Logfile of random's system information tool 1.10 (written by random/random)
Run by thoma at 2016-10-18 08:54:09
Microsoft Windows 10 Pro 
System drive C: has 324 GB (73%) free of 441 GB
Total RAM: 16276 MB (65% free)


======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0bde0038-aece-424a-8dc7-b3ba09984ba4 -SystemEventPortName:HostProcess-2882dba8-dd0d-4d07-a9f8-a67bad26bd13 -IoCancelEventPortName:HostProcess-5bfa2cde-9e07-4ecb-8c76-520c3f326386 -NonStateChangingEventPortName:HostProcess-8fb894c0-5708-48fe-aa1f-50d279c76b7e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2e3f5b11-e0d7-4c49-bbf8-353f50707647 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe" /service
C:\WINDOWS\system32\svchost.exe -k netsvcs
dashost.exe {9e6196a8-7361-45b9-830061409da239d3}
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\WLANExt.exe 2787712113312
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\DbxSvc.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\Bitdefender Agent\ProductAgentService.exe"
"C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe" /service

"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\system32\CxAudMsg64.exe
C:\WINDOWS\SysWoW64\SAsrv.exe
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service SQLEXPRESS
"C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
"C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS01\MSSQL\Binn\sqlceip.exe" -Service SQLEXPRESS01
C:\WINDOWS\System32\vds.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
"C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe" 
"C:\Program Files\Elantech\ETDIntelligent.exe" 
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\System32\RuntimeBroker.exe -Embedding
igfxEM.exe 
igfxHK.exe 
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe" 
"C:\Windows\RTFTrack.exe" 
"C:\Users\thoma\AppData\Local\FluxSoftware\Flux\flux.exe"  /noshow
"C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySQLNotifier.exe" 
"C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfServicePlugin.exe" 
"C:\Program Files\FreeFileSync\RealTimeSync.exe" 
"C:\Program Files\FreeFileSync\Bin\RealTimeSync_x64.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
"fontdrvhost.exe"
"C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe" -autoupdate -startplugins -disableshowcontrolpanel
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe"
"C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe "
"C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\bdwtxapps.exe"
"C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe" --defaults-file="C:\ProgramData\MySQL\MySQL Server 5.7\my.ini" MySQL57
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files (x86)\Citrix\AuthManager\AuthManSvr.exe" -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\System32\SystemSettingsBroker.exe -Embedding

C:\Windows\System32\DataExchangeHost.exe -Embedding
taskhostw.exe
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem"
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -l 3 -c
"C:\WINDOWS\system32\nvvsvc.exe"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe  -first
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Snipaste\Snipaste.exe" 
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x41c

C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.82_none_5be7b69702339d1d\TiWorker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXe9cvj1thv1hmcw0cs98xm3r97tyzy2xs.mca
"C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE" 
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2326612360-2477090070-2315343964-1001165_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2326612360-2477090070-2315343964-1001165 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"  "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "http://track.pc-helpforum.be/wf/click?upn=dTZOOcibKXP-2BXYr5iDSB7F3q6K2otMpIxWmS0waM1E6yduuiw1vmd-2B6l4DIRUCJWDHE92vRItnDchLGJqzmDKA-3D-3D_-2BPe06-2FbvfIwPZYvDYsJeB4sKDhXHWUjZaPG9BkxbYaccAH13tOC4OcYz4G2uG7zVXFHeDcSNHrat55oxMO6O8aOjCFIghB-2BkWdUkNOu2iFVTpHO3msTpUTr3ZPvFjkEoCJX1y6PdXZMyN0CdWJJM-2FDpZ1nYLR6q8nzGz4KZYCoDG8t-2BA1owhF-2FOyL3xywGyUmbOIksarjHAbynTfYZqFGCHF064w4ukPhXVW-2Fxh6VXE-3D"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\thoma\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=54.0.2840.59 --handshake-handle=0x18c
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/ControlJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,15,19,33,50,59 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4279 --gpu-driver-date=8-24-2015 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1341 --mojo-application-channel-token=E8197204FDEB9FF5F257CD8EFFAFFF96 --mojo-platform-channel-handle=1288 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/ControlJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=CDBFC0D925EF9AD6805D750B81703247 --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=CDBFC0D925EF9AD6805D750B81703247 --channel="14060.0.1560341925\1430398035" --mojo-platform-channel-handle=2264 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/ControlJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=AC67C100B6B4AD0F51B8000B4C452C50 --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=AC67C100B6B4AD0F51B8000B4C452C50 --channel="14060.2.1565307998\279952276" --mojo-platform-channel-handle=2464 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/ControlJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=8C1A48C826E0192FA7BE29D809139921 --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=8C1A48C826E0192FA7BE29D809139921 --channel="14060.3.571616938\2128720408" --mojo-platform-channel-handle=2648 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Control/PreconnectMore/Default/*QUIC/ControlJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=E0FA6AF471E49B09252A40ED1FE5AD72 --lang=nl --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=E0FA6AF471E49B09252A40ED1FE5AD72 --channel="14060.4.738575722\878003593" --mojo-platform-channel-handle=2656 /prefetch:1
C:\WINDOWS\system32\cmd.exe /c "C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxcr.exe" --parent-window=0 chrome-extension://dhhejlifdlcgcmogbggeomfodgklfaem/ < \\.\pipe\chrome.nativeMessaging.in.f01fd3072612f85c > \\.\pipe\chrome.nativeMessaging.out.f01fd3072612f85c
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxcr.exe"  --parent-window=0 chrome-extension://dhhejlifdlcgcmogbggeomfodgklfaem/ 
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe166_ Global\UsGthrCtrlFltPipeMssGthrPipe166 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Control/*PreconnectMore/Default/*QUIC/ControlJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/" --primordial-pipe-token=35D562E20ECAFD644D55C45F73F110FD --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=35D562E20ECAFD644D55C45F73F110FD --channel="14060.5.1447076079\1987350833" --mojo-platform-channel-handle=5960 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/*GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Control/*PreconnectMore/Default/*QUIC/ControlJuly/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_71/*UMA-Uniformity-Trial-10-Percent/group_07/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/" --primordial-pipe-token=D449C86CAE782A751095AEF024603D89 --lang=nl --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=D449C86CAE782A751095AEF024603D89 --channel="14060.6.1396659010\347851255" --mojo-platform-channel-handle=3804 /prefetch:1
C:\WINDOWS\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
taskhostw.exe
C:\Windows\System32\InstallAgent.exe -Embedding
C:\WINDOWS\system32\compattelrunner.exe
"C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun -cv:8vufh1qldEqwtirx.1
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\InstallAgentUserBroker.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"D:\Downloads\RSITx64.exe" 

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]
Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-28 528912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-09-23 231104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_102\bin\ssv.dll [2016-10-05 571456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-09-23 2095920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-10-05 234560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]
Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2016-06-28 458200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-09-23 170688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b924f0b4-0b3c-49c0-bab2-213fb9ebd1d3}]
Microsoft Web Test Recorder 14.0 Helper - C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2015-07-07 75104]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-09-23 1538352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\pmbxie.dll [2016-06-28 528912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\Antispam32\pmbxie.dll [2016-06-28 458200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-02-26 36352]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-09-30 1844280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"f.lux"=C:\Users\thoma\AppData\Local\FLUXSOFTWARE\Flux\flux.exe [2013-10-24 1017224]
"MySQL Notifier"=C:\PROGRAM FILES (X86)\MySQL\MYSQL NOTIFIER 1.1\MYSQLNOTIFIER.EXE [2014-09-03 773120]
