Logfile of random's system information tool 1.10 (written by random/random)
Run by kai at 2016-09-08 20:09:11
Microsoft Windows 8.1 met Bing 
System drive C: has 177 GB (67%) free of 263 GB
Total RAM: 3544 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:09:42, on 8-9-2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\trend micro\kai.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O3 - Toolbar: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - (no file)
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [PSUAMain] "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: BitRaider Mini-Support Service Stub Loader (BRSptStub) - BitRaider, LLC - C:\ProgramData\BitRaider\BRSptStub.exe
O23 - Service: CCSDK - Unknown owner - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: LenovoSetSvr - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: LUService - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
O23 - Service: Maxthon Core Update Service (MaxthonUpdateSvc) - Maxthon - C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Panda Protection Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NitroPDFDriverCreatorReadSpool9 (NitroDriverReadSpool9) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\windows\SysWOW64\NLSSRV32.EXE
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: panda_url_filtering Service (panda_url_filtering) - Visicom Media Inc. - C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: tbaseprovisioning - Advanced Micro Devices, Inc. - C:\windows\SysWOW64\tbaseprovisioning.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: USBBKSvc - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\USB Blocker\USBBKSvc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 11894 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\SysWOW64\tbaseprovisioning.exe
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
atieclxx
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Classic Shell\ClassicShellService.exe"
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe"
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe"
"C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe"
C:\windows\SysWOW64\NLSSRV32.EXE
"C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe"
"C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe" --
"C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe"
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Lenovo\USB Blocker\USBBKSvc.exe"
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-155158cd-5d62-4172-a189-d414738550ad -SystemEventPortName:HostProcess-0c34d365-d345-41fe-aab7-6f6b32f26b12 -IoCancelEventPortName:HostProcess-72551bf1-c78e-4f97-9ef1-21aeae1f6c17 -NonStateChangingEventPortName:HostProcess-06d7cf4a-a62c-4114-b019-ee0e5fdef36f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a4992228-a94d-4a17-890c-d7eeb6f26c93 -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"
"C:\Program Files\Classic Shell\ClassicStartMenu.exe" -startup
"C:\Program Files\Elantech\ETDCtrl.exe"
taskhostex.exe 
C:\windows\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe" 
"C:\Program Files\Elantech\ETDIntelligent.exe" 
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" 
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\RTFTrack.exe" 
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /SHOWASYNC
C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "0x14d0_0x14e4_0x9565c4e3"
taskhostex.exe /RuntimeWide
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\servicing\TrustedInstaller.exe
C:\windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe -Embedding

C:\windows\System32\svchost.exe -k swprv
"C:\windows\system32\wuauclt.exe" /RunHandlerComServer

"C:\Users\kai\Desktop\RSITx64.exe" 
C:\windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  

=========Mozilla firefox=========

ProfilePath - C:\Users\kai\AppData\Roaming\Mozilla\Firefox\Profiles\2wchg9te.default

prefs.js - "browser.search.useDBForOrder" -  true
prefs.js - "browser.startup.homepage" -  "www.google.nl"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nitropdf.com/NitroPDF]
"Description"=NitroPDF Web Browser Plugin
"Path"=C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-06-29 724992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
Panda Safe Web - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll [2013-06-29 437760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-06-29 594432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll [2013-06-29 367616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - Panda Safe Web - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll []
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-06-29 724992]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - 
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-06-29 594432]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtsFT"=C:\windows\RTFTrack.exe [2014-01-21 6340312]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2014-02-19 2892616]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-01-20 13667032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-11 1381744]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-11 1381744]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-11 1381744]
"PasswordManager"=C:\Program Files\Lenovo\Password Manager\password_manager.exe [2014-01-10 1622072]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2014-12-07 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-12-07 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-12-07 10842096]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-12-24 133760]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2016-09-07 3639280]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-07 53737488]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-11-10 3011152]
"Software Informer"=C:\Program Files\Software Informer\softinfo.exe [2015-06-26 1634304]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-05 8894680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-06-03 766688]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [2014-09-09 110344]
"CLVirtualDrive"=C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [2014-09-09 492808]
"PSUAMain"=C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [2016-08-05 109824]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-12-24 133760]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NanoServiceMain]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSUAService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-09-08 20:09:12 ----D---- C:\Program Files\trend micro
2016-09-08 20:09:11 ----D---- C:\rsit
