Logfile of random's system information tool 1.10 (written by random/random) Run by VDB219 at 2014-07-22 17:54:49 Microsoft Windows 8 System drive C: has 863 GB (92%) free of 943 GB Total RAM: 10150 MB (60% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:55:00, on 22/07/2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v10.0 (10.00.9200.17028) Boot mode: Normal Running processes: C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe C:\Users\VDB219\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Users\VDB219\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe C:\Program Files (x86)\Acer Remote\ArcServer.exe C:\Users\VDB219\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Windows Media Player\wmplayer.exe C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Windows\syswow64\wwahost.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe c:\PROGRA~2\mcafee\SITEAD~1\saui.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files\trend micro\VDB219.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: MySafeProxy - {51420F88-4D4A-4042-9509-8D4E1307910E} - C:\Program Files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxy32.dll O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file) O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file) O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe O4 - HKCU\..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\VDB219\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [AcerCloud] "C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe" startup O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKCU\..\Run: [SkyDrive] "C:\Users\VDB219\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background O4 - HKCU\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" O4 - HKCU\..\Run: [Spotify] "C:\Users\VDB219\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Spotify Web Helper] "C:\Users\VDB219\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [AcerCloud] "C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe" startup (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [SkyDrive] "C:\Users\VDB219\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Spotify] "C:\Users\VDB219\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart (User '?') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1002\..\RunOnce: [RegAutoPlay] C:\Windows\system32\cmd.exe /c reg import "C:\Program Files (x86)\Acer\Acer Media_\RegAutoPlay.reg" (User '_ocster_backup_') O4 - HKUS\S-1-5-21-2191953796-1962370350-3912698429-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [RegAutoPlay] C:\Windows\system32\cmd.exe /c reg import "C:\Program Files (x86)\Acer\Acer Media_\RegAutoPlay.reg" (User '?') O4 - S-1-5-21-2191953796-1962370350-3912698429-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: Dropbox.lnk = VDB219\AppData\Roaming\Dropbox\bin\Dropbox.exe (User '?') O4 - Startup: Dropbox.lnk = VDB219\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Global Startup: Acer Remote.lnk = C:\Program Files (x86)\Acer Remote\ArcServer.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file) O10 - Unknown file in Winsock LSP: c:\windows\syswow64\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\windows\syswow64\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - (no file) O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: ABVisie Firebird 2 server (ABVisieFirebird2) - FirebirdSQL Project - C:\Program Files (x86)\ABVisie\Firebird2\bin\fbserver.exe O23 - Service: ABVisie License Server (ABVLicenseServerService) - ABVisie - C:\Program Files (x86)\ABVisie\LicenseServer\bin\ABVLicenseServer.exe O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: GoodSync Runner (GsRunner) - Unknown owner - C:\Program Files\Siber Systems\GoodSync\GoodSync.exe O23 - Service: GoodSync Server (GsServer) - Unknown owner - C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing) O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Ocster Backup (ocster_backup) - Unknown owner - c:\Program Files\Ocster Backup\bin\backupService-ox.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 18611 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe c:\windows\system32\svchost.exe -k dcomlaunch "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe" "C:\Windows\system32\nvvsvc.exe" c:\windows\system32\svchost.exe -k rpcss "dwm.exe" c:\windows\system32\svchost.exe -k localservicenetworkrestricted c:\windows\system32\svchost.exe -k netsvcs c:\windows\system32\svchost.exe -k localservice "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe" C:\Windows\system32\nvvsvc.exe -session -first c:\windows\system32\svchost.exe -k localsystemnetworkrestricted c:\windows\system32\svchost.exe -k networkservice "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" C:\Windows\System32\spoolsv.exe c:\windows\system32\svchost.exe -k localserviceandnoimpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files\AVAST Software\Avast\afwServ.exe" "C:\Program Files (x86)\ABVisie\Firebird2\bin\fbserver.exe" -s "C:\Program Files (x86)\ABVisie\LicenseServer\bin\ABVLicenseServer.exe" "C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe" "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe" "C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service "C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service "C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe" "C:\Program Files (x86)\Acer\AOP Framework\acer\\ccd.exe" "C:\Users\VDB219\AppData\Local\clear.fi\AcerCloud\SyncAgent" S-1-5-21-2191953796-1962370350-3912698429-1001 368 475 "C:\ProgramData\acer\CCD" \??