Logfile of random's system information tool 1.10 (written by random/random) Run by Evert at 2015-01-05 09:26:34 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 28 GB (37%) free of 76 GB Total RAM: 2924 MB (55% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:26:36, on 5-1-2015 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17496) Boot mode: Normal Running processes: C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe C:\Windows\SysWOW64\ACEngSvr.exe C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\AsScrPro.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Philips\CamSuite\2.0.15.0\ACPGUI.dll C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files\trend micro\Evert.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8888;https=127.0.0.1:8888 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>;*.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe" O4 - HKLM\..\Run: [UpdatePSTShortCut] "C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Cyberlink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk" O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_0AC2BADE753A66EA3352F77DE1CC6384] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user') O4 - Global Startup: FancyStart daemon.lnk = ? O4 - Global Startup: SRS Premium Sound.lnk = ? O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O23 - Service: ACPService - Unknown owner - C:\Program Files (x86)\Philips\CamSuite\2.0.15.0\ACPService.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing) O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: Import Service (Cashflow) (BankingTools_Import_Service) - Unknown owner - C:\Program Files (x86)\BankingTools\Cashflow 4\importService\CwmImportService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 12111 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS "C:\Program Files\Microsoft Security Client\MsMpEng.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService winlogon.exe "C:\Windows\system32\FBAgent.exe" "C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe" "C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe" C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "taskhost.exe" taskeng.exe {4326D540-94CF-4F74-8555-5AA2FB5283A0} "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files (x86)\ASUS\Splendid\ACMON.exe" taskeng.exe {44CDDA59-8412-4157-B068-788845A5EAEF} "C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" "C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe" "C:\Program Files\P4G\BatteryLife.exe" "C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe" "C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe" "C:\Program Files\Elantech\ETDCtrl.exe" "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey "C:\Windows\System32\igfxtray.exe" "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" "C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe" "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe" "C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" "C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" "C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe" C:\Windows\SysWOW64\ACEngSvr.exe -Embedding "C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2276.0.1797810940\743628058" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2993 --ignored=" --type=renderer " /prefetch:822062411 "C:\Windows\AsScrPro.exe" "C:\Program Files (x86)\Philips\CamSuite\2.0.15.0\ACPService.exe" "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files (x86)\BankingTools\Cashflow 4\importService\CwmImportService.exe" -displayname "Import Service (Cashflow)" -servicename "BankingTools_Import_Service" "C:\Program Files\Bonjour\mDNSResponder.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_53/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="2276.1.116965256\229257653" /prefetch:673131151 "C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip /h "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_53/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="2276.2.1755445782\294200480" /prefetch:673131151 C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe ATKOSD.exe WDC.exe "C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Microsoft Security Client\NisSrv.exe" C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe" "C:\Program Files\Elantech\ETDCtrlHelper.exe" "C:\Program Files (x86)\Philips\CamSuite\2.0.15.0\ACPGUI.dll" /manual "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_53/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="2276.10.174367884\1296144131" /prefetch:673131151 "C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt C:\Windows\system32\igfxsrvc.exe -Embedding "C:\Users\Evert\Desktop\RSITx64.exe" ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll [2014-01-24 209504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}] Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-11-20 357376] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24 176736] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}] Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Aanmelden - Help - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}] Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-11-22 323752] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24 6126680] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24 4438104] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-06-10 649608] "SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2009-11-19 307768] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-01-02 168944] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-01-02 394224] "Persistence"=C:\Windows\system32\igfxpers.exe [2015-01-02 418800] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_0AC2BADE753A66EA3352F77DE1CC6384"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-12-06 856904] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe [2009-06-24 272952] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe [2010-11-17 3054136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2012-04-03 1273448] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe [2014-10-29 6501656] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2012-03-26 449168] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-10-15 157480] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2014-06-05 248176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^VPro620.lnk] C:\Windows\VPro620.exe [2007-06-18 61440] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "RemoteControl9"=C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [2009-07-06 87336] "UpdatePSTShortCut"=C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [2010-06-25 210216] "UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504] "UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504] "Boingo Wi-Fi"=C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-11-17 2429] "ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-05-03 170624] "HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016] "Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-08-12 1597440] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2015-01-02 390144] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "aux4"=wdmaud.drv "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "aux5"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2015-01-05 09:23:33 ----D---- C:\rsit 2015-01-05 09:23:33 ----D---- C:\Program Files\trend micro 2015-01-04 22:20:58 ----A---- C:\Windows\system32\drivers\503220C0.sys 2015-01-04 22:19:47 ----A---- C:\Windows\ntbtlog.txt 2015-01-04 10:53:52 ----D---- C:\Windows\pss 2015-01-02 15:15:55 ----A---- C:\Windows\SYSWOW64\drivers\HWiNFO64A.SYS 2015-01-02 15:03:11 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll 2015-01-02 15:03:11 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll 2015-01-02 15:03:11 ----A---- C:\Windows\system32\XAudio2_7.dll 2015-01-02 15:03:11 ----A---- C:\Windows\system32\XAPOFX1_5.dll 2015-01-02 15:03:10 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll 2015-01-02 15:03:10 ----A---- C:\Windows\system32\xactengine3_7.dll 2015-01-02 15:03:09 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll 2015-01-02 15:03:09 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll 2015-01-02 15:03:09 ----A---- C:\Windows\system32\d3dcsx_43.dll 2015-01-02 15:03:09 ----A---- C:\Windows\system32\D3DCompiler_43.dll 2015-01-02 15:03:08 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll 2015-01-02 15:03:08 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll 2015-01-02 15:03:08 ----A---- C:\Windows\system32\d3dx11_43.dll 2015-01-02 15:03:08 ----A---- C:\Windows\system32\d3dx10_43.dll 2015-01-02 15:03:07 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll 2015-01-02 15:03:07 ----A---- C:\Windows\system32\D3DX9_43.dll 2015-01-02 15:03:06 