corsair Gaming Headset Software\HeadsetControlPanel.exe C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe C:\Windows\SysWOW64\ping.exe C:\Windows\SysWOW64\WerFault.exe C:\Program Files\trend micro\Simon.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe,"C:\Windows\system32\clientmonitor.exe" O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" O4 - HKLM\..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe O4 - HKLM\..\Run: [ASUS Media Streamer WSAgent] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe O4 - HKLM\..\Run: [ROGRAMCACHE] "C:\Program Files (x86)\ROGRAMCACHE\RamCache.exe" O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER O4 - HKLM\..\Run: [Corsair Gaming Headset Software] "C:\Program Files (x86)\Corsair\Corsair Gaming Headset Software\HeadsetControlPanel.exe" /minimized O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun O4 - HKCU\..\Run: [CorsairLink4] C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe -startup O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - .DEFAULT User Startup: RUN.CMD (User 'Default user') O4 - Startup: AutorunsDisabled O4 - Global Startup: HDDHealth.lnk = C:\Program Files (x86)\HDD Health\hddhealth.exe O4 - Global Startup: NI Error Reporting.lnk = C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\national instruments\shared\mdns responder\nimdnsnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe O23 - Service: AsusGameFirstService - ASUSTeK - C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe O23 - Service: Corsair Link 4 (CLink4Service) - Corsair Components, Inc. - C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe O23 - Service: Disc Soft Pro Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe O23 - Service: NI Configuration Manager (mxssvr) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\MAX\nimxs.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NI Application Web Server (NIApplicationWebServer) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe O23 - Service: NI License Server (NILM License Manager) - Macrovision Corporation - C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe O23 - Service: NI mDNS Responder Service (nimDNSResponder) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe O23 - Service: NI Network Discovery (NINetworkDiscovery) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe O23 - Service: NI Service Locator (NiSvcLoc) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe O23 - Service: NI System Web Server (NISystemWebServer) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe O23 - Service: NI Variable Engine (NITaggerService) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: OpcEnum - OPC Foundation - C:\Windows\SysWOW64\Opcenum.exe O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files\Origin\OriginClientService.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Samsung AllShare PC (SamsungAllShareV2.0) - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe O23 - Service: Siemens PLM License Server - Flexera Software LLC. - C:\Program Files\Siemens\PLMLicenseServer\lmgrd.exe O23 - Service: SimpleSlideShowServer - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 15525 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch winlogon.exe "C:\Windows\system32\nvvsvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" C:\Windows\system32\PrintIsolationHost.exe -Embedding "taskhost.exe" taskeng.exe {E26E1DAB-BF47-4DE5-B5E5-22EBEFF5B420} C:\Windows\system32\userinit.exe "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE taskeng.exe {AA7FBAFF-66A4-4294-8C47-27F649435603} "C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe" "C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe" C:\Windows\SysWOW64\muachost.exe "C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe" "C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized "C:\Program Files\iTunes\iTunesHelper.exe" "C:\Program Files (x86)\Gyazo\GyStation.exe" "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun "C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe" -startup "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR "C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe" "C:\Program Files (x86)\HDD Health\hddhealth.exe" "C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" "C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe" "C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe" "C:\Program Files (x86)\ROGRAMCACHE\RamCache.exe" "C:\Program Files (x86)\MSI\Live Update\Live Update.exe" /REMINDER "C:\Program Files (x86)\Corsair\Corsair Gaming Headset Software\HeadsetControlPanel.exe" /minimized "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /cr -BootProc -BootProc "C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe" ヒ譕菬ᓬ譓ౝ譖ࡳ㔳ቀ瘉譗옆e윀 "C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe" "C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe" "C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe" "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service "C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service C:\Windows\System32\svchost.exe -k utcsvc "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe" C:\Windows\system32\IProsetMonitor.exe "C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe" "C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe" "C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe" -s "C:\Program Files\Siemens\PLMLicenseServer\lmgrd.exe" "C:\Program Files (x86)\Skype\Updater\Updater.exe" \??