2016-09-08 13:23:48 ----D---- C:\windows\pss
2016-09-08 10:09:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-09-08 09:40:34 ----A---- C:\windows\system32\TpmTasks.dll
2016-09-08 09:14:23 ----D---- C:\Program Files\CCleaner
2016-09-08 08:52:18 ----A---- C:\windows\SYSWOW64\rascfg.dll
2016-09-08 08:52:18 ----A---- C:\windows\system32\rascfg.dll
2016-09-08 08:52:18 ----A---- C:\windows\system32\drivers\wanarp.sys
2016-09-08 08:52:18 ----A---- C:\windows\system32\drivers\ndproxy.sys
2016-09-08 08:50:07 ----A---- C:\windows\system32\Windows.Globalization.dll
2016-09-08 08:50:06 ----A---- C:\windows\SYSWOW64\Windows.Globalization.dll
2016-09-08 08:50:04 ----A---- C:\windows\system32\GlobCollationHost.dll
2016-09-08 08:50:03 ----A---- C:\windows\SYSWOW64\GlobCollationHost.dll
2016-09-08 08:49:58 ----A---- C:\windows\SYSWOW64\KBDAZEL.DLL
2016-09-08 08:49:58 ----A---- C:\windows\SYSWOW64\KBDAZE.DLL
2016-09-08 08:49:58 ----A---- C:\windows\system32\KBDAZST.DLL
2016-09-08 08:49:58 ----A---- C:\windows\system32\KBDAZEL.DLL
2016-09-08 08:49:58 ----A---- C:\windows\system32\KBDAZE.DLL
2016-09-08 08:49:57 ----A---- C:\windows\SYSWOW64\kbdgeoqw.dll
2016-09-08 08:49:57 ----A---- C:\windows\SYSWOW64\KBDAZST.DLL
2016-09-08 08:49:57 ----A---- C:\windows\system32\kbdgeoqw.dll
2016-09-08 08:48:09 ----A---- C:\windows\system32\ntoskrnl.exe
2016-09-08 08:48:08 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2016-09-08 08:48:08 ----A---- C:\windows\system32\esent.dll
2016-09-08 08:48:08 ----A---- C:\windows\system32\dnsrslvr.dll
2016-09-08 08:48:08 ----A---- C:\windows\system32\dnsapi.dll
2016-09-08 08:48:07 ----A---- C:\windows\SYSWOW64\esent.dll
2016-09-08 08:48:06 ----A---- C:\windows\system32\rdpcorets.dll
2016-09-08 08:48:05 ----A---- C:\windows\system32\vpnike.dll
2016-09-08 08:48:05 ----A---- C:\windows\system32\rasapi32.dll
2016-09-08 08:48:05 ----A---- C:\windows\system32\ole32.dll
2016-09-08 08:48:05 ----A---- C:\windows\system32\mprddm.dll
2016-09-08 08:48:04 ----A---- C:\windows\SYSWOW64\rasapi32.dll
2016-09-08 08:48:04 ----A---- C:\windows\system32\mprdim.dll
2016-09-08 08:48:03 ----A---- C:\windows\SYSWOW64\mprddm.dll
2016-09-08 08:48:02 ----A---- C:\windows\SYSWOW64\ole32.dll
2016-09-08 08:47:59 ----A---- C:\windows\SYSWOW64\mprdim.dll
2016-09-08 08:47:59 ----A---- C:\windows\system32\rasmans.dll
2016-09-08 08:47:59 ----A---- C:\windows\system32\drivers\mountmgr.sys
2016-09-08 08:47:58 ----A---- C:\windows\system32\dssenh.dll
2016-09-08 08:47:57 ----A---- C:\windows\system32\wpdbusenum.dll
2016-09-08 08:47:57 ----A---- C:\windows\system32\drivers\agilevpn.sys
2016-09-08 08:47:56 ----A---- C:\windows\SYSWOW64\dssenh.dll
2016-09-08 08:47:56 ----A---- C:\windows\system32\rasppp.dll
2016-09-08 08:47:55 ----A---- C:\windows\system32\drivers\srv2.sys
2016-09-08 08:47:55 ----A---- C:\windows\system32\drivers\srv.sys
2016-09-08 08:47:54 ----A---- C:\windows\system32\rdpudd.dll
2016-09-08 08:47:54 ----A---- C:\windows\system32\rdpclip.exe
2016-09-08 08:47:54 ----A---- C:\windows\system32\rasman.dll
2016-09-08 08:47:54 ----A---- C:\windows\system32\rascustom.dll
2016-09-08 08:47:53 ----A---- C:\windows\SYSWOW64\rasppp.dll
2016-09-08 08:47:53 ----A---- C:\windows\SYSWOW64\iprtrmgr.dll
2016-09-08 08:47:53 ----A---- C:\windows\system32\iprtrmgr.dll
2016-09-08 08:47:52 ----A---- C:\windows\SYSWOW64\rasman.dll
2016-09-08 08:47:52 ----A---- C:\windows\system32\drivers\srvnet.sys
2016-09-08 08:47:51 ----A---- C:\windows\system32\nshwfp.dll
2016-09-08 08:47:50 ----A---- C:\windows\system32\IKEEXT.DLL
2016-09-08 08:47:23 ----A---- C:\windows\system32\SystemSettings.Handlers.dll
2016-09-08 08:47:22 ----A---- C:\windows\system32\MDMAgent.exe
2016-09-08 08:43:24 ----A---- C:\windows\system32\SyncEngine.dll
2016-09-08 08:43:09 ----A---- C:\windows\system32\mfplat.dll
2016-09-08 08:43:07 ----A---- C:\windows\system32\SkyDrive.exe
2016-09-08 08:43:07 ----A---- C:\windows\system32\drivers\rasl2tp.sys
2016-09-08 08:43:06 ----A---- C:\windows\system32\MFMediaEngine.dll
2016-09-08 08:43:05 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-09-08 08:43:04 ----A---- C:\windows\SYSWOW64\MFMediaEngine.dll
2016-09-08 08:43:03 ----A---- C:\windows\SYSWOW64\WSDApi.dll
2016-09-08 08:43:03 ----A---- C:\windows\system32\spoolsv.exe
2016-09-08 08:43:03 ----A---- C:\windows\system32\QSVRMGMT.DLL
2016-09-08 08:43:02 ----A---- C:\windows\SYSWOW64\QSVRMGMT.DLL
2016-09-08 08:43:02 ----A---- C:\windows\system32\WSDApi.dll
2016-09-08 08:43:02 ----A---- C:\windows\system32\WinSCard.dll
2016-09-08 08:43:01 ----A---- C:\windows\system32\WSDMon.dll
2016-09-08 08:43:01 ----A---- C:\windows\system32\drivers\dam.sys
2016-09-08 08:42:59 ----A---- C:\windows\system32\drivers\pdc.sys
2016-09-08 08:42:59 ----A---- C:\windows\system32\drivers\intelpep.sys
2016-09-08 08:42:58 ----A---- C:\windows\SYSWOW64\WinSCard.dll
2016-09-08 08:42:56 ----A---- C:\windows\SYSWOW64\QSHVHOST.DLL
2016-09-08 08:42:56 ----A---- C:\windows\system32\QSHVHOST.DLL
2016-09-08 08:42:56 ----A---- C:\windows\system32\DevicePairing.dll
2016-09-08 08:42:55 ----A---- C:\windows\SYSWOW64\DevicePairing.dll
2016-09-08 08:42:55 ----A---- C:\windows\system32\vssapi.dll
2016-09-08 08:42:55 ----A---- C:\windows\system32\SkyDriveTelemetry.dll
2016-09-08 08:42:55 ----A---- C:\windows\system32\drivers\ndistapi.sys
2016-09-08 08:42:54 ----A---- C:\windows\SYSWOW64\vssapi.dll
2016-09-08 08:42:53 ----A---- C:\windows\system32\vsstrace.dll
2016-09-08 08:42:53 ----A---- C:\windows\system32\rasdiag.dll
2016-09-08 08:42:52 ----A---- C:\windows\SYSWOW64\vsstrace.dll
2016-09-08 08:42:52 ----A---- C:\windows\SYSWOW64\rasser.dll
2016-09-08 08:42:52 ----A---- C:\windows\SYSWOW64\rasmxs.dll
2016-09-08 08:42:52 ----A---- C:\windows\SYSWOW64\rasdiag.dll
2016-09-08 08:42:52 ----A---- C:\windows\SYSWOW64\eventcls.dll
2016-09-08 08:42:52 ----A---- C:\windows\system32\rasser.dll
2016-09-08 08:42:52 ----A---- C:\windows\system32\rasmxs.dll
2016-09-08 08:42:52 ----A---- C:\windows\system32\eventcls.dll
2016-09-08 08:42:52 ----A---- C:\windows\splwow64.exe
2016-09-08 08:38:52 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2016-09-08 08:38:52 ----A---- C:\windows\system32\drivers\bthport.sys
2016-09-08 08:38:52 ----A---- C:\windows\system32\drivers\bthenum.sys
2016-09-08 08:11:44 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-09-07 21:38:57 ----A---- C:\windows\system32\aspnet_counters.dll
2016-09-07 21:38:52 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2016-09-07 21:34:37 ----D---- C:\ProgramData\IObit
2016-09-07 21:34:35 ----D---- C:\ProgramData\ProductData
2016-09-07 21:34:34 ----A---- C:\windows\system32\IObitSmartDefragExtension.dll