"GUDelayStartup"=C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [2016-10-09 43984]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-10-10 25366584]
""= []

C:\Users\thoma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Snipaste.lnk - C:\Program Files (x86)\Snipaste\Snipaste.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
"FilterAdministratorToken"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-18 08:54:10 ----D---- C:\Program Files\trend micro
2016-10-18 08:54:09 ----D---- C:\rsit
2016-10-17 18:23:36 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2016-10-17 18:23:36 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2016-10-17 18:23:36 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2016-10-17 18:23:36 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2016-10-17 18:23:32 ----D---- C:\Program Files (x86)\VulkanRT
2016-10-17 18:22:14 ----D---- C:\WINDOWS\LastGood
2016-10-17 18:20:41 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2016-10-17 18:20:41 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-10-17 18:20:40 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2016-10-17 18:20:40 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-10-17 18:20:39 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2016-10-17 18:20:39 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2016-10-17 18:20:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2016-10-17 18:20:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2016-10-17 18:20:37 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2016-10-17 18:20:37 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2016-10-17 18:20:36 ----A---- C:\WINDOWS\system32\nvdispgenco6437306.dll
2016-10-17 18:20:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2016-10-17 18:20:35 ----A---- C:\WINDOWS\system32\nvdispco6437306.dll
2016-10-17 18:20:35 ----A---- C:\WINDOWS\system32\nvcuda.dll
2016-10-17 18:20:32 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2016-10-17 18:20:31 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-10-17 18:20:31 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-10-17 18:20:30 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2016-10-17 18:13:50 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2016-10-17 18:13:50 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2016-10-17 18:13:50 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-10-17 18:13:49 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2016-10-17 18:13:49 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2016-10-17 18:13:22 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2016-10-17 17:01:48 ----D---- C:\ProgramData\GlarySoft
2016-10-17 16:53:59 ----D---- C:\Program Files (x86)\Auslogics
2016-10-17 16:53:36 ----D---- C:\Users\thoma\AppData\Roaming\GlarySoft
2016-10-17 16:53:36 ----D---- C:\Users\thoma\AppData\Roaming\DiskDefrag
2016-10-17 16:53:36 ----A---- C:\WINDOWS\system32\drivers\GUBootStartup.sys
2016-10-17 16:53:30 ----D---- C:\ProgramData\Auslogics
2016-10-17 16:53:19 ----D---- C:\Program Files (x86)\Glary Utilities 5
2016-10-17 16:26:35 ----AD---- C:\Program Files\My Family Tree
2016-10-15 10:24:17 ----D---- C:\WINDOWS\LastGood.Tmp
2016-10-15 10:24:10 ----A---- C:\WINDOWS\system32\bcmihvui64.dll
2016-10-14 19:52:13 ----A---- C:\WINDOWS\system32\drivers\EuFdDisk.sys
2016-10-14 19:52:13 ----A---- C:\WINDOWS\system32\drivers\eudskacs.sys
2016-10-14 19:52:13 ----A---- C:\WINDOWS\system32\drivers\EUBKMON.sys
2016-10-14 19:52:13 ----A---- C:\WINDOWS\system32\drivers\eubakup.sys
2016-10-14 19:51:01 ----A---- C:\WINDOWS\system32\fbnative.exe
2016-10-14 19:50:50 ----D---- C:\Program Files (x86)\EaseUS
2016-10-14 13:38:37 ----AD---- C:\Program Files (x86)\ProtectU
2016-10-13 07:36:26 ----D---- C:\Program Files\Realtek
2016-10-12 13:31:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-12 13:31:01 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2016-10-12 13:31:01 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2016-10-12 13:31:01 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-10-12 13:31:01 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-10-12 13:31:01 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-12 13:31:01 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-12 13:31:00 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-12 13:30:59 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-12 13:30:59 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-12 13:30:59 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-12 13:30:59 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-12 13:30:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-12 13:30:59 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-10-12 13:30:59 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-10-12 13:30:58 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-12 13:30:58 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-12 13:30:58 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-12 13:30:56 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-12 13:30:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-12 13:30:55 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-12 13:30:55 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-12 13:30:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-12 13:30:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-12 13:30:54 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-12 13:30:54 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-12 13:30:54 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-12 13:30:53 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-12 13:30:52 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-10-12 13:30:52 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-10-12 13:30:52 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2016-10-12 13:30:50 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-12 13:30:50 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-12 13:30:49 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-10-12 13:30:49 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-10-12 13:30:49 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-10-12 13:30:49 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-12 13:30:48 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-12 13:30:48 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-12 13:30:47 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-12 13:30:47 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-10-12 13:30:47 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-10-12 13:30:47 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-12 13:30:47 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-12 13:30:47 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-12 13:30:47 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-12 13:30:46 ----A---- C:\WINDOWS\system32\smartscreen.exe
2016-10-12 13:30:46 ----A---- C:\WINDOWS\system32\drivers\MegaSas2i.sys
2016-10-12 13:30:45 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-10-12 13:30:45 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-12 13:30:45 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-12 13:30:45 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-12 13:30:45 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-10-12 13:30:45 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-12 13:30:44 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-12 13:30:44 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-10-12 13:30:44 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-12 13:30:43 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-12 13:30:42 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-12 13:30:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-10-12 13:30:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-10-12 13:30:41 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-10-12 13:30:41 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-12 13:30:40 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-12 13:30:38 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-12 13:30:38 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-12 13:30:38 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-12 13:30:37 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-12 13:30:35 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-12 13:30:33 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-12 13:30:33 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-10-12 13:30:33 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-12 13:30:29 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-10-12 13:30:29 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-10-12 13:30:29 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-12 13:30:29 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-12 13:30:29 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-10-12 13:30:28 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-10-12 13:30:28 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-12 13:30:26 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-10-12 13:30:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-10-12 