\C:\Windows\system32\conhost.exe 0x4 "C:\Program Files\Siber Systems\GoodSync\GoodSync.exe" /runner-service="C:/Users/VDB219/AppData/Roaming/GoodSync" "C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe" /service C:\Windows\system32\HPSIsvc.exe "C:\Program Files\Intel\iCLS Client\HeciServer.exe" C:\Windows\system32\IProsetMonitor.exe "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc "C:\Windows\system32\mfevtps.exe" "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe" "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" "C:\Windows\SysWOW64\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait "C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait dashost.exe {468acbce-42ce-4dce-8aeeab0526b6bb2e} "c:\Program Files\Ocster Backup\bin\backupService-ox.exe" "--controlFolder=c:\ProgramData\Ocster Backup\control" "--id=ocster_backup" daemon "C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe" c:\windows\system32\svchost.exe -k imgsvc "C:\Program Files\McAfee\MSC\McAPExe.exe" "C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe" "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc "c:\Program Files\Ocster Backup\bin\oxHelper.exe" watchDog backupDaemon 3376 "c:\Users\_OCSTE~1\AppData\Local\Temp\oxHelperParam-3376-30ba891701d5f32c" taskhostex.exe "C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe" C:\Windows\Explorer.EXE "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray "C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1 "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" C:\Windows\system32\wbem\wmiprvse.exe "C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe" "C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe" /HotCorners "C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe" "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss da8e14d1-c5e1-4c48-8c40-a2c7dd5bdff7 1 c:\windows\system32\svchost.exe -k networkservicenetworkrestricted "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server \??\C:\Windows\system32\conhost.exe 0x4 "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp \??\C:\Windows\system32\conhost.exe 0x4 C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Acer\Acer Power Management\ePowerTray.exe" "C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe" C:\Windows\System32\RuntimeBroker.exe -Embedding "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe" "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Program Files\Ocster Backup\bin\backupClient-ox.exe" --hidden "C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe" /c "C:\Users\VDB219\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe" startup "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart "C:\Program Files\Ocster Backup\bin\oxHelper.exe" watchDog backupClient 7532 "c:\Users\VDB219\AppData\Local\Temp\oxHelperParam-7532-72809810ba842db1" "C:\Users\VDB219\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart "C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe" -Embedding "C:\Program Files (x86)\Acer Remote\ArcServer.exe" "C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /runkey "C:\Users\VDB219\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup "C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe" "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4526ec61-5112-4a87-9a1e-09432f4627b7 -SystemEventPortName:HostProcess-7e1c0362-f5a2-445e-b1a3-5242048f6c03 -IoCancelEventPortName:HostProcess-b9228e39-ecd8-46d3-acc9-2dd2e72bfb7a -NonStateChangingEventPortName:HostProcess-e35fe820-494a-4c05-9b21-4b5c74bcbf92 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:830f452b-1e15-4efb-8304-b1e55ec886b3 -DeviceGroupId:WpdFsGroup "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /SkipFUE /RemoteOCXLaunch "C:\Program Files\Logitech\SetPointP\SetPoint.exe" "C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" C:\Windows\system32\wbem\unsecapp.exe -Embedding KHALMNPR.EXE /API "C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe" /RunCurUs C:\Users\VDB219\AppData\Local\clear.fi\Photo\abPhotoSetup.exe /s .\abPhotoSetup.exe /s "C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" "c:\Program Files (x86)\Nero\Update\NASvc.exe" "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Windows\TEMP\925083e8-6050-45d6-8062-29be848f894f\AcerOpenPlatformSetup.exe" /s "C:\Windows\TEMP\925083e8-6050-45d6-8062-29be848f894f\AcerOpenPlatform.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup taskhost.exe $(Arg0) "C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui "C:\Program Files\mcafee\VirusScan\mcods.exe" "C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe" {2564ca70-6f0e-413d-b8a7-ced8b40d2207} /pid=5944 "C:\Windows\syswow64\wwahost.exe" -ServerName:App.wwa "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="12136.0.1464830531\457312195" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16,43 --gpu-vendor-id=0x10de --gpu-device-id=0x104b --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3788 --ignored=" --type=renderer " /prefetch:822062411 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="12136.2.295987557\845324545" /prefetch:673131151 C:\Windows\system32\cmd.exe /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ < \\.\pipe\chrome.nativeMessaging.in.a41da1bea441e7a6 > \\.\pipe\chrome.nativeMessaging.out.a41da1bea441e7a6 \??