Logfile of random's system information tool 1.10 (written by random/random) Run by Vinny at 2016-01-22 19:38:49 Microsoft Windows 10 Home System drive C: has 63 GB (25%) free of 249 GB Total RAM: 8057 MB (69% free) HijackThis download failed ======Listing Processes====== winlogon.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\svchost.exe -k netsvcs "dwm.exe" C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\system32\atiesrxx.exe atieclxx C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\igfxCUIService.exe C:\WINDOWS\System32\svchost.exe -k NetworkService C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork C:\WINDOWS\system32\svchost.exe -k apphost C:\WINDOWS\System32\svchost.exe -k utcsvc dashost.exe {ccfd90be-5868-4383-aaca8013678a416a} "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe" "C:\Program Files\Microsoft LifeCam\MSCamS64.exe" C:\WINDOWS\system32\mqsvc.exe "C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe" "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe" "C:\Program Files\Intel\iCLS Client\HeciServer.exe" C:\WINDOWS\system32\svchost.exe -k iissvcs "C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe" "C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe" "C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe" C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe "C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe" C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\svchost.exe -k appmodel C:\WINDOWS\system32\viakaraokesrv.exe "C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\WINDOWS\system32\wbem\wmiprvse.exe sihost.exe C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} C:\WINDOWS\Explorer.EXE "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca C:\WINDOWS\system32\SearchIndexer.exe /Embedding C:\Windows\System32\RuntimeBroker.exe -Embedding igfxEM.exe "C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca C:\WINDOWS\system32\SettingSyncHost.exe -Embedding "C:\Users\Vinny\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c "C:\Users\Vinny\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background "C:\Program Files\Rainmeter\Rainmeter.exe" "C:\Users\Vinny\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /ua /installsource core "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" "C:\Users\Vinny\AppData\Local\slack\app-1.2.7\slack.exe" --startup" "C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe" -hide "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow "C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe" /hide "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan" C:\WINDOWS\system32\wermgr.exe -upload "C:\Users\Vinny\AppData\Local\slack\app-1.2.7\slack.exe" --type=gpu-process --channel="6668.0.721473438\372698234" --no-sandbox --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,45 --gpu-vendor-id=0x1002 --gpu-device-id=0x6810 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1151.1008 /prefetch:822062411 C:\Users\Vinny\AppData\Local\slack\app-1.2.7\slack.exe --reporter-url=https://slack.com/apps/breakpad --application-name=Slack --v=1 "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=gpu-process --channel="7040.0.1436287626\1857785121" --no-sandbox --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/3.4.2.183" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38 --gpu-vendor-id=0x1002 --gpu-device-id=0x6810 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1151.1008 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/3.4.2.183" /prefetch:822062411 "fontdrvhost.exe" C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/3.4.2.183" --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="7040.1.1438736071\1532458766" /prefetch:673131151 "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe" "C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/3.4.2.183" --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="7040.2.571696042\1628632213" /prefetch:673131151 "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\main.js" \??\C:\WINDOWS\system32\conhost.exe 0x4 "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe" "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac C:\WINDOWS\system32\wbem\wmiprvse.exe raptr_im.exe "C:\Program Files (x86)\Raptr\raptr_ep64.exe" "C:\Users\Vinny\AppData\Local\slack\app-1.2.7\slack.exe" --type=renderer --no-sandbox --lang=nl --app-user-model-id=com.squirrel.slack.slack --enable-plugins --node-integration=true --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --enable-gpu-rasterization --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6668.11.1947852668\363154043" /prefetch:673131151 "C:\Users\Vinny\AppData\Local\slack\app-1.2.7\slack.exe" --type=renderer --no-sandbox --lang=nl --app-user-model-id=com.squirrel.slack.slack --enable-plugins --node-integration=false --preload="C:\Users\Vinny\AppData\Local\slack\app-1.2.7\resources\app.asar\static\ssb-interop" --guest-instance-id=6 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --enable-gpu-rasterization --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6668.12.418697669\1459373808" /prefetch:673131151 "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8cbcdea8-b431-40d6-b1d1-e634a86efe49 -SystemEventPortName:HostProcess-07e78fdf-e695-4f84-b849-6a1faeb6e49b -IoCancelEventPortName:HostProcess-43114400-8994-410c-8e5e-287780c1b7fb -NonStateChangingEventPortName:HostProcess-c035e5d4-3aa7-448d-89cb-f707a1dd2cae -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b4f378ef-6193-449e-aae5-a798c04c7cc5 -DeviceGroupId:WpdFsGroup "C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey 18C4D62C-2779-3D61-6B00-89CE74ACC0A9 -Reinvoke "C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636 "C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2972001057-3138230179-3566334846-10004_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2972001057-3138230179-3566334846-10004 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" "G:\Kenneth\RSITx64.exe" ======Scheduled tasks folder====== C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2972001057-3138230179-3566334846-1000Core.job - C:\Users\Vinny\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2972001057-3138230179-3566334846-1000UA.job - C:\Users\Vinny\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler =========Mozilla firefox========= ProfilePath - C:\Users\Vinny\AppData\Roaming\Mozilla\Firefox\Profiles\ek9k2x4i.default prefs.js - "browser.startup.homepage" - "http://www.google.com/" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 16.0.0.305 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42] "Description"=Intel IPT WebApi plugin "Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater] "Description"=This plugin updates Intel WebAPI component "Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.66.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 16.0.0.305 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll C:\Program Files (x86)\Mozilla Firefox\extensions\ {972ce4c6-7e08-4474-a285-3208198ce6fd} C:\Program Files (x86)\Mozilla Firefox\components\ binary.manifest browsercomps.dll C:\Program Files (x86)\Mozilla Firefox\searchplugins\ babylon.xml bing.xml bolcom-nl.xml delta-homes.xml google.xml istartsurf.xml marktplaats-nl.xml wikipedia-nl.xml C:\Users\Vinny\AppData\Roaming\Mozilla\Firefox\Profiles\ek9k2x4i.default\extensions\ nc6vwipxek@eeef-fhml.com quick_searchff@gmail.com C:\Users\Vinny\AppData\Roaming\Mozilla\Firefox\Profiles\ek9k2x4i.default\searchplugins\ babylon1.xml claro.xml delta.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}] Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-05-24 550080] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}] Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-05-24 655040] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}] Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-17 1265448] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-23 460384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}] Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-05-24 455360] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b18906df-1dfa-4d50-8a1f-7d076a8c87b7}] Sale Clipper - C:\Program Files (x86)\Sale Clipper\Extensions\b18906df-1dfa-4d50-8a1f-7d076a8c87b7.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-23 172640] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-05-24 798912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {ae07101b-46d4-4a98-af68-0333ea26e113} [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {ae07101b-46d4-4a98-af68-0333ea26e113} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-07-30 393632] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [] "Persistence"=C:\Windows\system32\igfxpers.exe [] "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-10-30 508104] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Dropbox Update"=C:\Users\Vinny\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-22 134512] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-06-01 8358680] "OneDrive"=C:\Users\Vinny\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-01-22 551112] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14 1045720] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-10-30 508104] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge] C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe [2010-03-09 11989960] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface] C:\Users\Vinny\AppData\Local\Akamai\netsession_win.exe [2014-10-29 4673432] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2015-03-20 60712] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox Update] C:\Users\Vinny\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-22 134512] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixMyRegistry] C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iLivid] C:\Users\Vinny\AppData\Local\iLivid\iLivid.exe -autorun [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LifeCam] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [2010-05-20 119152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2012-09-12 4272640] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NextLive] C:\Windows\SysWOW64\rundll32.exe [2015-07-10 53760] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-08 50749056] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify] C:\Users\Vinny\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper] C:\Users\Vinny\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09 596528] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe /MINIMIZED [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive] C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2011-03-07 89456] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VX1000] C:\Windows\vVX1000.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2014-09-11 2087264] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Vinny^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk] C:\Users\Vinny\AppData\Roaming\Dropbox\bin\Dropbox.exe [2015-12-08 24952456] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-02-10 5015040] "USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-21 291648] "IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2012-07-19 133440] "GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040] "Join Multiple MOV Files Into One Software.exe"= [] "Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2015-07-27 56080] "LWS"=C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-12 204136] ""= [] "Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2015-09-29 592704] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09 596528] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176] "Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2015-12-15 2304688] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup CodecPackUpdateChecker.lnk - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe C:\Users\Vinny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Rainmeter.lnk - C:\Program Files\Rainmeter\Rainmeter.exe Slack.lnk - C:\Users\Vinny\AppData\Local\slack\Update.exe [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DSCAutomationHostEnabled"=2 "SafeModeBlockNonAdmins"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "vidc.i420"=lvcod64.dll "vidc.iyuv"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvu9"=tsbyuv.dll "vidc.yvyu"=msyuv.dll "wavemapper"=msacm32.drv "wave1"=wdmaud.drv "mixer1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo"=vfwwdm32.dll "MSVideo8"=VfWWDM32.dll "wave4"=wdmaud.drv "midi3"=wdmaud.drv "mixer4"=wdmaud.drv "aux3"=wdmaud.drv "VIDC.FPS1"=frapsv64.dll "VIDC.LAGS"=lagarith.dll "vidc.ffds"=ff_vfw.dll "msacm.vorbis"=vorbis.acm "wave3"=wdmaud.drv "midi2"=wdmaud.drv "mixer3"=wdmaud.drv "aux2"=wdmaud.drv "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer2"=wdmaud.drv "aux1"=wdmaud.drv "wave5"=wdmaud.drv "midi4"=wdmaud.drv "mixer5"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2016-01-22 19:38:49 ----D---- C:\rsit 2016-01-22 19:38:49 ----D---- C:\Program Files\trend micro 2016-01-22 19:37:26 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys 2016-01-22 19:36:38 ----D---- C:\ProgramData\Malwarebytes 2016-01-22 19:36:38 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-01-22 19:36:38 ----A---- C:\WINDOWS\system32\drivers\mwac.sys 2016-01-22 19:36:38 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys 2016-01-22 19:36:38 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2016-01-22 15:28:48 ----D---- C:\ProgramData\ATI 2016-01-22 14:54:04 ----HD---- C:\$WINDOWS.~BT 2016-01-22 14:39:20 ----ASH---- C:\swapfile.sys 2016-01-22 14:39:20 ----ASH---- C:\pagefile.sys 2016-01-22 14:39:12 ----ASH---- C:\hiberfil.sys 2016-01-22 14:27:33 ----D---- C:\$SysReset 2016-01-22 05:18:05 ----SHD---- C:\Recovery 2016-01-13 17:02:19 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll 2016-01-13 17:02:19 ----A---- C:\WINDOWS\system32\schannel.dll 2016-01-13 17:02:19 ----A---- C:\WINDOWS\system32\edgehtml.dll 2016-01-13 17:02:18 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll 2016-01-13 17:02:17 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll 2016-01-13 17:02:16 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL 2016-01-13 17:02:16 ----A---- C:\WINDOWS\system32\mshtml.dll 2016-01-13 17:02:16 ----A---- C:\WINDOWS\system32\mfvdsp.dll 2016-01-13 17:02:15 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\system32\WMADMOD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL 2016-01-13 17:02:15 ----A---- C:\WINDOWS\system32\COLORCNV.