\C:\Windows\system32\conhost.exe "-577501089-979130144-1262854371-327803260-1009882288-1191786986-1907008882-383521908 "C:\Program Files\Siemens\PLMLicenseServer\lmgrd.exe" -c "E:\NX 9.0\splm6.lic" -l "C:\Program Files\Siemens\PLMLicenseServer\splm_ugslmd.log" -z C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe" "C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe" C:\Windows\system32\wbem\wmiprvse.exe "C:\Program Files\Intel\NCS2\WMIProv\NCS2Prov.exe" -Embedding "C:\Program Files\iPod\bin\iPodService.exe" C:\Windows\system32\wbem\wmiprvse.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-21300297-881835126-3664115066-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-21300297-881835126-3664115066-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528 "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\svchost.exe -k WerSvcGroup "C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe" "C:\Windows\system32\wermgr.exe" "-queuereporting_svc" "C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_AsusFanControlSe_4b43a0a6729610ae59cd834592715cfdccc84a51_cab_0d8c5fda" "C:\Users\Simon\Desktop\RSITx64.exe" "C:\Windows\system32\wermgr.exe" "-queuereporting_svc" "C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_aaHMSvc.exe_547b4529c2a4caae4d3e6a86ea07e2211846ad8_cab_14fc6cd5" ping www.msi.com \??\C:\Windows\system32\conhost.exe "1446063487-17541836381864286149-746349217-7971008015406431531781904775-719079503 C:\Windows\SysWOW64\WerFault.exe -u -p 3240 -s 448 ugslmd.exe -T Simon-PC 11.10 -1 -c "E:\NX 9.0\splm6.lic" --lmgrd_start 57e2c22a -l "C:\Program Files\Siemens\PLMLicenseServer\splm_ugslmd.log" C:\Windows\system32\sppsvc.exe ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-21300297-881835126-3664115066-1000Core.job - C:\Users\Simon\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-21300297-881835126-3664115066-1000UA.job - C:\Users\Simon\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-02-01 460384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-02-01 172640] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2016-02-18 15120504] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-09-09 176440] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2016-06-02 3582240] "DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTAgent.exe [2015-05-08 4812016] "CorsairLink4"=C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe [2016-01-22 16879944] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AO Link Server] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ALRun.exe -start [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlueStacks Agent] C:\Program Files (x86)\Bluestacks\HD-Agent.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CAHS1Sound] C:\Windows\syswow64\RunDll32.exe [2009-07-14 44544] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jsUpdate] C:\Users\Simon\AppData\Roaming\tda\obj.cmd [2012-01-30 750320] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] C:\Users\Simon\AppData\Roaming\uTorrent\uTorrent.exe [2016-09-08 2139840] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WdicobuUpdate] C:\Users\Simon\AppData\Roaming\mlm\edl.bat [2012-01-29 750320] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WpdavesssUpdate] C:\Users\Simon\AppData\Roaming\slp\uvq.bat [2012-01-29 750320] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WrastassssUpdate] C:\Users\Simon\AppData\Roaming\plg\hgg.exe [2012-01-29 750320] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WrhostsssssssUpdate] C:\Users\Simon\AppData\Roaming\ddh\hpa.com [2012-01-29 750320] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wsUpdate] C:\Users\Simon\AppData\Roaming\fownh\qcdba.exe [2012-01-30 750320] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk] E:\PROGRA~1\LOLREP~1\LOLREC~1.EXE -minimize [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CHcgYAYTVhNBCTMJ.cmd.lnk] C:\Users\Simon\AppData\Roaming\IFAZGE~1 [2016-09-19 36307] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^irVzWJrYnjU.lnk] C:\Users\Simon\AppData\Roaming\ALETHJ~1\HKRVSG~1.EXE [2016-03-14 167936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^NzWJrYnjUOgh.lnk] C:\Users\Simon\AppData\Roaming\ALETHJ~2\ZRVSGX~1.EXE [2016-03-28 245760] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^qArVzWJ.lnk] C:\Users\Simon\AppData\Roaming\WLETHJ~1\HFKRVS~1.EXE [2016-03-07 167936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^sclMgr.org.url] C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\sclMgr.org.url [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^svncmgr).org.url] C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\svncmgr).org.url [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Update.lnk] C:\Users\Simon\AppData\Roaming\Windevice.exe [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 596528] "USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2015-06-15 296216] "ASUS AiChargerPlus Execute"=C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [2013-01-28 550272] "ASUS Media Streamer WSAgent"=C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe [2015-06-03 86840] "ROGRAMCACHE"=C:\Program Files (x86)\ROGRAMCACHE\RamCache.exe [2016-02-24 4312720] "Live Update"=C:\Program Files (x86)\MSI\Live Update\Live Update.exe [2016-02-04 11336656] "Corsair Gaming Headset Software"=C:\Program Files (x86)\Corsair\Corsair Gaming Headset Software\HeadsetControlPanel.exe [2015-09-21 2916160] "ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2014-06-16 139776] "BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2014-05-22 4513792] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup HDDHealth.lnk - C:\Program Files (x86)\HDD Health\hddhealth.exe NI Error Reporting.lnk - C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup AutorunsDisabled [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=0 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoResolveSearch"=1 "NoResolveTrack"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastSvc.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastUI.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avcenter.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avconfig.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgcsrvx.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgidsagent.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgnt.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgrsx.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avguard.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgui.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgwdsvc.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avscan.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdagent.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\blindman.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ccuac.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ComboFix.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\egui.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hijackthis.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\instup.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\keyscrambler.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbam.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamgui.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbampt.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamscheduler.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamservice.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MpCmdRun.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSASCui.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MsMpEng.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msseces.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rstrui.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SDFiles.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SDMain.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SDWinSec.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spybotsd.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wireshark.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zlclient.exe] "Debugger="C:\Program Files (x86)\clientmonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "wave6"=wdmaud.drv "midi6"=wdmaud.drv "mixer6"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "VIDC.RTV1"=rtvcvfw64.dll "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave7"=wdmaud.drv "midi7"=wdmaud.drv "mixer7"=wdmaud.drv "wave8"=wdmaud.drv "midi8"=wdmaud.drv "mixer8"=wdmaud.drv "wave9"=wdmaud.drv "midi9"=wdmaud.drv "mixer9"=wdmaud.drv "aux"=wdmaud.drv "aux1"=wdmaud.drv "aux2"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2016-09-21 17:31:10 ----A---- C:\Windows\ntbtlog.txt 2016-09-21 17:24:37 ----D---- C:\Program Files\CCleaner 2016-09-21 17:12:10 ----ASH---- C:\pagefile.sys 2016-09-19 23:54:17 ----D---- C:\rsit 2016-09-19 23:47:47 ----D---- C:\Users\Simon\AppData\Roaming\Imminent 2016-09-19 23:45:25 ----D---- C:\AdwCleaner 2016-09-19 21:17:25 ----A---- C:\autoexec.bat 2016-09-19 21:17:03 ----A---- C:\Windows\system32\drivers\EsgScanner.sys 2016-09-19 21:00:16 ----ASH---- C:\Users\Simon\AppData\Roaming\iFaZGeUKaMJSAAbhQfSif.cmd 2016-09-19 21:00:16 ----A---- C:\Users\Simon\AppData\Roaming\nanoframeworks.exe 2016-09-16 00:22:59 ----SHD---- C:\Config.Msi 2016-09-15 18:12:22 ----A---- C:\Windows\system32\drivers\srvnet.sys 2016-09-15 18:12:22 ----A---- C:\Windows\system32\drivers\srv2.sys 2016-09-15 18:12:22 ----A---- C:\Windows\system32\drivers\srv.sys 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\occache.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\inseng.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2016-09-15 18:12:21 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2016-09-15 18:12:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-09-15 18:12:21 ----A---- C:\Windows\system32\inseng.dll 2016-09-15 18:12:21 ----A---- C:\Windows\system32\iernonce.dll 2016-09-15 18:12:21 ----A---- C:\Windows\system32\ieetwproxystub.dll 2016-09-15 18:12:21 ----A---- C:\Windows\system32\ieetwcollector.exe 2016-09-15 18:12:21 ----A---- C:\Windows\system32\ie4uinit.exe 2016-09-15 18:12:20 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2016-09-15 18:12:20 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2016-09-15 18:12:20 ----A---- C:\Windows\SYSWOW64\jscript.dll 2016-09-15 18:12:20 ----A---- C:\Windows\SYSWOW64\ieui.dll 2016-09-15 18:12:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2016-09-15 18:12:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2016-09-15 18:12:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\urlmon.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\occache.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2016-09-15 18:12:20 ----A---- C:\Windows\system32\msfeeds.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\iesetup.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\iertutil.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\iedkcs32.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\ieapfltr.dll 2016-09-15 18:12:20 ----A---- C:\Windows\system32\dxtrans.dll 2016-09-15 18:12:19 ----A---- C:\Windows\SYSWOW64\wininet.dll 2016-09-15 18:12:19 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2016-09-15 18:12:19 ----A---- C:\Windows\SYSWOW64\msrating.dll 2016-09-15 18:12:19 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2016-09-15 18:12:19 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2016-09-15 18:12:19 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2016-09-15 18:12:19 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2016-09-15 18:12:19 ----A---- C:\Windows\system32\webcheck.dll 2016-09-15 18:12:19 ----A---- C:\Windows\system32\vbscript.dll 2016-09-15 18:12:19 ----A---- C:\Windows\system32\mshtmlmedia.dll 2016-09-15 18:12:19 ----A---- C:\Windows\system32\mshtmled.dll 2016-09-15 18:12:19 ----A---- C:\Windows\system32\jsproxy.dll 2016-09-15 18:12:19 ----A---- C:\Windows\system32\ieUnatt.exe 2016-09-15 18:12:19 ----A---- C:\Windows\system32\ieui.dll 2016-09-15 18:12:19 ----A---- C:\Windows\system32\ieframe.dll 2016-09-15 18:12:19 ----A---- C:\Windows\system32\dxtmsft.dll 2016-09-15 18:12:18 ----A---- C:\Windows\system32\wininet.dll 2016-09-15 18:12:18 ----A---- C:\Windows\system32\msrating.dll 2016-09-15 18:12:18 ----A---- C:\Windows\system32\MshtmlDac.dll 2016-09-15 18:12:18 ----A---- C:\Windows\system32\mshtml.dll 2016-09-15 18:12:18 ----A---- C:\Windows\system32\jscript9diag.dll 2016-09-15 18:12:18 ----A---- C:\Windows\system32\jscript9.dll 2016-09-15 18:12:18 ----A---- C:\Windows\system32\jscript.