\C:\Windows\system32\conhost.exe 0x4 "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ "c:\PROGRA~2\mcafee\SITEAD~1\saui.exe" -Embedding "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="12136.6.2044064988\1806667336" /prefetch:673131151 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe17_ Global\UsGthrCtrlFltPipeMssGthrPipe17 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 572 576 584 65536 580 "C:\Users\VDB219\Downloads\RSITx64 (1).exe" ======Scheduled tasks folder====== C:\Windows\tasks\ASC7_SkipUac_VDB219.job - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe /SkipUac C:\Windows\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe C:\Windows\tasks\Driver Booster SkipUAC (SYSTEM).job - C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe /skipuac C:\Windows\tasks\Gameo Updater.job - C:\Users\VDB219\AppData\Roaming\GameoUpdater\UpdateProc\UpdateTask.exe /Check C:\Windows\tasks\Google Software Updater.job - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe scheduled_start C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\Uninstaller_SkipUac_Administrator.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer =========Mozilla firefox========= ProfilePath - C:\Users\VDB219\AppData\Roaming\Mozilla\Firefox\Profiles\22qdb16s.default prefs.js - "browser.startup.homepage" - "www.google.com" prefs.js - "keyword.URL" - "https://www.google.com/search" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72] "Description"=Intel IPT WebApi plugin "Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater] "Description"=This plugin updates Intel WebAPI component "Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.60.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10] "Description"=McAfee Total Protection MIME Plugin "Path"=c:\PROGRA~2\mcafee\msc\npmcsnffpl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pack.google.com/Google Updater;version=14] "Description"=Google Updater "Path"=C:\Program Files (x86)\Google\Google Updater\2.4.1895.7162\npCIDetect14.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0] "Description"=WildTangent Games App V2 Presence Detector Plugin "Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.5.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.5.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10] "Description"=McAfee Total Protection MIME Plugin "Path"=c:\PROGRA~1\mcafee\msc\npmcsnffpl64.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL C:\Program Files (x86)\Mozilla Firefox\extensions\ belgiumeid@eid.belgium.be C:\Users\VDB219\AppData\Roaming\Mozilla\Firefox\Profiles\22qdb16s.default\searchplugins\ Google.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}] ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-05-02 2471744] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51420F88-4D4A-4042-9509-8D4E1307910E}] MySafeProxy - C:\Program Files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxy64.dll [2014-07-22 411640] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-06 612248] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}] Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2014-05-19 433944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}] McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-04-24 290792] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre8\bin\jp2ssv.dll [2014-06-25 211880] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51420F88-4D4A-4042-9509-8D4E1307910E}] MySafeProxy - C:\Program Files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxy32.dll [2014-07-22 365048] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-28 436600] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}] Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2014-05-19 364824] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}] McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-04-24 239280] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}] Advanced SystemCare Browser Protection - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2013-11-25 665408] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-05-07 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-04-24 290792] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-04-24 239280] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-06-23 13672152] "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208] "Ocster Backup"=C:\Program Files\Ocster Backup\bin\backupClient-ox.exe [2014-02-04 312664] "NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-05-30 2352072] "ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-05-30 1279480] "EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2014-05-19 3100440] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-05-31 133248] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "IncrediMail"=C:\Program Files (x86)\IncrediMail\bin\IncMail.exe [2014-07-22 444840] "Spotify Web Helper"=C:\Users\VDB219\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-07-07 1178168] "AcerCloud"=C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2014-06-30 2524416] "GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2014-06-27 24477056] "SkyDrive"=C:\Users\VDB219\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-05-15 257224] "Advanced SystemCare 7"=C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2013-12-18 2285344] "OfficeSyncProcess"=C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064] "Spotify"=C:\Users\VDB219\AppData\Roaming\Spotify\Spotify.exe [2014-07-07 6162488] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992] "IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-03-12 134616] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-06 3890208] "BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184] "AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992] "mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-03-18 224128] "BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2014-06-26 53504] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-05-31 133248] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Acer Remote.lnk - C:\Program Files (x86)\Acer Remote\ArcServer.exe C:\Users\VDB219\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Dropbox.lnk - C:\Users\VDB219\AppData\Roaming\Dropbox\bin\Dropbox.