DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.15063.608  BrowserJavaVersion: 11.151.2
Run by Y at 11:20:58 on 2017-12-01
Microsoft Windows 10 Pro  10.0.15063.0.1250.420.1033.18.32393.24265 [GMT 1:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Smart Security *Enabled/Updated* {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
SP: ESET Smart Security *Enabled/Updated* {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personln firewall *Enabled* {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
.
============== Running Processes ===============
.
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s lmhosts
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservice -s bthserv
C:\Windows\System32\WUDFHost.exe
c:\windows\system32\svchost.exe -k localservice -s EventSystem
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NgcSvc
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
C:\WINDOWS\system32\LPlatSvc.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\dashost.exe
C:\Windows\System32\WUDFHost.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
C:\WINDOWS\system32\nvwmi64.exe
C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
c:\windows\system32\svchost.exe -k localservice -s nsi
C:\Windows\System32\WUDFHost.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Program Files\Sandboxie\SbieSvc.exe
c:\windows\system32\svchost.exe -k localservice -s netprofm
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s NgcCtnrSvc
C:\WINDOWS\system32\WLANExt.exe
C:\WINDOWS\system32\AUDIODG.EXE
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\svchost.exe -k netsvcs -s IKEEXT
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
C:\WINDOWS\system32\DbxSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
C:\Program Files (x86)\AOMEI Backupper\ABService.exe
C:\Program Files (x86)\KROSplus\Firebird\FBbin\fbserver.exe
C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe
c:\windows\system32\svchost.exe -k netsvcs -s CertPropSvc
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
c:\program files\3dconnexion\3dxware\3dxwincore64\mgl3dctlrrpcservice.exe
C:\WINDOWS\System32\drivers\o2flash.exe
C:\Program Files\PDF Architect 4\creator-ws.exe
C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
c:\windows\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\ibtsiva.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
C:\Program Files (x86)\Origin\OriginWebHelperService.exe
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\system32\svchost.exe -k netsvcs -s Browser
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
C:\WINDOWS\System32\vds.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
C:\WINDOWS\system32\valWbioSyncSvc.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
C:\WINDOWS\system32\valWBFPolicyService.exe
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\SysWOW64\vmnat.exe
C:\WINDOWS\SysWOW64\vmnetdhcp.exe
C:\ProgramData\ASGVIS\Dongle Utilities\startvrlservice.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s upnphost
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\WINDOWS\system32\LPlatSvc.exe
C:\Program Files\Synaptics\SynFp\Shared\SensorDBSynch.exe
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
C:\WINDOWS\Explorer.EXE
C:\Program Files (x86)\Windows NT\Time Synchronization\timesync.exe
C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
c:\windows\system32\taskhostw.exe
C:\WINDOWS\system32\nvwmi64.exe
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPNUMLKD.EXE
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE
C:\Program Files (x86)\TeamViewer\tv_w32.exe
C:\Program Files (x86)\TeamViewer\tv_x64.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
C:\Windows\System32\RuntimeBroker.exe
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\WINDOWS\system32\SettingSyncHost.exe
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
C:\Program Files\NVIDIA Corporation\nview\nViewMain64.exe
C:\Program Files\NVIDIA Corporation\nview\nViewMain.exe
C:\Program Files\NVIDIA Corporation\nview\nViewMain64.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files\Intel\Thunderbolt Software\Thunderbolt.exe
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Greenshot\Greenshot.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\3Dconnexion\3DxWare\3DxNLServer\bin\3DxNLServer.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxPieMenus.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\Users\Y\AppData\Local\Akamai\netsession_win.exe
C:\Users\Y\AppData\Local\Akamai\netsession_win.exe
C:\Users\Y\AppData\Local\Snip\Snip.exe
C:\Program Files (x86)\ManicTime\ManicTime.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s Netman
C:\Users\Y\AppData\Local\Viber\Viber.exe
C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s WdiSystemHost
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Integrated Camera\Monitor.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
c:\program files (x86)\system explorer\service\systemexplorerservice64.exe
C:\Program Files\Andy\HandyAndy.exe
C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
C:\Program Files (x86)\PowerMenu\PowerMenu.exe
C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe
C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\TrayPopupE\TrayTipAgentE.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files (x86)\Lenovo\System Update\SUService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
C:\Users\Y\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
c:\windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Windows\System32\bcastdvr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\System32\GamePanel.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
C:\Program Files (x86)\TC UP\TCUP64.exe
C:\Program Files (x86)\TC UP\TOTALCMD64.EXE
C:\WINDOWS\system32\svchost.exe -k netsvcs -s gpsvc
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\TC UP\tcmadm64.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:NewsFeed
uProxyOverride = <local>;*.local
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
BHO: PDF Architect 4 Helper: {38279E1A-7019-40C1-B579-E99DFB3312E8} - C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll
BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll
BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
TB: PDF Architect 4 Toolbar: {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll
uRun: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
uRun: [Akamai NetSession Interface] "C:\Users\Y\AppData\Local\Akamai\netsession_win.exe"
uRun: [Snip] C:\Users\Y\AppData\Local\Snip\Snip.exe -startshy
