Logfile of random's system information tool 1.10 (written by random/random)
Run by Brokken at 2016-10-15 15:43:35
Microsoft Windows 10 Home 
System drive C: has 46 GB (39%) free of 119 GB
Total RAM: 4095 MB (18% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:43:47, on 15-10-2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Users\Brokken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Flashpaste\FlashPaste.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Users\Brokken\AppData\Local\join.me.launcher\join.me.launcher.exe
C:\Users\Brokken\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files\trend micro\Brokken.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1405250182&from=smt&uid=ST9500325AS_6VE5M9C3XXXX6VE5M9C3&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwEZqA_FE8m8vFsdA7Ek0jwCsmKs2qh9IBYHt1z_K8b9gweADV7W4Yg3ZvzIdDIORlXW14Ni4WjlwHP_eWRnLCb9tSMW8QvY3VbFaZt_Y9F78APZ3KIC9ZI7IkHihwv0WPZ6LgEqX7FsCu0UZE_2bZt-ABUQ&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwEZqA_FE8m8vFsdA7Ek0jwCsmKs2qh9IBYHt1z_K8b9gweADV7W4Yg3ZvzIdDIORlXW14Ni4WjlwHP_eWRnLCb9tSMW8QvY3VbFaZt_Y9F78APZ3KIC9ZI7IkHihwv0WPZ6LgEqX7FsCu0UZE_2bZt-ABUQ&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwEZqA_FE8m8vFsdA7Ek0jwCsmKs2qh9IBYHt1z_K8b9gweADV7W4Yg3ZvzIdDIORlXW14Ni4WjlwHP_eWRnLCb9tSMW8QvY3VbFaZt_Y9F78APZ3KIC9ZI7IkHihwv0WPZ6LgEqX7FsCu0UZE_2bZt-ABUQ&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3ZQQWmwEZqA_FE8m8vFsdA7Ek0jwCsmKs2qh9IBYHt1z_K8b9gweADV7W4Yg3ZvzIdDIORlXW14Ni4WjlwHP_eWRnLCb9tSMW8QvY3VbFaZt_Y9F78APZ3KIC9ZI7IkHihwv0WPZ6LgEqX7FsCu0UZE_2bZt-ABUQ&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer wordt aangeboden door MSN and Bing
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: (no name) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: GoSaivve - {a5d4ef98-56ef-4a0e-b3bb-756c90b191c1} - C:\Program Files (x86)\GoSaivve\5blXS5i77gDRkZ.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Brokken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Brokken\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Flashpaste] C:\Program Files (x86)\Flashpaste\flashpaste.exe
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [Spotify] "C:\Users\Brokken\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-7515 Series"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE /EPT "EPLTarget\P0000000000000001" /M "WF-7515 Series"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000002] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE /EPT "EPLTarget\P0000000000000002" /M "WF-7515 Series"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Brokken\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU\..\Run: [join.me.launcher] C:\Users\Brokken\AppData\Local\join.me.launcher\join.me.launcher.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Brokken\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\Run: [EPLTarget\P0000000000000003] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE /EPT "EPLTarget\P0000000000000003" /M "WF-7515 Series"
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1256367049-2053008340-3862287469-1004\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1256367049-2053008340-3862287469-1004\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.376\SSScheduler.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://webcam.sint-niklaas.be/activex/AMC.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAWFwk.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.8.259.0\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee OOBE Service (McOobeSv) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 19693 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-bbbc7790-fd5d-4ed0-8c85-7656e6e0c98a -SystemEventPortName:HostProcess-75f7751f-608f-42d4-b034-23d6edae7b15 -IoCancelEventPortName:HostProcess-880005c6-e8e1-4643-bbb5-e4583ad89b7f -NonStateChangingEventPortName:HostProcess-af9ca468-633b-49d7-a4f9-56b3cde10912 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6cc59250-dea5-405a-b667-c91bcb503bd1 -DeviceGroupId:WpdFsGroup
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe" -s DefaultInstance
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\mfevtps.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe"
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"


dashost.exe {e2461a2d-7f28-43d2-8932835069f59ff9}
"C:\Windows\system32\mfevtps.exe" -mms
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" -mms
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe" -s DefaultInstance
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
"C:\Program Files\Common Files\McAfee\CSP\1.8.259.0\McCSPServiceHost.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
sihost.exe
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Elantech\ETDCtrlHelper.exe" 
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks  --log C:\Program Files (x86)\TeamViewer\TeamViewer11_Logfile.log  
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks  --log C:\Program Files (x86)\TeamViewer\TeamViewer11_Logfile.log  
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Java\jre6\bin\jusched.exe" 
"C:\Program Files\iTunes\iTunesHelper.exe" 
"C:\Program Files\Windows Defender\MSASCuiL.exe" 
"C:\Users\Brokken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" 
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Flashpaste\FlashPaste.exe" 
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" 
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" 
"C:\Windows\System32\spool\drivers\x64\3\E_YATIHCE.EXE" /EPT "EPLTarget\P0000000000000000" /M "WF-7515 Series"
"C:\Windows\System32\spool\drivers\x64\3\E_YATIHCE.EXE" /EPT "EPLTarget\P0000000000000001" /M "WF-7515 Series"
"C:\Windows\System32\spool\drivers\x64\3\E_YATIHCE.EXE" /EPT "EPLTarget\P0000000000000002" /M "WF-7515 Series"
"C:\Program Files (x86)\Gyazo\GyStation.exe" 
"C:\Users\Brokken\AppData\Local\join.me.launcher\join.me.launcher.exe" 
"C:\Users\Brokken\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe" 
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\Windows\System32\spool\drivers\x64\3\E_YATIHCE.EXE" /EPT "EPLTarget\P0000000000000003" /M "WF-7515 Series"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files\McAfee Security Scan\3.11.376\SSScheduler.exe" 
"C:\Windows\AsScrPro.exe" 
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe" 
"C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe" 
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" 
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe -Embedding
"C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe" 
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"fontdrvhost.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Brokken\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=53.0.2785.143 --handshake-handle=0x1bc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="10116.0.1639905654\883800418" --mojo-application-channel-token=1FD0F4807F55E75E7EA0E030298B04EF --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x0654 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4192 --gpu-driver-date=10-13-2015 --mojo-platform-channel-handle=1220 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=9790B6AF5FF8FD7A3D6479F3BBD40F51 --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=973EA773C1BAD0D8E069A43C66D5DE15 --mojo-application-channel-token=9790B6AF5FF8FD7A3D6479F3BBD40F51 --channel="10116.3.823791716\1241584675" --mojo-platform-channel-handle=3636 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=F1A543F19795247048F8D760C17B3962 --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=967815DB82CCEAA2B3D43F893369A688 --mojo-application-channel-token=F1A543F19795247048F8D760C17B3962 --channel="10116.4.2003672016\606670008" --mojo-platform-channel-handle=3988 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=ACC935678AC2D9332BDC189BF551368F --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=B74B907BD3BC3AB6525B6ED269776BB5 --mojo-application-channel-token=ACC935678AC2D9332BDC189BF551368F --channel="10116.5.393618673\1678298599" --mojo-platform-channel-handle=4236 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=E521D7C1C11A70F522E7DB371A80B265 --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=6D5D741F8D2250A4AD0E0B9A3FFA5CAA --mojo-application-channel-token=E521D7C1C11A70F522E7DB371A80B265 --channel="10116.6.1120227334\645374996" --mojo-platform-channel-handle=4248 /prefetch:1
C:\WINDOWS\system32\cmd.exe /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ < \\.\pipe\chrome.nativeMessaging.in.2c55bac14d166c14 > \\.\pipe\chrome.nativeMessaging.out.2c55bac14d166c14
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe"  --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ 
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=B21F3A60AEEF3215E8C39AF233D25267 --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=B1C6208B1478280BAF6E77B64C695D4D --mojo-application-channel-token=B21F3A60AEEF3215E8C39AF233D25267 --channel="10116.25.2117748304\433888094" --mojo-platform-channel-handle=7716 /prefetch:1
"C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" /n /dde
C:\WINDOWS\splwow64.exe 8192
"C:\Program Files (x86)\Skype\Phone\Skype.exe" 
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /shRequest
C:\WINDOWS\system32\AUDIODG.EXE 0x278
"C:\Program Files\Windows Defender\\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 8B8E8304-BF55-7E5D-E93B-43F4FA9BC056 -Reinvoke
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=A25C5C8F85A5068B29AC2B82536E5967 --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=CE946CDC0B9DA0BC3BB6AF739E72FEAB --mojo-application-channel-token=A25C5C8F85A5068B29AC2B82536E5967 --channel="10116.179.254321138\312643783" --mojo-platform-channel-handle=11052 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=CA97EE947789127341A4D8725140AA48 --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=D3F3C696E9F3B69275A7E1DA6D64CDB4 --mojo-application-channel-token=CA97EE947789127341A4D8725140AA48 --channel="10116.181.2110173750\1391990745" --mojo-platform-channel-handle=10660 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --mojo-channel-token=23F22901A76755496A6583DCE09907CF --ppapi-flash-args --lang=nl --device-scale-factor=1 --mojo-platform-channel-handle=11020 --ignored=" --type=renderer " /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=784CBB0FE6BF20817DBB9CBAA23EA5F8 --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=495A288BF1379756F351403BC773C797 --mojo-application-channel-token=784CBB0FE6BF20817DBB9CBAA23EA5F8 --channel="10116.184.147152685\1143610766" --mojo-platform-channel-handle=2108 /prefetch:1
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=D409A80E6F25FADB6E0FDDD635C623B5 --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=7DF795E07EA43455ED725BE99503D31A --mojo-application-channel-token=D409A80E6F25FADB6E0FDDD635C623B5 --channel="10116.193.2006639172\67423859" --mojo-platform-channel-handle=12104 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe60_ Global\UsGthrCtrlFltPipeMssGthrPipe60 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