2016-09-07 21:34:30 ----A---- C:\windows\system32\SmartDefragBootTime.exe
2016-09-07 21:34:30 ----A---- C:\windows\system32\drivers\SmartDefragDriver.sys
2016-09-07 21:33:56 ----D---- C:\Program Files (x86)\IObit
2016-09-07 21:32:41 ----D---- C:\Users\kai\AppData\Roaming\IObit
2016-09-07 21:07:14 ----A---- C:\windows\system32\drivers\usbehci.sys
2016-09-07 21:06:28 ----A---- C:\windows\SYSWOW64\samlib.dll
2016-09-07 21:06:28 ----A---- C:\windows\system32\samsrv.dll
2016-09-07 21:06:28 ----A---- C:\windows\system32\samlib.dll
2016-09-07 21:06:25 ----A---- C:\windows\SYSWOW64\d2d1.dll
2016-09-07 21:06:25 ----A---- C:\windows\system32\d2d1.dll
2016-09-07 21:05:33 ----A---- C:\windows\SYSWOW64\mispace.dll
2016-09-07 21:05:33 ----A---- C:\windows\system32\mispace.dll
2016-09-07 21:05:33 ----A---- C:\windows\system32\drivers\spaceport.sys
2016-09-07 21:05:19 ----A---- C:\windows\system32\drivers\tunnel.sys
2016-09-07 21:04:11 ----A---- C:\windows\SYSWOW64\mfmp4srcsnk.dll
2016-09-07 21:04:11 ----A---- C:\windows\system32\mfmp4srcsnk.dll
2016-09-07 21:03:59 ----A---- C:\windows\SYSWOW64\untfs.dll
2016-09-07 21:03:59 ----A---- C:\windows\system32\untfs.dll
2016-09-07 21:03:31 ----A---- C:\windows\SYSWOW64\Windows.UI.dll
2016-09-07 21:03:31 ----A---- C:\windows\system32\Windows.UI.dll
2016-09-07 21:03:31 ----A---- C:\windows\system32\VSSVC.exe
2016-09-07 21:03:14 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-09-07 21:03:14 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-09-07 21:03:14 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-09-07 21:03:14 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-09-07 21:03:13 ----A---- C:\windows\SYSWOW64\mfnetsrc.dll
2016-09-07 21:03:13 ----A---- C:\windows\SYSWOW64\mfcore.dll
2016-09-07 21:03:13 ----A---- C:\windows\system32\WMADMOD.DLL
2016-09-07 21:03:13 ----A---- C:\windows\system32\mfnetsrc.dll
2016-09-07 21:03:13 ----A---- C:\windows\system32\mfcore.dll
2016-09-07 21:03:12 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-09-07 21:03:12 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-09-07 21:03:12 ----A---- C:\windows\SYSWOW64\mfnetcore.dll
2016-09-07 21:03:12 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-09-07 21:03:12 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-09-07 21:03:12 ----A---- C:\windows\system32\quartz.dll
2016-09-07 21:03:12 ----A---- C:\windows\system32\mfnetcore.dll
2016-09-07 21:03:12 ----A---- C:\windows\system32\evr.dll
2016-09-07 21:03:11 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-09-07 21:03:11 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-09-07 21:03:11 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-09-07 21:03:11 ----A---- C:\windows\SYSWOW64\mfsvr.dll
2016-09-07 21:03:11 ----A---- C:\windows\SYSWOW64\evr.dll
2016-09-07 21:03:11 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-09-07 21:03:11 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-09-07 21:03:11 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-09-07 21:03:11 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-09-07 21:03:11 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-09-07 21:03:11 ----A---- C:\windows\system32\mfsvr.dll
2016-09-07 21:03:11 ----A---- C:\windows\system32\COLORCNV.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-09-07 21:03:10 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-09-07 21:03:10 ----A---- C:\windows\system32\WMADMOE.DLL
2016-09-07 21:03:10 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-09-07 21:03:10 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-09-07 21:03:10 ----A---- C:\windows\system32\MP43DECD.DLL
2016-09-07 21:03:10 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-09-07 21:03:10 ----A---- C:\windows\system32\mfvdsp.dll
2016-09-07 21:03:10 ----A---- C:\windows\system32\mfps.dll
2016-09-07 21:03:10 ----A---- C:\windows\system32\devenum.dll
2016-09-07 21:03:09 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-09-07 21:03:09 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-09-07 21:03:09 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-09-07 21:03:09 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-09-07 21:03:09 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-09-07 21:03:09 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-09-07 21:03:09 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-09-07 21:03:09 ----A---- C:\windows\system32\SysFxUI.dll
2016-09-07 21:03:09 ----A---- C:\windows\system32\qdvd.dll
2016-09-07 21:03:09 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-09-07 21:02:50 ----A---- C:\windows\system32\AuthHost.exe
2016-09-07 21:02:22 ----A---- C:\windows\SYSWOW64\puiapi.dll
2016-09-07 21:02:22 ----A---- C:\windows\SYSWOW64\DafPrintProvider.dll
2016-09-07 21:02:22 ----A---- C:\windows\system32\win32spl.dll
2016-09-07 21:02:22 ----A---- C:\windows\system32\puiobj.dll
2016-09-07 21:02:22 ----A---- C:\windows\system32\localspl.dll
2016-09-07 21:02:21 ----A---- C:\windows\SYSWOW64\puiobj.dll
2016-09-07 21:02:21 ----A---- C:\windows\SYSWOW64\ntprint.dll
2016-09-07 21:02:21 ----A---- C:\windows\system32\puiapi.dll
2016-09-07 21:02:21 ----A---- C:\windows\system32\ntprint.dll
2016-09-07 21:02:21 ----A---- C:\windows\system32\inetpp.dll
2016-09-07 21:02:21 ----A---- C:\windows\system32\DafPrintProvider.dll
2016-09-07 21:02:09 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-09-07 21:02:08 ----A---- C:\windows\system32\ie4uinit.exe
2016-09-07 21:02:07 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-09-07 21:02:07 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-09-07 21:02:07 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-09-07 21:02:06 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-09-07 21:02:06 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-09-07 21:02:03 ----A---- C:\windows\system32\iedkcs32.dll
2016-09-07 21:02:02 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-09-07 21:02:02 ----A---- C:\windows\system32\urlmon.dll
2016-09-07 21:02:01 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-09-07 21:02:01 ----A---- C:\windows\system32\vbscript.dll
2016-09-07 21:02:01 ----A---- C:\windows\system32\msfeeds.dll
2016-09-07 21:02:01 ----A---- C:\windows\system32\dxtrans.dll
2016-09-07 21:02:00 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-09-07 21:01:58 ----A---- C:\windows\system32\iertutil.dll
2016-09-07 21:01:57 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-09-07 21:01:57 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-09-07 21:01:56 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-09-07 21:01:56 ----A---- C:\windows\system32\jscript.dll