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [ManicTimeC34F57B2DA6E6758] C:\Program Files (x86)\ManicTime\ManicTime.exe /minimized /name: 
uRun: [Adobe Acrobat Synchronizer] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\AdobeCollabSync.exe"
uRun: [Google Update] C:\Users\Y\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
uRun: [SideSync] C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
uRun: [Viber] "C:\Users\Y\AppData\Local\Viber\Viber.exe" StartMinimized
mRun: [Integrated Camera_Monitor] "C:\Program Files (x86)\Integrated Camera\monitor.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [KeePass 2 PreLoad] "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
mRun: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
mRun: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
mRun: [Bonus.SSR.FR12] "C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe" /autorun
mRun: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
mRun: [EaseUS EPM Tray Agent] "C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\TrayPopupE\TrayTipAgentE.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\Y\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\POWERM~1.LNK - C:\Program Files (x86)\PowerMenu\PowerMenu.exe
StartupFolder: C:\Users\Y\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SYSTEM~1\iRadio.lnk - C:\Users\Y\AppData\Roaming\iRadioDesktop\iRadioDesktop.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\AVERHI~1.LNK - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\AVERQU~1.LNK - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\COLORC~1.LNK - C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\FTPUTI~1.LNK - C:\Program Files (x86)\KONICA MINOLTA\FTP Utility\KMFtp.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HANDYA~1.LNK - C:\Program Files\Andy\HandyAndy.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\NETWOR~1.LNK - C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
mPolicies-System: DSCAutomationHostEnabled = dword:2
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
LSP: %windir%\system32\vsocklib.dll
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_60-windows-i586.cab
TCP: Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7} : DHCPNameServer = 169.254.0.1
TCP: Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}\255607275634142513 : DHCPNameServer = 8.8.8.8
TCP: Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}\4556E64616F5535414332303 : DHCPNameServer = 192.168.3.254
TCP: Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}\55251444F505144525F4 : DHCPNameServer = 31.132.31.132 31.132.31.232
TCP: Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}\8445340205F627471626C6560284F6473707F647 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}\95563756E6B616F577966696 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}\D69777C616E6 : DHCPNameServer = 10.0.0.138
TCP: Interfaces\{a944ecab-ae64-4f32-a0a1-e47c63897ed1} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{b362e47c-f029-4fbb-ba88-335e8a1d3900} : DHCPNameServer = 169.254.0.1
TCP: Interfaces\{b362e47c-f029-4fbb-ba88-335e8a1d3900}\14E64627F696461405 : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{b362e47c-f029-4fbb-ba88-335e8a1d3900}\55251444 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{c1e3313b-8f3e-46e6-b64c-02ce473efc07} : DHCPNameServer = 192.168.42.129
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
SSODL: WebCheck - <orphaned>
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
IFEO: taskmgr.exe - "C:\Program Files (x86)\TC UP\PLUGINS\Media\SystemExplorer\SystemExplorer.exe"
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll
x64-BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll
x64-BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
x64-TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
x64-Run: [SecurityHealth] C:\Program Files (x86)\Windows Defender\MSASCuiL.exe
x64-Run: [MouseDriver] TiltWheelMouse.exe
x64-Run: [Thunderbolt] C:\Program Files\Intel\Thunderbolt Software\Thunderbolt.exe
x64-Run: [BLEServicesCtrl] C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
x64-Run: [SynLenovoHelper] C:\Program Files (x86)\Synaptics\SynTP\SynLenovoHelper.exe
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-Run: [Greenshot] C:\Program Files\Greenshot\Greenshot.exe
x64-Run: [3DxWare Service] "C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe" -quiet
x64-Run: [egui] "C:\Program Files\ESET\ESET Smart Security\ecmdS.exe" /launch /hide
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
x64-mPolicies-System: PromptOnSecureDesktop = dword:0
x64-Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-IFEO: taskmgr.exe - "C:\Program Files (x86)\TC UP\PLUGINS\Media\SystemExplorer\SystemExplorer.exe"
.
============= SERVICES / DRIVERS ===============
.
R0 ambakdrv;ambakdrv;C:\WINDOWS\System32\ambakdrv.sys [2016-2-3 30648]
R0 edevmon;edevmon;C:\WINDOWS\System32\drivers\edevmon.sys [2015-7-14 107344]
R0 EUBAKUP;EUBAKUP;C:\WINDOWS\System32\drivers\eubakup.sys [2017-8-30 65192]
R0 EUBKMON;EUBKMON;C:\WINDOWS\System32\drivers\EUBKMON.sys [2017-8-30 52392]
R0 iaStorA;iaStorA;C:\WINDOWS\System32\drivers\iaStorA.sys [2017-10-5 1469952]
R0 IntelHSWPcc;IntelHSWPcc;C:\WINDOWS\System32\drivers\IntelPcc.sys [2015-8-13 88256]
R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2017-3-18 74840]
R0 iorate;Disk I/O Rate Filter Driver;C:\WINDOWS\System32\drivers\iorate.sys [2017-3-18 49568]
R0 TPDIGIMN;TPDIGIMN;C:\WINDOWS\System32\drivers\ApsHM64.sys [2017-3-20 46040]
R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2017-3-18 16288]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2017-3-18 70232]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2017-3-18 18520]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2017-3-18 208288]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2017-3-18 239616]
R1 eamonm;eamonm;C:\WINDOWS\System32\drivers\eamonm.sys [2015-3-10 132848]
R1 epfwwfp;epfwwfp;C:\WINDOWS\System32\drivers\epfwwfp.sys [2015-7-14 102160]
R1 EUDSKACS;EUDSKACS;C:\WINDOWS\System32\drivers\eudskacs.sys [2017-8-30 22696]
R1 EUFDDISK;EUFDDISK;C:\WINDOWS\System32\drivers\EuFdDisk.sys [2017-8-30 196776]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2017-3-18 54272]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-3-18 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;C:\WINDOWS\System32\drivers\HWiNFO64A.SYS [2016-4-18 27552]
R1 SMIDriver;Synaptics SMI Driver;C:\WINDOWS\System32\drivers\smi.sys [2016-3-1 30784]
R1 VD_FileDisk;VD_FileDisk;C:\WINDOWS\System32\drivers\vd_filedisk.sys [2011-1-26 30312]