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll 2015-01-02 15:03:06 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll 2015-01-02 15:03:06 ----A---- C:\Windows\system32\XAudio2_6.dll 2015-01-02 15:03:06 ----A---- C:\Windows\system32\XAPOFX1_4.dll 2015-01-02 15:03:05 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll 2015-01-02 15:03:05 ----A---- C:\Windows\system32\xactengine3_6.dll 2015-01-02 15:03:04 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll 2015-01-02 15:03:04 ----A---- C:\Windows\system32\X3DAudio1_7.dll 2015-01-02 15:03:03 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll 2015-01-02 15:03:03 ----A---- C:\Windows\system32\XAudio2_5.dll 2015-01-02 15:03:02 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll 2015-01-02 15:03:02 ----A---- C:\Windows\system32\xactengine3_5.dll 2015-01-02 15:03:01 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll 2015-01-02 15:03:01 ----A---- C:\Windows\system32\D3DCompiler_42.dll 2015-01-02 15:03:00 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll 2015-01-02 15:03:00 ----A---- C:\Windows\system32\d3dcsx_42.dll 2015-01-02 15:02:59 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll 2015-01-02 15:02:59 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll 2015-01-02 15:02:59 ----A---- C:\Windows\system32\d3dx11_42.dll 2015-01-02 15:02:59 ----A---- C:\Windows\system32\d3dx10_42.dll 2015-01-02 15:02:58 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll 2015-01-02 15:02:58 ----A---- C:\Windows\system32\D3DX9_42.dll 2015-01-02 15:02:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll 2015-01-02 15:02:57 ----A---- C:\Windows\system32\D3DCompiler_41.dll 2015-01-02 15:02:56 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll 2015-01-02 15:02:56 ----A---- C:\Windows\system32\d3dx10_41.dll 2015-01-02 15:02:55 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll 2015-01-02 15:02:55 ----A---- C:\Windows\system32\D3DX9_41.dll 2015-01-02 15:02:54 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll 2015-01-02 15:02:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll 2015-01-02 15:02:54 ----A---- C:\Windows\system32\XAudio2_4.dll 2015-01-02 15:02:54 ----A---- C:\Windows\system32\XAPOFX1_3.dll 2015-01-02 15:02:53 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll 2015-01-02 15:02:53 ----A---- C:\Windows\system32\xactengine3_4.dll 2015-01-02 15:02:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll 2015-01-02 15:02:52 ----A---- C:\Windows\system32\X3DAudio1_6.dll 2015-01-02 15:02:51 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll 2015-01-02 15:02:51 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll 2015-01-02 15:02:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll 2015-01-02 15:02:51 ----A---- C:\Windows\system32\D3DX9_40.dll 2015-01-02 15:02:51 ----A---- C:\Windows\system32\d3dx10_40.dll 2015-01-02 15:02:51 ----A---- C:\Windows\system32\D3DCompiler_40.dll 2015-01-02 15:02:50 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll 2015-01-02 15:02:50 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll 2015-01-02 15:02:50 ----A---- C:\Windows\system32\XAudio2_3.dll 2015-01-02 15:02:50 ----A---- C:\Windows\system32\XAPOFX1_2.dll 2015-01-02 15:02:49 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll 2015-01-02 15:02:49 ----A---- C:\Windows\system32\xactengine3_3.dll 2015-01-02 15:02:48 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll 2015-01-02 15:02:48 ----A---- C:\Windows\system32\X3DAudio1_5.dll 2015-01-02 15:02:47 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll 2015-01-02 15:02:47 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll 2015-01-02 15:02:47 ----A---- C:\Windows\system32\XAudio2_2.dll 2015-01-02 15:02:47 ----A---- C:\Windows\system32\XAPOFX1_1.dll 2015-01-02 15:02:46 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll 2015-01-02 15:02:46 ----A---- C:\Windows\system32\xactengine3_2.dll 2015-01-02 15:02:45 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll 2015-01-02 15:02:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll 2015-01-02 15:02:45 ----A---- C:\Windows\system32\d3dx10_39.dll 2015-01-02 15:02:45 ----A---- C:\Windows\system32\D3DCompiler_39.dll 2015-01-02 15:02:44 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll 2015-01-02 15:02:44 ----A---- C:\Windows\system32\D3DX9_39.dll 2015-01-02 15:02:43 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll 2015-01-02 