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll 2016-01-13 17:02:14 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL 2016-01-13 17:02:14 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL 2016-01-13 17:02:13 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll 2016-01-13 17:02:13 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll 2016-01-13 17:02:13 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll 2016-01-13 17:02:13 ----A---- C:\WINDOWS\system32\WMADMOE.DLL 2016-01-13 17:02:13 ----A---- C:\WINDOWS\system32\quartz.dll 2016-01-13 17:02:13 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll 2016-01-13 17:02:13 ----A---- C:\WINDOWS\system32\mfnetsrc.dll 2016-01-13 17:02:13 ----A---- C:\WINDOWS\system32\mfnetcore.dll 2016-01-13 17:02:12 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL 2016-01-13 17:02:12 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL 2016-01-13 17:02:12 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL 2016-01-13 17:02:12 ----A---- C:\WINDOWS\system32\aepic.dll 2016-01-13 17:02:12 ----A---- C:\WINDOWS\system32\aeinv.dll 2016-01-13 17:02:11 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL 2016-01-13 17:02:11 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL 2016-01-13 17:02:11 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll 2016-01-13 17:02:11 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll 2016-01-13 17:02:11 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL 2016-01-13 17:02:11 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL 2016-01-13 17:02:11 ----A---- C:\WINDOWS\system32\evr.dll 2016-01-13 17:02:10 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll 2016-01-13 17:02:10 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL 2016-01-13 17:02:10 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll 2016-01-13 17:02:10 ----A---- C:\WINDOWS\system32\qedit.dll 2016-01-13 17:02:10 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2016-01-13 17:02:10 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll 2016-01-13 17:02:10 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL 2016-01-13 17:02:10 ----A---- C:\WINDOWS\system32\advapi32.dll 2016-01-13 17:02:09 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll 2016-01-13 17:02:09 ----A---- C:\WINDOWS\system32\mftranscode.dll 2016-01-13 17:02:09 ----A---- C:\WINDOWS\system32\mfcore.dll 2016-01-13 17:02:09 ----A---- C:\WINDOWS\system32\devenum.dll 2016-01-13 17:02:09 ----A---- C:\WINDOWS\system32\Chakra.dll 2016-01-13 17:02:08 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll 2016-01-13 17:02:08 ----A---- C:\WINDOWS\SYSWOW64\evr.dll 2016-01-13 17:02:08 ----A---- C:\WINDOWS\system32\mfh264enc.dll 2016-01-13 17:02:08 ----A---- C:\WINDOWS\system32\invagent.dll 2016-01-13 17:02:08 ----A---- C:\WINDOWS\system32\generaltel.dll 2016-01-13 17:02:08 ----A---- C:\WINDOWS\system32\devinv.dll 2016-01-13 17:02:07 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL 2016-01-13 17:02:07 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll 2016-01-13 17:02:07 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll 2016-01-13 17:02:07 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL 2016-01-13 17:02:07 ----A---- C:\WINDOWS\system32\qdvd.dll 2016-01-13 17:02:06 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL 2016-01-13 17:02:06 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL 2016-01-13 17:02:06 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll 2016-01-13 17:02:06 ----A---- C:\WINDOWS\system32\usermgrcli.dll 2016-01-13 17:02:06 ----A---- C:\WINDOWS\system32\usermgr.dll 2016-01-13 17:02:06 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL 2016-01-13 17:02:06 ----A---- C:\WINDOWS\system32\MP43DECD.DLL 2016-01-13 17:02:06 ----A---- C:\WINDOWS\system32\mfds.dll 2016-01-13 17:02:05 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll 2016-01-13 17:02:05 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL 2016-01-13 17:02:05 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll 2016-01-13 17:02:05 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll 2016-01-13 17:02:05 ----A---- C:\WINDOWS\system32\winlogon.exe 2016-01-13 17:02:05 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL 2016-01-13 17:02:05 ----A---- C:\WINDOWS\system32\mfsvr.dll 2016-01-13 17:02:05 ----A---- C:\WINDOWS\system32\gdi32.dll 2016-01-13 17:02:04 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll 2016-01-13 17:02:04 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll 2016-01-13 17:02:04 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll 2016-01-13 17:02:03 ----A---- C:\WINDOWS\SYSWOW64\usermgrcli.dll 2016-01-13 17:02:03 