R1 vmkbd3;VMware Input Filter and Injection Driver (vmkbd);C:\WINDOWS\System32\drivers\vmkbd.sys [2017-8-18 52288]
R2 ABBYY.Licensing.FineReader.Professional.12.0;ABBYY FineReader 12 PE Licensing Service;C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [2014-7-13 961744]
R2 AdAppMgrSvc;Autodesk Application Manager Service;C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2016-5-4 1231376]
R2 ammntdrv;ammntdrv;C:\WINDOWS\System32\ammntdrv.sys [2016-2-3 151480]
R2 amwrtdrv;amwrtdrv;C:\WINDOWS\System32\amwrtdrv.sys [2016-2-3 17848]
R2 AVerRemote;AVerRemote;C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2015-8-22 368640]
R2 AVerScheduleService;AVerScheduleService;C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2015-8-22 403456]
R2 AVerUpdateServer;AVerUpdateServer;C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 Backupper Service;AOMEI Backupper Scheduler Service;C:\Program Files (x86)\AOMEI Backupper\ABService.exe [2016-2-3 29912]
R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
R2 CDPUserSvc_bac78;Connected Devices Platform User Service_bac78;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service;C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe [2016-12-14 7760552]
R2 clreg;Virtual Registry for Containers;C:\WINDOWS\System32\drivers\registry.sys [2017-3-18 14336]
R2 connect2hotspot;Connect2 Hotspot Service;C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [2016-12-19 100680]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2017-3-18 47664]
R2 DbxSvc;DbxSvc;C:\WINDOWS\System32\DbxSvc.exe [2017-11-13 51016]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2017-3-18 47664]
R2 DusmSvc;Data Usage;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
R2 EaseUS Agent;EaseUS Agent Service;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2017-8-30 40128]
R2 ekbdflt;ekbdflt;C:\WINDOWS\System32\drivers\ekbdflt.sys [2016-11-14 50752]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2017-11-7 2648184]
R2 ibtsiva;Intel Bluetooth Service;C:\WINDOWS\System32\ibtsiva --> C:\WINDOWS\System32\ibtsiva [?]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service;C:\WINDOWS\System32\igfxCUIService.exe [2015-3-10 356336]
R2 ImControllerService;System Interface Foundation Service;C:\Program Files\Lenovo\iMController\Service\Lenovo.Modern.ImController.exe [2017-10-5 68416]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent;C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-4-16 182760]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-12-5 177440]
R2 KrosPlusFireBird;KrosPlusFireBird;C:\Program Files (x86)\KROSplus\Firebird\FBbin\fbserver.exe [2013-3-19 3784704]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute;C:\Program Files\Lenovo\HOTKEY\micmute.exe [2016-3-2 119584]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [2014-6-5 115184]
R2 LPlatSvc;Lenovo Platform Service;C:\WINDOWS\System32\LPlatSvc.exe [2017-9-13 774736]
R2 memudrv;memudrv;C:\Program Files\Microvirt\MEmuHyperv\MEmuDrv.sys [2015-10-28 260368]
R2 Mgl3DCtlrRPCService;3Dconnexion Broker Service;C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe [2015-12-10 57856]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-6-1 458176]
R2 NVWMI;NVIDIA WMI Provider;C:\WINDOWS\System32\nvwmi64.exe [2015-8-23 4167224]
R2 OneSyncSvc_bac78;Sync Host_bac78;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R2 Origin Web Helper Service;Origin Web Helper Service;C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-3-10 3127192]
R2 PDF Architect 4 Creator;PDF Architect 4 Creator;C:\Program Files\PDF Architect 4\creator-ws.exe [2016-1-15 851168]
R2 PDF Architect 4 Manager;PDF Architect 4 Manager;C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [2015-10-5 959248]
R2 ProtonVPN Service;ProtonVPN Service;C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [2017-6-21 48752]
R2 SecurityHealthService;Windows Defender Security Center Service;C:\WINDOWS\System32\SecurityHealthService.exe [2017-10-10 336320]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service;C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2017-4-3 752224]
R2 SSPORT;SSPORT;C:\WINDOWS\System32\drivers\SSPORT.sys [2015-9-5 11576]
R2 SSUService;Splashtop Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2013-10-9 609056]
R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2017-3-18 79872]
R2 SynTPEnhService;SynTPEnh Caller Service;C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-10-3 259176]
R2 TeamViewer;TeamViewer 11;C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-2-12 7757552]
R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2017-3-17 99704]
R2 TPHKLOAD;Lenovo Hotkey Client Loader;C:\Program Files\Lenovo\HOTKEY\tphkload.exe [2016-3-29 135456]
R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R2 valWBFPolicyService;Synaptics FP WBF Policy Service;C:\WINDOWS\System32\valWBFPolicyService.exe [2016-3-1 77824]
R2 valWbioSyncSvc;BiometricSensorDataSynchronization;C:\WINDOWS\System32\valWbioSyncSvc.exe [2016-3-1 48128]
R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2016-9-6 916040]
R2 VRLService;VRLService;C:\ProgramData\ASGVIS\Dongle Utilities\startvrlservice.exe [2015-3-9 209408]
R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2017-7-11 142752]
R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R2 WpnUserService_bac78;Windows Push Notifications User Service_bac78;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R2 xrdd.exe;X-Rite Device Services Manager;C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [2011-10-11 203088]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2017-8-7 3756200]
R3 3dxhid;3Dconnexion HID filter;C:\WINDOWS\System32\drivers\3dxhid.sys [2015-11-7 39184]
R3 BcmNfcIc;NFC I2C Service;C:\WINDOWS\System32\drivers\BcmNfcIc.sys [2015-8-13 77528]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-8-2 97280]
R3 CAD;Charge Arbitration Driver;C:\WINDOWS\System32\drivers\CAD.sys [2017-3-18 53664]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D;C:\WINDOWS\System32\drivers\e1d65x64.sys [2015-9-25 531440]
R3 ibtusb;Intel(R) Wireless Bluetooth(R);C:\WINDOWS\System32\drivers\ibtusb.sys [2017-1-13 231168]
R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\WINDOWS\System32\drivers\ikbevent.sys [2013-4-16 21048]
R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\WINDOWS\System32\drivers\imsevent.sys [2013-4-16 21048]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;C:\WINDOWS\System32\drivers\ISCTD64.sys [2013-7-30 47008]
R3 iwdbus;IWD Bus Enumerator;C:\WINDOWS\System32\drivers\iwdbus.sys [2013-11-11 25528]