13:30:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-12 13:30:25 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-12 13:30:25 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-12 13:30:25 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-12 13:30:25 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-12 13:30:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-12 13:30:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-10-12 13:30:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-10-12 13:30:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-12 13:30:24 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-12 13:30:24 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-12 13:30:24 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-12 13:30:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 13:30:23 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-10-12 13:30:23 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-12 13:30:23 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-12 13:30:23 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-10-12 13:30:23 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-10-12 13:30:23 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-12 13:30:23 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-12 13:30:22 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-12 13:30:21 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-12 13:30:21 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-10-12 13:30:21 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-10-12 13:30:21 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-12 13:30:21 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-12 13:30:21 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-12 13:30:21 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-12 13:30:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2016-10-12 13:30:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-12 13:30:20 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2016-10-12 13:30:20 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-12 13:30:20 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-12 13:30:20 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-10-12 13:30:20 ----A---- C:\WINDOWS\system32\cscui.dll
2016-10-12 13:30:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-12 13:30:19 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-12 13:30:19 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-12 13:30:19 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-12 13:30:18 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-12 13:30:17 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-12 13:30:17 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-12 13:30:16 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-12 13:30:16 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-12 13:30:16 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-12 13:30:16 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-12 13:30:15 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-12 13:30:15 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-12 13:30:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-12 13:30:14 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-12 13:30:13 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-10-12 13:30:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-10-12 13:30:11 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-12 13:30:10 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-12 13:30:10 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-12 13:30:10 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-12 13:30:09 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-12 13:30:09 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-12 13:30:09 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-10-12 13:30:09 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-12 13:30:09 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-10-12 13:30:09 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys
2016-10-12 13:30:09 ----A---- C:\WINDOWS\system32\cloudAP.dll
2016-10-10 20:30:34 ----A---- C:\WINDOWS\system32\drivers\dbx-stable.sys
2016-10-10 20:30:34 ----A---- C:\WINDOWS\system32\drivers\dbx-dev.sys
2016-10-10 20:30:34 ----A---- C:\WINDOWS\system32\drivers\dbx-canary.sys
2016-10-10 20:30:34 ----A---- C:\WINDOWS\system32\DbxSvc.exe
2016-10-08 12:01:23 ----A---- C:\WINDOWS\system32\drivers\VBoxDrv.sys
2016-10-08 12:01:21 ----A---- C:\WINDOWS\system32\drivers\VBoxUSBMon.sys
2016-10-08 12:01:17 ----D---- C:\Program Files\Oracle
2016-10-07 20:27:35 ----D---- C:\Users\thoma\AppData\Roaming\Spotify
2016-10-06 21:37:49 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsDesktopEngine.exe
2016-10-06 21:37:49 ----A---- C:\WINDOWS\SYSWOW64\d3d12SDKLayers.dll
2016-10-06 21:37:49 ----A---- C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2016-10-06 21:37:49 ----A---- C:\WINDOWS\system32\d3d12SDKLayers.dll
2016-10-06 21:24:16 ----D---- C:\Program Files (x86)\Microsoft Office
2016-10-06 21:08:19 ----A---- C:\WINDOWS\SYSWOW64\perf-MSSQL13.SQLEXPRESS01-sqlagtctr.dll
2016-10-06 21:08:19 ----A---- C:\WINDOWS\system32\perf-MSSQL13.SQLEXPRESS01-sqlagtctr.dll
2016-10-06 21:08:07 ----A---- C:\WINDOWS\SYSWOW64\perf-MSSQL$SQLEXPRESS01-sqlctr13.0.1601.5.dll
2016-10-06 21:08:07 ----A---- C:\WINDOWS\system32\perf-MSSQL$SQLEXPRESS01-sqlctr13.0.1601.5.dll
2016-10-06 21:03:08 ----A---- C:\WINDOWS\SYSWOW64\perf-MSSQL13.SQLEXPRESS-sqlagtctr.dll
2016-10-06 21:03:08 ----A---- C:\WINDOWS\system32\perf-MSSQL13.SQLEXPRESS-sqlagtctr.dll
2016-10-06 21:02:54 ----A---- C:\WINDOWS\SYSWOW64\perf-MSSQL$SQLEXPRESS-sqlctr13.0.1601.5.dll
2016-10-06 21:02:54 ----A---- C:\WINDOWS\system32\perf-MSSQL$SQLEXPRESS-sqlctr13.0.1601.5.dll
2016-10-06 21:02:48 ----A---- C:\WINDOWS\system32\fssres.dll
2016-10-06 21:02:47 ----A---- C:\WINDOWS\system32\hadrres.dll
2016-10-06 21:02:19 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2016-10-06 21:02:11 ----D---- C:\WINDOWS\system32\RsFx
2016-10-06 21:02:07 ----D---- C:\Program Files\Microsoft.NET
2016-10-06 20:56:38 ----D---- C:\SQLServer2016Media
2016-10-06 20:33:53 ----D---- C:\ProgramData\Microsoft Visual Studio
2016-10-06 20:30:04 ----D---- C:\Users\thoma\AppData\Roaming\NuGet
2016-10-06 20:21:16 ----D---- C:\Program Files (x86)\NuGet
2016-10-06 20:21:11 ----AD---- C:\Program Files (x86)\Microsoft ASP.NET Core 1.0.1 Local Feed
2016-10-06 20:12:24 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 10.0
2016-10-06 20:08:51 ----D---- C:\Program Files\Microsoft Analysis Services
2016-10-06 20:08:42 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2016-10-06 19:57:59 ----D---- C:\Program Files (x86)\Microsoft
2016-10-06 19:57:37 ----D---- C:\Program Files (x86)\Microsoft Azure Tools
2016-10-06 19:55:44 ----AD---- C:\Program Files\VS2012Schemas
2016-10-06 19:55:44 ----AD---- C:\Program Files\VS2010Schemas
2016-10-06 19:55:40 ----D---- C:\ProgramData\dftmp
2016-10-06 19:55:31 ----D---- C:\Program Files\Microsoft SDKs
2016-10-06 19:53:48 ----AD---- C:\Program Files (x86)\Microsoft Azure Quickstarts
2016-10-06 19:43:38 ----AD---- C:\Program Files\dotnet
2016-10-06 19:42:17 ----D---- C:\Program Files\Microsoft
2016-10-06 18:17:06 ----D---- C:\Program Files (x86)\AppInsights
2016-10-06 18:14:18 ----D---- C:\ProgramData\PreEmptive Solutions
2016-10-06 18:13:31 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-10-06 18:06:28 ----D---- C:\Program Files\Microsoft Visual Studio 12.0
2016-10-06 18:06:27 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 12.0
2016-10-06 18:04:53 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-10-06 18:04:49 ----AD---- C:\Program Files\IIS Express
2016-10-06 18:04:49 ----AD---- C:\Program Files (x86)\IIS Express
2016-10-06 18:04:11 ----D---- C:\ProgramData\NuGet
2016-10-06 18:03:57 ----D---- C:\Program Files (x86)\Microsoft Office365 Tools
2016-10-06 17:54:02 ----AD---- C:\Program Files\Microsoft SQL Server Compact Edition
2016-10-06 17:54:00 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-10-06 17:53:22 ----D---- C:\Program Files (x86)\ShellDir
2016-10-06 17:51:43 ----D---- C:\ProgramData\Microsoft DNX
2016-10-06 17:51:43 ----D---- C:\Program Files\Microsoft DNX
2016-10-06 17:48:40 ----AD---- C:\Program Files (x86)\Microsoft Web Tools
2016-10-06 17:46:28 ----D---- C:\Program Files (x86)\Microsoft WCF Data Services
2016-10-06 17:46:22 ----D---- C:\Program Files (x86)\IIS
2016-10-06 17:46:22 ----AD---- C:\Program Files\IIS
2016-10-06 17:41:54 ----D---- C:\WINDOWS\symbols
2016-10-06 17:41:52 ----D---- C:\Program Files (x86)\Microsoft Help Viewer
2016-10-06 17:41:49 ----D---- C:\Program Files (x86)\Windows Kits
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsRemoteEngine.exe
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsExperiment.dll
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsCapture.dll
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\VSD3DWARPDebug.dll
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\DXToolsReporting.dll
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\DXToolsOfflineAnalysis.dll
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\DXToolsMonitor.dll