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2014-03-25 66328] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] wlnotify.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "EnableLinkedConnections"=1 "DisableTaskMgr"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoRun"=0 "NoFolderOptions"=0 "NoActiveDesktopChanges"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "VIDC.YUY2"=msyuv.dll "vidc.i420"=iyuv_32.dll "msacm.msgsm610"=msgsm32.acm "msacm.msg711"=msg711.acm "VIDC.YVYU"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "wavemapper"=msacm32.drv "midimapper"=midimap.dll "VIDC.UYVY"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "vidc.msvc"=msvidc32.dll "wave2"=wdmaud.drv "mixer2"=wdmaud.drv "midi2"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux1"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1" ======List of files/folders created in the last 1 month====== 2014-07-22 15:29:02 ----A---- C:\autoexec.bat 2014-07-22 15:26:40 ----D---- C:\Program Files\Enigma Software Group 2014-07-22 15:24:53 ----D---- C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP 2014-07-22 15:15:14 ----D---- C:\Users\VDB219\AppData\Roaming\eCyber 2014-07-22 15:15:03 ----D---- C:\Windows\Minidump 2014-07-22 15:15:02 ----D---- C:\Windows\SMinidump 2014-07-22 15:14:57 ----D---- C:\Windows\system32\log 2014-07-22 15:14:57 ----A---- C:\Windows\system32\drivers\iSafeKrnlBoot.sys 2014-07-22 15:12:23 ----D---- C:\Users\VDB219\AppData\Roaming\iSafe 2014-07-22 11:25:29 ----D---- C:\ProgramData\Photo Notifier and Animation Creator 2014-07-22 11:25:29 ----D---- C:\Program Files (x86)\Photo Notifier and Animation Creator 2014-07-22 11:24:51 ----D---- C:\Program Files (x86)\IncrediMail 2014-07-22 10:59:23 ----D---- C:\Windows\LastGood.Tmp 2014-07-22 10:58:58 ----D---- C:\Program Files\Logitech 2014-07-22 09:53:29 ----D---- C:\Program Files (x86)\XTRM Group 2014-07-21 17:55:21 ----A---- C:\Windows\system32\drivers\mountmgr.sys 2014-07-21 17:55:21 ----A---- C:\Windows\system32\drivers\Classpnp.sys 2014-07-21 17:50:13 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll 2014-07-21 16:39:47 ----D---- C:\SWSetup 2014-07-21 16:36:19 ----D---- C:\hp_LJP2014_Full_Solution_ASIA 2014-07-13 09:39:41 ----A---- C:\Windows\system32\FNTCACHE.DAT 2014-07-13 08:57:40 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2014-07-12 18:40:52 ----SD---- C:\Windows\system32\CompatTel 2014-07-10 12:13:47 ----A---- C:\Windows\SYSWOW64\osk.exe 2014-07-10 12:13:47 ----A---- C:\Windows\system32\win32k.sys 2014-07-10 12:13:47 ----A---- C:\Windows\system32\osk.exe 2014-07-10 12:13:44 ----A---- C:\Windows\system32\InkEd.dll 2014-07-10 12:13:37 ----A---- C:\Windows\SYSWOW64\SHCore.dll 2014-07-10 12:13:37 ----A---- C:\Windows\system32\SHCore.dll 2014-07-10 12:13:37 ----A---- C:\Windows\system32\lsm.dll 2014-07-10 12:13:37 ----A---- C:\Windows\system32\lsasrv.dll 2014-07-10 12:13:25 ----A---- C:\Windows\system32\devinv.dll 2014-07-10 12:13:25 ----A---- C:\Windows\system32\aepic.dll 2014-07-10 12:13:25 ----A---- C:\Windows\system32\aepdu.dll 2014-07-10 12:13:25 ----A---- C:\Windows\system32\aeinv.dll 2014-07-10 12:13:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-07-10 12:13:16 ----A---- C:\Windows\system32\mshtml.dll 2014-07-10 12:13:11 ----A---- C:\Windows\system32\jscript9.dll 2014-07-10 12:13:11 ----A---- C:\Windows\system32\ieframe.dll 2014-07-10 12:13:10 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-07-10 12:13:10 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-07-10 12:13:10 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2014-07-10 12:13:10 ----A---- C:\Windows\system32\iertutil.dll 2014-07-10 12:13:10 ----A---- C:\Windows\system32\iedkcs32.dll 2014-07-10 12:13:09 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-07-10 12:13:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-07-10 12:13:09 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-07-10 12:13:09 ----A---- C:\Windows\system32\wininet.dll 2014-07-10 12:13:09 ----A---- C:\Windows\system32\urlmon.dll 2014-07-10 12:13:09 ----A---- C:\Windows\system32\jscript.dll 2014-07-10 12:13:09 ----A---- C:\Windows\system32\dxtmsft.dll 2014-07-10 12:13:08 ----A---- C:\Windows\SYSWOW64\jscript.dll 2014-07-10 12:13:08 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-07-10 12:13:08 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-07-10 12:13:08 ----A---- C:\Windows\system32\uxtheme.dll 2014-07-10 12:13:08 ----A---- C:\Windows\system32\mshtmled.dll 2014-07-10 12:13:08 ----A---- C:\Windows\system32\msfeeds.dll 2014-07-10 12:13:08 ----A---- C:\Windows\system32\dxtrans.dll 2014-07-10 12:13:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2014-07-10 12:13:07 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-07-10 12:13:07 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2014-07-10 12:13:07 ----A---- C:\Windows\system32\iesysprep.dll 2014-07-10 12:13:06 ----A---- C:\Windows\SYSWOW64\UXInit.dll 2014-07-10 12:13:06 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-07-10 12:13:06 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-07-10 12:13:06 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-07-10 12:13:06 ----A---- C:\Windows\system32\UXInit.dll 2014-07-10 12:13:06 ----A---- C:\Windows\system32\msrating.dll 2014-07-10 12:13:06 ----A---- C:\Windows\system32\jsproxy.dll 2014-07-10 12:13:06 ----A---- C:\Windows\system32\iernonce.dll 2014-07-10 12:13:06 ----A---- C:\Windows\system32\ie4uinit.exe 2014-07-10 12:13:05 ----A---- C:\Windows\SYSWOW64\uxtheme.dll 2014-07-10 12:13:05 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-07-10 