2016-09-07 21:01:56 ----A---- C:\windows\system32\hlink.dll
2016-09-07 21:01:55 ----A---- C:\windows\system32\ieframe.dll
2016-09-07 21:01:55 ----A---- C:\windows\system32\dxtmsft.dll
2016-09-07 21:01:54 ----A---- C:\windows\system32\mshtmled.dll
2016-09-07 21:01:53 ----A---- C:\windows\system32\jscript9.dll
2016-09-07 21:01:53 ----A---- C:\windows\system32\ieapfltr.dll
2016-09-07 21:01:52 ----A---- C:\windows\system32\MshtmlDac.dll
2016-09-07 21:01:52 ----A---- C:\windows\system32\ieui.dll
2016-09-07 21:01:51 ----A---- C:\windows\system32\wininet.dll
2016-09-07 21:01:51 ----A---- C:\windows\system32\inetcomm.dll
2016-09-07 21:01:50 ----A---- C:\windows\system32\mshtml.dll
2016-09-07 21:01:48 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2016-09-07 21:01:47 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-09-07 21:01:46 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-09-07 21:01:46 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-09-07 21:01:46 ----A---- C:\windows\system32\webcheck.dll
2016-09-07 21:01:42 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-09-07 21:01:42 ----A---- C:\windows\SYSWOW64\hlink.dll
2016-09-07 21:01:42 ----A---- C:\windows\system32\iepeers.dll
2016-09-07 21:01:41 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-09-07 21:01:41 ----A---- C:\windows\SYSWOW64\iepeers.dll
2016-09-07 20:58:24 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2016-09-07 20:58:23 ----A---- C:\windows\system32\glcndFilter.dll
2016-09-07 20:58:22 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2016-09-07 20:58:21 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2016-09-07 20:58:20 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2016-09-07 20:58:20 ----A---- C:\windows\SYSWOW64\rsaenh.dll
2016-09-07 20:58:20 ----A---- C:\windows\system32\WindowsCodecs.dll
2016-09-07 20:58:20 ----A---- C:\windows\system32\rsaenh.dll
2016-09-07 20:58:16 ----A---- C:\windows\SYSWOW64\netlogon.dll
2016-09-07 20:58:15 ----A---- C:\windows\system32\netlogon.dll
2016-09-07 20:58:15 ----A---- C:\windows\system32\msv1_0.dll
2016-09-07 20:58:14 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-09-07 20:58:12 ----A---- C:\windows\system32\msxml3.dll
2016-09-07 20:58:11 ----A---- C:\windows\SYSWOW64\msxml3.dll
2016-09-07 20:57:59 ----A---- C:\windows\SYSWOW64\WsmWmiPl.dll
2016-09-07 20:57:59 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2016-09-07 20:57:59 ----A---- C:\windows\SYSWOW64\WsmAuto.dll
2016-09-07 20:57:59 ----A---- C:\windows\SYSWOW64\WsmAgent.dll
2016-09-07 20:57:59 ----A---- C:\windows\system32\WsmSvc.dll
2016-09-07 20:57:59 ----A---- C:\windows\system32\WsmAuto.dll
2016-09-07 20:57:59 ----A---- C:\windows\system32\WsmAgent.dll
2016-09-07 20:57:58 ----A---- C:\windows\system32\WsmWmiPl.dll
2016-09-07 20:56:14 ----A---- C:\windows\system32\GdiPlus.dll
2016-09-07 20:56:14 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2016-09-07 20:56:13 ----A---- C:\windows\SYSWOW64\GdiPlus.dll
2016-09-07 20:56:12 ----A---- C:\windows\system32\generaltel.dll
2016-09-07 20:56:12 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-09-07 20:56:12 ----A---- C:\windows\system32\centel.dll
2016-09-07 20:56:12 ----A---- C:\windows\system32\appraiser.dll
2016-09-07 20:56:11 ----A---- C:\windows\system32\pcasvc.dll
2016-09-07 20:56:11 ----A---- C:\windows\system32\invagent.dll
2016-09-07 20:56:11 ----A---- C:\windows\system32\devinv.dll
2016-09-07 20:56:11 ----A---- C:\windows\system32\aepic.dll
2016-09-07 20:56:11 ----A---- C:\windows\system32\aeinv.dll
2016-09-07 20:56:11 ----A---- C:\windows\system32\acmigration.dll
2016-09-07 20:55:24 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-09-07 20:55:24 ----A---- C:\windows\system32\lsasrv.dll
2016-09-07 20:55:24 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-09-07 20:55:24 ----A---- C:\windows\system32\certcli.dll
2016-09-07 20:55:23 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2016-09-07 20:55:23 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-09-07 20:55:23 ----A---- C:\windows\system32\drivers\cng.sys
2016-09-07 20:55:23 ----A---- C:\windows\system32\bcryptprimitives.dll
2016-09-07 20:55:20 ----A---- C:\windows\SYSWOW64\explorer.exe
2016-09-07 20:55:19 ----A---- C:\windows\system32\SystemSettingsAdminFlowUI.dll
2016-09-07 20:55:19 ----A---- C:\windows\explorer.exe
2016-09-07 20:55:11 ----A---- C:\windows\system32\ExplorerFrame.dll
2016-09-07 20:55:10 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2016-09-07 20:55:10 ----A---- C:\windows\system32\twinui.appcore.dll
2016-09-07 20:55:10 ----A---- C:\windows\system32\SystemSettingsAdminFlows.exe
2016-09-07 20:55:10 ----A---- C:\windows\system32\SettingsHandlers.dll
2016-09-07 20:55:09 ----A---- C:\windows\SYSWOW64\twinui.appcore.dll
2016-09-07 20:55:09 ----A---- C:\windows\SYSWOW64\SettingSyncCore.dll
2016-09-07 20:55:09 ----A---- C:\windows\SYSWOW64\SettingSync.dll
2016-09-07 20:55:09 ----A---- C:\windows\SYSWOW64\AppxAllUserStore.dll
2016-09-07 20:55:09 ----A---- C:\windows\system32\usercpl.dll
2016-09-07 20:55:09 ----A---- C:\windows\system32\themecpl.dll
2016-09-07 20:55:09 ----A---- C:\windows\system32\SettingSyncHost.exe
2016-09-07 20:55:09 ----A---- C:\windows\system32\SettingSyncCore.dll
2016-09-07 20:55:09 ----A---- C:\windows\system32\SettingSync.dll
2016-09-07 20:55:09 ----A---- C:\windows\system32\hgcpl.dll
2016-09-07 20:55:09 ----A---- C:\windows\system32\AppXDeploymentExtensions.dll
2016-09-07 20:55:09 ----A---- C:\windows\system32\AppxAllUserStore.dll
2016-09-07 20:55:08 ----A---- C:\windows\SYSWOW64\usercpl.dll
2016-09-07 20:55:08 ----A---- C:\windows\SYSWOW64\themecpl.dll
2016-09-07 20:55:08 ----A---- C:\windows\SYSWOW64\stobject.dll
2016-09-07 20:55:08 ----A---- C:\windows\SYSWOW64\SettingSyncHost.exe
2016-09-07 20:55:08 ----A---- C:\windows\SYSWOW64\SettingMonitor.dll
2016-09-07 20:55:08 ----A---- C:\windows\SYSWOW64\hgcpl.dll
2016-09-07 20:55:08 ----A---- C:\windows\system32\stobject.dll
2016-09-07 20:55:08 ----A---- C:\windows\system32\SettingMonitor.dll
2016-09-07 20:55:08 ----A---- C:\windows\system32\AppXDeploymentServer.dll
2016-09-07 20:53:05 ----A---- C:\windows\system32\workfolderssvc.dll
2016-09-07 20:53:05 ----A---- C:\windows\system32\WorkfoldersControl.dll
2016-09-07 20:52:38 ----A---- C:\windows\SYSWOW64\wscapi.dll
2016-09-07 20:52:38 ----A---- C:\windows\system32\wscsvc.dll
2016-09-07 20:52:38 ----A---- C:\windows\system32\wscapi.dll
2016-09-07 20:51:42 ----A---- C:\windows\SYSWOW64\mtxoci.dll
2016-09-07 20:51:42 ----A---- C:\windows\SYSWOW64\msorcl32.dll
2016-09-07 20:51:42 ----A---- C:\windows\system32\mtxoci.dll