15:02:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll 2015-01-02 15:02:43 ----A---- C:\Windows\system32\XAudio2_1.dll 2015-01-02 15:02:43 ----A---- C:\Windows\system32\XAPOFX1_0.dll 2015-01-02 15:02:42 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll 2015-01-02 15:02:42 ----A---- C:\Windows\system32\xactengine3_1.dll 2015-01-02 15:02:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll 2015-01-02 15:02:41 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll 2015-01-02 15:02:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll 2015-01-02 15:02:41 ----A---- C:\Windows\system32\X3DAudio1_4.dll 2015-01-02 15:02:41 ----A---- C:\Windows\system32\d3dx10_38.dll 2015-01-02 15:02:41 ----A---- C:\Windows\system32\D3DCompiler_38.dll 2015-01-02 15:02:40 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll 2015-01-02 15:02:40 ----A---- C:\Windows\system32\D3DX9_38.dll 2015-01-02 15:02:39 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll 2015-01-02 15:02:39 ----A---- C:\Windows\system32\XAudio2_0.dll 2015-01-02 15:02:38 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll 2015-01-02 15:02:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll 2015-01-02 15:02:38 ----A---- C:\Windows\system32\xactengine3_0.dll 2015-01-02 15:02:38 ----A---- C:\Windows\system32\X3DAudio1_3.dll 2015-01-02 15:02:37 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll 2015-01-02 15:02:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll 2015-01-02 15:02:37 ----A---- C:\Windows\system32\d3dx10_37.dll 2015-01-02 15:02:37 ----A---- C:\Windows\system32\D3DCompiler_37.dll 2015-01-02 15:02:35 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll 2015-01-02 15:02:35 ----A---- C:\Windows\system32\D3DX9_37.dll 2015-01-02 15:02:34 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll 2015-01-02 15:02:34 ----A---- C:\Windows\system32\xactengine2_10.dll 2015-01-02 15:02:33 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll 2015-01-02 15:02:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll 2015-01-02 15:02:33 ----A---- C:\Windows\system32\d3dx10_36.dll 2015-01-02 15:02:33 ----A---- C:\Windows\system32\D3DCompiler_36.dll 2015-01-02 15:02:32 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll 2015-01-02 15:02:32 ----A---- C:\Windows\system32\d3dx9_36.dll 2015-01-02 15:02:31 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll 2015-01-02 15:02:31 ----A---- C:\Windows\system32\xactengine2_9.dll 2015-01-02 15:02:30 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll 2015-01-02 15:02:30 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll 2015-01-02 15:02:30 ----A---- C:\Windows\system32\d3dx10_35.dll 2015-01-02 15:02:30 ----A---- C:\Windows\system32\D3DCompiler_35.dll 2015-01-02 15:02:29 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll 2015-01-02 15:02:29 ----A---- C:\Windows\system32\d3dx9_35.dll 2015-01-02 15:02:28 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll 2015-01-02 15:02:28 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll 2015-01-02 15:02:28 ----A---- C:\Windows\system32\xactengine2_8.dll 2015-01-02 15:02:28 ----A---- C:\Windows\system32\X3DAudio1_2.dll 2015-01-02 15:02:27 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll 2015-01-02 15:02:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll 2015-01-02 15:02:27 ----A---- C:\Windows\system32\d3dx10_34.dll 2015-01-02 15:02:27 ----A---- C:\Windows\system32\D3DCompiler_34.dll 2015-01-02 15:02:26 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll 2015-01-02 15:02:26 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll 2015-01-02 15:02:26 ----A---- C:\Windows\system32\xinput1_3.dll 2015-01-02 15:02:26 ----A---- C:\Windows\system32\d3dx9_34.dll 2015-01-02 15:02:24 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll 2015-01-02 15:02:24 ----A---- C:\Windows\system32\xactengine2_7.dll 2015-01-02 15:02:23 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll 2015-01-02 15:02:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll 2015-01-02 15:02:23 ----A---- C:\Windows\system32\d3dx10_33.dll 2015-01-02 15:02:23 ----A---- C:\Windows\system32\D3DCompiler_33.dll 2015-01-02 15:02:22 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll 2015-01-02 15:02:22 ----A---- C:\Windows\system32\d3dx9_33.dll 2015-01-02 15:02:21 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll 2015-01-02 15:02:21 ----A---- C:\Windows\system32\xactengine2_6.dll 