rundll32.exe aeinv.dll,UpdateSoftwareInventory
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=AE25A3B02F8B2E25F19B893C3704495D --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=A48A1627DFAC2EF34E22FA416A508D37 --mojo-application-channel-token=AE25A3B02F8B2E25F19B893C3704495D --channel="10116.201.1671788265\1827286802" --mojo-platform-channel-handle=752 /prefetch:1

"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652 
"D:\Users\Brokken\Downloads\RSITx64 (1).exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20160627/*EnableMediaRouter/Enabled/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PasswordSeparatedSigninFlow/Enabled/*PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Enabled/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_29/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=B35076E54269B51E2DB4FAFACEFFE15A --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=E47DA3844A40C4E3310E0025BD79765E --mojo-application-channel-token=B35076E54269B51E2DB4FAFACEFFE15A --channel="10116.203.1870712845\220652784" --mojo-platform-channel-handle=9472 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-1256367049-2053008340-3862287469-1000Core.job - C:\Users\Brokken\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-1256367049-2053008340-3862287469-1000UA.job - C:\Users\Brokken\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1256367049-2053008340-3862287469-1000Core.job - C:\Users\Brokken\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1256367049-2053008340-3862287469-1000UA.job - C:\Users\Brokken\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\update-S-1-5-21-1256367049-2053008340-3862287469-1000.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21cc998b-3c49-4015-bb11-a3863aae5658}]
OptOn - C:\Program Files (x86)\OptOn\U24coDYwWrt4ch.x64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a5d4ef98-56ef-4a0e-b3bb-756c90b191c1}]
GoSaivve - C:\Program Files (x86)\GoSaivve\5blXS5i77gDRkZ.x64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cc6edb0b-0f74-4822-af39-9569f4e81e3c}]
YoUtubeAddBlocke - C:\Program Files (x86)\YoUtubeAddBlocke\PxrnZ9LMNEygI7.x64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2010-11-20 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a5d4ef98-56ef-4a0e-b3bb-756c90b191c1}]
GoSaivve - C:\Program Files (x86)\GoSaivve\5blXS5i77gDRkZ.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-11-20 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{ae07101b-46d4-4a98-af68-0333ea26e113}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{ae07101b-46d4-4a98-af68-0333ea26e113}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-06 3738344]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-06 3738344]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-05-13 172032]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-09-09 176440]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2016-09-25 631808]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\Brokken\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-02-11 1171968]
"Facebook Update"=C:\Users\Brokken\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-12-05 138096]
"Flashpaste"=C:\Program Files (x86)\Flashpaste\flashpaste.exe [2006-05-10 352256]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2016-09-09 67384]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2016-09-09 67896]
"Spotify"=C:\Users\Brokken\AppData\Roaming\Spotify\Spotify.exe [2014-02-11 6118400]
"EPLTarget\P0000000000000000"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE [2012-07-12 241280]
"EPLTarget\P0000000000000001"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE [2012-07-12 241280]
"EPLTarget\P0000000000000002"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE [2012-07-12 241280]
"Dropbox Update"=C:\Users\Brokken\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-26 134512]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2016-02-17 3586848]
"join.me.launcher"=C:\Users\Brokken\AppData\Local\join.me.launcher\join.me.launcher.exe [2015-10-27 176560]
"OneDrive"=C:\Users\Brokken\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-23 633024]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2016-09-09 356664]
"EPLTarget\P0000000000000003"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIHCE.EXE [2012-07-12 241280]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-07-29 23375200]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-09-12 29635712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-03-18 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Default Manager]
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2010-05-10 439568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-09-11 8114720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2011-01-27 39408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe [2010-03-18 12862]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS Premium Sound.lnk]
C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-03-18 156880]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-20 170624]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-09-01 67384]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2015-12-03 723392]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2015-08-06 421888]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2016-07-11 225944]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.376\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.ac3filter"=ac3filter.acm
"vidc.XVID"=xvidvfw.dll
"vidc.ffds"=ff_vfw.dll
"msacm.vorbis"=vorbis.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-15 15:39:15 ----D---- C:\Program Files\Vovoid VSXu 0.5.0
2016-10-12 19:29:26 ----D---- C:\WINDOWS\PCHEALTH
2016-10-12 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-12 16:39:05 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2016-10-12 16:39:04 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2016-10-12 16:39:04 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-12 16:39:03 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-10-12 16:39:03 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-10-12 16:39:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-10-12 16:39:02 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-10-12 16:39:02 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-12 16:39:02 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2016-10-12 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-10-12 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-12 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2016-10-12 16:39:01 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 16:39:01 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-12 16:39:00 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-12 16:39:00 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-12 16:39:00 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-12 16:39:00 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-10-12 16:39:00 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-10-12 16:38:59 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-12 16:38:59 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-12 16:38:58 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-12 16:38:58 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-12 16:38:57 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-12 16:38:56 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-12 16:38:54 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-12 16:38:53 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-12 16:38:53 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-12 16:38:53 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-10-12 16:38:52 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-10-12 16:38:52 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-12 16:38:52 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-12 16:38:52 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-12 16:38:51 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-12 16:38:51 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-12 16:38:50 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-12 16:38:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-12 16:38:50 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-12 16:38:49 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-12 16:38:49 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-12 16:38:48 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-12 16:38:47 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-12 16:38:45 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-12 16:38:44 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-10-12 16:38:44 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2016-10-12 16:38:43 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-10-12 16:38:41 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-12 16:38:39 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-10-12 16:38:39 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-12 16:38:38 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-10-12 16:38:38 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-10-12 16:38:37 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-12 16:38:36 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-10-12 16:38:36 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-12 16:38:36 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-12 16:38:36 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-12 16:38:35 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-10-12 16:38:35 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-12 16:38:35 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-12 16:38:34 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-12 16:38:34 ----A---- C:\WINDOWS\system32\smartscreen.exe
2016-10-12 16:38:34 ----A---- C:\WINDOWS\system32\drivers\MegaSas2i.sys