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\DXCap.exe
2016-10-06 17:41:08 ----A---- C:\WINDOWS\SYSWOW64\d3d12warp.dll
2016-10-06 17:41:07 ----A---- C:\WINDOWS\SYSWOW64\DXGIDebug.dll
2016-10-06 17:41:07 ----A---- C:\WINDOWS\SYSWOW64\DXCaptureReplay.dll
2016-10-06 17:41:06 ----A---- C:\WINDOWS\SYSWOW64\VSD3DWARP12Debug.dll
2016-10-06 17:41:06 ----A---- C:\WINDOWS\SYSWOW64\DXCpl.exe
2016-10-06 17:41:06 ----A---- C:\WINDOWS\SYSWOW64\d3d11_3SDKLayers.dll
2016-10-06 17:41:06 ----A---- C:\WINDOWS\SYSWOW64\d2d1debug3.dll
2016-10-06 17:41:05 ----D---- C:\ProgramData\Git
2016-10-06 17:41:05 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsProxyStub.dll
2016-10-06 17:41:05 ----A---- C:\WINDOWS\SYSWOW64\perf_gputiming.dll
2016-10-06 17:41:05 ----A---- C:\WINDOWS\SYSWOW64\DxToolsReportGenerator.dll
2016-10-06 17:41:04 ----A---- C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2016-10-06 17:41:04 ----A---- C:\WINDOWS\system32\VsGraphicsExperiment.dll
2016-10-06 17:41:04 ----A---- C:\WINDOWS\system32\VsGraphicsCapture.dll
2016-10-06 17:41:04 ----A---- C:\WINDOWS\system32\VSD3DWARPDebug.dll
2016-10-06 17:41:04 ----A---- C:\WINDOWS\system32\DXCap.exe
2016-10-06 17:41:04 ----A---- C:\WINDOWS\system32\d3d12warp.dll
2016-10-06 17:41:03 ----A---- C:\WINDOWS\system32\DXToolsReporting.dll
2016-10-06 17:41:03 ----A---- C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2016-10-06 17:41:03 ----A---- C:\WINDOWS\system32\DXToolsMonitor.dll
2016-10-06 17:41:02 ----A---- C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2016-10-06 17:41:02 ----A---- C:\WINDOWS\system32\DXGIDebug.dll
2016-10-06 17:41:02 ----A---- C:\WINDOWS\system32\DXCpl.exe
2016-10-06 17:41:02 ----A---- C:\WINDOWS\system32\DXCaptureReplay.dll
2016-10-06 17:41:02 ----A---- C:\WINDOWS\system32\d2d1debug3.dll
2016-10-06 17:41:01 ----A---- C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2016-10-06 17:41:01 ----A---- C:\WINDOWS\system32\perf_gputiming.dll
2016-10-06 17:41:01 ----A---- C:\WINDOWS\system32\DxToolsReportGenerator.dll
2016-10-06 17:41:01 ----A---- C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2016-10-06 17:39:33 ----D---- C:\WINDOWS\SYSWOW64\1033
2016-10-06 17:39:28 ----AD---- C:\Program Files\Microsoft SQL Server
2016-10-06 17:39:28 ----AD---- C:\Program Files (x86)\Microsoft SQL Server
2016-10-06 17:39:10 ----AD---- C:\Program Files\Git
2016-10-06 17:36:46 ----D---- C:\WINDOWS\system32\1033
2016-10-06 17:36:31 ----AD---- C:\Program Files (x86)\Microsoft Visual Studio 14.0
2016-10-06 17:36:31 ----AD---- C:\Program Files (x86)\Microsoft SDKs
2016-10-06 17:32:49 ----D---- C:\ProgramData\VsTelemetry
2016-10-06 11:54:25 ----D---- C:\Users\thoma\AppData\Roaming\Citrix
2016-10-05 13:49:07 ----D---- C:\Users\thoma\AppData\Roaming\Advanced Chemistry Development
2016-10-05 12:23:17 ----AD---- C:\Program Files\glassfish-4.1.1
2016-10-05 12:18:20 ----AD---- C:\Program Files\NetBeans 8.1
2016-10-05 12:16:55 ----A---- C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-09-30 21:41:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-09-30 21:41:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.UXRes.dll
2016-09-30 21:41:58 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-09-30 21:41:57 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-09-30 21:41:57 ----A---- C:\WINDOWS\system32\tquery.dll
2016-09-30 21:41:56 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2016-09-30 21:41:56 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-09-30 21:41:56 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-09-30 21:41:56 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-09-30 21:41:56 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-30 21:41:55 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-09-30 21:41:55 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-09-30 21:41:55 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-09-30 21:41:55 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-09-30 21:41:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\SYSWOW64\TempSignedLicenseExchangeTask.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\SessEnv.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\offlinesam.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\hal.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-30 21:41:54 ----A---- C:\WINDOWS\system32\ci.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\webio.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2016-09-30 21:41:53 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-09-30 21:41:52 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-09-30 21:41:51 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-09-30 21:41:51 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-09-30 21:41:51 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-09-30 21:41:51 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-09-30 21:41:51 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-09-30 21:41:51 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-09-30 21:41:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2016-09-30 21:41:49 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-09-30 21:41:49 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-30 21:41:49 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2016-09-30 21:41:48 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-09-30 21:41:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2016-09-30 21:41:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-09-30 21:41:48 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-09-30 21:41:48 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-09-30 21:41:48 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-30 21:41:48 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-09-30 21:41:48 ----A---- C:\WINDOWS\system32\lsm.dll
2016-09-30 21:41:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-09-30 21:41:47 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-09-30 21:41:47 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-09-30 21:41:47 ----A---- C:\WINDOWS\system32\puiobj.dll
2016-09-30 21:41:47 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-09-30 21:41:46 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-09-30 21:41:46 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\system32\tspubwmi.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\system32\credprovslegacy.dll
2016-09-30 21:41:46 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-09-30 21:41:45 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-09-30 21:41:43 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-09-30 21:41:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-09-30 21:41:43 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-09-30 21:41:42 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-30 21:41:41 ----A---- C:\WINDOWS\system32\cdp.dll
2016-09-30 21:41:40 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-09-30 21:41:40 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-09-30 21:41:40 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-09-30 21:41:39 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2016-09-30 21:41:39 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-09-30 21:41:39 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-09-30 21:41:38 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-09-30 21:41:38 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-09-30 21:41:38 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-09-30 21:41:38 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-09-30 21:41:38 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-09-30 21:41:38 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2016-09-30 21:41:37 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-09-30 21:41:37 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-30 21:41:37 ----A---- C:\WINDOWS\system32\tdh.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-09-30 21:41:36 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-09-30 21:41:35 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-09-30 21:41:35 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-09-30 21:41:35 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-09-30 21:41:35 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-09-30 21:41:35 ----A---- C:\WINDOWS\system32\devinv.dll
2016-09-30 21:41:34 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2016-09-30 21:41:34 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-09-30 21:41:34 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-09-30 21:41:34 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2016-09-30 21:41:34 ----A---- C:\WINDOWS\system32\pwcreator.exe
2016-09-30 21:41:34 ----A---- C:\WINDOWS\system32\manage-bde.exe
2016-09-30 21:41:34 ----A---- C:\WINDOWS\system32\localspl.dll
2016-09-30 21:41:33 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-09-30 21:41:33 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-30 21:41:33 ----A---- C:\WINDOWS\system32\pdh.dll
2016-09-30 21:41:33 ----A---- C:\WINDOWS\system32\discan.dll