R3 KMJHidMini;3Dconnexion KMJ Emulator;C:\WINDOWS\System32\drivers\3dxkmj.sys [2014-5-12 18944]
R3 KMJShim;3Dconnexion KMJ Emulator Shim;C:\WINDOWS\System32\drivers\3dxshim.sys [2014-5-12 7168]
R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2017-3-18 20992]
R3 NETwNb64;Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit;C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-10-20 3529728]
R3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
R3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
R3 O2FJ2RDR;O2FJ2RDR;C:\WINDOWS\System32\drivers\O2FJ2x64.sys [2015-5-21 201240]
R3 PimIndexMaintenanceSvc_bac78;Contact Data_bac78;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R3 QuickControlService;Lenovo QuickControl Service;C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [2014-12-5 317224]
R3 SbieDrv;SbieDrv;C:\Program Files\Sandboxie\SbieDrv.sys [2016-6-14 204944]
R3 SmbDrvI;SmbDrvI;C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2016-8-2 51296]
R3 SPUVCbv;SPUVCb Driver Service;C:\WINDOWS\System32\drivers\SPUVCBv64.sys [2016-7-1 757824]
R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
R3 SystemExplorerHelpService;System Explorer Service;C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2015-2-12 820960]
R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
R3 TokenBroker;TokenBroker;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R3 UnistoreSvc_bac78;User Data Storage_bac78;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R3 usb3Hub;UoIP Hub;C:\WINDOWS\System32\drivers\usb3Hub.sys [2013-6-21 206744]
R3 UserDataSvc_bac78;User Data Access_bac78;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R3 vmulti;Virtual Tablet Service;C:\WINDOWS\System32\drivers\vmulti.sys [2016-12-18 9728]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [2017-3-22 34752]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2017-3-18 220672]
S0 eelam;eelam;C:\WINDOWS\System32\drivers\eelam.sys [2016-6-28 15392]
S2 CldFlt;Windows Cloud Files Filter Driver;C:\WINDOWS\System32\drivers\cldflt.sys [2017-3-18 12288]
S2 dbupdate;Dropbox Update Service (dbupdate);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-9-5 143144]
S2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2017-3-18 47664]
S2 QuickControlMasterSvc;Lenovo QuickControl Master Service;C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [2014-12-5 61232]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-7-18 317408]
S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-3-18 20480]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2017-3-18 1135512]
S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2017-3-18 17920]
S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2017-3-18 47664]
S3 AppvStrm;AppvStrm;C:\WINDOWS\System32\drivers\AppVStrm.sys [2017-3-18 127904]
S3 AppvVemgr;AppvVemgr;C:\WINDOWS\System32\drivers\AppvVemgr.sys [2017-3-18 161696]
S3 AppvVfs;AppvVfs;C:\WINDOWS\System32\drivers\AppvVfs.sys [2017-3-18 143776]
S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2017-3-18 47664]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;C:\WINDOWS\System32\drivers\athurx.sys [2015-8-25 1847296]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2017-3-18 9728]
S3 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2017-8-18 369720]
S3 BstkDrv;BlueStacks Plus Hypervisor;C:\Program Files (x86)\BlueStacks\BstkDrv.sys [2017-8-18 270904]
S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2017-3-18 47664]
S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-9-12 39424]
S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2017-3-18 122880]
S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2017-3-18 47664]
S3 dbupdatem;Dropbox Update Service (dbupdatem);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-9-5 143144]
S3 debugregsvc;debugregsvc;C:\WINDOWS\System32\svchost.exe -k DevToolsGroup [2017-3-18 47664]
S3 DeveloperToolsService;Developer Tools Service;C:\WINDOWS\System32\DeveloperToolsSvc.exe [2017-8-7 103936]
S3 DevicesFlowUserSvc_bac78;DevicesFlow_bac78;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2017-3-18 47664]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2017-4-3 131712]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-3-18 86528]
S3 dlusbaudio;dlusbaudio;C:\WINDOWS\System32\drivers\dlusbaudio_x64.sys [2015-10-16 229648]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 ElcMouLFlt;ELECOM USB Mouse Lower Filter Driver;C:\WINDOWS\System32\drivers\ElcMouLFlt.sys [2015-9-11 28648]
S3 ElcMouUFlt;ELECOM USB Mouse Upper Filter Driver;C:\WINDOWS\System32\drivers\ElcMouUFlt.sys [2015-9-11 27624]
S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
S3 epmntdrv;epmntdrv;C:\WINDOWS\System32\epmntdrv.sys [2017-8-30 33448]
S3 EuGdiDrv;EuGdiDrv;C:\WINDOWS\System32\EuGdiDrv.sys [2017-8-30 10848]
S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2017-3-18 47664]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-12-10 614624]
S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-3-18 21504]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-3-18 51104]
S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-3-18 347032]
S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-3-18 2104224]
S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2017-3-18 33280]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2017-3-18 81408]
S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-3-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-3-18 85504]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-3-18 165376]
S3 iaLPSS2i_I2C_BXT_P;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-3-18 168448]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2017-3-18 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2017-3-18 113152]
S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2017-3-18 673184]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2017-3-18 526240]
S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-3-18 36864]
S3 IntcDAud;Intel(R) Display Audio;C:\WINDOWS\System32\drivers\IntcDAud.sys [2016-5-12 481768]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-10-13 630048]
S3 IpxlatCfgSvc;IP Translation Configuration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 iumsvc;Intel(R) Update Manager;C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-8-12 177376]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service;C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2017-2-14 273216]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-3-18 123808]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-3-18 103328]