2016-10-12 16:38:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-12 16:38:32 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-12 16:38:31 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-12 16:38:31 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-10-12 16:38:31 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-12 16:38:30 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-10-12 16:38:29 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-12 16:38:29 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-10-12 16:38:29 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-12 16:38:27 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-10-12 16:38:27 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-10-12 16:38:27 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-12 16:38:26 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-10-12 16:38:26 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-10-12 16:38:26 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-10-12 16:38:26 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-12 16:38:26 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-12 16:38:26 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-12 16:38:25 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-12 16:38:25 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-10-12 16:38:25 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-12 16:38:25 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-10-12 16:38:24 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-12 16:38:24 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-10-12 16:38:24 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-10-12 16:38:24 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-10-12 16:38:23 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-10-12 16:38:23 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-12 16:38:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-10-12 16:38:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-10-12 16:38:22 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-12 16:38:21 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-10-12 16:38:20 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-12 16:38:16 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-12 16:38:16 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-12 16:38:16 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-12 16:38:13 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-12 16:38:09 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-12 16:38:07 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-10-12 16:38:06 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-12 16:38:06 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-12 16:38:01 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-10-12 16:38:01 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-12 16:38:00 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-10-12 16:38:00 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-10-12 16:37:59 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-12 16:37:59 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-12 16:37:58 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-10-12 16:37:57 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-12 16:37:56 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-10-12 16:37:55 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-12 16:37:54 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-12 16:37:54 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-12 16:37:54 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-12 16:37:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-10-12 16:37:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-10-12 16:37:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-12 16:37:53 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-12 16:37:53 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-12 16:37:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-10-12 16:37:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-12 16:37:52 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-12 16:37:52 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-12 16:37:51 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-12 16:37:51 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-12 16:37:50 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-10-12 16:37:50 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-10-12 16:37:49 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-12 16:37:49 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-10-12 16:37:49 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-12 16:37:49 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-12 16:37:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-10-12 16:37:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 16:37:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-12 16:37:48 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2016-10-12 16:37:48 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-12 16:37:48 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-12 16:37:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-10-12 16:37:47 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-12 16:37:46 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-12 16:37:46 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-12 16:37:45 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-10-12 16:37:45 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-10-12 16:37:44 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-12 16:37:44 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-12 16:37:43 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2016-10-12 16:37:43 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-12 16:37:43 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-12 16:37:43 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-12 16:37:43 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-12 16:37:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2016-10-12 16:37:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-12 16:37:42 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-10-12 16:37:41 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-12 16:37:41 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-12 16:37:40 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-12 16:37:40 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-12 16:37:40 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-12 16:37:39 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-10-12 16:37:39 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-12 16:37:39 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-12 16:37:39 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-12 16:37:38 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-12 16:37:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-12 16:37:38 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-12 16:37:38 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-12 16:37:36 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-12 16:37:36 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-12 16:37:35 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-12 16:37:34 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-12 16:37:33 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-12 16:37:33 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-12 16:37:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-12 16:37:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-12 16:37:28 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-12 16:37:27 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-10-12 16:37:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-10-12 16:37:22 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-12 16:37:21 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-12 16:37:21 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-12 16:37:20 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-12 16:37:19 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-12 16:37:19 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-12 16:37:19 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-10-12 16:37:19 ----A---- C:\WINDOWS\system32\cloudAP.dll
2016-10-12 16:37:17 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-12 16:37:16 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-10-05 14:25:46 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2016-10-05 14:23:49 ----AD---- C:\Program Files (x86)\Microsoft Expression
2016-10-04 19:47:49 ----D---- C:\WINDOWS\Minidump
2016-09-29 21:59:16 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-09-29 21:59:11 ----A---- C:\WINDOWS\system32\tquery.dll
2016-09-29 21:59:10 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-09-29 21:59:09 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-29 21:59:08 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2016-09-29 21:59:08 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-09-29 21:59:08 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-09-29 21:59:08 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-09-29 21:59:06 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-09-29 21:59:06 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-09-29 21:59:05 ----A---- C:\WINDOWS\SYSWOW64\TempSignedLicenseExchangeTask.dll
2016-09-29 21:59:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2016-09-29 21:59:04 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-09-29 21:59:04 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-09-29 21:59:04 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-09-29 21:59:04 ----A---- C:\WINDOWS\system32\ci.dll
2016-09-29 21:59:03 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-09-29 21:59:03 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-09-29 21:59:03 ----A---- C:\WINDOWS\system32\hal.dll
2016-09-29 21:59:03 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-09-29 21:59:03 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-29 21:59:02 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-09-29 21:59:02 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-09-29 21:59:02 ----A---- C:\WINDOWS\system32\SessEnv.dll
2016-09-29 21:59:02 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-09-29 21:59:02 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-09-29 21:59:01 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-09-29 21:59:01 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-09-29 21:59:01 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-09-29 21:59:00 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-09-29 21:59:00 ----A---- C:\WINDOWS\system32\webio.dll
2016-09-29 21:59:00 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-09-29 21:59:00 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-29 21:59:00 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-09-29 21:58:59 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-09-29 21:58:59 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-09-29 21:58:59 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-09-29 21:58:59 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2016-09-29 21:58:58 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-09-29 21:58:58 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-29 21:58:58 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-09-29 21:58:57 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-09-29 21:58:57 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-09-29 21:58:56 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-09-29 21:58:56 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-09-29 21:58:55 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-09-29 21:58:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-09-29 21:58:54 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-09-29 21:58:54 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-09-29 21:58:54 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-09-29 21:58:54 ----A---- C:\WINDOWS\system32\offlinesam.dll