2016-09-30 21:41:33 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-09-30 21:41:32 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-09-30 21:41:32 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-09-30 21:41:32 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-09-30 21:41:32 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-09-30 21:41:32 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-09-30 21:41:32 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-30 21:41:32 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-09-30 21:41:32 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\system32\Sens.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\system32\fveui.dll
2016-09-30 21:41:31 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\system32\bdeui.dll
2016-09-30 21:41:30 ----A---- C:\WINDOWS\splwow64.exe
2016-09-30 21:41:29 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-09-30 21:41:29 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2016-09-30 21:41:29 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-09-30 21:41:29 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-09-30 21:41:29 ----A---- C:\WINDOWS\system32\resutils.dll
2016-09-30 21:41:29 ----A---- C:\WINDOWS\system32\fvenotify.exe
2016-09-30 21:41:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-09-30 21:41:28 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2016-09-30 21:41:28 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2016-09-30 21:41:28 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-09-30 21:41:28 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2016-09-30 21:41:28 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-09-30 21:41:28 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-09-30 21:41:28 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-09-30 21:41:27 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2016-09-30 21:41:27 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-30 21:41:26 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-09-30 21:41:26 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-09-30 21:41:26 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-09-30 21:41:26 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2016-09-30 21:41:26 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-09-30 21:41:26 ----A---- C:\WINDOWS\system32\ffbroker.dll
2016-09-30 21:41:25 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-09-30 21:41:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-09-30 21:41:19 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-30 21:41:07 ----A---- C:\WINDOWS\system32\spaceman.exe
2016-09-30 21:41:07 ----A---- C:\WINDOWS\system32\mispace.dll
2016-09-30 21:41:06 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-09-30 21:41:06 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-09-30 21:41:02 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2016-09-30 21:41:02 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-09-30 21:41:02 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-09-30 21:41:02 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-09-30 21:41:01 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-09-30 21:41:01 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-09-30 21:41:01 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-30 21:41:01 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-09-30 21:41:00 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-09-30 21:41:00 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2016-09-30 21:41:00 ----A---- C:\WINDOWS\explorer.exe
2016-09-30 21:40:58 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-09-30 21:40:57 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-09-30 21:40:57 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-09-30 21:40:56 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-09-30 21:40:56 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-09-30 21:40:56 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-09-30 21:40:56 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2016-09-30 21:40:56 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-09-30 21:40:56 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-09-30 21:40:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-09-30 21:40:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-09-30 21:40:55 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\system32\RMapi.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\system32\mprapi.dll
2016-09-30 21:40:55 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-09-30 21:40:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-09-30 21:40:54 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-09-30 21:40:54 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-09-30 21:40:54 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-09-30 21:40:54 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-09-30 21:40:54 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-09-30 21:40:54 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2016-09-30 21:40:54 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-09-30 21:40:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-09-30 21:40:53 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-09-30 21:40:53 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2016-09-30 21:40:53 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-09-30 21:40:53 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-09-30 21:40:53 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-09-30 21:40:53 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-09-30 21:40:53 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-09-30 21:40:52 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-09-30 21:40:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-09-30 21:40:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-09-30 21:40:52 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-09-30 21:40:52 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-09-30 21:40:52 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-30 21:40:52 ----A---- C:\WINDOWS\system32\nltest.exe
2016-09-30 21:40:51 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\RelPost.exe
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\devenum.dll
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\DataExchange.dll
2016-09-30 21:40:51 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-09-30 21:40:50 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-09-30 21:40:50 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-09-30 21:40:50 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-09-30 21:40:50 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-09-30 21:40:50 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-09-30 21:40:50 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2016-09-30 21:40:50 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2016-09-30 21:40:50 ----A---- C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-09-30 21:40:49 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-09-30 21:40:49 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-09-30 21:40:49 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-09-30 21:40:49 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-09-30 21:40:49 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-09-30 21:40:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-30 21:40:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-09-30 21:40:48 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-09-30 21:40:48 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-30 21:40:48 ----A---- C:\WINDOWS\system32\fveprompt.exe
2016-09-30 21:40:48 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2016-09-30 21:40:48 ----A---- C:\WINDOWS\system32\baaupdate.exe
2016-09-30 21:40:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\bootux.dll
2016-09-30 21:40:47 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-09-30 21:40:46 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-30 21:40:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2016-09-30 21:40:45 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-09-30 21:40:45 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-09-30 21:40:45 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-09-30 21:40:45 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-09-30 21:40:45 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\smphost.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\imapi2.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\Family.Client.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2016-09-30 21:40:44 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-09-30 21:40:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2016-09-30 21:40:43 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-09-30 21:40:42 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-09-30 21:40:42 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-09-30 21:40:41 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-09-30 21:40:39 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2016-09-30 21:40:39 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-09-30 21:40:39 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-09-30 21:40:38 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\SYSWOW64\NetworkCollectionAgent.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-09-30 21:40:37 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-09-30 21:40:36 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-09-30 21:40:36 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-09-30 21:40:36 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2016-09-30 21:40:36 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-30 21:40:35 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-09-30 21:40:35 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-09-30 21:40:34 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-09-30 21:40:34 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-09-30 21:40:32 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-09-30 21:40:32 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-09-30 21:40:32 ----A---- C:\WINDOWS\system32\provops.dll