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\wuwebv.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\wups.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\wuapi.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\schannel.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\KernelBase.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2016-09-15 18:12:14 ----A---- C:\Windows\SYSWOW64\advapi32.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wuwebv.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wups2.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wups.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wudriver.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wucltux.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wuaueng.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wuauclt.exe 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wuapp.exe 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wuapi.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wu.upgrade.ps.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wow64win.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\wow64.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\winsrv.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\WinSetupUI.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\srcore.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\schannel.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\ntoskrnl.exe 2016-09-15 18:12:14 ----A---- C:\Windows\system32\ntdll.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\msi.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\KernelBase.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\kernel32.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\crypt32.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\conhost.exe 2016-09-15 18:12:14 ----A---- C:\Windows\system32\appidsvc.dll 2016-09-15 18:12:14 ----A---- C:\Windows\system32\appidpolicyconverter.exe 2016-09-15 18:12:14 ----A---- C:\Windows\system32\advapi32.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-09-15 18:12:13 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\wow32.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\wintrust.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\wdigest.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\user.exe 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\srclient.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\setup16.exe 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\secur32.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\rpchttp.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\olepro32.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\msv1_0.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\msobjs.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\msimsg.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\msihnd.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\msiexec.exe 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\msi.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\msaudite.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\instnm.exe 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\cryptbase.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\credssp.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\certcli.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\authui.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\auditpol.exe 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\asycfilt.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\appidapi.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\apisetschema.dll 2016-09-15 18:12:13 ----A---- C:\Windows\SYSWOW64\adtschema.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\wow64cpu.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\wintrust.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\wdigest.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\TSpkg.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\sspisrv.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\sspicli.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\srclient.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\smss.exe 2016-09-15 18:12:13 ----A---- C:\Windows\system32\setbcdlocale.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\secur32.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\rstrui.exe 2016-09-15 18:12:13 ----A---- C:\Windows\system32\rpcrt4.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\rpchttp.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\ntvdm64.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\ncrypt.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\msv1_0.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\msobjs.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\msimsg.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\msihnd.