2016-09-29 21:58:53 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-09-29 21:58:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2016-09-29 21:58:47 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-29 21:58:46 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-09-29 21:58:46 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2016-09-29 21:58:45 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-09-29 21:58:45 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-09-29 21:58:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-09-29 21:58:45 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-29 21:58:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2016-09-29 21:58:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-29 21:58:44 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-09-29 21:58:44 ----A---- C:\WINDOWS\system32\lsm.dll
2016-09-29 21:58:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-29 21:58:41 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-09-29 21:58:41 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-09-29 21:58:40 ----A---- C:\WINDOWS\system32\puiobj.dll
2016-09-29 21:58:40 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2016-09-29 21:58:39 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-09-29 21:58:39 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2016-09-29 21:58:39 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-09-29 21:58:39 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-09-29 21:58:39 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-09-29 21:58:39 ----A---- C:\WINDOWS\system32\credprovslegacy.dll
2016-09-29 21:58:38 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2016-09-29 21:58:38 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2016-09-29 21:58:38 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-09-29 21:58:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.UXRes.dll
2016-09-29 21:58:37 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-09-29 21:58:37 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-09-29 21:58:36 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-09-29 21:58:32 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-09-29 21:58:32 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-09-29 21:58:29 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-09-29 21:58:28 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-29 21:58:27 ----A---- C:\WINDOWS\system32\cdp.dll
2016-09-29 21:58:25 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-09-29 21:58:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-09-29 21:58:24 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-09-29 21:58:22 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-09-29 21:58:21 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2016-09-29 21:58:21 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-09-29 21:58:20 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-09-29 21:58:20 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-09-29 21:58:19 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-09-29 21:58:18 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-09-29 21:58:18 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-09-29 21:58:17 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2016-09-29 21:58:16 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-29 21:58:16 ----A---- C:\WINDOWS\system32\tdh.dll
2016-09-29 21:58:15 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-09-29 21:58:14 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-09-29 21:58:14 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-09-29 21:58:13 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-09-29 21:58:13 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-09-29 21:58:12 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-09-29 21:58:12 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-09-29 21:58:12 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-09-29 21:58:11 ----A---- C:\WINDOWS\system32\devinv.dll
2016-09-29 21:58:11 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-09-29 21:58:10 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-09-29 21:58:10 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-09-29 21:58:04 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-09-29 21:58:03 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-09-29 21:58:02 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2016-09-29 21:58:02 ----A---- C:\WINDOWS\system32\localspl.dll
2016-09-29 21:58:01 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-09-29 21:58:01 ----A---- C:\WINDOWS\system32\manage-bde.exe
2016-09-29 21:57:59 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2016-09-29 21:57:57 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-09-29 21:57:57 ----A---- C:\WINDOWS\system32\pdh.dll
2016-09-29 21:57:57 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-09-29 21:57:55 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-09-29 21:57:55 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-29 21:57:55 ----A---- C:\WINDOWS\system32\discan.dll
2016-09-29 21:57:54 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-09-29 21:57:54 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-09-29 21:57:54 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-09-29 21:57:54 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-29 21:57:53 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-09-29 21:57:52 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-09-29 21:57:51 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-09-29 21:57:51 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2016-09-29 21:57:51 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-09-29 21:57:50 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-09-29 21:57:50 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-29 21:57:49 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-09-29 21:57:49 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-09-29 21:57:49 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-29 21:57:48 ----A---- C:\WINDOWS\system32\Sens.dll
2016-09-29 21:57:48 ----A---- C:\WINDOWS\system32\fveui.dll
2016-09-29 21:57:47 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-09-29 21:57:46 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-09-29 21:57:46 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-09-29 21:57:45 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-29 21:57:45 ----A---- C:\WINDOWS\splwow64.exe
2016-09-29 21:57:44 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-09-29 21:57:44 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-09-29 21:57:44 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-09-29 21:57:43 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2016-09-29 21:57:43 ----A---- C:\WINDOWS\system32\bdeui.dll
2016-09-29 21:57:41 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-09-29 21:57:41 ----A---- C:\WINDOWS\system32\fvenotify.exe
2016-09-29 21:57:40 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2016-09-29 21:57:40 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-09-29 21:57:40 ----A---- C:\WINDOWS\system32\resutils.dll
2016-09-29 21:57:38 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2016-09-29 21:57:38 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-09-29 21:57:37 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2016-09-29 21:57:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-09-29 21:57:36 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-09-29 21:57:35 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2016-09-29 21:57:35 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2016-09-29 21:57:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-09-29 21:57:34 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-09-29 21:57:33 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-09-29 21:57:33 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-09-29 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-09-29 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-09-29 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2016-09-29 21:57:32 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-09-29 21:57:31 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-09-29 21:57:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-09-29 21:57:31 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-29 21:57:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2016-09-29 21:57:30 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-09-29 21:57:29 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2016-09-29 21:57:28 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-09-29 21:57:27 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-09-29 21:57:27 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-09-29 21:57:26 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-09-29 21:57:25 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2016-09-29 21:57:25 ----A---- C:\WINDOWS\system32\ffbroker.dll
2016-09-29 21:57:24 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-09-29 21:57:22 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-09-29 21:57:06 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-09-29 21:56:49 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-09-29 21:56:44 ----A---- C:\WINDOWS\system32\spaceman.exe
2016-09-29 21:56:44 ----A---- C:\WINDOWS\system32\mispace.dll
2016-09-29 21:56:43 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-09-29 21:56:41 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2016-09-29 21:56:40 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-29 21:56:40 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-09-29 21:56:39 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-09-29 21:56:38 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-09-29 21:56:36 ----A---- C:\WINDOWS\explorer.exe
2016-09-29 21:56:35 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-09-29 21:56:35 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2016-09-29 21:56:34 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-09-29 21:56:30 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-09-29 21:56:28 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-09-29 21:56:27 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-09-29 21:56:24 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-09-29 21:56:24 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-09-29 21:56:23 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-09-29 21:56:22 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-09-29 21:56:22 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2016-09-29 21:56:22 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-09-29 21:56:22 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-09-29 21:56:21 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-09-29 21:56:21 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-29 21:56:21 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-09-29 21:56:20 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-09-29 21:56:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-29 21:56:19 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-29 21:56:19 ----A---- C:\WINDOWS\system32\RMapi.dll