2016-09-30 21:40:32 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-09-30 21:40:32 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-09-30 21:40:32 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-09-30 21:40:31 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-09-30 21:40:31 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-09-30 21:40:31 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-09-30 21:40:31 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-09-30 21:40:31 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-09-30 21:40:31 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-09-30 21:40:30 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-09-30 21:40:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-09-30 21:40:28 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2016-09-30 21:40:28 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-09-30 21:40:28 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\pwrshplugin.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\system32\wlancfg.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-09-30 21:40:27 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-09-30 21:40:27 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-09-30 21:40:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-09-30 21:40:26 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-09-30 21:40:26 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-09-30 21:40:26 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-30 21:40:26 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-09-30 21:40:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-09-30 21:40:26 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-09-30 21:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-09-30 21:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-09-30 21:40:25 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2016-09-30 21:40:25 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-09-30 21:40:25 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-09-30 21:40:25 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2016-09-30 21:40:25 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-09-30 21:40:25 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-09-30 21:40:25 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-09-30 21:40:24 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2016-09-30 21:40:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-09-30 21:40:24 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-09-30 21:40:24 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-09-30 21:40:24 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2016-09-30 21:40:24 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-09-30 21:40:24 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-09-30 21:40:23 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-09-30 21:40:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2016-09-30 21:40:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2016-09-30 21:40:22 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2016-09-30 21:40:22 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2016-09-30 21:40:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-09-30 21:40:18 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-09-30 21:40:17 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-09-30 21:40:17 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-09-30 21:40:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-09-30 21:40:14 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-09-30 21:40:14 ----A---- C:\WINDOWS\system32\msctf.dll
2016-09-30 21:40:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-09-30 21:40:13 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-09-30 21:40:13 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-09-30 21:40:13 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-09-30 21:40:13 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-09-30 21:40:13 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2016-09-30 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-09-30 21:40:12 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-09-30 21:40:12 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-09-30 21:40:12 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-09-30 21:40:11 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-09-30 21:40:11 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-09-30 21:40:11 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-30 21:40:11 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-09-30 21:40:11 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-09-30 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-09-30 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-09-30 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-09-30 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2016-09-30 21:40:10 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2016-09-30 21:40:10 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2016-09-30 21:40:10 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-09-30 21:40:09 ----A---- C:\WINDOWS\SYSWOW64\mprapi.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\skci.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\qedit.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\icsvcext.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-09-30 21:40:09 ----A---- C:\WINDOWS\system32\bdeunlock.exe
2016-09-30 21:40:08 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-09-30 21:40:08 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-09-30 21:40:08 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-09-30 21:40:08 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-09-30 21:40:08 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-09-30 21:40:08 ----A---- C:\WINDOWS\system32\drivers\AppVStrm.sys
2016-09-30 21:40:08 ----A---- C:\WINDOWS\system32\AppVClient.exe
2016-09-30 21:40:07 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-09-30 21:40:07 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-30 21:40:07 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-09-30 21:40:07 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-09-30 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-09-30 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-09-30 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\BackgroundMediaPolicy.dll
2016-09-30 21:40:06 ----A---- C:\WINDOWS\system32\pwrshplugin.dll
2016-09-30 21:40:06 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-09-30 21:40:06 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-09-30 21:40:06 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2016-09-30 21:40:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2016-09-30 21:40:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2016-09-30 21:40:05 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-09-30 21:40:05 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-30 21:40:05 ----A---- C:\WINDOWS\system32\sbe.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-09-30 21:40:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\system32\rshx32.dll
2016-09-30 21:40:03 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-09-30 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2016-09-30 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-09-30 21:40:02 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-09-29 20:43:51 ----AD---- C:\Program Files\Common Files\DESIGNER

======List of files/folders modified in the last 1 month======

2016-10-18 08:54:10 ----RD---- C:\Program Files
2016-10-18 08:54:09 ----D---- C:\WINDOWS\Prefetch
2016-10-18 08:54:06 ----D---- C:\WINDOWS\CbsTemp
2016-10-18 08:53:56 ----D---- C:\WINDOWS\Temp
2016-10-18 08:52:17 ----D---- C:\WINDOWS\system32\config
2016-10-18 08:51:49 ----RD---- C:\WINDOWS\Microsoft.NET
2016-10-18 08:51:08 ----D---- C:\WINDOWS\system32\sru
2016-10-18 08:51:00 ----AD---- C:\Program Files\Bitdefender Agent
2016-10-18 08:50:55 ----D---- C:\WINDOWS\system32\SleepStudy
2016-10-17 20:53:35 ----D---- C:\Users\thoma\AppData\Roaming\Skype
2016-10-17 20:46:14 ----D---- C:\WINDOWS\system32\drivers\etc
2016-10-17 18:23:43 ----D---- C:\Program Files\NVIDIA Corporation
2016-10-17 18:23:36 ----D---- C:\WINDOWS\SysWOW64
2016-10-17 18:23:36 ----D---- C:\WINDOWS\System32
2016-10-17 18:23:34 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-10-17 18:23:32 ----RD---- C:\Program Files (x86)