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll 2016-01-13 17:02:03 ----A---- C:\WINDOWS\system32\vbscript.dll 2016-01-13 17:02:03 ----A---- C:\WINDOWS\system32\mfps.dll 2016-01-13 17:02:03 ----A---- C:\WINDOWS\system32\appraiser.dll 2016-01-13 17:02:03 ----A---- C:\WINDOWS\system32\aitstatic.exe 2016-01-13 17:02:02 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll 2016-01-13 17:02:02 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll 2016-01-13 17:02:02 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll 2016-01-13 17:02:02 ----A---- C:\WINDOWS\system32\jscript.dll 2016-01-13 17:02:02 ----A---- C:\WINDOWS\system32\Chakradiag.dll 2016-01-02 01:18:03 ----D---- C:\ProgramData\boost_interprocess 2015-12-27 18:01:59 ----RD---- C:\Program Files (x86)\Skype 2015-12-25 16:16:40 ----D---- C:\Program Files\ATI Technologies 2015-12-25 16:04:25 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll 2015-12-25 16:04:25 ----A---- C:\WINDOWS\system32\mantleaxl64.dll 2015-12-25 16:04:24 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll 2015-12-25 16:04:24 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll 2015-12-25 16:04:24 ----A---- C:\WINDOWS\system32\mantle64.dll 2015-12-25 16:04:24 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll 2015-12-25 16:04:24 ----A---- C:\WINDOWS\system32\detoured.dll 2015-12-25 16:04:23 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll 2015-12-25 16:04:22 ----A---- C:\WINDOWS\system32\clinfo.exe 2015-12-25 16:04:17 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll 2015-12-25 16:04:16 ----A---- C:\WINDOWS\system32\atitmm64.dll 2015-12-25 16:04:13 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll 2015-12-25 16:04:13 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll 2015-12-25 16:04:13 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll 2015-12-25 16:04:13 ----A---- C:\WINDOWS\system32\atisamu64.dll 2015-12-25 16:04:13 ----A---- C:\WINDOWS\system32\ATIODE.exe 2015-12-25 16:04:13 ----A---- C:\WINDOWS\system32\ATIODCLI.exe 2015-12-25 16:04:13 ----A---- C:\WINDOWS\system32\atio6axx.dll 2015-12-25 16:04:13 ----A---- C:\WINDOWS\system32\atimuixx.dll 2015-12-25 16:04:13 ----A---- C:\WINDOWS\system32\atimpc64.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe 2015-12-25 16:04:12 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atiglpxx.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atig6txx.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atig6pxx.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atieah64.exe 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\aticalrt64.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\system32\aticaldd64.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\system32\aticalcl64.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\system32\atiapfxx.exe 2015-12-25 16:04:10 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll 2015-12-25 16:04:09 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll 2015-12-25 16:04:09 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll 2015-12-25 16:04:09 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll 2015-12-25 16:04:09 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe 2015-12-25 16:04:09 ----A---- C:\WINDOWS\system32\OpenCL.dll 2015-12-25 16:04:09 ----A---- C:\WINDOWS\system32\amdxc64.dll 2015-12-25 16:04:09 ----A---- C:\WINDOWS\system32\amdpcom64.dll 2015-12-25 16:04:09 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe 2015-12-25 16:04:09 ----A---- C:\WINDOWS\system32\amdocl_as64.exe 2015-12-25 16:04:08 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe 2015-12-25 16:04:08 ----A---- C:\WINDOWS\system32\amdocl64.dll 2015-12-25 16:04:07 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll 2015-12-25 16:04:07 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll 2015-12-25 16:04:07 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll 2015-12-25 16:04:07 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll 2015-12-25 16:04:07 ----A---- C:\WINDOWS\system32\amdmmcl6.dll 2015-12-25 16:04:07 ----A---- C:\WINDOWS\system32\amdmiracast.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\SYSWOW64\amdmantle32.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\system32\amdmantle64.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\system32\amdlvr64.