2016-09-29 21:56:18 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-09-29 21:56:18 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-09-29 21:56:18 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-09-29 21:56:18 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-09-29 21:56:17 ----A---- C:\WINDOWS\system32\mprapi.dll
2016-09-29 21:56:16 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-09-29 21:56:16 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-09-29 21:56:15 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-09-29 21:56:15 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-09-29 21:56:14 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-09-29 21:56:13 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-09-29 21:56:13 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-09-29 21:56:13 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2016-09-29 21:56:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-09-29 21:56:11 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-09-29 21:56:11 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-09-29 21:56:11 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-09-29 21:56:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-09-29 21:56:10 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2016-09-29 21:56:10 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-09-29 21:56:10 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-09-29 21:56:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-09-29 21:56:09 ----A---- C:\WINDOWS\system32\nltest.exe
2016-09-29 21:56:08 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-09-29 21:56:08 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-29 21:56:07 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-09-29 21:56:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-29 21:56:07 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-09-29 21:56:07 ----A---- C:\WINDOWS\system32\cngkeyhelper.dll
2016-09-29 21:56:06 ----A---- C:\WINDOWS\SYSWOW64\cngkeyhelper.dll
2016-09-29 21:56:06 ----A---- C:\WINDOWS\system32\devenum.dll
2016-09-29 21:56:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-09-29 21:56:05 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-09-29 21:56:05 ----A---- C:\WINDOWS\system32\DataExchange.dll
2016-09-29 21:56:05 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-09-29 21:56:04 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2016-09-29 21:56:04 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-09-29 21:56:04 ----A---- C:\WINDOWS\system32\RelPost.exe
2016-09-29 21:56:04 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-09-29 21:56:03 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-09-29 21:56:03 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-09-29 21:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-09-29 21:56:03 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-09-29 21:56:03 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2016-09-29 21:56:02 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-09-29 21:56:02 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2016-09-29 21:56:02 ----A---- C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-09-29 21:56:01 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-09-29 21:56:01 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-09-29 21:56:00 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-09-29 21:56:00 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-09-29 21:55:59 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-09-29 21:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-09-29 21:55:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-29 21:55:58 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-29 21:55:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-09-29 21:55:57 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-09-29 21:55:57 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2016-09-29 21:55:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2016-09-29 21:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-09-29 21:55:56 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-09-29 21:55:55 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-09-29 21:55:55 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-09-29 21:55:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-09-29 21:55:54 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-29 21:55:54 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-09-29 21:55:53 ----A---- C:\WINDOWS\system32\bootux.dll
2016-09-29 21:55:53 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-09-29 21:55:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-09-29 21:55:51 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-09-29 21:55:51 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-09-29 21:55:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-29 21:55:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2016-09-29 21:55:50 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-09-29 21:55:50 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-09-29 21:55:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-29 21:55:48 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-09-29 21:55:48 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2016-09-29 21:55:48 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-09-29 21:55:46 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-09-29 21:55:46 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-09-29 21:55:46 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-09-29 21:55:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2016-09-29 21:55:45 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-09-29 21:55:44 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-09-29 21:55:44 ----A---- C:\WINDOWS\system32\Family.Client.dll
2016-09-29 21:55:43 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-09-29 21:55:43 ----A---- C:\WINDOWS\system32\imapi2.dll
2016-09-29 21:55:42 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2016-09-29 21:55:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-09-29 21:55:42 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2016-09-29 21:55:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2016-09-29 21:55:41 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-09-29 21:55:41 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-09-29 21:55:41 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-09-29 21:55:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2016-09-29 21:55:40 ----A---- C:\WINDOWS\system32\smphost.dll
2016-09-29 21:55:39 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-09-29 21:55:37 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-09-29 21:55:36 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-09-29 21:55:35 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-09-29 21:55:30 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-09-29 21:55:28 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-09-29 21:55:27 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2016-09-29 21:55:26 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-09-29 21:55:24 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-29 21:55:24 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-09-29 21:55:23 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-09-29 21:55:23 ----A---- C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-09-29 21:55:22 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-09-29 21:55:22 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-09-29 21:55:22 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-29 21:55:21 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-09-29 21:55:21 ----A---- C:\WINDOWS\SYSWOW64\NetworkCollectionAgent.dll
2016-09-29 21:55:21 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-09-29 21:55:19 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-09-29 21:55:18 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-29 21:55:17 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-09-29 21:55:16 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-09-29 21:55:15 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-09-29 21:55:15 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-09-29 21:55:13 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-09-29 21:55:12 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-09-29 21:55:12 ----A---- C:\WINDOWS\system32\provops.dll
2016-09-29 21:55:11 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-09-29 21:55:11 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-09-29 21:55:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-09-29 21:55:11 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-09-29 21:55:10 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-09-29 21:55:10 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-09-29 21:55:10 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-09-29 21:55:09 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-09-29 21:55:09 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-09-29 21:55:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-09-29 21:55:08 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-09-29 21:55:07 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2016-09-29 21:55:06 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-09-29 21:55:06 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-09-29 21:55:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2016-09-29 21:55:05 ----A---- C:\WINDOWS\system32\wlancfg.dll
2016-09-29 21:55:05 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-09-29 21:55:04 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2016-09-29 21:55:04 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-09-29 21:55:04 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-09-29 21:55:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-29 21:55:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2016-09-29 21:55:03 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-09-29 21:55:02 ----A---- C:\WINDOWS\SYSWOW64\pwrshplugin.dll