2016-09-07 20:51:39 ----A---- C:\windows\system32\win32k.sys
2016-09-07 20:51:39 ----A---- C:\windows\system32\user32.dll
2016-09-07 20:51:39 ----A---- C:\windows\system32\FntCache.dll
2016-09-07 20:51:39 ----A---- C:\windows\system32\DWrite.dll
2016-09-07 20:51:38 ----A---- C:\windows\SYSWOW64\user32.dll
2016-09-07 20:51:38 ----A---- C:\windows\SYSWOW64\DWrite.dll
2016-09-07 20:51:22 ----A---- C:\windows\system32\drivers\disk.sys
2016-09-07 20:50:30 ----A---- C:\windows\system32\drivers\vpci.sys
2016-09-07 20:50:29 ----A---- C:\windows\SYSWOW64\msctf.dll
2016-09-07 20:50:29 ----A---- C:\windows\system32\msctf.dll
2016-09-07 20:49:48 ----A---- C:\windows\system32\storagewmi.dll
2016-09-07 20:49:47 ----A---- C:\windows\SYSWOW64\storagewmi.dll
2016-09-07 20:48:41 ----A---- C:\windows\SYSWOW64\dsparse.dll
2016-09-07 20:48:41 ----A---- C:\windows\system32\dsparse.dll
2016-09-07 20:47:59 ----A---- C:\windows\SYSWOW64\dhcpsapi.dll
2016-09-07 20:47:59 ----A---- C:\windows\system32\dhcpsapi.dll
2016-09-07 20:47:58 ----A---- C:\windows\SYSWOW64\atmlib.dll
2016-09-07 20:47:58 ----A---- C:\windows\SYSWOW64\atmfd.dll
2016-09-07 20:47:58 ----A---- C:\windows\system32\atmlib.dll
2016-09-07 20:47:58 ----A---- C:\windows\system32\atmfd.dll
2016-09-07 20:47:30 ----A---- C:\windows\SYSWOW64\comsvcs.dll
2016-09-07 20:47:30 ----A---- C:\windows\SYSWOW64\catsrvut.dll
2016-09-07 20:47:30 ----A---- C:\windows\system32\comsvcs.dll
2016-09-07 20:47:30 ----A---- C:\windows\system32\catsrvut.dll
2016-09-07 20:47:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-09-07 20:47:12 ----A---- C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\ucrtbase.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-09-07 20:47:11 ----A---- C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-09-07 20:47:10 ----A---- C:\windows\SYSWOW64\ucrtbase.dll
2016-09-07 20:46:35 ----A---- C:\windows\system32\WindowsAnytimeUpgradeui.exe
2016-09-07 20:46:35 ----A---- C:\windows\system32\seclogon.dll
2016-09-07 20:45:56 ----A---- C:\windows\system32\wbengine.exe
2016-09-07 20:45:55 ----A---- C:\windows\SYSWOW64\shacct.dll
2016-09-07 20:45:55 ----A---- C:\windows\system32\shacct.dll
2016-09-07 20:45:55 ----A---- C:\windows\system32\drivers\netio.sys
2016-09-07 20:45:17 ----A---- C:\windows\SYSWOW64\PCPKsp.dll
2016-09-07 20:45:17 ----A---- C:\windows\system32\PCPKsp.dll
2016-09-07 20:45:10 ----A---- C:\windows\SYSWOW64\d3d10level9.dll
2016-09-07 20:45:10 ----A---- C:\windows\system32\d3d10level9.dll
2016-09-07 20:44:12 ----A---- C:\windows\system32\drivers\mrxdav.sys
2016-09-07 20:44:11 ----A---- C:\windows\system32\drivers\usbport.sys
2016-09-07 20:44:11 ----A---- C:\windows\system32\drivers\USBHUB3.SYS
2016-09-07 20:44:11 ----A---- C:\windows\system32\drivers\usbhub.sys
2016-09-07 20:44:10 ----A---- C:\windows\system32\drivers\usbuhci.sys
2016-09-07 20:44:10 ----A---- C:\windows\system32\drivers\usbohci.sys
2016-09-07 20:44:10 ----A---- C:\windows\system32\drivers\usbd.sys
2016-09-07 20:44:09 ----A---- C:\windows\system32\wmp.dll
2016-09-07 20:44:08 ----A---- C:\windows\SYSWOW64\wmp.dll
2016-09-07 20:44:07 ----A---- C:\windows\SYSWOW64\WMASF.DLL
2016-09-07 20:44:07 ----A---- C:\windows\system32\WMASF.DLL
2016-09-07 20:44:02 ----A---- C:\windows\system32\combase.dll
2016-09-07 20:44:01 ----A---- C:\windows\SYSWOW64\WinTypes.dll
2016-09-07 20:44:01 ----A---- C:\windows\SYSWOW64\combase.dll
2016-09-07 20:44:01 ----A---- C:\windows\system32\WinTypes.dll
2016-09-07 20:44:00 ----A---- C:\windows\SYSWOW64\wincorlib.dll
2016-09-07 20:41:19 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2016-09-07 20:40:50 ----A---- C:\windows\system32\wups2.dll
2016-09-07 20:40:49 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-09-07 20:40:49 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2016-09-07 20:40:49 ----A---- C:\windows\SYSWOW64\FWPUCLNT.DLL
2016-09-07 20:40:49 ----A---- C:\windows\SYSWOW64\authui.dll
2016-09-07 20:40:49 ----A---- C:\windows\system32\microsoft-windows-system-events.dll
2016-09-07 20:40:49 ----A---- C:\windows\system32\actxprxy.dll
2016-09-07 20:40:48 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-09-07 20:40:48 ----A---- C:\windows\SYSWOW64\actxprxy.dll
2016-09-07 20:40:48 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-09-07 20:40:47 ----A---- C:\windows\SYSWOW64\twinui.dll
2016-09-07 20:40:46 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-09-07 20:40:46 ----A---- C:\windows\system32\wuapp.exe
2016-09-07 20:40:46 ----A---- C:\windows\system32\FWPUCLNT.DLL
2016-09-07 20:40:46 ----A---- C:\windows\system32\authui.dll
2016-09-07 20:40:45 ----A---- C:\windows\system32\drivers\wfplwfs.sys
2016-09-07 20:40:45 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-09-07 20:40:45 ----A---- C:\windows\system32\drivers\dfsc.sys
2016-09-07 20:40:44 ----A---- C:\windows\system32\ntdll.dll
2016-09-07 20:40:43 ----A---- C:\windows\SYSWOW64\shell32.dll
2016-09-07 20:40:43 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-09-07 20:40:42 ----A---- C:\windows\system32\twinui.dll
2016-09-07 20:40:41 ----A---- C:\windows\system32\BFE.DLL
2016-09-07 20:40:40 ----A---- C:\windows\system32\wuaueng.dll
2016-09-07 20:40:40 ----A---- C:\windows\system32\wuauclt.exe
2016-09-07 20:40:40 ----A---- C:\windows\system32\consent.exe
2016-09-07 20:40:39 ----A---- C:\windows\system32\schannel.dll
2016-09-07 20:40:39 ----A---- C:\windows\system32\kerberos.dll
2016-09-07 20:40:39 ----A---- C:\windows\system32\drivers\storport.sys
2016-09-07 20:40:39 ----A---- C:\windows\system32\appinfo.dll
2016-09-07 20:40:38 ----A---- C:\windows\system32\ntvdm64.dll
2016-09-07 20:40:38 ----A---- C:\windows\system32\msi.dll
2016-09-07 20:40:37 ----A---- C:\windows\system32\ncrypt.dll
2016-09-07 20:40:36 ----A---- C:\windows\system32\KernelBase.dll
2016-09-07 20:40:35 ----A---- C:\windows\system32\shell32.dll
2016-09-07 20:40:34 ----A---- C:\windows\system32\sppsvc.exe
2016-09-07 20:40:32 ----A---- C:\windows\system32\Windows.UI.Xaml.dll
2016-09-07 20:40:30 ----A---- C:\windows\SYSWOW64\Windows.UI.Xaml.dll
2016-09-07 20:40:28 ----A---- C:\windows\SYSWOW64\msi.dll
2016-09-07 20:40:24 ----A---- C:\windows\SYSWOW64\ncryptsslp.dll
2016-09-07 20:40:24 ----A---- C:\windows\system32\winresume.exe
2016-09-07 20:40:23 ----A---- C:\windows\system32\winload.exe
2016-09-07 20:40:23 ----A---- C:\windows\system32\ncryptsslp.dll
2016-09-07 20:40:23 ----A---- C:\windows\system32\drivers\vhdmp.sys
2016-09-07 20:40:22 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2016-09-07 20:40:22 ----A---- C:\windows\SYSWOW64\wudriver.dll
2016-09-07 20:40:22 ----A---- C:\windows\SYSWOW64\wuapp.exe