2016-10-17 18:23:30 ----D---- C:\ProgramData\NVIDIA
2016-10-17 18:22:14 ----D---- C:\WINDOWS\system32\drivers
2016-10-17 18:22:14 ----D---- C:\Windows
2016-10-17 18:22:09 ----D---- C:\WINDOWS\INF
2016-10-17 18:22:07 ----D---- C:\WINDOWS\system32\CatRoot
2016-10-17 18:22:06 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-17 18:19:02 ----D---- C:\ProgramData\NVIDIA Corporation
2016-10-17 18:15:37 ----D---- C:\Users\thoma\AppData\Roaming\FileZilla
2016-10-17 18:13:49 ----D---- C:\WINDOWS\system32\Tasks
2016-10-17 18:13:38 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2016-10-17 18:12:37 ----D---- C:\WINDOWS\SoftwareDistribution
2016-10-17 18:05:07 ----D---- C:\Program Files (x86)\Mp3tag
2016-10-17 17:46:59 ----SHD---- C:\System Volume Information
2016-10-17 17:05:07 ----D---- C:\WINDOWS\debug
2016-10-17 17:01:48 ----HD---- C:\ProgramData
2016-10-17 16:27:23 ----HD---- C:\Program Files\WindowsApps
2016-10-17 16:26:36 ----SHD---- C:\WINDOWS\Installer
2016-10-17 16:26:35 ----RSD---- C:\WINDOWS\Fonts
2016-10-17 09:59:01 ----D---- C:\WINDOWS\rescache
2016-10-16 14:35:01 ----D---- C:\Users\thoma\AppData\Roaming\Mp3tag
2016-10-15 15:57:56 ----D---- C:\WINDOWS\AppReadiness
2016-10-15 12:40:18 ----D---- C:\Users\thoma\AppData\Roaming\vlc
2016-10-15 10:39:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-15 10:34:41 ----D---- C:\WINDOWS\system32\catroot2
2016-10-15 10:26:47 ----A---- C:\bdlog.txt
2016-10-15 10:24:08 ----D---- C:\Program Files\Lenovo
2016-10-15 10:24:06 ----D---- C:\Program Files (x86)\Cisco
2016-10-15 10:24:00 ----D---- C:\ProgramData\Package Cache
2016-10-14 08:13:17 ----D---- C:\Program Files (x86)\Dropbox
2016-10-13 20:46:58 ----D---- C:\WINDOWS\WinSxS
2016-10-13 20:38:02 ----RD---- C:\WINDOWS\assembly
2016-10-13 15:36:06 ----AD---- C:\Program Files\Visual Paradigm 13.0
2016-10-13 09:18:59 ----A---- C:\Autoconfig.ini
2016-10-12 21:40:15 ----D---- C:\WINDOWS\twain_32
2016-10-12 20:45:45 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2016-10-12 20:45:32 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-10-12 20:45:32 ----D---- C:\WINDOWS\system32\wbem
2016-10-12 20:45:32 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-10-12 20:45:32 ----D---- C:\WINDOWS\system32\nl-NL
2016-10-12 20:45:31 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-12 20:45:31 ----D---- C:\WINDOWS\system32\migwiz
2016-10-12 20:45:31 ----D---- C:\WINDOWS\system32\Boot
2016-10-12 20:45:20 ----D---- C:\WINDOWS\ShellExperiences
2016-10-12 20:45:19 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-12 20:45:18 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-10-12 20:45:17 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-12 20:45:17 ----D---- C:\Program Files\Windows Mail
2016-10-12 15:28:37 ----D---- C:\WINDOWS\system32\MRT
2016-10-12 15:00:17 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-12 13:19:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2016-10-12 11:27:44 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2016-10-10 18:50:48 ----D---- C:\WINDOWS\system32\NDF
2016-10-09 10:17:54 ----D---- C:\Users\thoma\AppData\Roaming\NetBeans
2016-10-08 16:00:29 ----D---- C:\Users\thoma\AppData\Roaming\MusicBee
2016-10-08 12:01:23 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-10-07 08:19:29 ----SD---- C:\Users\thoma\AppData\Roaming\Microsoft
2016-10-06 21:08:54 ----RD---- C:\Users
2016-10-06 20:52:53 ----D---- C:\Users\thoma\AppData\Roaming\JetBrains
2016-10-06 20:52:29 ----D---- C:\Users\thoma\AppData\Roaming\Audacity
2016-10-06 20:14:04 ----AD---- C:\Program Files (x86)\MSBuild
2016-10-06 20:10:38 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-10-06 20:08:39 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-10-06 18:23:13 ----ASD---- C:\ProgramData\Microsoft
2016-10-06 18:17:32 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-10-06 18:08:51 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2016-10-06 17:42:16 ----D---- C:\Program Files (x86)\Common Files
2016-10-06 17:36:36 ----D---- C:\WINDOWS\system32\Microsoft
2016-10-06 17:33:58 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-10-06 16:59:01 ----D---- C:\Program Files (x86)\Google
2016-10-06 16:58:40 ----D---- C:\WINDOWS\Tasks
2016-10-06 11:56:03 ----D---- C:\Users\thoma\AppData\Roaming\ICAClient
2016-10-05 12:16:20 ----D---- C:\Program Files\Java
2016-10-05 12:06:31 ----D---- C:\Users\thoma\AppData\Roaming\Notepad++
2016-10-05 12:05:15 ----AD---- C:\Program Files (x86)\Euro Truck Simulator 2
2016-10-05 12:04:34 ----AD---- C:\Program Files\FileZilla FTP Client
2016-10-03 22:09:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-01 23:11:43 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2016-10-01 23:11:43 ----A---- C:\WINDOWS\system32\nvapi64.dll
2016-10-01 21:53:29 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2016-10-01 21:53:29 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-10-01 21:53:27 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2016-10-01 21:53:27 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2016-10-01 21:53:27 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-10-01 21:53:27 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-10-01 21:53:27 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-10-01 21:53:27 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2016-10-01 21:53:27 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2016-10-01 14:51:34 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-10-01 14:51:34 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2016-10-01 14:51:33 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-10-01 14:51:33 ----D---- C:\WINDOWS\SYSWOW64\setup
2016-10-01 14:51:33 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-10-01 14:51:33 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-10-01 14:51:23 ----D---- C:\WINDOWS\system32\Sysprep
2016-10-01 14:51:23 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2016-10-01 14:51:22 ----SD---- C:\WINDOWS\system32\F12
2016-10-01 14:51:22 ----D---- C:\WINDOWS\system32\setup
2016-10-01 14:51:22 ----D---- C:\WINDOWS\system32\oobe
2016-10-01 14:51:22 ----D---- C:\WINDOWS\system32\en-US
2016-10-01 14:51:22 ----D---- C:\WINDOWS\system32\drivers\nl-NL
2016-10-01 14:51:22 ----D---- C:\WINDOWS\system32\Dism
2016-10-01 14:51:19 ----D---- C:\WINDOWS\system32\appraiser
2016-10-01 14:51:10 ----D---- C:\WINDOWS\Provisioning
2016-10-01 14:51:10 ----D---- C:\WINDOWS\bcastdvr
2016-10-01 14:51:10 ----D---- C:\WINDOWS\AppPatch
2016-10-01 14:51:10 ----D---- C:\Program Files\Windows Media Player
2016-10-01 14:51:10 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2016-10-01 14:51:10 ----D---- C:\Program Files\Internet Explorer
2016-10-01 14:51:10 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-30 06:22:19 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2016-09-30 06:22:19 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2016-09-29 20:43:51 ----D---- C:\Program Files\Common Files
2016-09-29 20:42:52 ----AD---- C:\Program Files\Microsoft Office
2016-09-21 19:20:44 ----D---- C:\ProgramData\Skype
2016-09-21 19:20:27 ----AD---- C:\Program Files\FreeFileSync
2016-09-21 10:15:21 ----D---- C:\Program Files\Elantech
2016-09-19 15:52:09 ----D---- C:\Users\thoma\AppData\Roaming\VisualParadigm
2016-09-19 14:19:26 ----AD---- C:\Program Files (x86)\CDBurnerXP
2016-09-19 14:19:25 ----D---- C:\Program Files (x86)\Windows Mail
2016-09-19 14:19:25 ----D---- C:\Program Files (x86)\Windows Defender
2016-09-19 14:19:25 ----D---- C:\Program Files (x86)\FormatFactory
2016-09-19 14:19:25 ----AD---- C:\Program Files\CCleaner
2016-09-19 14:19:25 ----AD---- C:\Program Files (x86)\Microsoft Silverlight
2016-09-19 14:19:24 ----D---- C:\Program Files\Common Files\Apple
2016-09-19 14:19:24 ----AD---- C:\Program Files\iTunes
2016-09-19 14:19:23 ----AD---- C:\Program Files\Microsoft Silverlight
2016-09-19 14:19:11 ----RD---- C:\Program Files\Windows Defender
2016-09-19 14:19:01 ----D---- C:\WINDOWS\Help
2016-09-19 14:19:01 ----D---- C:\WINDOWS\Globalization
2016-09-19 14:19:01 ----D---- C:\Users\thoma\AppData\Roaming\IrfanView
2016-09-19 14:19:00 ----D---- C:\WINDOWS\system32\bg-BG
2016-09-19 14:19:00 ----D---- C:\WINDOWS\system32\ar-SA
2016-09-19 14:19:00 ----D---- C:\WINDOWS\PolicyDefinitions
2016-09-19 14:19:00 ----D---- C:\WINDOWS\L2Schemas
2016-09-19 14:18:59 ----SD---- C:\WINDOWS\system32\dsc
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\zh-TW
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\zh-HK
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\zh-CN
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\uk-UA
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\tr-TR
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\th-TH
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\sv-SE
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\sl-SI
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\sk-SK
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\ru-RU
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\ro-RO
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\pt-PT
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\pt-BR
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\pl-PL