2016-09-29 21:55:02 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-09-29 21:54:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-29 21:54:58 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-29 21:54:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-29 21:54:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-09-29 21:54:57 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-09-29 21:54:57 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-29 21:54:56 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2016-09-29 21:54:56 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-09-29 21:54:56 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-09-29 21:54:55 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2016-09-29 21:54:54 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-09-29 21:54:54 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-09-29 21:54:54 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-09-29 21:54:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-09-29 21:54:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-09-29 21:54:53 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-09-29 21:54:52 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-09-29 21:54:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-09-29 21:54:51 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-09-29 21:54:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-09-29 21:54:50 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2016-09-29 21:54:50 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-09-29 21:54:50 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2016-09-29 21:54:50 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-09-29 21:54:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2016-09-29 21:54:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2016-09-29 21:54:47 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2016-09-29 21:54:46 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2016-09-29 21:54:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-09-29 21:54:38 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-09-29 21:54:36 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-09-29 21:54:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-09-29 21:54:32 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-09-29 21:54:31 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-09-29 21:54:31 ----A---- C:\WINDOWS\system32\msctf.dll
2016-09-29 21:54:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-09-29 21:54:29 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-09-29 21:54:29 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-09-29 21:54:28 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-09-29 21:54:27 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-09-29 21:54:27 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-09-29 21:54:26 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-09-29 21:54:26 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-09-29 21:54:25 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-09-29 21:54:25 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-09-29 21:54:24 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-09-29 21:54:24 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-09-29 21:54:23 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-09-29 21:54:23 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-09-29 21:54:23 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-09-29 21:54:22 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-29 21:54:22 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-09-29 21:54:21 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-09-29 21:54:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-29 21:54:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-09-29 21:54:21 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2016-09-29 21:54:20 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2016-09-29 21:54:20 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2016-09-29 21:54:19 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-29 21:54:19 ----A---- C:\WINDOWS\system32\skci.dll
2016-09-29 21:54:19 ----A---- C:\WINDOWS\system32\icsvcext.dll
2016-09-29 21:54:18 ----A---- C:\WINDOWS\system32\qedit.dll
2016-09-29 21:54:18 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-09-29 21:54:18 ----A---- C:\WINDOWS\system32\bdeunlock.exe
2016-09-29 21:54:17 ----A---- C:\WINDOWS\SYSWOW64\mprapi.dll
2016-09-29 21:54:17 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-09-29 21:54:17 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-09-29 21:54:17 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-09-29 21:54:16 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-09-29 21:54:16 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-09-29 21:54:14 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-09-29 21:54:14 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-09-29 21:54:13 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-29 21:54:13 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-09-29 21:54:13 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-09-29 21:54:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-09-29 21:54:12 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-29 21:54:12 ----A---- C:\WINDOWS\system32\pwrshplugin.dll
2016-09-29 21:54:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-09-29 21:54:11 ----A---- C:\WINDOWS\SYSWOW64\BackgroundMediaPolicy.dll
2016-09-29 21:54:11 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-09-29 21:54:11 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-09-29 21:54:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2016-09-29 21:54:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2016-09-29 21:54:09 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-09-29 21:54:08 ----A---- C:\WINDOWS\system32\sbe.dll
2016-09-29 21:54:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-29 21:54:07 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2016-09-29 21:54:07 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-29 21:54:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-09-29 21:54:06 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-09-29 21:54:06 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-09-29 21:54:05 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2016-09-29 21:54:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2016-09-29 21:54:05 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-09-29 21:54:04 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-09-29 21:54:04 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-09-29 21:54:03 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-09-29 21:54:03 ----A---- C:\WINDOWS\system32\rshx32.dll
2016-09-29 21:54:03 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-09-29 21:54:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-09-29 21:54:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2016-09-29 21:54:01 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-09-29 21:54:01 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-09-29 21:54:00 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2016-09-29 21:54:00 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-09-25 18:39:56 ----D---- C:\ProgramData\Microsoft OneDrive
2016-09-25 17:57:29 ----D---- C:\ProgramData\USOShared
2016-09-25 17:57:09 ----SHD---- C:\ProgramData\Application Data
2016-09-25 17:32:42 ----ASH---- C:\hiberfil.sys
2016-09-25 05:20:33 ----SHD---- C:\Recovery
2016-09-25 05:20:19 ----DC---- C:\WINDOWS\Panther
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-09-25 05:13:42 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\system32\encapi.dll
2016-09-25 05:13:42 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2016-09-25 05:13:32 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-09-25 05:13:32 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-09-25 05:13:32 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wpninprc.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\spwmp.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\evr.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\dxmasf.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\dasHost.exe
2016-09-25 05:13:31 ----A---- C:\WINDOWS\system32\das.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2016-09-25 05:13:30 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\lsass.exe
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-09-25 05:13:29 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-09-25 05:13:22 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-09-25 05:13:22 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-09-25 05:13:22 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-09-25 05:13:22 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\netiougc.exe
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\DscCoreConfProv.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\system32\tsmf.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-25 05:13:21 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-09-25 05:13:21 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\SYSWOW64\pidgenx.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\w32time.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\tcpipcfg.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\sppc.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\slcext.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\slc.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\provtool.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\provengine.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\pidgenx.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\PhoneServiceRes.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\ole32.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\netiougc.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\invagent.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\GenValObj.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\C_IS2022.DLL
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\c_GSM7.DLL
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\C_G18030.DLL
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\authui.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-09-25 05:13:15 ----A---- C:\WINDOWS\system32\aclui.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccessRes.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\PhoneutilRes.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\ContactActivation.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\SYSWOW64\AddressParser.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\wups2.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\VCardParser.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\usocore.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\UserDataAccessRes.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\POSyncServices.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\PhoneutilRes.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\ExSMime.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\DscCoreConfProv.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\DbgModel.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\ContactActivation.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2016-09-25 05:13:12 ----A---- C:\WINDOWS\system32\AddressParser.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2016-09-25 05:13:11 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\winmde.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\mf.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-09-25 05:13:11 ----A---- C:\WINDOWS\system32\dafpos.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\storagewmi_passthru.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MSAJApi.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\encapi.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\delegatorprovider.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\C_IS2022.DLL