S3 mausbhost;MA-USB Host Controller Driver;C:\WINDOWS\System32\drivers\mausbhost.sys [2017-3-18 405408]
S3 mausbip;MA-USB IP Filter Driver;C:\WINDOWS\System32\drivers\mausbip.sys [2017-3-18 51104]
S3 megasas2i;megasas2i;C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-3-18 64416]
S3 MessagingService_bac78;MessagingService_bac78;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-3-18 842656]
S3 MsSecFlt;Microsoft Security Events Component Minifilter;C:\WINDOWS\System32\drivers\mssecflt.sys [2017-3-18 230816]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2017-8-7 269480]
S3 NaturalAuthentication;Natural Authentication;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2017-3-18 108960]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2017-3-18 122368]
S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2017-4-28 118784]
S3 nvdimmn;Microsoft NVDIMM-N device driver;C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-3-18 80896]
S3 Origin Client Service;Origin Client Service;C:\Program Files (x86)\Origin\OriginClientService.exe [2016-2-5 2157456]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2017-11-24 257712]
S3 PDF Architect 2;PDF Architect 2;C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-10-10 1771560]
S3 PDF Architect 4 CrashHandler;PDF Architect 4 CrashHandler;C:\Program Files\PDF Architect 4\crash-handler-ws.exe [2016-1-15 1038048]
S3 PDF Architect 4;PDF Architect 4;C:\Program Files\PDF Architect 4\ws.exe [2016-1-15 2417376]
S3 pdfforge CrashHandler;pdfforge CrashHandler;C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-10-10 861736]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2017-3-18 58784]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2017-3-18 61848]
S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 Power Manager DBC Service;Lenovo Settings Power Service;C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe [2017-2-5 106864]
S3 ReFS;ReFS;C:\WINDOWS\System32\drivers\refs.sys [2017-3-18 1735584]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2017-3-18 936864]
S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k rdxgroup [2017-3-18 47664]
S3 Rockey_USB;Feitian ROCKEY4 USB Service;C:\WINDOWS\System32\drivers\Rockey4USB.sys [2014-6-5 23592]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2017-3-18 91040]
S3 SDFRd;SDF Reflector;C:\WINDOWS\System32\drivers\SDFRd.sys [2017-3-18 31128]
S3 SEMgrSvc;Payments and NFC/SE Manager;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 Sense;Windows Defender Advanced Threat Protection Service;C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-3-18 3913064]
S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2017-3-18 1284608]
S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2017-3-18 154016]
S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2017-3-18 47664]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter;C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-3-18 40352]
S3 spectrum;Windows Perception Service;C:\WINDOWS\System32\Spectrum.exe [2017-3-18 891904]
S3 ss_conn_usb_driver;SAMSUNG Mobile USB Connectivity Device Driver;C:\WINDOWS\System32\drivers\ss_conn_usb_driver.sys [2017-4-3 43648]
S3 SshBroker;SSH Server Broker;C:\WINDOWS\System32\svchost.exe -k SshBrokerGroup [2017-3-18 47664]
S3 SshProxy;SSH Server Proxy;C:\WINDOWS\System32\svchost.exe -k SshProxyGroup [2017-3-18 47664]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2017-4-3 165504]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2017-11-15 95640]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2017-3-18 36760]
S3 t_mouse.sys;HID-compliand device;C:\WINDOWS\System32\drivers\t_mouse.sys [2012-12-19 6144]
S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2017-3-18 302592]
S3 tvtvcamd;Camera Plus (VGA Resolution Maximum);C:\WINDOWS\System32\drivers\tvtvcamd.sys [2013-12-9 27432]
S3 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2017-9-12 104960]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2017-3-18 179200]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2017-8-2 51712]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2017-3-18 45568]
S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2017-3-18 29600]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2017-3-18 263584]
S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2017-3-18 98712]
S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2017-3-18 138656]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2017-3-18 59288]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2017-3-18 29600]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2017-3-18 28064]
S3 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2017-3-18 35328]
S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2017-3-18 10240]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 vmicheartbeat;Hyper-V Heartbeat Service;C:\WINDOWS\System32\svchost.exe -k ICService [2017-3-18 47664]
S3 w3logsvc;W3C Logging Service;C:\WINDOWS\System32\svchost.exe -k apphost [2017-3-18 47664]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
S3 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2017-3-18 72192]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2017-11-15 757248]
S3 WdNisDrv;Windows Defender Antivirus Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2017-3-18 121248]
S3 WdNisSvc;Windows Defender Antivirus Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2017-3-18 342264]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2017-3-18 47664]
S3 WFDSConMgrSvc;Wi-Fi Direct Services Connection Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2017-3-18 32160]
S3 WinNat;Windows NAT Driver;C:\WINDOWS\System32\drivers\winnat.sys [2017-3-18 217088]
S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2017-3-18 64920]
S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 wlpasvc;LPA Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 xbgm;Xbox Game Monitoring;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2017-5-30 277504]
S3 XboxGipSvc;Xbox Accessory Management Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2017-3-18 46592]
S4 AppVClient;Microsoft App-V Client;C:\WINDOWS\System32\AppVClient.exe [2017-10-10 849816]
S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S4 UevAgentDriver;UevAgentDriver;C:\WINDOWS\System32\drivers\UevAgentDriver.sys [2017-3-18 40344]
S4 UevAgentService;User Experience Virtualization Service;C:\WINDOWS\System32\AgentService.exe [2017-10-10 1201664]
S4 WebManagement;Web Management;C:\WINDOWS\System32\WebManagement.exe [2017-8-9 1035264]
.