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\system32\amdhdl64.dll 2015-12-25 16:04:06 ----A---- C:\WINDOWS\system32\amdhcp64.dll 2015-12-25 16:04:05 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll 2015-12-25 16:04:05 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll 2015-12-25 16:04:05 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll 2015-12-25 16:04:05 ----A---- C:\WINDOWS\system32\amdave64.dll 2015-12-23 00:11:17 ----D---- C:\Users\Vinny\AppData\Roaming\Sun ======List of files/folders modified in the last 1 month====== 2016-01-22 19:38:49 ----RD---- C:\Program Files 2016-01-22 19:37:43 ----D---- C:\WINDOWS\Prefetch 2016-01-22 19:37:27 ----D---- C:\WINDOWS\Temp 2016-01-22 19:37:26 ----D---- C:\WINDOWS\system32\drivers 2016-01-22 19:36:38 ----RD---- C:\Program Files (x86) 2016-01-22 19:36:38 ----HD---- C:\ProgramData 2016-01-22 19:32:37 ----A---- C:\WINDOWS\system32\RzSurroundVADAudioDeviceManager_log.txt 2016-01-22 19:30:34 ----A---- C:\WINDOWS\SYSWOW64\log.txt 2016-01-22 19:29:07 ----D---- C:\Users\Vinny\AppData\Roaming\Slack 2016-01-22 19:28:22 ----D---- C:\Users\Vinny\AppData\Roaming\Rainmeter 2016-01-22 19:27:42 ----D---- C:\WINDOWS\System32 2016-01-22 19:25:22 ----D---- C:\WINDOWS\system32\sru 2016-01-22 19:24:00 ----D---- C:\WINDOWS\system32\NDF 2016-01-22 19:03:43 ----SHD---- C:\WINDOWS\Installer 2016-01-22 19:03:39 ----D---- C:\WINDOWS\SysWOW64 2016-01-22 19:00:08 ----D---- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2016-01-22 18:59:52 ----D---- C:\Program Files\Common Files\Apple 2016-01-22 18:47:36 ----D---- C:\WINDOWS\system32\config 2016-01-22 18:46:34 ----D---- C:\WINDOWS\system32\wbem 2016-01-22 18:46:34 ----D---- C:\WINDOWS 2016-01-22 18:45:42 ----D---- C:\WINDOWS\Tasks 2016-01-22 18:45:42 ----D---- C:\WINDOWS\system32\catroot2 2016-01-22 18:45:41 ----D---- C:\WINDOWS\INF 2016-01-22 18:45:41 ----D---- C:\Users\Vinny\AppData\Roaming\Raptr 2016-01-22 18:44:38 ----HD---- C:\Program Files\WindowsApps 2016-01-22 18:42:03 ----D---- C:\WINDOWS\registration 2016-01-22 18:38:35 ----SHD---- C:\System Volume Information 2016-01-22 18:37:51 ----D---- C:\WINDOWS\Logs 2016-01-22 15:01:38 ----DC---- C:\WINDOWS\Panther 2016-01-22 14:51:27 ----D---- C:\WINDOWS\Microsoft.NET 2016-01-22 14:46:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2016-01-22 14:41:42 ----D---- C:\WINDOWS\AppReadiness 2016-01-22 14:41:16 ----D---- C:\WINDOWS\WinSxS 2016-01-22 14:39:14 ----D---- C:\Program Files\Microsoft Silverlight 2016-01-22 14:39:14 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2016-01-22 14:32:29 ----SD---- C:\ProgramData\Microsoft 2016-01-22 14:32:29 ----RSD---- C:\WINDOWS\Media 2016-01-22 14:32:29 ----D---- C:\WINDOWS\system32\WinBioDatabase 2016-01-22 14:32:29 ----D---- C:\WINDOWS\system32\Tasks 2016-01-22 14:32:29 ----D---- C:\WINDOWS\SoftwareDistribution 2016-01-22 14:32:18 ----D---- C:\WINDOWS\twain_32 2016-01-22 14:32:18 ----D---- C:\WINDOWS\system32\drivers\etc 2016-01-22 14:32:17 ----SHD---- C:\WINDOWS\SYSWOW64\AI_RecycleBin 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\xlive 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\sysprep 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\nl-NL 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\migwiz 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\migration 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\IME 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\en-US 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\drivers 2016-01-22 14:32:17 ----D---- C:\WINDOWS\SYSWOW64\C2MP 2016-01-22 14:32:16 ----D---- C:\WINDOWS\system32\spool 2016-01-22 14:32:16 ----D---- C:\WINDOWS\system32\nl-NL 2016-01-22 14:32:16 ----D---- C:\WINDOWS\system32\migration 2016-01-22 14:32:15 ----DC---- C:\WINDOWS\system32\DRVSTORE 2016-01-22 14:32:15 ----D---- C:\WINDOWS\system32\IME 2016-01-22 14:32:15 ----D---- C:\WINDOWS\system32\en-US 2016-01-22 14:32:15 ----D---- C:\WINDOWS\system32\drivers\nl-NL 2016-01-22 14:32:14 ----RD---- C:\WINDOWS\PurchaseDialog 2016-01-22 14:32:14 ----D---- C:\WINDOWS\ShellNew 2016-01-22 14:32:14 ----D---- C:\WINDOWS\schemas 2016-01-22 14:32:14 ----D---- C:\WINDOWS\Resources 2016-01-22 14:32:13 ----D---- C:\WINDOWS\nl 2016-01-22 14:32:13 ----D---- C:\WINDOWS\LiveKernelReports 2016-01-22 14:32:01 ----RSD---- C:\WINDOWS\Fonts 2016-01-22 14:32:00 ----SD---- C:\WINDOWS\Downloaded Program Files 2016-01-22 14:32:00 ----RSD---- C:\WINDOWS\assembly 2016-01-22 14:32:00 ----RD---- C:\Users 2016-01-22 14:32:00 ----D---- C:\WINDOWS\DigitalLocker 2016-01-22 14:31:59 ----D---- C:\ProgramData\USOPrivate 2016-01-22 14:31:59 ----D---- C:\ProgramData\regid.1986-12.com.adobe 2016-01-22 14:31:59 ----D---- C:\ProgramData\Package Cache 2016-01-22 14:31:57 ----SHD---- C:\Program Files (x86)\Windows Sidebar 2016-01-22 14:31:57 ----D---- C:\Program Files (x86)\MSBuild 2016-01-22 14:31:57 ----D---- C:\Program Files (x86)\Microsoft.NET 2016-01-22 14:31:57 ----D---- C:\Program Files (x86)\Internet Explorer 2016-01-22 14:31:57 ----D---- C:\Program Files (x86)\Common Files 2016-01-22 14:31:56 ----SHD---- C:\Program Files\Windows Sidebar 2016-01-22 14:31:56 ----D---- C:\Program Files\Internet Explorer 2016-01-22 14:31:56 ----D---- C:\Program Files\Intel 2016-01-22 14:31:56 ----D---- C:\Program Files\Common Files\microsoft shared 2016-01-22 14:31:56 ----D---- C:\Program Files\Common Files\logishrd 2016-01-22 14:31:56 ----D---- C:\Program Files\Common Files 2016-01-22 14:31:55 ----D---- C:\Program Files\AMD 2016-01-22 14:31:46 ----D---- C:\WINDOWS\system32\Recovery 2016-01-22 14:31:46 ----D---- C:\WINDOWS\system32\GroupPolicy 2016-01-22 14:31:45 ----SD---- C:\Users\Vinny\AppData\Roaming\Microsoft 2016-01-22 14:21:26 ----D---- C:\Users\Vinny\AppData\Roaming\TS3Client 2016-01-22 14:20:56 ----D---- C:\Users\Vinny\AppData\Roaming\Skype 2016-01-22 13:17:14 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-01-22 05:35:52 ----D---- C:\AMD 2016-01-22 04:27:15 ----D---- C:\WINDOWS\AppPatch 2016-01-22 04:27:14 ----D---- C:\WINDOWS\system32\DriverStore 2016-01-22 02:30:41 ----D---- C:\WINDOWS\system32\LogFiles 2016-01-21 22:19:45 ----D---- C:\Users\Vinny\AppData\Roaming\Audacity 2016-01-21 22:18:19 ----D---- C:\Users\Vinny\AppData\Roaming\OBS 2016-01-21 21:37:45 ----D---- C:\Users\Vinny\AppData\Roaming\.minecraft 2016-01-21 16:49:33 ----D---- C:\Program Files (x86)\Steam 2016-01-16 18:10:37 ----D---- C:\WINDOWS\system32\MRT 2016-01-16 18:06:19 ----A---- C:\WINDOWS\system32\MRT.exe 2016-01-13 17:16:21 ----D---- C:\ProgramData\Microsoft Help 2016-01-13 17:12:48 ----D---- C:\WINDOWS\CbsTemp 2016-01-09 20:17:22 ----D---- C:\Program Files\ShareX 2016-01-08 16:08:48 ----D---- C:\Program Files (x86)\Battle.net 2016-01-03 02:40:14 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe 2016-01-02 01:32:40 ----D---- C:\Users\Vinny\AppData\Roaming\Adobe 2016-01-02 01:30:47 ----D---- C:\Program Files\Adobe 2016-01-02 01:27:33 ----D---- C:\Program Files\Common Files\Adobe 2016-01-02 01:18:08 ----D---- C:\ProgramData\Adobe 2016-01-02 01:06:42 ----D---- C:\Program Files (x86)\Adobe 2015-12-31 03:24:32 ----D---- C:\Program Files (x86)\Hearthstone 2015-12-27 18:02:02 ----D---- C:\ProgramData\Skype 2015-12-25 17:34:20 ----D---- C:\WINDOWS\rescache 2015-12-25 16:16:37 ----D---- C:\Program Files (x86)\ATI Technologies 2015-12-25 16:04:23 ----A---- C:\WINDOWS\system32\coinst_15.20.dll 2015-12-25 16:04:17 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll 2015-12-25 16:04:17 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll 2015-12-25 16:04:17 ----A---- C:\WINDOWS\system32\atiuxp64.dll 2015-12-25 16:04:16 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll 2015-12-25 16:04:16 ----A---- C:\WINDOWS\system32\atiumd6a.dll 2015-12-25 16:04:16 ----A---- C:\WINDOWS\system32\atiumd64.dll 2015-12-25 16:04:16 ----A---- C:\WINDOWS\system32\atiu9p64.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atiesrxx.exe 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atieclxx.exe 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atidxx64.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\atidemgy.dll 2015-12-25 16:04:12 ----A---- C:\WINDOWS\system32\aticfx64.dll 2015-12-25 16:04:11 ----A---- C:\WINDOWS\system32\atiadlxx.dll 2015-12-23 00:12:08 ----D---- C:\ProgramData\Oracle 2015-12-23 00:11:45 ----D---- C:\Program Files (x86)\Java 2015-12-23 00:11:08 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 amdkmpfd;@oem21.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2014-10-28 62152] R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2010-12-16 40816] R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968] R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-12-01 8192] R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128] R2 rzpmgrk;rzpmgrk; \??\C:\WINDOWS\system32\drivers\rzpmgrk.sys [2015-06-12 37184] R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2015-06-27 129472] R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952] R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-25 21648880] R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-25 674288] R3 AtiHDAudioService;@oem61.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-07-22 102912] R3 EuMusDesignVirtualAudioCableWdm;@oem9.inf,%DeviceName% (WDM);Virtual Audio Cable (WDM); C:\WINDOWS\system32\DRIVERS\vrtaucbl.sys [2010-02-15 66728] R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-07-30 3797960] R3 IntcDAud;@oem31.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528] R3 iwdbus;@oem58.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-06-26 39480] R3 LVRS64;@oem50.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520] R3 LVUVC64;@oem49.inf,%PID_0825_DD%(UVC);Logitech HD Webcam C270(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-01-22 192216] R3 MEIx64;@oem40.