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\c_GSM7.DLL
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\C_G18030.DLL
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\win32u.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\win32k.sys
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\wevtapi.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\user32.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\tzres.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\storagewmi_passthru.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\schannel.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\samlib.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\moshost.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapRouter.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\InputService.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\delegatorprovider.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\container.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\combase.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\ClipboardServer.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\cdd.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-09-25 05:13:03 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-09-25 05:13:02 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-09-25 05:13:02 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-09-25 05:13:02 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-09-25 05:13:02 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2016-09-25 05:13:02 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2016-09-25 05:13:02 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2016-09-25 05:13:02 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-09-25 05:13:02 ----A---- C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
2016-09-25 05:07:48 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2016-09-25 05:07:48 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2016-09-25 05:07:48 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-09-25 05:07:48 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-09-25 05:07:48 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-09-25 05:06:54 ----D---- C:\WINDOWS\system32\Microsoft
2016-09-25 05:06:54 ----D---- C:\WINDOWS\ServiceProfiles
2016-09-25 05:03:23 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2016-09-25 05:03:23 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2016-09-25 05:03:23 ----D---- C:\WINDOWS\system32\msmq
2016-09-25 05:03:23 ----D---- C:\WINDOWS\system32\BestPractices
2016-09-25 05:03:21 ----D---- C:\Program Files\Reference Assemblies
2016-09-25 05:03:21 ----D---- C:\Program Files\MSBuild
2016-09-25 05:03:21 ----D---- C:\Program Files (x86)\Reference Assemblies
2016-09-25 05:03:21 ----D---- C:\inetpub
2016-09-25 05:03:21 ----AD---- C:\Program Files (x86)\MSBuild
2016-09-25 05:02:21 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-09-25 05:02:21 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2016-09-25 05:02:21 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-09-25 05:02:15 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-09-25 05:02:14 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-09-25 05:02:13 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-09-25 05:01:41 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2016-09-25 04:33:28 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-09-25 04:28:41 ----SD---- C:\Users\Brokken\AppData\Roaming\Microsoft
2016-09-25 04:27:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-25 04:27:33 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2016-09-25 04:25:01 ----D---- C:\ProgramData\NVIDIA
2016-09-25 04:24:55 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2016-09-25 04:24:55 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-09-25 04:24:55 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2016-09-25 04:24:55 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-09-25 04:24:55 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-09-25 04:24:55 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-09-25 04:24:51 ----HD---- C:\Program Files (x86)\Uninstall Information
2016-09-25 04:24:36 ----D---- C:\ProgramData\NVIDIA Corporation
2016-09-25 04:24:25 ----D---- C:\Program Files\NVIDIA Corporation
2016-09-25 04:24:15 ----D---- C:\WINDOWS\system32\SRSLabs
2016-09-25 04:24:13 ----D---- C:\Program Files\Realtek
2016-09-25 04:24:12 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-09-25 04:23:57 ----D---- C:\Program Files\Elantech
2016-09-25 04:23:20 ----AS---- C:\WINDOWS\bootstat.dat
2016-09-25 04:23:07 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-09-25 04:22:19 ----D---- C:\WINDOWS\Prefetch
2016-09-25 04:21:59 ----D---- C:\WINDOWS\system32\SleepStudy
2016-09-25 04:21:42 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-21 17:39:17 ----D---- C:\Program Files\iPod
2016-09-21 17:39:04 ----AD---- C:\Program Files\iTunes
2016-09-21 16:12:37 ----AD---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 month======

2016-10-15 15:43:41 ----D---- C:\Program Files\trend micro
2016-10-15 15:39:15 ----RD---- C:\Program Files
2016-10-15 15:31:48 ----D---- C:\Users\Brokken\AppData\Roaming\Skype
2016-10-15 15:20:35 ----D---- C:\WINDOWS\Temp
2016-10-15 15:13:20 ----D---- C:\WINDOWS\system32\sru
2016-10-14 21:57:24 ----RD---- C:\WINDOWS\Microsoft.NET
2016-10-14 21:31:56 ----HD---- C:\Program Files\WindowsApps
2016-10-14 21:31:36 ----D---- C:\WINDOWS\AppReadiness
2016-10-14 21:26:36 ----D---- C:\WINDOWS\System32
2016-10-13 19:26:29 ----D---- C:\WINDOWS\system32\config
2016-10-13 18:26:52 ----D---- C:\WINDOWS\WinSxS
2016-10-13 18:26:52 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-13 18:24:07 ----D---- C:\WINDOWS\system32\catroot2
2016-10-13 18:08:06 ----RD---- C:\WINDOWS\assembly
2016-10-13 17:23:40 ----SHD---- C:\Boot
2016-10-13 17:19:50 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2016-10-13 17:19:50 ----AD---- C:\WINDOWS\SysWOW64
2016-10-13 17:19:35 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-13 17:19:35 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-10-13 17:19:35 ----D---- C:\WINDOWS\system32\wbem
2016-10-13 17:19:35 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-10-13 17:19:35 ----D---- C:\WINDOWS\system32\nl-NL
2016-10-13 17:19:35 ----D---- C:\WINDOWS\system32\migwiz
2016-10-13 17:19:35 ----D---- C:\WINDOWS\system32\Boot
2016-10-13 17:19:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-13 17:19:24 ----D---- C:\WINDOWS\ShellExperiences
2016-10-13 17:19:24 ----D---- C:\WINDOWS\INF
2016-10-13 17:19:23 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-13 17:19:23 ----D---- C:\Program Files\Windows Mail
2016-10-13 17:19:23 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-10-13 17:19:19 ----D---- C:\WINDOWS\system32\drivers
2016-10-13 17:14:29 ----A---- C:\WINDOWS\system32\ServiceFilter.ini
2016-10-13 17:13:47 ----D---- C:\Config.Msi
2016-10-13 17:13:47 ----AD---- C:\Program Files\Microsoft Silverlight
2016-10-13 17:13:43 ----AD---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-12 23:47:50 ----D---- C:\Users\Brokken\AppData\Roaming\Dropbox
2016-10-12 22:19:09 ----SHD---- C:\WINDOWS\Installer
2016-10-12 22:19:09 ----D---- C:\WINDOWS\system32\Tasks
2016-10-12 22:18:27 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-12 20:06:07 ----RD---- C:\Program Files (x86)
2016-10-12 19:30:22 ----D---- C:\ProgramData\Microsoft Help
2016-10-12 19:29:26 ----D---- C:\Windows
2016-10-12 19:24:10 ----D---- C:\WINDOWS\system32\MRT
2016-10-12 19:08:31 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-12 19:05:29 ----D---- C:\WINDOWS\CbsTemp
2016-10-12 16:16:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2016-10-12 16:16:21 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2016-10-12 10:59:31 ----D---- C:\WINDOWS\rescache
2016-10-12 10:55:20 ----D---- C:\WINDOWS\Logs
2016-10-09 18:10:50 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-10-06 22:33:46 ----D---- C:\Users\Brokken\AppData\Roaming\DVDVideoSoft
2016-10-06 22:33:45 ----D---- C:\Program Files (x86)\Common Files
2016-10-06 22:32:46 ----D---- C:\ProgramData\Skype
2016-10-06 22:32:38 ----RD---- C:\Program Files (x86)\Skype
2016-10-05 14:23:57 ----ASD---- C:\ProgramData\Microsoft
2016-10-04 19:50:16 ----A---- C:\WINDOWS\system32\AutoRunFilter.ini
2016-10-04 18:14:13 ----D---- C:\WINDOWS\debug
2016-10-03 22:09:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-03 21:33:56 ----D---- C:\WINDOWS\system32\WDI
2016-10-03 21:21:07 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-10-03 21:21:07 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2016-10-03 21:21:07 ----D---- C:\WINDOWS\SYSWOW64\setup
2016-10-03 21:21:06 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-10-03 21:21:06 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-10-03 21:21:06 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-10-03 21:20:43 ----D---- C:\WINDOWS\system32\Sysprep
2016-10-03 21:20:43 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2016-10-03 21:20:42 ----D---- C:\WINDOWS\system32\setup
2016-10-03 21:20:42 ----D---- C:\WINDOWS\system32\oobe
2016-10-03 21:20:41 ----SD---- C:\WINDOWS\system32\F12
2016-10-03 21:20:41 ----D---- C:\WINDOWS\system32\migration
2016-10-03 21:20:41 ----D---- C:\WINDOWS\system32\en-US
2016-10-03 21:20:41 ----D---- C:\WINDOWS\system32\drivers\nl-NL
2016-10-03 21:20:40 ----D---- C:\WINDOWS\system32\Dism
2016-10-03 21:20:40 ----D---- C:\WINDOWS\system32\appraiser
2016-10-03 21:20:17 ----D---- C:\WINDOWS\Provisioning
2016-10-03 21:20:15 ----D---- C:\WINDOWS\bcastdvr
2016-10-03 21:20:15 ----D---- C:\WINDOWS\AppPatch
2016-10-03 21:20:11 ----D---- C:\Program Files\Internet Explorer
2016-09-26 19:56:51 ----D---- C:\WINDOWS\appcompat
2016-09-25 22:04:54 ----HD---- C:\ProgramData
2016-09-25 17:57:29 ----D---- C:\ProgramData\USOPrivate
2016-09-25 17:57:09 ----D---- C:\Program Files\Windows NT
2016-09-25 17:56:46 ----D---- C:\WINDOWS\SoftwareDistribution
2016-09-25 17:53:37 ----D---- C:\WINDOWS\Registration
2016-09-25 17:53:35 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2016-09-25 17:53:33 ----RSD---- C:\WINDOWS\Fonts
2016-09-25 17:53:33 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-09-25 17:53:18 ----D---- C:\WINDOWS\system32\LogFiles
2016-09-25 17:53:13 ----D---- C:\WINDOWS\Tasks
2016-09-25 17:49:58 ----AD---- C:\Program Files (x86)\TeamViewer
2016-09-25 17:46:57 ----RSD---- C:\WINDOWS\Media
2016-09-25 17:46:45 ----D---- C:\WINDOWS\system32\drivers\etc
2016-09-25 17:31:59 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-09-25 17:31:59 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2016-09-25 17:31:59 ----D---- C:\WINDOWS\SYSWOW64\ASUS_N71_Screensaver dir
2016-09-25 17:31:59 ----D---- C:\WINDOWS\SYSWOW64\ASUS_N_Series_Screensaver dir
2016-09-25 17:31:55 ----D---- C:\WINDOWS\system32\OEM
2016-09-25 17:31:55 ----D---- C:\WINDOWS\system32\NDF
2016-09-25 17:31:54 ----D---- C:\WINDOWS\ShellNew
2016-09-25 17:31:54 ----D---- C:\WINDOWS\nl
2016-09-25 17:31:53 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-09-25 17:22:16 ----D---- C:\WINDOWS\twain_32