=============== File Associations ===============
.
FileExt: .scr: XnView.File.scr - HKCR\Unknown\Shell=C:\WINDOWS\System32\OpenWith.exe "%1" [UserChoice] [default=openas]
FileExt: .reg: Notepad++.File.reg - HKCR\Unknown\Shell=C:\WINDOWS\System32\OpenWith.exe "%1" [UserChoice] [default=openas]
FileExt: .txt: Applications\notepad++.exe="C:\Program Files (x86)\TC UP\PLUGINS\Media\Notepad++\notepad++.exe" "%1" [UserChoice]
FileExt: .ini: Notepad++.File.ini="C:\Program Files (x86)\TC UP\PLUGINS\Media\Notepad++\notepad++.exe"  "%1" [UserChoice]
FileExt: .inf: Notepad++.File.inf="C:\Program Files (x86)\TC UP\PLUGINS\Media\Notepad++\notepad++.exe"  "%1" [UserChoice]
FileExt: .vbs: Notepad++.File.vbs - HKCR\Unknown\Shell=C:\WINDOWS\System32\OpenWith.exe "%1" [UserChoice] [default=openas]
FileExt: .js: Notepad++.File.js - HKCR\Unknown\Shell=C:\WINDOWS\System32\OpenWith.exe "%1" [UserChoice] [default=openas]
ShellExec: opera.exe: open="C:\Program Files (x86)\TC UP\PLUGINS\Media\Opera\launcher.exe" "%1"
ShellExec: PDF Architect 4.exe: edit="C:\Program Files\PDF Architect 4\architect.exe" --file "%1"
ShellExec: PDF Architect 4.exe: open="C:\Program Files\PDF Architect 4\architect.exe" --file "%1"
.
=============== Created Last 30 ================
.
2017-12-01 08:32:28	--------	d--h--w-	C:\$WINDOWS.~BT
2017-11-30 14:56:56	--------	d-----w-	C:\Users\Y\AppData\Local\cache
2017-11-30 14:56:35	--------	d-----w-	C:\Users\Y\AppData\Local\Viber
2017-11-30 08:52:54	--------	d-----w-	C:\Program Files\Common Files\Intel
2017-11-30 08:50:35	--------	d-----w-	C:\WINDOWS\LastGood.Tmp
2017-11-27 23:56:08	--------	d---a-w-	C:\ProgramData\Skatter
2017-11-27 23:56:08	--------	d-----w-	C:\Users\Y\AppData\Roaming\Skatter
2017-11-27 22:58:17	--------	d-----w-	C:\Program Files (x86)\DesignCAD 3D Max 2018 x64 Setup Files
2017-11-27 14:39:31	94656	----a-w-	C:\WINDOWS\System32\WPRO_41_2001woem.tmp
2017-11-24 03:06:24	585392	----a-w-	C:\Program Files\Common Files\Microsoft Shared\OFFICE16\LICLUA.EXE
2017-11-24 03:05:38	31408	----a-w-	C:\Program Files\Common Files\Microsoft Shared\OFFICE16\Office Setup Controller\pkeyconfig.companion.dll
2017-11-24 02:54:44	257712	----a-w-	C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
2017-11-20 09:04:29	21168	----a-w-	C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2RINTL.en-us.dll
2017-11-20 09:04:29	21160	----a-w-	C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2RINTL.cs-cz.dll
2017-11-15 17:21:59	23680000	----a-w-	C:\WINDOWS\System32\edgehtml.dll
2017-11-14 07:33:55	--------	d-----w-	C:\ProgramData\Cadimage Tools
2017-11-13 23:58:47	--------	d-----w-	C:\ProgramData\Caphyon
2017-11-13 23:58:29	--------	d-----w-	C:\Users\Y\AppData\Roaming\DSCR
2017-11-13 10:26:48	51016	----a-w-	C:\WINDOWS\System32\DbxSvc.exe
2017-11-13 10:26:48	45672	----a-w-	C:\WINDOWS\System32\drivers\dbx-dev.sys
2017-11-13 10:26:48	45640	----a-w-	C:\WINDOWS\System32\drivers\dbx-stable.sys
2017-11-13 10:26:48	45640	----a-w-	C:\WINDOWS\System32\drivers\dbx-canary.sys
2017-11-04 15:07:29	--------	d-----w-	C:\ProgramData\CodeMeter
2017-11-03 02:00:52	872448	----a-w-	C:\Program Files (x86)\Windows NT\Time Synchronization\TimeSync.exe
.
==================== Find3M  ====================
.