12:13:05 ----A---- C:\Windows\system32\iesetup.dll 2014-07-10 12:12:58 ----A---- C:\Windows\system32\qedit.dll 2014-07-10 12:12:58 ----A---- C:\Windows\system32\drivers\afd.sys 2014-07-10 12:12:57 ----A---- C:\Windows\SYSWOW64\qedit.dll 2014-07-09 10:55:38 ----A---- C:\Windows\SYSWOW64\ccrpbds6.dll 2014-07-09 10:55:37 ----D---- C:\Program Files (x86)\PIXresizer 2014-07-09 10:11:45 ----D---- C:\Users\VDB219\AppData\Roaming\IrfanView 2014-07-08 18:38:43 ----D---- C:\Program Files (x86)\Secunia 2014-07-07 12:32:51 ----D---- C:\Users\VDB219\AppData\Roaming\Leadertech 2014-07-07 12:32:33 ----A---- C:\Windows\system32\drivers\LNonPnP.sys 2014-07-07 12:32:06 ----D---- C:\ProgramData\Logishrd 2014-07-07 12:31:55 ----D---- C:\Program Files\Common Files\LogiShrd 2014-07-07 12:31:48 ----D---- C:\Users\VDB219\AppData\Roaming\Logitech 2014-07-07 12:31:48 ----D---- C:\Users\VDB219\AppData\Roaming\Logishrd 2014-07-06 15:43:40 ----A---- C:\Windows\SYSWOW64\WSShared.dll 2014-07-06 15:43:40 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-07-06 15:43:40 ----A---- C:\Windows\SYSWOW64\Robocopy.exe 2014-07-06 15:43:40 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2014-07-06 15:43:40 ----A---- C:\Windows\system32\WSShared.dll 2014-07-06 15:43:40 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-07-06 15:43:40 ----A---- C:\Windows\system32\Robocopy.exe 2014-07-06 15:43:40 ----A---- C:\Windows\system32\ntoskrnl.exe 2014-07-06 15:43:40 ----A---- C:\Windows\system32\ntdll.dll 2014-07-06 15:43:40 ----A---- C:\Windows\system32\localspl.dll 2014-07-06 15:43:40 ----A---- C:\Windows\system32\drivers\hdaudbus.sys 2014-07-06 15:11:40 ----A---- C:\Windows\system32\drivers\aswsp.sys 2014-07-06 15:11:22 ----A---- C:\Windows\avastSS.scr 2014-07-06 15:11:05 ----A---- C:\Windows\system32\drivers\aswNdisFlt.sys 2014-07-02 09:17:46 ----D---- C:\ProgramData\Oracle 2014-07-02 09:17:42 ----A---- C:\Windows\SYSWOW64\javaws.exe 2014-07-02 09:17:41 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2014-07-02 09:17:41 ----A---- C:\Windows\SYSWOW64\javaw.exe 2014-07-02 09:17:41 ----A---- C:\Windows\SYSWOW64\java.exe 2014-07-02 09:16:17 ----D---- C:\Windows\Sun 2014-06-25 15:10:49 ----SHD---- C:\Config.Msi 2014-06-25 10:43:28 ----A---- C:\Windows\system32\javaws.exe 2014-06-25 10:43:24 ----A---- C:\Windows\system32\javaw.exe 2014-06-25 10:43:24 ----A---- C:\Windows\system32\java.exe 2014-06-25 10:42:25 ----D---- C:\Program Files\Java 2014-06-24 13:59:06 ----D---- C:\Program Files\CCleaner 2014-06-24 11:12:27 ----D---- C:\ProgramData\Google Updater 2014-06-23 14:51:19 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll 2014-06-23 14:51:19 ----A---- C:\Windows\system32\drivers\TeeDriverx64.sys 2014-06-23 14:50:31 ----A---- C:\Windows\system32\YamahaAE.dll 2014-06-23 14:50:31 ----A---- C:\Windows\system32\WavesGUILib64.dll 2014-06-23 14:50:31 ----A---- C:\Windows\system32\tossaeapo64.dll 2014-06-23 14:50:31 ----A---- C:\Windows\system32\toseaeapo64.dll 2014-06-23 14:50:31 ----A---- C:\Windows\system32\tosasfapo64.dll 2014-06-23 14:50:30 ----A---- C:\Windows\system32\SStudio.dll 2014-06-23 14:50:29 ----A---- C:\Windows\system32\sltech64.dll 2014-06-23 14:50:29 ----A---- C:\Windows\system32\slprp64.dll 2014-06-23 14:50:28 ----A---- C:\Windows\system32\slcnt64.dll 2014-06-23 14:50:27 ----A---- C:\Windows\system32\sl3apo64.dll 2014-06-23 14:50:27 ----A---- C:\Windows\system32\SFSS_APO.dll 2014-06-23 14:50:25 ----A---- C:\Windows\system32\drivers\rtvienna.dat 2014-06-23 14:50:24 ----A---- C:\Windows\system32\RtPgEx64.dll 2014-06-23 14:50:22 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys 2014-06-23 14:50:21 ----A---- C:\Windows\system32\RtkApi64.dll 2014-06-23 14:50:20 ----A---- C:\Windows\system32\RtDataProc64.dll 2014-06-23 14:50:19 ----A---- C:\Windows\system32\RTCOM64.dll 2014-06-23 14:50:19 ----A---- C:\Windows\system32\RltkAPO64.dll 2014-06-23 14:50:19 ----A---- C:\Windows\system32\RCoRes64.dat 2014-06-23 14:50:19 ----A---- C:\Windows\system32\RCoInstII64.dll 2014-06-23 14:50:19 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT 2014-06-23 14:50:18 ----A---- C:\Windows\system32\R4EEP64A.dll 2014-06-23 14:50:18 ----A---- C:\Windows\system32\R4EEL64A.dll 2014-06-23 14:50:18 ----A---- C:\Windows\system32\R4EEG64A.dll 2014-06-23 14:50:18 ----A---- C:\Windows\system32\R4EED64A.dll 2014-06-23 14:50:18 ----A---- C:\Windows\system32\R4EEA64A.dll 2014-06-23 14:50:18 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-06-23 14:50:18 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll 2014-06-23 14:50:18 ----A---- C:\Windows\system32\MISS_APO.dll 2014-06-23 14:50:17 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll 2014-06-23 14:50:17 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll 2014-06-23 14:50:16 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll 2014-06-23 14:50:16 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll 2014-06-23 14:50:16 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll 2014-06-23 14:50:16 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll 2014-06-23 14:50:16 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll 2014-06-23 14:50:16 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll 2014-06-23 14:50:16 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll 2014-06-23 14:50:15 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll 2014-06-23 14:50:15 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll 2014-06-23 14:50:15 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll 2014-06-23 14:50:15 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll 2014-06-23 14:50:15 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll 2014-06-23 14:50:15 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll 2014-06-23 14:50:15 ----A---- C:\Windows\system32\ICEsoundAPO64.dll 2014-06-23 14:50:14 ----A---- C:\Windows\system32\FMAPO64.dll 2014-06-23 14:50:14 ----A---- C:\Windows\system32\DTSU2PREC64.dll 2014-06-23 14:50:14 ----A---- C:\Windows\system32\DTSU2PLFX64.dll 2014-06-23 14:50:14 ----A---- C:\Windows\system32\DTSU2PGFX64.