2016-09-07 20:40:22 ----A---- C:\windows\SYSWOW64\wuapi.dll
2016-09-07 20:40:22 ----A---- C:\windows\system32\wuwebv.dll
2016-09-07 20:40:22 ----A---- C:\windows\system32\WUSettingsProvider.dll
2016-09-07 20:40:22 ----A---- C:\windows\system32\wudriver.dll
2016-09-07 20:40:22 ----A---- C:\windows\system32\wucltux.dll
2016-09-07 20:40:22 ----A---- C:\windows\system32\wuapi.dll
2016-09-07 20:40:21 ----A---- C:\windows\system32\sppobjs.dll
2016-09-07 20:40:19 ----A---- C:\windows\system32\crypt32.dll
2016-09-07 20:40:18 ----A---- C:\windows\system32\drivers\rdbss.sys
2016-09-07 20:40:17 ----A---- C:\windows\SYSWOW64\crypt32.dll
2016-09-07 20:40:17 ----A---- C:\windows\system32\drivers\fvevol.sys
2016-09-07 20:40:17 ----A---- C:\windows\system32\CertEnroll.dll
2016-09-07 20:40:16 ----A---- C:\windows\system32\winhttp.dll
2016-09-07 20:40:16 ----A---- C:\windows\system32\sppwinob.dll
2016-09-07 20:40:15 ----A---- C:\windows\SYSWOW64\winhttp.dll
2016-09-07 20:40:15 ----A---- C:\windows\SYSWOW64\CertEnroll.dll
2016-09-07 20:40:15 ----A---- C:\windows\system32\rpcss.dll
2016-09-07 20:40:15 ----A---- C:\windows\system32\drivers\Classpnp.sys
2016-09-07 20:40:14 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-09-07 20:40:14 ----A---- C:\windows\system32\drivers\mup.sys
2016-09-07 20:40:13 ----A---- C:\windows\system32\webio.dll
2016-09-07 20:40:13 ----A---- C:\windows\system32\rdpcore.dll
2016-09-07 20:40:13 ----A---- C:\windows\system32\drivers\ndiswan.sys
2016-09-07 20:40:12 ----A---- C:\windows\SYSWOW64\webio.dll
2016-09-07 20:40:12 ----A---- C:\windows\SYSWOW64\StructuredQuery.dll
2016-09-07 20:40:12 ----A---- C:\windows\system32\MPSSVC.dll
2016-09-07 20:40:12 ----A---- C:\windows\system32\iphlpsvc.dll
2016-09-07 20:40:11 ----A---- C:\windows\SYSWOW64\rdpcore.dll
2016-09-07 20:40:11 ----A---- C:\windows\system32\Windows.Devices.Geolocation.dll
2016-09-07 20:40:11 ----A---- C:\windows\system32\tpmvsc.dll
2016-09-07 20:40:11 ----A---- C:\windows\system32\StructuredQuery.dll
2016-09-07 20:40:10 ----A---- C:\windows\system32\drivers\hidclass.sys
2016-09-07 20:40:10 ----A---- C:\windows\system32\drivers\dumpfve.sys
2016-09-07 20:40:10 ----A---- C:\windows\system32\certutil.exe
2016-09-07 20:40:09 ----A---- C:\windows\system32\drivers\hidusb.sys
2016-09-07 20:40:08 ----A---- C:\windows\SYSWOW64\Windows.Devices.Geolocation.dll
2016-09-07 20:40:08 ----A---- C:\windows\SYSWOW64\cryptxml.dll
2016-09-07 20:40:08 ----A---- C:\windows\system32\LocationApi.dll
2016-09-07 20:40:08 ----A---- C:\windows\system32\gpresult.exe
2016-09-07 20:40:08 ----A---- C:\windows\system32\drivers\stornvme.sys
2016-09-07 20:40:08 ----A---- C:\windows\system32\cryptxml.dll
2016-09-07 20:40:07 ----A---- C:\windows\SYSWOW64\UserAccountBroker.exe
2016-09-07 20:40:07 ----A---- C:\windows\SYSWOW64\LocationApi.dll
2016-09-07 20:40:07 ----A---- C:\windows\system32\UserAccountBroker.exe
2016-09-07 20:40:06 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-09-07 20:40:06 ----A---- C:\windows\SYSWOW64\msiexec.exe
2016-09-07 20:40:06 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2016-09-07 20:40:06 ----A---- C:\windows\system32\WebClnt.dll
2016-09-07 20:40:06 ----A---- C:\windows\system32\msiexec.exe
2016-09-07 20:40:05 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2016-09-07 20:40:05 ----A---- C:\windows\SYSWOW64\olepro32.dll
2016-09-07 20:40:05 ----A---- C:\windows\system32\wfapigp.dll
2016-09-07 20:40:05 ----A---- C:\windows\system32\FirewallAPI.dll
2016-09-07 20:40:05 ----A---- C:\windows\system32\BdeHdCfgLib.dll
2016-09-07 20:40:03 ----A---- C:\windows\system32\hbaapi.dll
2016-09-07 20:40:03 ----A---- C:\windows\system32\fveapi.dll
2016-09-07 20:40:03 ----A---- C:\windows\system32\asycfilt.dll
2016-09-07 20:40:02 ----A---- C:\windows\SYSWOW64\wfapigp.dll
2016-09-07 20:40:02 ----A---- C:\windows\SYSWOW64\gpresult.exe
2016-09-07 20:40:02 ----A---- C:\windows\system32\bdesvc.dll
2016-09-07 20:40:01 ----A---- C:\windows\SYSWOW64\hbaapi.dll
2016-09-07 20:40:01 ----A---- C:\windows\SYSWOW64\certutil.exe
2016-09-07 20:40:01 ----A---- C:\windows\SYSWOW64\certenc.dll
2016-09-07 20:40:01 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2016-09-07 20:40:01 ----A---- C:\windows\system32\httpprxm.dll
2016-09-07 20:40:01 ----A---- C:\windows\system32\certenc.dll
2016-09-07 20:40:01 ----A---- C:\windows\system32\adhsvc.dll
2016-09-07 20:40:00 ----A---- C:\windows\system32\httpprxp.dll
2016-09-07 20:40:00 ----A---- C:\windows\system32\fvecpl.dll
2016-09-07 20:40:00 ----A---- C:\windows\system32\drivers\hidparse.sys
2016-09-07 20:28:35 ----A---- C:\windows\system32\WinSync.dll
2016-09-07 20:28:34 ----A---- C:\windows\SYSWOW64\WinSync.dll
2016-09-07 20:28:25 ----A---- C:\windows\system32\drivers\tcpip.sys
2016-09-07 20:28:24 ----A---- C:\windows\SYSWOW64\IPHLPAPI.DLL
2016-09-07 20:28:24 ----A---- C:\windows\system32\IPHLPAPI.DLL
2016-09-07 20:23:23 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2016-09-07 20:23:20 ----A---- C:\windows\system32\winlogon.exe
2016-09-07 20:23:17 ----A---- C:\windows\system32\wininit.exe
2016-09-07 20:23:10 ----A---- C:\windows\system32\dpapisrv.dll
2016-09-07 20:22:20 ----A---- C:\windows\system32\drivers\volmgr.sys
2016-09-07 20:22:18 ----A---- C:\windows\system32\msra.exe
2016-09-07 20:21:51 ----A---- C:\windows\system32\poqexec.exe
2016-09-07 20:21:50 ----A---- C:\windows\SYSWOW64\poqexec.exe
2016-09-07 20:21:42 ----A---- C:\windows\system32\mfds.dll
2016-09-07 20:21:41 ----A---- C:\windows\SYSWOW64\mfds.dll
2016-09-07 20:21:34 ----A---- C:\windows\system32\drivers\volsnap.sys
2016-09-07 20:21:32 ----A---- C:\windows\SYSWOW64\gdi32.dll
2016-09-07 20:21:32 ----A---- C:\windows\system32\gdi32.dll
2016-09-07 20:21:18 ----A---- C:\windows\system32\basesrv.dll
2016-09-07 20:21:08 ----A---- C:\windows\system32\drivers\netbt.sys
2016-09-07 20:21:07 ----A---- C:\windows\SYSWOW64\ws2_32.dll
2016-09-07 20:21:07 ----A---- C:\windows\SYSWOW64\mswsock.dll
2016-09-07 20:21:07 ----A---- C:\windows\system32\ws2_32.dll
2016-09-07 20:21:07 ----A---- C:\windows\system32\mswsock.dll
2016-09-07 20:21:06 ----A---- C:\windows\system32\NcdAutoSetup.dll
2016-09-07 20:21:00 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-09-07 20:21:00 ----A---- C:\windows\system32\advapi32.dll
2016-09-07 18:58:34 ----A---- C:\windows\system32\sdnclean64.exe
2016-09-07 18:58:25 ----D---- C:\ProgramData\Spybot - Search & Destroy
2016-09-07 18:58:10 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-09-07 18:55:28 ----D---- C:\ProgramData\Licenses
2016-09-07 18:55:20 ----A---- C:\windows\SYSWOW64\MSSTDFMT.DLL