2015-01-02 15:02:20 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll 2015-01-02 15:02:20 ----A---- C:\Windows\system32\xactengine2_5.dll 2015-01-02 15:02:19 ----A---- C:\Windows\SYSWOW64\d3dx10.dll 2015-01-02 15:02:19 ----A---- C:\Windows\system32\d3dx10.dll 2015-01-02 15:02:17 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll 2015-01-02 15:02:17 ----A---- C:\Windows\system32\d3dx9_32.dll 2015-01-02 15:02:16 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll 2015-01-02 15:02:16 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll 2015-01-02 15:02:16 ----A---- C:\Windows\system32\xactengine2_4.dll 2015-01-02 15:02:16 ----A---- C:\Windows\system32\x3daudio1_1.dll 2015-01-02 15:02:15 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll 2015-01-02 15:02:15 ----A---- C:\Windows\system32\d3dx9_31.dll 2015-01-02 15:02:14 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll 2015-01-02 15:02:14 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll 2015-01-02 15:02:14 ----A---- C:\Windows\system32\xinput1_2.dll 2015-01-02 15:02:14 ----A---- C:\Windows\system32\xactengine2_3.dll 2015-01-02 15:02:13 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll 2015-01-02 15:02:13 ----A---- C:\Windows\system32\xactengine2_2.dll 2015-01-02 15:02:12 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll 2015-01-02 15:02:12 ----A---- C:\Windows\system32\xinput1_1.dll 2015-01-02 15:02:11 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll 2015-01-02 15:02:11 ----A---- C:\Windows\system32\xactengine2_1.dll 2015-01-02 15:02:03 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll 2015-01-02 15:02:03 ----A---- C:\Windows\system32\d3dx9_30.dll 2015-01-02 15:02:02 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll 2015-01-02 15:02:02 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll 2015-01-02 15:02:02 ----A---- C:\Windows\system32\xactengine2_0.dll 2015-01-02 15:02:02 ----A---- C:\Windows\system32\x3daudio1_0.dll 2015-01-02 15:02:01 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll 2015-01-02 15:02:01 ----A---- C:\Windows\system32\d3dx9_29.dll 2015-01-02 15:02:00 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll 2015-01-02 15:02:00 ----A---- C:\Windows\system32\d3dx9_28.dll 2015-01-02 15:01:59 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll 2015-01-02 15:01:59 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll 2015-01-02 15:01:59 ----A---- C:\Windows\system32\d3dx9_27.dll 2015-01-02 15:01:59 ----A---- C:\Windows\system32\d3dx9_26.dll 2015-01-02 15:01:58 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll 2015-01-02 15:01:58 ----A---- C:\Windows\system32\d3dx9_25.dll 2015-01-02 15:01:57 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll 2015-01-02 15:01:57 ----A---- C:\Windows\system32\d3dx9_24.dll 2015-01-02 14:59:14 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2015-01-02 14:59:02 ----D---- C:\Windows\system32\Macromed 2015-01-02 14:54:47 ----A---- C:\Windows\system32\IntcDAuC.dll 2015-01-02 14:54:47 ----A---- C:\Windows\system32\drivers\IntcDAud.sys 2015-01-02 14:53:17 ----A---- C:\Windows\system32\drivers\JME.sys 2015-01-02 14:51:18 ----A---- C:\Windows\SYSWOW64\jmcricon.dll 2015-01-02 14:51:18 ----A---- C:\Windows\system32\jmcricon.dll 2015-01-02 14:51:18 ----A---- C:\Windows\system32\drivers\jmcr.sys 2015-01-02 14:47:16 ----A---- C:\Windows\system32\igfxCoIn_v2993.dll 2015-01-02 14:47:15 ----A---- C:\Windows\system32\igfxtray.exe 2015-01-02 14:47:15 ----A---- C:\Windows\system32\igfxTMM.dll 2015-01-02 14:47:15 ----A---- C:\Windows\system32\igfxsrvc.exe 2015-01-02 14:47:13 ----A---- C:\Windows\system32\igfxpph.dll 2015-01-02 14:47:13 ----A---- C:\Windows\system32\igfxpers.exe 2015-01-02 14:47:12 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll 2015-01-02 14:47:12 ----A---- C:\Windows\SYSWOW64\igfxdv32.dll 2015-01-02 14:47:12 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll 2015-01-02 14:47:12 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll 2015-01-02 14:47:12 ----A---- C:\Windows\system32\igfxext.exe 2015-01-02 14:47:12 ----A---- C:\Windows\system32\igfxexps.dll 2015-01-02 14:47:12 ----A---- C:\Windows\system32\igfxdo.dll 2015-01-02 14:47:12 ----A---- C:\Windows\system32\IGFXDEVLib.dll 2015-01-02 14:47:12 ----A---- C:\Windows\system32\igfxdev.dll 2015-01-02 14:47:12 ----A---- C:\Windows\system32\igfxcmrt64.dll 2015-01-02 14:47:12 ----A---- C:\Windows\system32\igfxcmjit64.dll 2015-01-02 14:47:11 ----A---- C:\Windows\system32\igdumd64.dll 2015-01-02 14:47:11 ----A---- C:\Windows\system32\drivers\igdkmd64.sys 2015-01-02 14:47:10 ----A---- C:\Windows\SYSWOW64\igd10umd32.dll 2015-01-02 14:47:09 ----A---- C:\Windows\SYSWOW64\ig4icd32.dll 2015-01-02 14:47:09 ----A---- C:\Windows\system32\ig4icd64.dll 2015-01-02 14:47:07 ----A---- C:\Windows\system32\hkcmd.exe 2015-01-02 14:47:07 ----A---- C:\Windows\system32\GfxUI.exe 2015-01-02 14:47:07 ----A---- C:\Windows\system32\gfxSrvc.dll 2015-01-02 14:47:07 ----A---- C:\Windows\system32\difx64.exe 2015-01-02 14:44:59 ----D---- C:\Program Files\Synaptics 2015-01-02 14:44:56 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll 2015-01-02 14:44:52 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys 2015-01-02 14:25:53 ----D---- C:\ProgramData\ProductData 2015-01-02 14:25:45 ----D---- C:\Users\Evert\AppData\Roaming\IObit 2015-01-02 14:25:45 ----D---- C:\ProgramData\IObit 2015-01-02 14:25:34 ----D---- C:\Program Files (x86)\IObit 2015-01-02 14:16:23 ----D---- C:\Program Files (x86)\CrystalDiskInfo 2014-12-31 11:34:59 ----D---- C:\Users\Evert\AppData\Roaming\MusE 2014-12-31 11:34:39 ----D---- C:\Program Files (x86)\MuseScore 2014-12-23 09:41:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2014-12-23 09:41:22 ----A---- C:\Windows\system32\ieUnatt.exe 2014-12-20 12:32:38 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2014-12-20 12:32:38 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-12-20 12:32:38 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2014-12-20 12:32:38 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-12-20 12:32:38 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-12-20 12:32:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-12-20 12:32:37 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2014-12-20 12:32:37 ----A---- C:\Windows\system32\iernonce.dll 2014-12-20 12:32:37 ----A---- C:\Windows\system32\ie4uinit.exe 2014-12-20 12:32:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-12-20 12:32:36 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-12-20 12:32:36 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2014-12-20 12:32:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-12-20 12:32:36 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-12-20 12:32:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-12-20 12:32:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-12-20 12:32:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2014-12-20 12:32:34 ----A---- C:\Windows\system32\urlmon.dll 2014-12-20 12:32:34 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-12-20 12:32:34 ----A---- C:\Windows\system32\iedkcs32.dll 2014-12-20 12:32:33 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-12-20 12:32:33 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2014-12-20 12:32:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-12-20 12:32:32 ----A---- C:\Windows\SYSWOW64\ieui.dll 2014-12-20 12:32:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-12-20 12:32:32 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-12-20 12:32:32 ----A---- C:\Windows\system32\msfeeds.dll 2014-12-20 12:32:32 ----A---- C:\Windows\system32\dxtrans.dll 2014-12-20 12:32:31 ----A---- C:\Windows\system32\iesetup.dll 2014-12-20 12:32:31 ----A---- C:\Windows\system32\ieapfltr.dll 2014-12-20 12:32:30 ----A---- C:\Windows\system32\iertutil.dll 2014-12-20 12:32:29 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-12-20 12:32:29 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2014-12-20 12:32:29 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2014-12-20 12:32:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-12-20 12:32:28 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-12-20 12:32:28 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2014-12-20 12:32:28 ----A---- C:\Windows\system32\jsproxy.dll 2014-12-20 12:32:27 ----A---- C:\Windows\system32\dxtmsft.dll 2014-12-20 12:32:26 ----A---- C:\Windows\system32\ieui.dll 2014-12-20 12:32:24 ----A---- C:\Windows\system32\mshtmled.dll 2014-12-20 12:32:24 ----A---- C:\Windows\system32\ieframe.dll 2014-12-20 12:32:23 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-12-20 12:32:23 ----A---- C:\Windows\system32\jscript9diag.dll 2014-12-20 12:32:23 ----A---- C:\Windows\system32\jscript9.dll 2014-12-20 12:32:22 ----A---- C:\Windows\system32\wininet.dll 