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\DDPP64A.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\DDPO64A.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\DDPD64A.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\DDPA64.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\audioLibVc.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\AERTAC64.dll 2014-06-23 14:50:13 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll 2014-06-23 14:44:32 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll 2014-06-23 14:44:32 ----A---- C:\Windows\system32\nvwgf2umx.dll 2014-06-23 14:44:32 ----A---- C:\Windows\system32\nvumdshimx.dll 2014-06-23 14:44:31 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll 2014-06-23 14:44:31 ----A---- C:\Windows\SYSWOW64\nvopencl.dll 2014-06-23 14:44:31 ----A---- C:\Windows\system32\nvopencl.dll 2014-06-23 14:44:31 ----A---- C:\Windows\system32\nvoglv64.dll 2014-06-23 14:44:30 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll 2014-06-23 14:44:30 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll 2014-06-23 14:44:30 ----A---- C:\Windows\SYSWOW64\nvinit.dll 2014-06-23 14:44:30 ----A---- C:\Windows\SYSWOW64\NvIFR.dll 2014-06-23 14:44:30 ----A---- C:\Windows\SYSWOW64\NvFBC.dll 2014-06-23 14:44:30 ----A---- C:\Windows\system32\nvoglshim64.dll 2014-06-23 14:44:30 ----A---- C:\Windows\system32\nvinitx.dll 2014-06-23 14:44:30 ----A---- C:\Windows\system32\NvIFR64.dll 2014-06-23 14:44:30 ----A---- C:\Windows\system32\NvFBC64.dll 2014-06-23 14:44:30 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys 2014-06-23 14:44:29 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll 2014-06-23 14:44:29 ----A---- C:\Windows\system32\nvdispgenco6433788.dll 2014-06-23 14:44:29 ----A---- C:\Windows\system32\nvdispco6433788.dll 2014-06-23 14:44:29 ----A---- C:\Windows\system32\nvd3dumx.dll 2014-06-23 14:44:28 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll 2014-06-23 14:44:28 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll 2014-06-23 14:44:28 ----A---- C:\Windows\SYSWOW64\nvcuda.dll 2014-06-23 14:44:28 ----A---- C:\Windows\system32\nvcuvid.dll 2014-06-23 14:44:28 ----A---- C:\Windows\system32\nvcuvenc.dll 2014-06-23 14:44:28 ----A---- C:\Windows\system32\nvcuda.dll 2014-06-23 14:44:27 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll 2014-06-23 14:44:26 ----A---- C:\Windows\SYSWOW64\nvapi.dll 2014-06-23 14:44:26 ----A---- C:\Windows\system32\nvcompiler.dll 2014-06-23 14:44:26 ----A---- C:\Windows\system32\nvapi64.dll 2014-06-23 14:25:28 ----D---- C:\Windows\SoftwareDistribution 2014-06-23 10:15:42 ----A---- C:\Windows\SYSWOW64\sqlite3.dll 2014-06-23 10:15:00 ----D---- C:\AdwCleaner 2014-06-23 09:23:23 ----D---- C:\rsit 2014-06-23 09:23:23 ----D---- C:\Program Files\trend micro ======List of files/folders modified in the last 1 month====== 2014-07-22 17:54:56 ----D---- C:\Windows\Temp 2014-07-22 17:54:53 ----D---- C:\Windows\Prefetch 2014-07-22 17:42:55 ----SHD---- C:\Windows\Installer 2014-07-22 17:41:13 ----SHD---- C:\System Volume Information 2014-07-22 17:00:01 ----D---- C:\Windows\system32\sru 2014-07-22 16:40:23 ----D---- C:\Windows\debug 2014-07-22 16:40:23 ----D---- C:\Windows 2014-07-22 15:30:58 ----RD---- C:\Program Files (x86) 2014-07-22 15:26:40 ----D---- C:\Program Files 2014-07-22 15:24:06 ----D---- C:\Program Files (x86)\Common Files 2014-07-22 15:17:48 ----HD---- C:\ProgramData 2014-07-22 15:14:57 ----RD---- C:\Windows\System32 2014-07-22 15:14:57 ----D---- C:\Windows\system32\Drivers 2014-07-22 15:12:44 ----D---- C:\Windows\system32\Tasks 2014-07-22 15:10:01 ----D---- C:\ProgramData\clear.fi 2014-07-22 15:09:36 ----D---- C:\Program Files (x86)\Acer 2014-07-22 15:09:26 ----D---- C:\Users\VDB219\AppData\Roaming\Dropbox 2014-07-22 15:08:58 ----D---- C:\Users\VDB219\AppData\Roaming\Spotify 2014-07-22 15:08:56 ----D---- C:\Windows\system32\catroot2 2014-07-22 15:08:44 ----D---- C:\Users\VDB219\AppData\Roaming\DropboxMaster 2014-07-22 15:07:35 ----D---- C:\Windows\Tasks 2014-07-22 15:07:24 ----D---- C:\Users\VDB219\AppData\Roaming\GoodSync 2014-07-22 12:41:44 ----D---- C:\Users\VDB219\AppData\Roaming\FileZilla 2014-07-22 12:41:31 ----D---- C:\Program Files (x86)\FileZilla FTP Client 2014-07-22 11:43:41 ----D---- C:\Windows\Inf 2014-07-22 11:08:22 ----D---- C:\ProgramData\FreeVideoPlayer 2014-07-22 10:59:22 ----D---- C:\Windows\system32\DriverStore 2014-07-22 09:53:26 ----D---- C:\Windows\SysWOW64 2014-07-22 07:42:33 ----D---- C:\Windows\Microsoft.NET 2014-07-21 18:41:23 ----D---- C:\Windows\rescache 2014-07-21 18:21:42 ----D---- C:\Windows\system32\config 2014-07-21 18:07:23 ----D---- C:\Windows\WinSxS 2014-07-21 18:05:15 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-07-21 18:05:15 ----D---- C:\Windows\system32\nl-NL 2014-07-21 17:55:25 ----D---- C:\Windows\CbsTemp 2014-07-21 17:41:15 ----D---- C:\Windows\system32\wbem 2014-07-21 17:40:21 ----RD---- C:\Users 2014-07-21 17:40:21 ----D---- C:\Windows\system32\CodeIntegrity 2014-07-21 17:40:21 ----D---- C:\Users\VDB219\AppData\Roaming\ProductData 2014-07-21 17:40:17 ----D---- C:\Windows\SYSWOW64\wbem 2014-07-21 17:39:14 ----D---- C:\Windows\system32\Sysprep 2014-07-21 17:37:50 ----D---- C:\Program Files\Common Files 2014-07-21 17:36:20 ----D---- C:\Windows\registration 2014-07-21 17:34:58 ----SD---- C:\Users\VDB219\AppData\Roaming\Microsoft 2014-07-21 17:34:30 ----D---- C:\ProgramData\Ocster Backup 2014-07-21 17:33:33 ----D---- C:\Program Files (x86)\McAfee 2014-07-20 10:15:08 ----D---- C:\derby 2014-07-17 18:07:50 ----A---- C:\IFRToolLog.txt 2014-07-17 08:36:03 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-07-17 07:02:07 ----D---- C:\Windows\AUInstallAgent 2014-07-17 07:00:57 ----HD---- C:\Program Files\WindowsApps 2014-07-15 12:24:10 ----D---- C:\Windows\SYSWOW64\drivers 2014-07-15 12:24:10 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-07-14 09:33:21 ----D---- C:\Windows\system32\catroot 2014-07-12 18:40:47 ----D---- C:\Program Files\Windows Journal 2014-07-12 18:40:45 ----D---- C:\Program Files (x86)\Internet Explorer 2014-07-12 18:40:42 ----D---- C:\Program Files\Internet Explorer 2014-07-10 17:58:23 ----D---- C:\ProgramData\Microsoft Help 2014-07-10 17:58:00 ----D---- C:\Windows\system32\MRT 2014-07-10 17:56:13 ----A---- C:\Windows\system32\MRT.exe 2014-07-09 07:01:35 ----D---- C:\ProgramData\OEM 2014-07-09 07:00:37 ----HD---- C:\OEM 2014-07-08 07:28:31 ----RSD---- C:\Windows\assembly 2014-07-07 14:56:23 ----D---- C:\Windows\Panther 2014-07-07 12:54:40 ----D---- C:\Windows\SYSWOW64\WCN 2014-07-07 12:54:40 ----D---- C:\Windows\SYSWOW64\sysprep 2014-07-07 12:54:40 ----D---- C:\Windows\SYSWOW64\SMI 2014-07-07 12:54:40 ----D---- C:\Windows\SYSWOW64\siscardplugins 2014-07-07 12:54:39 ----D---- C:\Windows\SYSWOW64\LogFiles 2014-07-07 12:54:39 ----D---- C:\Windows\SYSWOW64\drivers\UMDF 2014-07-07 12:54:39 ----D---- C:\Windows\SYSWOW64\catroot 2014-07-07 12:54:39 ----D---- C:\Windows\SYSWOW64\beidpp 2014-07-07 12:54:39 ----D---- C:\Windows\system32\WCN 2014-07-07 12:54:39 ----D---- C:\Windows\system32\spool 2014-07-07 12:54:38 ----D---- C:\Windows\system32\OEM 2014-07-07 12:54:37 ----D---- C:\Windows\system32\NDF 2014-07-07 12:54:36 ----D---- C:\Windows\ShellNew 2014-07-07 12:54:34 ----RSD---- C:\Windows\Fonts 2014-07-07 12:54:34 ----D---- C:\Windows\IME 2014-07-07 12:54:34 ----D---- C:\Windows\Help 2014-07-07 12:54:32 ----D---- C:\Windows\DigitalLocker 2014-07-07 12:54:31 ----SD---- C:\ProgramData\Microsoft 2014-07-07 12:54:31 ----D---- C:\ProgramData\regid.1991-06.com.microsoft 2014-07-07 12:54:31 ----D---- C:\ProgramData\regid.1986-12.com.adobe 2014-07-07 12:54:31 ----D---- C:\ProgramData\PRICache 2014-07-07 12:54:31 ----D---- C:\ProgramData\NVIDIA Corporation 2014-07-07 12:54:31 ----D---- C:\ProgramData\NVIDIA 2014-07-07 12:54:30 ----SHD---- C:\Program Files (x86)\Windows Sidebar 2014-07-07 12:54:30 ----D---- C:\Program Files (x86)\Windows Media Player 2014-07-07 12:54:30 ----D---- C:\Program Files (x86)\NVIDIA Corporation 2014-07-07 12:54:30 ----D---- C:\Program Files (x86)\MSBuild 2014-07-07 12:54:30 ----D---- C:\Program Files (x86)\Microsoft.NET 2014-07-07 12:54:29 ----SHD---- C:\Program Files\Windows Sidebar 2014-07-07 12:54:29 ----D---- C:\Windows\system32\Recovery 2014-07-07 12:54:29 ----D---- C:\Program Files\Windows Media Player 2014-07-07 12:54:29 ----D---- C:\Program Files\NVIDIA Corporation 2014-07-07 12:54:29 ----D---- C:\Program Files\Common Files\microsoft shared 2014-07-07 12:36:25 ----SHD---- C:\Recovery 2014-07-07 12:16:22 ----HD---- C:\$Windows.~BT 2014-07-07 07:46:55 ----D---- C:\ProgramData\ProductData 2014-07-06 22:30:11 ----D---- C:\Windows\WinStore 2014-07-06 15:11:23 ----A---- C:\Windows\system32\aswBoot.exe 2014-07-02 09:17:38 ----D---- C:\Program Files (x86)\Java 2014-06-26 18:11:27 ----D---- C:\Program Files (x86)\IObit 2014-06-24 11:12:27 ----D---- C:\Program Files (x86)\Google 2014-06-23 14:53:17 ----D---- C:\ProgramData\Norton 2014-06-23 14:51:01 ----D---- C:\Windows\SYSWOW64\RTCOM 2014-06-23 14:45:15 ----D---- C:\ProgramData\NortonInstaller ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswNdisFlt;@oem26.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2014-07-06 448400] R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-07-06 65776] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-07-06 224896] R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2014-04-03 784760] R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2014-04-03 346760] R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2014-03-30 52856] R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-07-06 28184] R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-07-06 93568] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-07-06 1041168] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-07-06 427360] R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-07-06 29208] R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-07-06 79184] R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-07-06 92008] R3 AmUStor;@oem6.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2012-11-10 104280] R3 AthBTPort;@oem25.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2013-05-31 89800] R3 BTATH_A2DP;@oem24.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2013-05-31 347336] R3 btath_avdt;@oem24.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2013-05-31 115912] R3 BTATH_BUS;@oem21.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2013-05-31 34384] R3 BTATH_HCRP;@oem27.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2013-05-31 179432] R3 BTATH_LWFLT;@oem29.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2013-05-31 77464] R3 BTATH_RCP;@oem31.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2013-05-31 136784] R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-05-31 586952] R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2013-04-21 51712] R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752] R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808] R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2013-04-21 74752] R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2014-04-03 70592] R3 e1dexpress;@oem8.