2016-09-07 18:55:19 ----D---- C:\Program Files (x86)\SpywareBlaster
2016-09-07 17:42:31 ----A---- C:\windows\system32\drivers\MBAMSwissArmy.sys
2016-09-07 17:41:55 ----A---- C:\windows\system32\drivers\mbamchameleon.sys
2016-09-07 17:41:54 ----D---- C:\ProgramData\Malwarebytes
2016-09-07 17:41:54 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-09-07 17:41:54 ----A---- C:\windows\system32\drivers\mwac.sys
2016-09-07 17:41:54 ----A---- C:\windows\system32\drivers\mbam.sys
2016-09-07 17:36:53 ----D---- C:\ProgramData\McAfee
2016-09-07 17:06:50 ----D---- C:\Program Files\VS Revo Group
2016-09-07 16:38:30 ----A---- C:\windows\system32\drivers\tdx.sys
2016-09-07 16:38:30 ----A---- C:\windows\system32\drivers\afd.sys
2016-09-07 16:36:34 ----D---- C:\Program Files\Classic Shell
2016-09-07 16:23:18 ----A---- C:\windows\system32\drivers\PSKMAD.sys
2016-09-07 16:22:56 ----D---- C:\ProgramData\panda_url_filtering
2016-09-07 16:22:53 ----D---- C:\Program Files\Panda Security URL Filtering
2016-09-07 16:20:55 ----D---- C:\Program Files (x86)\pandasecuritytb
2016-09-07 16:20:34 ----D---- C:\Users\kai\AppData\Roaming\Panda Security
2016-09-07 16:18:59 ----D---- C:\Program Files (x86)\Panda Security
2016-09-07 16:14:40 ----D---- C:\ProgramData\Panda Security
2016-09-07 15:53:05 ----D---- C:\Users\kai\AppData\Roaming\googleico
2016-09-06 16:10:09 ----D---- C:\windows\system32\%LOCALAPPDATA%
2016-09-06 16:05:30 ----A---- C:\windows\ntbtlog.txt

======List of files/folders modified in the last 1 month======

2016-09-08 20:09:12 ----RD---- C:\Program Files
2016-09-08 20:08:02 ----RAD---- C:\windows\System32
2016-09-08 20:08:02 ----D---- C:\windows\WinSxS
2016-09-08 20:08:02 ----D---- C:\windows\system32\SecureBootUpdates
2016-09-08 20:07:58 ----D---- C:\windows\Temp
2016-09-08 20:07:55 ----D---- C:\windows\Prefetch
2016-09-08 20:05:59 ----D---- C:\windows\Microsoft.NET
2016-09-08 20:05:19 ----D---- C:\windows\system32\config
2016-09-08 20:05:13 ----D---- C:\windows\CbsTemp
2016-09-08 20:00:00 ----D---- C:\windows\system32\sru
2016-09-08 19:29:12 ----RSD---- C:\windows\assembly
2016-09-08 19:15:44 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-09-08 19:15:43 ----D---- C:\windows\Inf
2016-09-08 19:11:23 ----D---- C:\windows\system32\drivers
2016-09-08 19:07:12 ----SD---- C:\ProgramData\Microsoft
2016-09-08 19:06:56 ----SD---- C:\Users\kai\AppData\Roaming\Microsoft
2016-09-08 14:52:25 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-08 13:26:57 ----RD---- C:\Program Files (x86)
2016-09-08 13:23:48 ----AD---- C:\Windows
2016-09-08 12:26:09 ----D---- C:\windows\system32\DriverStore
2016-09-08 09:14:32 ----D---- C:\windows\system32\Tasks
2016-09-08 09:12:40 ----D---- C:\ProgramData\LU
2016-09-08 08:58:34 ----D---- C:\windows\SysWOW64
2016-09-08 08:57:14 ----RSD---- C:\windows\Fonts
2016-09-08 08:57:14 ----D---- C:\windows\system32\Boot
2016-09-08 08:57:13 ----D---- C:\windows\SYSWOW64\setup
2016-09-08 08:57:12 ----D---- C:\windows\system32\wbem
2016-09-08 08:57:12 ----D---- C:\windows\system32\setup
2016-09-08 08:57:12 ----D---- C:\windows\system32\nl-NL
2016-09-08 08:57:12 ----D---- C:\windows\system32\fr-FR
2016-09-08 08:57:12 ----D---- C:\windows\system32\en-US
2016-09-08 08:57:12 ----D---- C:\windows\system32\de-DE
2016-09-08 08:40:17 ----D---- C:\windows\system32\catroot2
2016-09-08 08:07:21 ----D---- C:\Program Files\Microsoft Silverlight
2016-09-08 08:07:21 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-09-07 23:55:03 ----D---- C:\windows\SYSWOW64\nl-NL
2016-09-07 23:55:03 ----D---- C:\windows\SYSWOW64\fr-FR
2016-09-07 23:55:03 ----D---- C:\windows\SYSWOW64\en-US
2016-09-07 23:55:03 ----D---- C:\windows\SYSWOW64\de-DE
2016-09-07 23:55:02 ----D---- C:\windows\system32\drivers\nl-NL
2016-09-07 23:55:02 ----D---- C:\windows\system32\drivers\fr-FR
2016-09-07 23:55:02 ----D---- C:\windows\system32\drivers\en-US
2016-09-07 23:55:02 ----D---- C:\windows\system32\drivers\de-DE
2016-09-07 23:55:00 ----RD---- C:\windows\ToastData
2016-09-07 23:55:00 ----D---- C:\Program Files\Internet Explorer
2016-09-07 23:55:00 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-07 23:54:54 ----D---- C:\windows\PolicyDefinitions
2016-09-07 23:54:52 ----SD---- C:\windows\system32\CompatTel
2016-09-07 23:54:52 ----D---- C:\windows\system32\appraiser
2016-09-07 23:54:52 ----D---- C:\windows\apppatch
2016-09-07 23:54:48 ----D---- C:\windows\SYSWOW64\wbem
2016-09-07 23:54:32 ----D---- C:\windows\system32\CodeIntegrity
2016-09-07 23:54:19 ----D---- C:\windows\SYSWOW64\migration
2016-09-07 23:54:18 ----D---- C:\windows\system32\migration
2016-09-07 23:08:12 ----SHD---- C:\windows\Installer
2016-09-07 22:27:07 ----D---- C:\windows\system32\MRT
2016-09-07 22:20:20 ----AC---- C:\windows\system32\MRT.exe
2016-09-07 21:35:18 ----D---- C:\Program Files (x86)\Common Files
2016-09-07 21:34:37 ----HD---- C:\ProgramData
2016-09-07 19:03:26 ----D---- C:\Program Files\Common Files\AV
2016-09-07 18:57:01 ----AD---- C:\ProgramData\Temp
2016-09-07 18:22:27 ----D---- C:\Program Files\Common Files\McAfee
2016-09-07 18:22:27 ----D---- C:\Program Files (x86)\McAfee
2016-09-07 18:21:52 ----D---- C:\Program Files\mcafee
2016-09-07 18:15:38 ----D---- C:\windows\Tasks
2016-09-07 17:36:28 ----SHD---- C:\System Volume Information
2016-09-07 17:36:28 ----D---- C:\windows\AppReadiness
2016-09-07 17:36:27 ----HD---- C:\Program Files\WindowsApps
2016-09-07 17:31:55 ----HD---- C:\windows\ELAMBKUP
2016-09-07 16:52:19 ----D---- C:\windows\system32\Macromed
2016-09-07 16:52:08 ----D---- C:\windows\SYSWOW64\Macromed
2016-09-07 16:47:11 ----D---- C:\windows\system32\wdi
2016-09-07 16:40:20 ----D---- C:\Users\kai\AppData\Roaming\Software Informer
2016-09-07 16:04:52 ----D---- C:\ProgramData\Origin
2016-09-07 15:58:37 ----D---- C:\Program Files (x86)\Origin
2016-09-07 15:55:51 ----D---- C:\Program Files (x86)\Steam
2016-09-07 15:54:09 ----D---- C:\Users\kai\AppData\Roaming\Skype
2016-09-07 15:52:16 ----RD---- C:\Program Files (x86)\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem7.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\windows\System32\drivers\amdkmpfd.sys [2013-12-12 36608]
R0 amdpsp;@oem41.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\windows\system32\DRIVERS\amdpsp.sys [2016-05-04 277232]
R0 LubSec;LubSec; C:\windows\System32\Drivers\LubSec.sys [2014-11-04 47864]
R0 SmartDefragDriver;SmartDefragDriver; C:\windows\System32\Drivers\SmartDefragDriver.sys [2016-03-22 21360]
R1 CLVirtualDrive;CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [2013-11-13 91912]
R1 LubFsFlt;LubFsFlt; \??\C:\windows\System32\Drivers\LubFsFlt.sys [2014-10-30 56568]