2016-09-25 17:22:13 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2016-09-25 17:22:12 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-09-25 17:22:12 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-09-25 17:22:11 ----D---- C:\WINDOWS\SYSWOW64\IME
2016-09-25 17:22:11 ----D---- C:\WINDOWS\SYSWOW64\GroupPolicy
2016-09-25 17:22:09 ----AD---- C:\WINDOWS\SYSWOW64\Adobe
2016-09-25 17:21:59 ----D---- C:\WINDOWS\system32\SPReview
2016-09-25 17:21:57 ----D---- C:\WINDOWS\system32\spool
2016-09-25 17:21:51 ----D---- C:\WINDOWS\system32\Macromed
2016-09-25 17:21:50 ----D---- C:\WINDOWS\system32\IME
2016-09-25 17:21:50 ----D---- C:\WINDOWS\system32\EventProviders
2016-09-25 17:21:49 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-09-25 05:15:11 ----D---- C:\WINDOWS\system32\zh-TW
2016-09-25 05:15:11 ----D---- C:\WINDOWS\system32\zh-HK
2016-09-25 05:15:11 ----D---- C:\WINDOWS\system32\zh-CN
2016-09-25 05:15:11 ----D---- C:\WINDOWS\system32\uk-UA
2016-09-25 05:15:11 ----D---- C:\WINDOWS\system32\tr-TR
2016-09-25 05:15:11 ----D---- C:\WINDOWS\system32\th-TH
2016-09-25 05:15:11 ----D---- C:\WINDOWS\system32\sv-SE
2016-09-25 05:15:10 ----SD---- C:\WINDOWS\system32\dsc
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\sl-SI
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\sk-SK
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\ru-RU
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\ro-RO
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\pt-PT
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\pt-BR
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\pl-PL
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\nb-NO
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\lv-LV
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\lt-LT
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\ko-KR
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\ja-jp
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\it-IT
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\hu-HU
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\hr-HR
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\he-IL
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\fr-FR
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\fr-CA
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\fi-FI
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\et-EE
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\es-MX
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\es-ES
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\en-GB
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\el-GR
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\de-DE
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\da-DK
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\cs-CZ
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\bg-BG
2016-09-25 05:15:10 ----D---- C:\WINDOWS\system32\ar-SA
2016-09-25 05:15:09 ----RD---- C:\Program Files\Windows Defender
2016-09-25 05:15:09 ----D---- C:\Program Files\Windows Media Player
2016-09-25 05:15:09 ----D---- C:\Program Files (x86)\Windows Media Player
2016-09-25 05:15:09 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-25 05:07:58 ----D---- C:\WINDOWS\OCR
2016-09-25 05:03:23 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-09-25 05:03:23 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2016-09-25 05:03:23 ----D---- C:\WINDOWS\system32\MUI
2016-09-25 05:03:23 ----D---- C:\WINDOWS\system32\inetsrv
2016-09-25 05:03:15 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2016-09-25 05:03:15 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2016-09-25 05:03:14 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-09-25 05:03:14 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-09-25 05:03:13 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-09-25 05:03:13 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-09-25 05:03:13 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-09-25 05:03:13 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-09-25 05:03:12 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2016-09-25 05:03:12 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2016-09-25 05:03:12 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2016-09-25 05:03:12 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2016-09-25 05:03:12 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2016-09-25 05:03:12 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2016-09-25 05:03:11 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2016-09-25 05:03:11 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-09-25 05:03:10 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-09-25 05:03:10 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-09-25 05:03:08 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-09-25 05:03:08 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-09-25 05:03:07 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-09-25 05:03:06 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2016-09-25 05:03:06 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-09-25 05:03:04 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2016-09-25 05:03:03 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-09-25 05:03:03 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-09-25 04:34:14 ----D---- C:\WINDOWS\schemas
2016-09-25 04:34:13 ----D---- C:\WINDOWS\Resources
2016-09-25 04:34:13 ----D---- C:\WINDOWS\PolicyDefinitions
2016-09-25 04:34:10 ----D---- C:\WINDOWS\LiveKernelReports
2016-09-25 04:33:52 ----D---- C:\WINDOWS\IME
2016-09-25 04:33:51 ----D---- C:\WINDOWS\ehome
2016-09-25 04:33:34 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2016-09-25 04:33:34 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-25 04:33:33 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-09-25 04:33:30 ----SHD---- C:\Program Files\Windows Sidebar
2016-09-25 04:33:28 ----D---- C:\Program Files\Microsoft Games
2016-09-25 04:33:28 ----D---- C:\Program Files\Common Files
2016-09-25 04:33:28 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-09-25 04:32:29 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-09-25 04:32:27 ----D---- C:\WINDOWS\system32\Recovery
2016-09-25 04:31:53 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-09-25 04:28:41 ----RD---- C:\Users
2016-09-25 04:25:20 ----RD---- C:\WINDOWS\PrintDialog
2016-09-25 04:25:20 ----RD---- C:\WINDOWS\MiracastView
2016-09-25 04:24:55 ----D---- C:\WINDOWS\Help
2016-09-25 03:47:58 ----RASH---- C:\BOOTSECT.BAK
2016-09-21 17:48:44 ----D---- C:\ProgramData\firebird
2016-09-21 17:39:17 ----D---- C:\Program Files\Common Files\Apple
2016-09-21 16:01:44 ----D---- C:\Program Files\Blender Foundation
2016-09-20 17:03:42 ----D---- C:\Users\Brokken\AppData\Roaming\Spotify

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;@oem12.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2009-06-04 408600]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2015-09-23 841944]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2015-09-23 244544]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2016-07-16 4233728]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2015-09-23 80760]
R3 ETD;@oem24.inf,%PS2DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-11-06 464472]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-09-11 2001056]
R3 kbfiltr;@oem15.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2009-07-20 15416]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2016-07-16 121344]
R3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2015-09-23 415976]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2015-09-23 351120]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2015-09-23 497888]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2015-10-06 537192]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2016-06-06 46240]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-25 175616]
R3 MTsensor;@oem4.inf,%ATKACPI.DisplayName%;ATK0100 ACPI UTILITY; C:\WINDOWS\System32\drivers\ATK64AMD.sys [2009-05-13 15928]
R3 NVHDA;@oem13.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-12-14 206120]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-12-14 12907704]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2015-09-23 82072]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-07-16 117248]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2012-07-28 57280]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2015-05-19 207208]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-25 73568]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2015-10-06 109480]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-09-17 359552]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-08-05 83768]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_176848;CDPUserSvc_176848; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-11-06 144104]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [2010-09-17 98304]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-11-02 451960]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2016-10-03 166152]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2015-12-03 863448]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.8.259.0\McCSPServiceHost.exe [2016-01-21 1694152]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-11-02 451960]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-11-02 451960]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-11-02 451960]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-11-02 451960]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2015-10-21 378848]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2015-09-21 256840]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-11-02 451960]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-25 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-10-13 933168]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
R2 OneSyncSvc_176848;Host synchroniseren_176848; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-02-24 242560]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-08-29 414496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [2010-09-17 3735552]
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2016-09-09 651576]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2015-09-21 233680]
R3 PimIndexMaintenanceSvc_176848;Contact Data_176848; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-23 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-23 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-31 194032]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 McAWFwk;McAfee Activation Service; C:\Program Files\McAfee\MSC\McAWFwk.exe [2011-01-28 225216]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe [2016-07-19 327944]
S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2015-10-20 679120]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_176848;MessagingService_176848; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-25 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------