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\msiexec.exe 2016-09-15 18:12:13 ----A---- C:\Windows\system32\msaudite.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\lsass.exe 2016-09-15 18:12:13 ----A---- C:\Windows\system32\lsasrv.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\kerberos.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2016-09-15 18:12:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys 2016-09-15 18:12:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2016-09-15 18:12:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2016-09-15 18:12:13 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2016-09-15 18:12:13 ----A---- C:\Windows\system32\drivers\appid.sys 2016-09-15 18:12:13 ----A---- C:\Windows\system32\csrsrv.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\cryptsvc.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\cryptnet.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\cryptbase.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\credssp.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\consent.exe 2016-09-15 18:12:13 ----A---- C:\Windows\system32\certcli.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\authui.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\auditpol.exe 2016-09-15 18:12:13 ----A---- C:\Windows\system32\asycfilt.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\appinfo.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\appidcertstorecheck.exe 2016-09-15 18:12:13 ----A---- C:\Windows\system32\appidapi.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\apisetschema.dll 2016-09-15 18:12:13 ----A---- C:\Windows\system32\adtschema.dll 2016-09-15 18:12:12 ----A---- C:\Windows\SYSWOW64\user32.dll 2016-09-15 18:12:12 ----A---- C:\Windows\SYSWOW64\oleaut32.dll 2016-09-15 18:12:12 ----A---- C:\Windows\SYSWOW64\INETRES.dll 2016-09-15 18:12:12 ----A---- C:\Windows\SYSWOW64\inetcomm.dll 2016-09-15 18:12:12 ----A---- C:\Windows\system32\win32k.sys 2016-09-15 18:12:12 ----A---- C:\Windows\system32\user32.dll 2016-09-15 18:12:12 ----A---- C:\Windows\system32\oleaut32.dll 2016-09-15 18:12:12 ----A---- C:\Windows\system32\INETRES.dll 2016-09-15 18:12:12 ----A---- C:\Windows\system32\inetcomm.dll 2016-09-15 18:12:12 ----A---- C:\Windows\system32\drivers\tcpipreg.sys 2016-09-15 18:12:12 ----A---- C:\Windows\system32\drivers\tcpip.sys 2016-09-15 18:12:12 ----A---- C:\Windows\system32\drivers\netio.sys 2016-09-15 18:12:12 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2016-09-13 19:48:43 ----D---- C:\Program Files\iPod 2016-09-13 19:48:42 ----D---- C:\Program Files\iTunes 2016-09-09 15:25:57 ----D---- C:\Program Files\A3Launcher 2016-09-09 14:20:40 ----D---- C:\ProgramData\Bohemia Interactive 2016-09-05 20:50:47 ----D---- C:\Program Files (x86)\Apple Software Update 2016-09-05 20:50:37 ----D---- C:\Program Files\Bonjour 2016-09-05 20:50:37 ----D---- C:\Program Files (x86)\Bonjour 2016-09-04 17:48:43 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe 2016-09-04 17:48:40 ----D---- C:\Program Files (x86)\VulkanRT 2016-09-04 17:48:40 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe 2016-09-04 17:48:40 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll 2016-09-04 17:48:40 ----A---- C:\Windows\system32\vulkaninfo.exe 2016-09-04 17:48:40 ----A---- C:\Windows\system32\vulkan-1.dll 2016-09-04 17:48:38 ----A---- C:\Windows\system32\nv3dappshextr.dll 2016-09-04 17:48:38 ----A---- C:\Windows\system32\nv3dappshext.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvopencl.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvinit.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\NvIFR.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\NvFBC.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvcuda.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll 2016-09-04 17:48:02 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvumdshimx.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvptxJitCompiler.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvopencl.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvoglv64.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvoglshim64.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvinitx.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\NvIFROpenGL.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\NvIFR64.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvhdap64.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\NvFBC64.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvEncodeAPI64.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvdispgenco6437270.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvdispco6437270.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvd3dumx.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvcuvid.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvcuda.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvcompiler.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvaudcap64v.