R1 NNSALPC;NNSAlpc; C:\windows\system32\DRIVERS\NNSAlpc.sys [2015-12-04 94456]
R1 NNSHTTP;NNSHttp; C:\windows\system32\DRIVERS\NNSHttp.sys [2015-12-04 201464]
R1 NNSHTTPS;NNSHttps; C:\windows\system32\DRIVERS\NNSHttps.sys [2015-12-04 110840]
R1 NNSIDS;NNSids; C:\windows\system32\DRIVERS\NNSIds.sys [2015-12-04 110840]
R1 NNSNAHSL;@oem40.inf,%NNSNAHSL_Desc%;Network Activity Hook Server LightWeight Filter Driver; C:\windows\system32\DRIVERS\NNSNAHSL.sys [2015-06-19 58616]
R1 NNSPICC;NNSPicc; C:\windows\system32\DRIVERS\NNSPicc.sys [2015-12-04 103160]
R1 NNSPIHSW;NNSPihsw; C:\windows\system32\DRIVERS\NNSPihsw.sys [2016-03-14 85712]
R1 NNSPOP3;NNSPop3; C:\windows\system32\DRIVERS\NNSPop3.sys [2015-12-04 124152]
R1 NNSPROT;NNSProt; C:\windows\system32\DRIVERS\NNSProt.sys [2015-12-04 300280]
R1 NNSPRV;NNSPrv; C:\windows\system32\DRIVERS\NNSPrv.sys [2016-02-17 177424]
R1 NNSSMTP;NNSSmtp; C:\windows\system32\DRIVERS\NNSSmtp.sys [2015-12-04 113400]
R1 NNSSTRM;NNSStrm; C:\windows\system32\DRIVERS\NNSStrm.sys [2016-02-17 264976]
R1 NNSTLSC;NNSTlsc; C:\windows\system32\DRIVERS\NNSTlsc.sys [2015-12-04 106232]
R1 PSINKNC;PSINKnc; C:\windows\system32\DRIVERS\psinknc.sys [2016-08-05 205072]
R2 APXACC;@oem13.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\windows\system32\DRIVERS\appexDrv.sys [2013-11-01 224992]
R2 PSINAflt;PSINAflt; C:\windows\system32\DRIVERS\PSINAflt.sys [2016-08-05 171792]
R2 PSINFile;PSINFile; C:\windows\system32\DRIVERS\PSINFile.sys [2016-08-05 127248]
R2 PSINProc;PSINProc; C:\windows\system32\DRIVERS\PSINProc.sys [2016-08-05 131344]
R2 PSINProt;PSINProt; C:\windows\system32\DRIVERS\PSINProt.sys [2016-08-05 144656]
R2 PSINReg;PSINReg; C:\windows\system32\DRIVERS\PSINReg.sys [2016-08-05 114960]
R3 ACPIVPC;@oem35.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2014-12-07 35576]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2014-06-03 13278208]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2014-06-03 625152]
R3 AthBTPort;@oem4.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2013-12-24 89800]
R3 athr;@oem33.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athwbx.sys [2013-12-12 3881472]
R3 AtiHDAudioService;@oem9.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdWB6.sys [2014-03-11 222720]
R3 BTATH_A2DP;@oem3.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2013-12-24 338120]
R3 btath_avdt;@oem3.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2013-12-24 116424]
R3 BTATH_BUS;@oem1.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2013-12-24 34384]
R3 BTATH_HCRP;@oem6.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2013-12-24 179432]
R3 BTATH_LWFLT;@oem8.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2013-12-24 77464]
R3 BTATH_RCP;@oem10.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2013-12-24 137928]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2013-12-24 597192]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2015-06-10 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2015-06-10 81920]
R3 ETD;@oem31.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\windows\system32\DRIVERS\ETD.sys [2014-02-18 377608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2014-02-11 3864152]
R3 PSKMAD;PSKMAD; C:\windows\System32\DRIVERS\PSKMAD.sys [2016-08-08 70360]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSP2STOR;@oem15.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\windows\system32\DRIVERS\RtsP2Stor.sys [2013-09-24 290520]
R3 RTL8168;@oem14.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2013-12-18 839896]
R3 rtsuvc;@oem21.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\windows\system32\DRIVERS\rtsuvc.sys [2014-01-21 9105624]
S3 amdkmcsp;@oem41.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\windows\system32\DRIVERS\amdkmcsp.sys [2016-05-04 101104]
S3 BRDriver64_1_3_3_E02B25FC;BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [2015-08-22 78088]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2015-06-10 1201664]
S3 dg_ssudbus;@oem38.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 ssudmdm;@oem39.inf,%ssud.Service.Name%;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2014-06-03 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-06-03 344064]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-12-24 318592]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2014-07-10 592880]
R2 ClassicShellService;Classic Shell Service; C:\Program Files\Classic Shell\ClassicShellService.exe [2013-06-29 68608]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2013-10-09 99632]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-03-06 584632]
R2 LenovoSetSvr;LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe [2014-12-07 389680]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-12-07 198192]
R2 MaxthonUpdateSvc;Maxthon Core Update Service; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [2015-12-07 1872808]
R2 NanoServiceMain;Panda Protection Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [2016-08-05 153096]
R2 NitroDriverReadSpool9;NitroPDFDriverCreatorReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [2013-12-13 230920]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\windows\SysWOW64\NLSSRV32.EXE [2013-12-13 69640]
R2 panda_url_filtering;panda_url_filtering Service; C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe [2015-11-06 287752]
R2 PandaAgent;Panda Devices Agent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [2016-07-19 86104]
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2014-12-07 288240]
R2 PSUAService;Panda Product Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [2016-08-05 48584]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 tbaseprovisioning;tbaseprovisioning; C:\windows\SysWOW64\tbaseprovisioning.exe [2016-05-04 54800]
R2 USBBKSvc;USBBKSvc; C:\Program Files (x86)\Lenovo\USB Blocker\USBBKSvc.exe [2014-12-17 36072]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [2014-12-07 68880]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-04-21 37624]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-07 270016]
S3 BRSptStub;BitRaider Mini-Support Service Stub Loader; C:\ProgramData\BitRaider\BRSptStub.exe [2015-08-22 363208]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-09-23 561408]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-09-04 272776]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-09-08 147624]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-09-07 2122248]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2014-12-07 308720]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-11-10 836176]

-----------------EOF-----------------