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\nb-NO
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\migration
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\Macromed
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\lv-LV
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\lt-LT
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\ko-KR
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\ja-jp
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\it-IT
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\hu-HU
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\hr-HR
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\he-IL
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\fr-FR
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\fr-CA
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\fi-FI
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\et-EE
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\es-MX
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\es-ES
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\en-GB
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\el-GR
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\de-DE
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\da-DK
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\cs-CZ
2016-09-19 14:18:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-09-19 14:18:58 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-09-19 14:18:58 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-09-19 14:12:01 ----D---- C:\WINDOWS\registration
2016-09-19 13:59:17 ----D---- C:\WINDOWS\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem38.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2016-03-03 79120]
R0 avc3;avc3; C:\WINDOWS\system32\DRIVERS\avc3.sys [2016-08-22 1603264]
R0 EUBAKUP;EUBAKUP; C:\WINDOWS\system32\drivers\eubakup.sys [2015-12-10 60968]
R0 EUBKMON;EUBKMON; C:\WINDOWS\system32\drivers\EUBKMON.sys [2015-12-10 48168]
R0 gzflt;gzflt; C:\WINDOWS\system32\DRIVERS\gzflt.sys [2016-04-27 182936]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-02-26 645992]
R0 ignis;ignis Service; C:\WINDOWS\system32\DRIVERS\ignis.sys [2016-06-28 299816]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2016-06-28 128400]
R1 BDVEDISK;BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [2015-12-04 87912]
R1 ctxusbm;Citrix USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\ctxusbm.sys [2016-04-07 153784]
R1 EUDSKACS;EUDSKACS; \??\C:\WINDOWS\system32\drivers\eudskacs.sys [2015-12-10 18472]
R1 EUFDDISK;EUFDDISK; \??\C:\WINDOWS\system32\drivers\EuFdDisk.sys [2015-12-10 192552]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2013-03-01 36600]
R3 ACPIVPC;@oem4.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-06-04 42328]
R3 acsock;acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [2015-07-22 129520]
R3 avckf;avckf; C:\WINDOWS\system32\DRIVERS\avckf.sys [2016-08-22 850464]
R3 bcbtums;@oem29.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-10-12 227144]
R3 BCMWL63A;@oem34.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2016-02-23 11761928]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-20 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy-stuurprogramma; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-08-20 84992]
R3 btwampfl;@oem29.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-10-12 234800]
R3 btwaudio;@oem20.inf,%btaudio.SvcDesc%;Bluetooth-audioapparaat; C:\WINDOWS\system32\drivers\btwaudio.sys [2015-08-05 220448]
R3 btwavdt;@oem49.inf,%btwavdt.SVCDESC%;Bluetooth AVDT Service; C:\WINDOWS\system32\DRIVERS\btwavdt.sys [2015-08-05 239392]
R3 btwl2cap;@oem13.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2015-07-08 48984]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2015-08-05 47392]
R3 CnxtHdAudService;@oem0.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2016-07-13 1561640]
R3 ETD;@oem37.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2016-08-15 594008]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2016-08-15 32344]
R3 ICCWDT;@oem19.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2015-09-24 38680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-09-09 6415272]
R3 MEIx64;@oem5.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-04-14 202848]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_0326b872c1b453bb\nvlddmkm.sys [2016-10-05 14249416]
R3 nvvad_WaveExtensible;@oem43.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-09-30 47672]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 rt640x64;@oem47.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-18 895256]
R3 RTSUER;@oem22.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 rtsuvc;@oem6.inf,%rtsuvc.DeviceDesc%;EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2016-05-12 3118848]
R3 SensorsSimulatorDriver;@oem46.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [2016-07-16 216064]
S0 bdelam;bdelam; C:\WINDOWS\system32\drivers\bdelam.sys [2013-09-08 23568]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S1 GUBootStartup;GUBootStartup; \??\C:\WINDOWS\System32\drivers\GUBootStartup.sys [2016-10-17 20160]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\WINDOWS\System32\drivers\BTHport.sys [2016-08-20 965120]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-07-16 117248]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 dbx;dbx; C:\WINDOWS\system32\DRIVERS\dbx.sys []
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 IntcDAud;@oem27.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-08 473864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-09-30 29240]
S3 qcusbser;@oem33.inf,%MARSHALLUSBSER%;Marshall London USB Device for Legacy Serial Communication; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [2015-09-25 252448]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 rspWhySoSlow;rspWhySoSlow; C:\WINDOWS\system32\DRIVERS\rspWhy64.sys [2016-02-06 33536]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S4 RsFx0401;RsFx0401 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0401.sys [2016-03-29 260816]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-08-05 83768]
R2 BcmBtRSupport;@oem29.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-10-12 2297104]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2015-08-05 980224]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_4961a;CDPUserSvc_4961a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-09-04 2854640]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2014-10-20 207576]
R2 DbxSvc;DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [2016-10-10 38000]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 EaseUS Agent;EaseUS Agent Service; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2016-06-03 39616]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2016-08-15 134888]
R2 GDCAgent;GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [2015-07-29 1155512]
R2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-06 153752]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-02-26 16232]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-09 359848]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2016-04-30 393408]
R2 MySQL57;MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [2016-02-02 39622144]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-09-30 457272]
R2 NVIDIA Wireless Controller Service;NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [2016-09-30 1165368]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-10-01 1364024]
R2 OneSyncSvc_4961a;Host synchroniseren_4961a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ProductAgentService;ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [2016-09-13 1088944]
R2 PSI_SVC_2;Corel License Validation Service V2, Powered by arvato; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2014-04-30 277360]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
R3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_4961a;Contact Data_4961a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 dbupdate;Dropbox-update-service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-02-05 143144]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 MSSQL$SQLEXPRESS01;SQL Server (SQLEXPRESS01); C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS01\MSSQL\Binn\sqlservr.exe [2016-04-30 393408]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-09-09 291752]
S3 dbupdatem;Dropbox-update-service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-02-05 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-06 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2016-09-09 651576]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_4961a;MessagingService_4961a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-09-30 457272]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-09-03 243248]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-09-15 823136]
S4 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2016-04-30 565960]
S4 SQLAgent$SQLEXPRESS01;SQL Server Agent (SQLEXPRESS01); C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS01\MSSQL\Binn\SQLAGENT.EXE [2016-04-30 565960]

-----------------EOF-----------------