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\nvapi64.dll 2016-09-04 17:48:02 ----A---- C:\Windows\system32\drivers\nvvad64v.sys 2016-09-04 17:48:02 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys 2016-09-04 17:48:02 ----A---- C:\Windows\system32\drivers\nvhda64v.sys ======List of files/folders modified in the last 1 month====== 2016-09-21 19:23:57 ----D---- C:\Program Files\trend micro 2016-09-21 19:23:56 ----D---- C:\Windows\Temp 2016-09-21 19:23:46 ----D---- C:\Windows\system32\drivers 2016-09-21 19:23:36 ----D---- C:\ProgramData\NVIDIA 2016-09-21 19:23:03 ----D---- C:\Windows\system32\config 2016-09-21 17:54:47 ----D---- C:\ProgramData\CLink4 2016-09-21 17:39:56 ----D---- C:\Windows\System32 2016-09-21 17:39:56 ----D---- C:\Windows\inf 2016-09-21 17:39:56 ----A---- C:\Windows\system32\PerfStringBackup.INI 2016-09-21 17:33:25 ----D---- C:\Windows\pss 2016-09-21 17:31:10 ----D---- C:\Windows 2016-09-21 17:29:09 ----D---- C:\Users\Simon\AppData\Roaming\Logs 2016-09-21 17:28:55 ----HD---- C:\Users\Simon\AppData\Roaming\tda 2016-09-21 17:28:55 ----HD---- C:\Users\Simon\AppData\Roaming\plg 2016-09-21 17:28:55 ----HD---- C:\Users\Simon\AppData\Roaming\mlm 2016-09-21 17:28:55 ----HD---- C:\Users\Simon\AppData\Roaming\fownh 2016-09-21 17:28:54 ----HD---- C:\Users\Simon\AppData\Roaming\slp 2016-09-21 17:28:54 ----HD---- C:\Users\Simon\AppData\Roaming\ddh 2016-09-21 17:25:31 ----D---- C:\Users\Simon\AppData\Roaming\uTorrent 2016-09-21 17:25:31 ----D---- C:\Program Files (x86)\Steam 2016-09-21 17:25:30 ----D---- C:\Windows\Panther 2016-09-21 17:25:30 ----D---- C:\Windows\ModemLogs 2016-09-21 17:25:30 ----D---- C:\Windows\Minidump 2016-09-21 17:25:30 ----D---- C:\Windows\Logs 2016-09-21 17:25:30 ----D---- C:\Windows\debug 2016-09-21 17:24:37 ----RD---- C:\Program Files 2016-09-21 17:24:37 ----D---- C:\Windows\system32\Tasks 2016-09-20 18:38:41 ----D---- C:\Users\Simon\AppData\Roaming\Dropbox 2016-09-20 18:35:51 ----D---- C:\Users\Simon\AppData\Roaming\dclogs 2016-09-19 23:50:21 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-09-19 19:16:00 ----D---- C:\Users\Simon\AppData\Roaming\DVDVideoSoft 2016-09-18 23:54:49 ----A---- C:\Windows\BRRBCOM.INI 2016-09-17 17:33:15 ----D---- C:\Users\Simon\AppData\Roaming\vlc 2016-09-17 15:24:42 ----D---- C:\Windows\rescache 2016-09-17 13:06:02 ----D---- C:\Windows\winsxs 2016-09-17 13:05:20 ----D---- C:\Windows\SYSWOW64\nl-NL 2016-09-17 13:05:20 ----D---- C:\Windows\SYSWOW64\en-US 2016-09-17 13:05:20 ----D---- C:\Windows\SysWOW64 2016-09-17 13:05:20 ----D---- C:\Windows\system32\nl-NL 2016-09-17 13:05:20 ----D---- C:\Windows\system32\en-US 2016-09-17 13:05:20 ----D---- C:\Program Files\Internet Explorer 2016-09-17 13:05:20 ----D---- C:\Program Files (x86)\Internet Explorer 2016-09-17 13:05:19 ----D---- C:\Windows\system32\Boot 2016-09-17 13:05:19 ----D---- C:\Windows\AppPatch 2016-09-16 00:23:01 ----SHD---- C:\Windows\Installer 2016-09-16 00:22:59 ----D---- C:\ProgramData\Microsoft Help 2016-09-16 00:22:14 ----D---- C:\Program Files\Microsoft Silverlight 2016-09-16 00:22:14 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2016-09-16 00:21:53 ----D---- C:\Windows\system32\MRT 2016-09-16 00:19:08 ----AC---- C:\Windows\system32\MRT.exe 2016-09-15 18:12:02 ----D---- C:\Windows\system32\catroot2 2016-09-14 21:01:17 ----D---- C:\Users\Simon\AppData\Roaming\TS3Client 2016-09-13 19:48:42 ----D---- C:\Program Files\Common Files\Apple 2016-09-13 19:48:30 ----RD---- C:\Program Files (x86) 2016-09-13 19:48:18 ----D---- C:\Windows\system32\catroot 2016-09-13 19:00:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2016-09-13 19:00:02 ----D---- C:\Windows\system32\Macromed 2016-09-13 19:00:01 ----D---- C:\Windows\SYSWOW64\Macromed 2016-09-09 14:20:40 ----HD---- C:\ProgramData 2016-09-09 13:55:03 ----D---- C:\Program Files\Common Files 2016-09-09 13:54:55 ----D---- C:\ProgramData\Electronic Arts 2016-09-05 20:52:31 ----D---- C:\Users\Simon\AppData\Roaming\Apple Computer 2016-09-05 20:51:03 ----D---- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2016-09-05 20:50:45 ----D---- C:\Windows\system32\DriverStore 2016-09-04 17:57:48 ----D---- C:\Program Files\NVIDIA Corporation 2016-09-04 17:57:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation 2016-09-04 17:57:46 ----D---- C:\ProgramData\NVIDIA Corporation 2016-09-04 17:14:40 ----D---- C:\ProgramData\Origin 2016-09-04 17:14:37 ----D---- C:\Program Files\Origin 2016-08-28 15:40:10 ----D---- C:\Windows\Tasks 2016-08-28 15:38:58 ----D---- C:\Users\Simon\AppData\Roaming\Riot Games 2016-08-27 23:43:44 ----D---- C:\Program Files (x86)\Battle.net 2016-08-26 22:48:57 ----D---- C:\ProgramData\Package Cache 2016-08-26 01:28:29 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll 2016-08-26 01:28:29 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll 2016-08-26 01:28:29 ----A---- C:\Windows\SYSWOW64\nvapi.dll 2016-08-26 01:28:29 ----A---- C:\Windows\system32\nvwgf2umx.dll 2016-08-26 01:28:29 ----A---- C:\Windows\system32\nvhdagenco6420103.dll 2016-08-25 23:10:08 ----A---- C:\Windows\system32\nvsvc64.dll 2016-08-25 23:10:08 ----A---- C:\Windows\system32\nvcpl.dll 2016-08-25 23:10:06 ----A---- C:\Windows\system32\nvvsvc.exe 2016-08-25 23:10:06 ----A---- C:\Windows\system32\nvsvcr.dll 2016-08-25 23:10:05 ----A---- C:\Windows\system32\nvshext.dll 2016-08-25 23:10:05 ----A---- C:\Windows\system32\nvmctray.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 FNETHYRAMAS;FNETHYRAMAS; C:\Windows\System32\drivers\FNETHYRAMAS.SYS [2016-02-24 45688] R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2015-06-22 1455552] R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2015-06-22 31144] R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma; C:\Windows\system32\drivers\iusb3hcs.sys [2012-10-16 20024] R0 NIPALK;NIPALK; C:\Windows\System32\drivers\nipalk.sys [2012-12-19 926992] R0 nipbcfk;National Instruments Class Upper Filter Driver; C:\Windows\System32\drivers\nipbcfk.sys [2012-12-18 16984] R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560] R1 FNETURPX;FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [2016-02-24 16648] R1 NFC_Driver;NFC_Driver; C:\Windows\system32\drivers\NFC_Driver.sys [2015-04-10 48336] R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-03-30 129944] R2 AsRamDisk;ASUS Ram Disk Driver; C:\Windows\system32\DRIVERS\asramdisk.sys [2014-05-07 111416] R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184] R2 nicanpk;nicanpk; C:\Windows\system32\DRIVERS\nicanpkl.sys [2012-03-13 11920] R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2011-06-15 32544] R3 