2017-12-01 10:00:02	180	----a-w-	C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-12-01 09:59:53	34752	----a-w-	C:\WINDOWS\System32\drivers\WPRO_41_2001.sys
2017-11-15 23:20:12	127017032	-c--a-w-	C:\WINDOWS\System32\MRT-KB890830.exe
2017-11-07 13:26:20	180088	----a-w-	C:\WINDOWS\System32\drivers\ehdrv.sys
2017-11-07 13:26:20	15392	----a-w-	C:\WINDOWS\System32\drivers\eelam.sys
2017-11-07 13:26:20	132848	----a-w-	C:\WINDOWS\System32\drivers\eamonm.sys
2017-11-07 13:26:20	102160	----a-w-	C:\WINDOWS\System32\drivers\epfwwfp.sys
2017-11-05 01:40:50	835568	----a-w-	C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2017-11-05 01:40:50	177648	----a-w-	C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2017-11-02 05:21:18	612248	----a-w-	C:\WINDOWS\System32\devinv.dll
2017-11-02 05:21:18	1578904	----a-w-	C:\WINDOWS\System32\appraiser.dll
2017-11-02 05:21:15	136088	----a-w-	C:\WINDOWS\System32\CompatTelRunner.exe
2017-11-02 05:21:12	678808	----a-w-	C:\WINDOWS\System32\generaltel.dll
2017-11-02 05:21:12	190360	----a-w-	C:\WINDOWS\System32\acmigration.dll
2017-11-02 05:21:08	379288	----a-w-	C:\WINDOWS\System32\invagent.dll
2017-11-02 05:20:59	2032536	----a-w-	C:\WINDOWS\System32\aitstatic.exe
2017-11-02 05:20:54	613784	----a-w-	C:\WINDOWS\System32\aeinv.dll
2017-11-02 05:20:36	543640	----a-w-	C:\WINDOWS\System32\securekernel.exe
2017-11-02 05:20:32	34712	----a-w-	C:\WINDOWS\System32\DeviceCensus.exe
2017-11-02 05:20:30	259992	----a-w-	C:\WINDOWS\System32\aepic.dll
2017-11-02 05:20:27	965016	----a-w-	C:\WINDOWS\System32\hvloader.efi
2017-11-02 05:20:23	484248	----a-w-	C:\WINDOWS\System32\dcntel.dll
2017-11-02 05:20:21	469568	----a-w-	C:\WINDOWS\System32\wow64win.dll
2017-11-02 05:20:21	1144728	----a-w-	C:\WINDOWS\System32\hvix64.exe
2017-11-02 05:20:17	1015704	----a-w-	C:\WINDOWS\System32\hvax64.exe
2017-11-02 05:20:11	821656	----a-w-	C:\WINDOWS\System32\hvloader.exe
2017-11-02 05:16:53	2398696	----a-w-	C:\WINDOWS\System32\KernelBase.dll
2017-11-02 05:16:48	8319384	----a-w-	C:\WINDOWS\System32\ntoskrnl.exe
2017-11-02 05:16:26	2327448	----a-w-	C:\WINDOWS\System32\drivers\ntfs.sys
2017-11-02 05:15:10	1239448	----a-w-	C:\WINDOWS\System32\drivers\ndis.sys
2017-11-02 05:15:06	503704	----a-w-	C:\WINDOWS\System32\pcasvc.dll
2017-11-02 05:14:58	667040	----a-w-	C:\WINDOWS\System32\ci.dll
2017-11-02 05:14:24	67992	----a-w-	C:\WINDOWS\System32\win32appinventorycsp.dll
2017-11-02 05:13:39	1345600	----a-w-	C:\WINDOWS\System32\user32.dll
2017-11-02 05:13:36	2443672	----a-w-	C:\WINDOWS\System32\drivers\dxgkrnl.sys
2017-11-02 05:13:22	95640	----a-w-	C:\WINDOWS\System32\drivers\stornvme.sys
2017-11-02 05:13:17	5477088	----a-w-	C:\WINDOWS\System32\OneCoreUAPCommonProxyStub.dll
2017-11-02 05:13:10	212888	----a-w-	C:\WINDOWS\System32\browserbroker.dll
2017-11-02 05:13:01	546712	----a-w-	C:\WINDOWS\System32\drivers\storport.sys
2017-11-02 05:12:58	727336	----a-w-	C:\WINDOWS\System32\wer.dll
2017-11-02 05:12:55	430848	----a-w-	C:\WINDOWS\System32\bcryptprimitives.dll
2017-11-02 05:12:55	412752	----a-w-	C:\WINDOWS\System32\Faultrep.dll
2017-11-02 05:12:46	643192	----a-w-	C:\WINDOWS\System32\drivers\cng.sys
2017-11-02 05:12:39	144248	----a-w-	C:\WINDOWS\System32\WerFaultSecure.exe
2017-11-02 05:12:38	319384	----a-w-	C:\WINDOWS\System32\WerFault.exe
2017-11-02 05:12:35	714648	----a-w-	C:\WINDOWS\System32\drivers\fvevol.sys
2017-11-02 05:12:04	38808	----a-w-	C:\WINDOWS\System32\drivers\Diskdump.sys
2017-11-02 05:12:03	654976	----a-w-	C:\WINDOWS\System32\AppXDeploymentClient.dll
2017-11-02 05:10:59	6557520	----a-w-	C:\WINDOWS\System32\Windows.Media.dll
2017-11-02 05:05:48	187800	----a-w-	C:\WINDOWS\System32\wermgr.exe