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d63x64.sys [2013-04-23 468240] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-06-23 3962840] R3 LHidFilt;@oem57.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2014-03-19 76568] R3 LMouFilt;@oem57.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2014-03-19 59160] R3 LUsbFilt;@oem53.inf,%FltDisplayName%;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2014-03-19 40728] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-05-12 25816] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-07-22 122584] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-05-12 64216] R3 MEIx64;@oem46.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-06-23 99800] R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2014-04-03 177544] R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2014-04-03 311856] R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2014-04-03 522360] R3 mfencbdc;McAfee Inc. mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [2014-03-18 441264] R3 NVHDA;@oem37.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408] R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-06-23 12688328] R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-05-30 20256] R3 nvvad_WaveExtensible;@oem40.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-03-31 40392] R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672] S0 mfeelamk;McAfee Inc. mfeelamk; C:\Windows\system32\drivers\mfeelamk.sys [2014-04-03 69352] S3 athr;@oem20.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athw8x.sys [2013-05-17 3847168] S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040] S3 cxbu0x64;@oem34.inf,%VID1PID1ReaderDescription%;OMNIKEY 3x21; C:\Windows\system32\DRIVERS\cxbu0x64.sys [2014-04-05 147576] S3 dg_ssudbus;@oem59.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800] S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2013-09-23 197704] S3 mfencrk;McAfee Inc. mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [2014-03-18 96592] S3 ssudmdm;@oem60.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080] S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-06 121984] S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\Windows\System32\drivers\usbscan.sys [2013-07-02 43008] S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-06 210560] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ABVisieFirebird2;ABVisie Firebird 2 server; C:\Program Files (x86)\ABVisie\Firebird2\bin\fbserver.exe [2006-10-31 1990656] R2 ABVLicenseServerService;ABVisie License Server; C:\Program Files (x86)\ABVisie\LicenseServer\bin\ABVLicenseServer.exe [2011-09-05 998912] R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 169312] R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [2013-12-09 881440] R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-05-31 310912] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-28 50344] R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-04-28 109048] R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-04-11 1390720] R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-04-11 1764992] R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2014-06-26 3053312] R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904] R2 GsRunner;GoodSync Runner; C:\Program Files\Siber Systems\GoodSync\GoodSync.exe [2014-06-13 13669520] R2 GsServer;GoodSync Server; C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe [2014-06-13 8984720] R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2010-04-07 127800] R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648] R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-03-12 131544] R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2013-01-04 183200] R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432] R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-05-11 200728] R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 178528] R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-03-18 1041192] R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-04-03 219752] R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2014-04-03 189912] R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432] R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-05-30 1631008] R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-05-30 21055432] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-05-20 927520] R2 ocster_backup;Ocster Backup; c:\Program Files\Ocster Backup\bin\backupService-ox.exe [2014-02-04 23896] R2 StartMenuService;StartMenu8 Service; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [2014-06-06 72992] R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-01-18 660040] R3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2013-08-02 602944] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-30 116648] S2 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-06-24 194104] S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-05-02 2153792] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-03-30 651720] S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616] S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-05-05 203344] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-30 116648] S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184] S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368] S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2014-03-25 357144] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] -----------------EOF-----------------