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784] R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-07 175104] R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-10 587264] R3 rzendpt;@oem68.inf,%rzendpt.SvcDesc%;rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [2015-08-13 50392] R3 RZSURROUNDVADService;@oem84.inf,%RZSURROUNDVAD.SvcDesc%;Razer Surround Audio Service; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [2015-07-29 40640] R3 rzudd;@oem79.inf,%Razer.SvcDesc%;Razer Keyboard Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-09-09 202952] R3 ScpVBus;@oem11.inf,%ScpVBus.SVCDESC%;Scp Virtual Bus Driver; C:\WINDOWS\System32\drivers\ScpVBus.sys [2013-05-05 39168] S0 amdkmafd;@oem20.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-06-03 31992] S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800] S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168] S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208] S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720] S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288] S1 KLIM6;@oem27.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [] S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352] S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736] S3 ElgatoGC658Y;@oem33.inf,%Service.FriendlyName%;Elgato Game Capture; C:\WINDOWS\System32\Drivers\ElgatoGC658.sys [2012-11-12 50288] S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232] S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992] S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 33856] S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016] S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800] S3 intaud_WaveExtensible;@oem57.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240] S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624] S3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-10-05 25816] S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-10-05 64216] S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376] S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128] S3 Netaapl;@oem0.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2014-08-15 23040] S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-07-17 934752] S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952] S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-07-14 46080] S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-14 82128] R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2015-11-16 683696] R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2015-11-25 2016448] R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-25 255472] R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-19 77128] R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-07-30 328608] R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632] R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-19 166720] R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-19 277824] R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-05-20 199536] R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-07 26112] R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408] R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848] R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848] R2 OneSyncSvc_Session1;Host synchroniseren_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R2 Razer Chroma SDK Service;Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [2015-11-19 51200] R2 RzSurroundVADStreamingService;RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [2015-07-29 4254720] R2 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944] R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 153440] R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696] R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] R3 PimIndexMaintenanceSvc_Session1;Contact Data_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 Ds3Service;SCP DS3 Service; C:\Program Files\Scarlet.Crush.Productions\bin\ScpService.exe [] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200] S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416] S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848] S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 OneSyncSvc_Session2;Host synchroniseren_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2015-06-23 187048] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-09 267440] S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352] S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-07-30 290208] S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136] S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200] S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856] S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 PimIndexMaintenanceSvc_Session2;Contact Data_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-07-12 1031680] S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176] S3 SwitchBoard;Adobe SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384] S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2007-11-07 4466688] -----------------EOF-----------------