2014-12-20 12:32:22 ----A---- C:\Windows\system32\vbscript.dll 2014-12-20 12:32:21 ----A---- C:\Windows\system32\msrating.dll 2014-12-20 12:32:21 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-12-20 12:32:19 ----A---- C:\Windows\system32\mshtml.dll 2014-12-20 12:16:47 ----A---- C:\Windows\SYSWOW64\mferror.dll 2014-12-20 12:16:47 ----A---- C:\Windows\system32\mferror.dll 2014-12-20 12:16:46 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe 2014-12-20 12:16:46 ----A---- C:\Windows\SYSWOW64\mfps.dll 2014-12-20 12:16:46 ----A---- C:\Windows\SYSWOW64\mfpmp.exe 2014-12-20 12:16:46 ----A---- C:\Windows\SYSWOW64\mf.dll 2014-12-20 12:16:46 ----A---- C:\Windows\system32\rrinstaller.exe 2014-12-20 12:16:46 ----A---- C:\Windows\system32\mfps.dll 2014-12-20 12:16:46 ----A---- C:\Windows\system32\mfpmp.exe 2014-12-20 12:16:45 ----A---- C:\Windows\system32\mf.dll 2014-12-20 12:15:30 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2014-12-20 12:15:30 ----A---- C:\Windows\system32\WindowsCodecs.dll 2014-12-20 12:15:29 ----A---- C:\Windows\SYSWOW64\charmap.exe 2014-12-20 12:15:29 ----A---- C:\Windows\system32\drivers\tdx.sys 2014-12-20 12:15:29 ----A---- C:\Windows\system32\charmap.exe 2014-12-20 12:15:11 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll 2014-12-20 12:15:11 ----A---- C:\Windows\system32\WsmWmiPl.dll 2014-12-20 12:15:11 ----A---- C:\Windows\system32\WsmSvc.dll 2014-12-20 12:15:11 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll 2014-12-20 12:15:11 ----A---- C:\Windows\system32\WSManHTTPConfig.exe 2014-12-20 12:15:10 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll 2014-12-20 12:15:10 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll 2014-12-20 12:15:10 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe 2014-12-20 12:15:10 ----A---- C:\Windows\system32\WsmAuto.dll 2014-12-20 12:15:09 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll 2014-12-20 12:15:07 ----A---- C:\Windows\SYSWOW64\tzres.dll 2014-12-20 12:15:07 ----A---- C:\Windows\system32\tzres.dll 2014-12-09 13:31:14 ----D---- C:\ProgramData\BankingTools 2014-12-09 13:31:14 ----D---- C:\Program Files (x86)\BankingTools ======List of files/folders modified in the last 1 month====== 2015-01-05 09:25:10 ----D---- C:\Windows\Prefetch 2015-01-05 09:24:48 ----D---- C:\Windows\system32\config 2015-01-05 09:23:33 ----RD---- C:\Program Files 2015-01-05 09:20:57 ----D---- C:\Windows\Temp 2015-01-05 00:17:30 ----D---- C:\Windows\system32\Tasks 2015-01-05 00:17:21 ----A---- C:\Windows\SYSWOW64\log.txt 2015-01-04 22:20:58 ----D---- C:\Windows\system32\drivers 2015-01-04 22:19:47 ----D---- C:\Windows 2015-01-04 10:44:02 ----D---- C:\Windows\inf 2015-01-03 23:35:39 ----D---- C:\Windows\Logs 2015-01-03 23:28:30 ----D---- C:\Windows\Tasks 2015-01-03 11:16:49 ----D---- C:\Windows\System32 2015-01-03 11:16:49 ----A---- C:\Windows\system32\PerfStringBackup.INI 2015-01-02 20:13:50 ----HD---- C:\ProgramData 2015-01-02 15:28:42 ----SHD---- C:\Windows\Installer 2015-01-02 15:28:42 ----DC---- C:\Windows\system32\DRVSTORE 2015-01-02 15:27:49 ----RSD---- C:\Windows\assembly 2015-01-02 15:27:49 ----D---- C:\Windows\Microsoft.NET 2015-01-02 15:24:15 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin 2015-01-02 15:23:54 ----D---- C:\Windows\system32\catroot 2015-01-02 15:15:55 ----D---- C:\Windows\SYSWOW64\drivers 2015-01-02 15:10:58 ----A---- C:\Windows\system32\ServiceFilter.ini 2015-01-02 15:10:39 ----A---- C:\Windows\system32\AutoRunFilter.ini 2015-01-02 15:08:48 ----D---- C:\Windows\SysWOW64 2015-01-02 15:01:34 ----SHD---- C:\System Volume Information 2015-01-02 14:57:16 ----D---- C:\Users\Evert\AppData\Roaming\Adobe 2015-01-02 14:57:15 ----D---- C:\Program Files (x86)\Adobe 2015-01-02 14:55:05 ----D---- C:\Windows\system32\DriverStore 2015-01-02 14:51:46 ----D---- C:\Windows\system32\catroot2 2015-01-02 14:47:15 ----A---- C:\Windows\system32\igfxsrvc.dll 2015-01-02 14:47:14 ----A---- C:\Windows\system32\igfxress.dll 2015-01-02 14:47:12 ----A---- C:\Windows\SYSWOW64\igdumdx32.dll 2015-01-02 14:47:11 ----A---- C:\Windows\SYSWOW64\igdumd32.dll 2015-01-02 14:47:11 ----A---- C:\Windows\system32\igd10umd64.dll 2015-01-02 14:47:07 ----A---- C:\Windows\system32\hccutils.dll 2015-01-02 14:25:34 ----RD---- C:\Program Files (x86) 2014-12-23 09:42:34 ----D---- C:\Windows\winsxs 2014-12-22 10:57:32 ----D---- C:\Windows\system32\NDF 2014-12-21 11:39:35 ----D---- C:\Windows\rescache 2014-12-20 13:13:41 ----D---- C:\Windows\debug 2014-12-20 12:49:15 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-12-20 12:42:50 ----D---- C:\Program Files (x86)\Internet Explorer 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\zh-TW 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\pt-PT 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\it-IT 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\he-IL 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\fr-FR 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\es-ES 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\en-US 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\el-GR 2014-12-20 12:42:49 ----D---- C:\Windows\SYSWOW64\de-DE 2014-12-20 12:42:49 ----D---- C:\Program Files\Internet Explorer 2014-12-20 12:42:48 ----D---- C:\Windows\system32\zh-TW 2014-12-20 12:42:48 ----D---- C:\Windows\system32\pt-PT 2014-12-20 12:42:48 ----D---- C:\Windows\system32\nl-NL 2014-12-20 12:42:48 ----D---- C:\Windows\system32\it-IT 2014-12-20 12:42:48 ----D---- C:\Windows\system32\he-IL 2014-12-20 12:42:48 ----D---- C:\Windows\system32\fr-FR 2014-12-20 12:42:48 ----D---- C:\Windows\system32\es-ES 2014-12-20 12:42:48 ----D---- C:\Windows\system32\en-US 2014-12-20 12:42:48 ----D---- C:\Windows\system32\el-GR 2014-12-20 12:42:48 ----D---- C:\Windows\system32\de-DE 2014-12-20 12:42:48 ----D---- C:\Windows\PolicyDefinitions 2014-12-20 12:41:23 ----D---- C:\Windows\system32\MRT 2014-12-20 12:35:17 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AsDsm;AsDsm; C:\Windows\system32\drivers\AsDsm.sys [2010-11-17 35384] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 408600] R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008] R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-01-02 26528] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584] R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536] R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2010-01-18 717368] R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-07-21 129024] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240] R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-01-02 12312928] R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976] R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-01-02 317440] R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2015-01-02 176880] R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2015-01-02 145424] R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416] R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928] R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-01-02 34544] R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-20 1800192] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056] S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832] S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168] S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ACPService;ACPService; C:\Program Files (x86)\Philips\CamSuite\2.0.15.0\ACPService.exe [2010-08-26 687104] R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2010-06-22 379520] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744] R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536] R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896] R2 BankingTools_Import_Service;Import Service (Cashflow); C:\Program Files (x86)\BankingTools\Cashflow 4\importService\CwmImportService.exe [2014-12-04 39928] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 262144] R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784] R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2014-06-05 93040] R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240] R3 ADSMService;ADSM Service; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2008-03-31 225280] R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624] R3 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2010-04-06 244904] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-11 116648] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-02 267440] S3 fsssvc;Windows Live Family Safety; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-11 116648] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688] S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 643880] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-29 1255736] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------