AiChargerPlus;AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [2013-01-28 14848] R3 AndroidAFD;AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [2015-06-11 43064] R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2015-02-12 139992] R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2015-02-12 431832] R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152] R3 dtproscsibus;DAEMON Tools Pro Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtproscsibus.sys [2016-02-24 30352] R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2015-06-18 501216] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-07-07 4514008] R3 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2014-09-08 24824] R3 iusb3hub;Intel(R) USB 3.0 hub-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hub.sys [2015-06-26 403752] R3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2015-06-30 814376] R3 LGBusEnum;Logitech Gaming Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2015-06-11 37408] R3 LGJoyXlCore;Logitech Translation Layer Driver (LGS); C:\Windows\system32\drivers\LGJoyXlCore.sys [2015-06-11 68384] R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280] R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2015-06-11 26912] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008] R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2015-05-09 172832] R3 NAL;Nal Service ; \??\C:\Windows\system32\Drivers\iqvw64e.sys [2015-05-07 37832] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2016-08-26 223304] R3 ScpVBus;Scp Virtual Bus Driver; C:\Windows\system32\DRIVERS\ScpVBus.sys [2013-05-05 39168] R3 SIUSBXP;SIUSBXP; C:\Windows\system32\drivers\SiUSBXp.sys [2016-01-22 19456] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288] S3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\drivers\amdhub30.sys [2012-08-15 106664] S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-04 21622784] S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-08-04 665088] S3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\amdxhc.sys [2012-08-15 226984] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-07-15 96256] S3 ATITool;ATITool Overclocking Utility; C:\Windows\system32\DRIVERS\ATITool64.sys [2006-11-10 30720] S3 AWEAlloc;AWE Memory Allocation Driver; C:\Windows\system32\DRIVERS\awealloc.sys [2014-02-17 21304] S3 b06diag;Broadcom NetXtreme II Diag Driver; C:\Windows\system32\drivers\bxdiaga.sys [2012-03-08 88104] S3 BFN7x64;Bigfoot Networks Killer Gaming Service; C:\Windows\system32\drivers\Xeno7x64.sys [2012-02-22 157288] S3 BFNVis64;Bigfoot Networks Killer Gaming Service; C:\Windows\system32\drivers\XenoVa64.sys [2012-02-22 157288] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] S3 bxfcoe;bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [2012-02-22 178216] S3 bxois;bxois; C:\Windows\system32\drivers\bxois.sys [2012-02-22 539176] S3 cbaf;UWB Cable Based Association Framework Driver; C:\Windows\System32\Drivers\cbaf.sys [2008-01-09 15872] S3 CorsairAudioFilter;Corsair Audio Filtering Service; C:\Windows\system32\DRIVERS\corsveng2kamd64.sys [2015-09-21 112808] S3 dfuuwb;Intel Wireless UWB Link 1480M Device Firmware Utility; C:\Windows\System32\Drivers\DfuUWB.sys [2008-09-11 503296] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336] S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168] S3 E1G60;Stuurprogramma voor Intel(R) PRO/1000 NDIS 6-adapter; C:\Windows\system32\DRIVERS\E1G6032E.sys [2009-06-10 145792] S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2016-09-19 22704] S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2012-08-07 65152] S3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver; C:\Windows\System32\Drivers\EtronSTOR.sys [2012-08-07 32512] S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2012-08-07 88832] S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\drivers\FLxHCIc.sys [2012-11-02 249584] S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver; C:\Windows\system32\drivers\FLxHCIh.sys [2012-11-02 77040] S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2012-04-13 75016] S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2012-04-13 85384] S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] S3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2012-07-13 62784] S3 HWA;Intel(R) Wireless USB Host Adapter; C:\Windows\System32\Drivers\HWA.sys [2008-09-29 61440] S3 IAMTVE;Stuurprogramma voor Intel(R) Active Management Technology - KCS; C:\Windows\system32\drivers\IAMTVE.sys [2007-04-11 43416] S3 IAMTXPE;Stuurprogramma voor Intel(R) Active Management Technology - KCS; C:\Windows\system32\drivers\IAMTXPE.sys [2007-04-11 51096] S3 IFCoEMP;IFCoEMP; C:\Windows\system32\drivers\ifM60x64.sys [2012-04-21 387344] S3 IFCoEVB;IFCoEVB; C:\Windows\system32\drivers\ifP60X64.sys [2012-04-21 77584] S3 ioatdma1;ioatdma1; C:\Windows\System32\Drivers\qd162x64.sys [2009-11-16 40144] S3 ioatdma2;Intel(R) QuickData Technology device ver.2; C:\Windows\System32\Drivers\qd262x64.sys [2009-11-16 42192] S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896] S3 nipalfwedl;nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [2012-12-20 13624] S3 nipalusbedl;nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [2012-12-20 13624] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2012-08-27 107912] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2012-08-27 226696] S3 nvsmu;nvsmu; C:\Windows\system32\drivers\nvsmu.sys [2010-03-22 29800] S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-08-26 56376] S3 PNPMEM;Stuurprogramma van Microsoft voor geheugenmodule; C:\Windows\system32\DRIVERS\pnpmem.sys [2009-07-14 16384] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2011-12-02 