2017-11-02 05:05:23	871408	----a-w-	C:\WINDOWS\System32\winhttp.dll
2017-11-02 05:04:20	1292360	----a-w-	C:\WINDOWS\SysWow64\user32.dll
2017-11-02 05:03:58	223640	----a-w-	C:\WINDOWS\SysWow64\aepic.dll
2017-11-02 04:49:55	1838848	----a-w-	C:\WINDOWS\SysWow64\KernelBase.dll
2017-11-02 04:45:57	283544	----a-w-	C:\WINDOWS\SysWow64\WerFault.exe
2017-11-02 04:45:41	133896	----a-w-	C:\WINDOWS\SysWow64\WerFaultSecure.exe
2017-11-02 04:45:36	362144	----a-w-	C:\WINDOWS\SysWow64\Faultrep.dll
2017-11-02 04:45:25	613136	----a-w-	C:\WINDOWS\SysWow64\wer.dll
2017-11-02 04:45:18	172952	----a-w-	C:\WINDOWS\SysWow64\wermgr.exe
2017-11-02 04:45:17	354360	----a-w-	C:\WINDOWS\SysWow64\bcryptprimitives.dll
2017-11-02 04:45:00	703056	----a-w-	C:\WINDOWS\SysWow64\winhttp.dll
2017-11-02 04:44:52	519680	----a-w-	C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
2017-11-02 04:44:21	5808640	----a-w-	C:\WINDOWS\SysWow64\Windows.Media.dll
2017-11-02 04:37:29	3668992	----a-w-	C:\WINDOWS\System32\win32kfull.sys
2017-11-02 04:37:29	1278976	----a-w-	C:\WINDOWS\System32\werconcpl.dll
2017-11-02 04:37:11	184320	----a-w-	C:\WINDOWS\System32\DWWIN.EXE
2017-11-02 04:37:09	465920	----a-w-	C:\WINDOWS\System32\werui.dll
2017-11-02 04:37:03	77824	----a-w-	C:\WINDOWS\System32\wsqmcons.exe
2017-11-02 04:36:57	98816	----a-w-	C:\WINDOWS\System32\wercplsupport.dll
2017-11-02 04:36:56	99328	----a-w-	C:\WINDOWS\System32\utcutil.dll
2017-11-02 04:35:38	25600	----a-w-	C:\WINDOWS\System32\drivers\Dumpstorport.sys
2017-11-02 04:35:07	228352	----a-w-	C:\WINDOWS\System32\VPNv2CSP.dll
2017-11-02 04:35:05	39936	----a-w-	C:\WINDOWS\System32\wbem\WUAProvider.dll
2017-11-02 04:35:04	2560	----a-w-	C:\WINDOWS\System32\tzres.dll
2017-11-02 04:35:03	128512	----a-w-	C:\WINDOWS\System32\mssprxy.dll
2017-11-02 04:34:49	438784	----a-w-	C:\WINDOWS\System32\SharedPCCSP.dll
2017-11-02 04:34:39	95232	----a-w-	C:\WINDOWS\System32\wudriver.dll
2017-11-02 04:34:37	138240	----a-w-	C:\WINDOWS\System32\DataUsageLiveTileTask.exe
2017-11-02 04:34:36	306176	----a-w-	C:\WINDOWS\System32\MusNotification.exe
2017-11-02 04:34:31	110592	----a-w-	C:\WINDOWS\System32\Chakradiag.dll
2017-11-02 04:34:20	113152	----a-w-	C:\WINDOWS\System32\wuuhosdeployment.dll
2017-11-02 04:34:05	33792	----a-w-	C:\WINDOWS\System32\wuautoappupdate.dll
2017-11-02 04:34:02	168448	----a-w-	C:\WINDOWS\System32\MusNotificationUx.exe
2017-11-02 04:33:38	61440	----a-w-	C:\WINDOWS\System32\CertPKICmdlet.dll
2017-11-02 04:33:17	529408	----a-w-	C:\WINDOWS\System32\daxexec.dll
2017-11-02 04:33:09	64512	----a-w-	C:\WINDOWS\System32\winsrv.dll
2017-11-02 04:33:02	324608	----a-w-	C:\WINDOWS\System32\DataUsageHandlers.dll
2017-11-02 04:33:00	90112	----a-w-	C:\WINDOWS\System32\OnDemandConnRouteHelper.dll
2017-11-02 04:32:37	125952	----a-w-	C:\WINDOWS\System32\Windows.UI.Storage.dll
2017-11-02 04:32:25	8213504	----a-w-	C:\WINDOWS\System32\mstscax.dll
2017-11-02 04:32:02	255488	----a-w-	C:\WINDOWS\System32\ubpm.dll
2017-11-02 04:31:42	434176	----a-w-	C:\WINDOWS\System32\msIso.dll
2017-11-02 04:31:38	20512256	----a-w-	C:\WINDOWS\SysWow64\edgehtml.dll
2017-11-02 04:31:29	153088	----a-w-	C:\WINDOWS\System32\RMapi.dll
2017-11-02 04:31:01	411648	----a-w-	C:\WINDOWS\System32\profsvc.dll
2017-11-02 04:30:58	2953216	----a-w-	C:\WINDOWS\SysWow64\win32kfull.sys
2017-11-02 04:30:56	165888	----a-w-	C:\WINDOWS\System32\storewuauth.dll
2017-11-02 04:30:36	719872	----a-w-	C:\WINDOWS\System32\FlightSettings.dll
2017-11-02 04:30:33	407040	----a-w-	C:\WINDOWS\SysWow64\werui.dll
2017-11-02 04:30:30	155136	----a-w-	C:\WINDOWS\SysWow64\DWWIN.EXE
.
============= FINISH: 11:21:10,62 ===============