239208] S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-06-17 941272] S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.20); C:\Windows\system32\DRIVERS\RtTeam620.sys [2012-07-03 58512] S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan620.sys [2012-09-01 32400] S3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\drivers\rusb3hub.sys [2012-08-27 114568] S3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\drivers\rusb3xhc.sys [2012-08-27 230280] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656] S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-21 109056] S3 Ser2pl;Prolific Serial port WDF driver; C:\Windows\system32\drivers\ser2pl64.sys [2012-07-27 158720] S3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver; C:\Windows\system32\drivers\silabenm.sys [2012-12-12 27336] S3 silabser;Silicon Labs CP210x USB to UART Bridge Driver; C:\Windows\system32\drivers\silabser.sys [2012-12-12 73216] S3 SISAGP;SiS AGP Filter; C:\Windows\system32\drivers\SISAGPX.sys [2009-08-01 67104] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688] S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver; C:\Windows\system32\drivers\Synth3dVsc.sys [2010-11-21 88960] S4 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2014-09-09 15232] S4 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2014-02-24 14464] S4 CorsairCAHS1;CA-HS1 Interface; C:\Windows\system32\drivers\CAHS164.sys [] S4 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [] S4 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [] S4 MSICDSetup;MSICDSetup; \??\F:\CDriver64.sys [] S4 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-08 82128] R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-08-05 83768] R2 AsusGameFirstService;AsusGameFirstService; C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe [2015-04-10 346424] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096] R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096] R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [2015-12-24 388968] R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [2015-12-16 37328] R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2015-05-07 271632] R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2016-02-18 193656] R2 MSI_LiveUpdate_Service;MSI Live Update Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2016-02-05 1787344] R2 nimDNSResponder;NI mDNS Responder Service; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2014-06-06 320368] R2 NINetworkDiscovery;NI Network Discovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [2015-06-12 177024] R2 NiSvcLoc;NI Service Locator; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [2015-06-02 89928] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-08-25 1362368] R2 Siemens PLM License Server;Siemens PLM License Server; C:\Program Files\Siemens\PLMLicenseServer\lmgrd.exe [2013-01-18 1830736] R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe [2016-08-25 424384] R3 CLink4Service;Corsair Link 4; C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe [2016-01-22 81224] R3 Disc Soft Pro Bus Service;Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe [2015-05-08 1280240] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2016-09-09 651576] S2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [2015-05-08 954648] S2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe [2015-07-02 397592] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200] S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-06-02 223008] S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-06-02 411424] S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608] S2 mxssvr;NI Configuration Manager; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [2015-06-12 84792] S2 NIApplicationWebServer;NI Application Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2015-06-03 57184] S2 NISystemWebServer;NI System Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [2015-06-03 57168] S2 NITaggerService;NI Variable Engine; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [2015-06-11 703304] S2 SamsungAllShareV2.0;Samsung AllShare PC; C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [2012-03-02 25504] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13 270016] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136] S3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2013-09-25 282112] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2015-06-03 342240] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200] S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-09-01 114688] S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144] S3 NILM License Manager;NI License Server; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2010-08-02 1427688] S3 OpcEnum;OpcEnum; C:\Windows\SysWOW64\Opcenum.exe [2015-05-26 172832] S3 Origin Client Service;Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2016-09-04 2122248] S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136] S3 SimpleSlideShowServer;SimpleSlideShowServer; C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [2012-03-02 27584] S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-07-09 1450064] S4 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [2015-05-08 936728] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376] S4 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [2014-04-24 1360016] S4 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2016-09-09 1415176] S4 HDDHealth;HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [2013-03-08 17760] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848] S4 NIApplicationWebServer64;NI Application Web Server (64-bit); C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2015-06-03 80736] -----------------EOF-----------------