Logfile of random's system information tool 1.10 (written by random/random) Run by nightwalker at 2014-12-17 00:26:41 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 21 GB (43%) free of 50 GB Total RAM: 3069 MB (69% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 0:26:43, on 17-12-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17239) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\AVG\AVG2015\avgui.exe C:\Program Files\IDT\WDM\sttray.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\system32\ctfmon.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Windows\system32\SearchFilterHost.exe C:\Users\nightwalker\Downloads\RSIT.exe C:\Program Files\trend micro\nightwalker.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.powerboosters.org R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - .DEFAULT User Startup: RUN.CMD (User 'Default user') O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgwdsvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @%SystemRoot%\system32\stlang.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe -- End of file - 4722 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-12-10 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-12-14 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-12-10 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-12-14 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"=C:\Program Files\AVG\AVG2015\avgui.exe [2014-11-09 3653136] "SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2012-10-24 1667164] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2014-10-15 157480] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=0 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-12-15 20:54:04 ----D---- C:\rsit 2014-12-15 20:54:04 ----D---- C:\Program Files\trend micro 2014-12-15 17:58:58 ----D---- C:\Users\nightwalker\AppData\Roaming\Google 2014-12-14 01:15:56 ----D---- C:\Program Files\CCleaner 2014-12-14 01:14:38 ----D---- C:\ProgramData\Google 2014-12-14 01:13:56 ----D---- C:\Program Files\Google 2014-12-13 21:10:55 ----D---- C:\Windows\system32\appmgmt 2014-12-12 21:48:34 ----D---- C:\Users\nightwalker\AppData\Roaming\Apple Computer 2014-12-12 21:48:24 ----DC---- C:\Windows\system32\DRVSTORE 2014-12-12 21:48:24 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys 2014-12-12 21:48:02 ----D---- C:\Program Files\iPod 2014-12-12 21:48:01 ----D---- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB 2014-12-12 21:48:01 ----D---- C:\ProgramData\Apple Computer 2014-12-12 21:48:01 ----D---- C:\Program Files\iTunes 2014-12-12 21:47:46 ----D---- C:\Program Files\Apple Software Update 2014-12-12 21:47:13 ----D---- C:\ProgramData\Apple 2014-12-12 21:47:13 ----D---- C:\Program Files\Common Files\Apple 2014-12-11 10:23:12 ----A---- C:\Windows\system32\lp3codec32win.dll 2014-12-11 10:08:23 ----D---- C:\Program Files\SuperMp3Normalizer 2014-12-10 19:04:34 ----D---- C:\Program Files\Common Files\Java 2014-12-10 19:04:30 ----A---- C:\Windows\system32\javaws.exe 2014-12-10 19:04:24 ----A---- C:\Windows\system32\WindowsAccessBridge.dll 2014-12-10 19:04:24 ----A---- C:\Windows\system32\javaw.exe 2014-12-10 19:04:24 ----A---- C:\Windows\system32\java.exe 2014-12-10 19:04:18 ----D---- C:\Program Files\Java 2014-12-10 13:46:23 ----A---- C:\Windows\system32\drivers\UBUMAPI.sys 2014-12-10 13:46:23 ----A---- C:\Windows\system32\drivers\UBSBM.sys 2014-12-10 13:46:23 ----A---- C:\Windows\system32\drivers\ubohci.sys 2014-12-10 13:46:23 ----A---- C:\Windows\system32\drivers\UB1394.sys 2014-12-10 13:46:23 ----A---- C:\Windows\system32\drivers\iusb3hcs.sys 2014-12-10 13:46:22 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll 2014-12-10 13:44:44 ----A---- C:\Windows\system32\drivers\BCMWL6.SYS 2014-12-10 13:44:35 ----A---- C:\Windows\system32\bcmwlcoi.dll 2014-12-10 13:44:33 ----A---- C:\Windows\system32\bcmihvui.dll 2014-12-10 13:44:32 ----A---- C:\Windows\system32\bcmihvsrv.dll 2014-12-10 13:43:10 ----A---- C:\Windows\system32\ativvsvl.dat 2014-12-10 13:43:10 ----A---- C:\Windows\system32\ativvsva.dat 2014-12-10 13:43:09 ----A---- C:\Windows\system32\atiicdxx.dat 2014-12-10 13:43:02 ----A---- C:\Windows\system32\drivers\atikmpag.sys 2014-12-10 13:43:00 ----A---- C:\Windows\system32\Oemdspif.dll 2014-12-10 13:43:00 ----A---- C:\Windows\system32\drivers\atikmdag.sys 2014-12-10 13:43:00 ----A---- C:\Windows\system32\coinst.dll 2014-12-10 13:42:57 ----A---- C:\Windows\system32\atiumdmv.dll 2014-12-10 13:42:55 ----A---- C:\Windows\system32\atitmmxx.dll 2014-12-10 13:42:55 ----A---- C:\Windows\system32\atipdlxx.dll 2014-12-10 13:42:52 ----A---- C:\Windows\system32\atioglxx.dll 2014-12-10 13:42:47 ----A---- C:\Windows\system32\atimuixx.dll 2014-12-10 13:42:47 ----A---- C:\Windows\system32\atimpc32.dll 2014-12-10 13:42:47 ----A---- C:\Windows\system32\atiglpxx.dll 2014-12-10 13:42:47 ----A---- C:\Windows\system32\atigktxx.dll 2014-12-10 13:42:47 ----A---- C:\Windows\system32\amdpcom32.dll 2014-12-10 13:42:45 ----A---- C:\Windows\system32\ATIDEMGX.dll 2014-12-10 13:42:44 ----A---- C:\Windows\system32\aticalrt.dll 2014-12-10 13:42:42 ----A---- C:\Windows\system32\aticaldd.dll 2014-12-10 13:42:41 ----A---- C:\Windows\system32\aticalcl.dll 2014-12-10 13:42:41 ----A---- C:\Windows\system32\atiadlxx.dll 2014-12-10 13:42:40 ----A---- C:\Windows\system32\drivers\ati2erec.dll 2014-12-10 13:42:40 ----A---- C:\Windows\system32\ati2edxx.dll 2014-12-10 13:42:40 ----A---- C:\Windows\system32\amdverag.dll 2014-12-10 13:42:39 ----A---- C:\Windows\system32\atiesrxx.exe 2014-12-10 13:42:39 ----A---- C:\Windows\system32\atieclxx.exe 2014-12-10 13:42:39 ----A---- C:\Windows\system32\atiapfxx.exe 2014-12-10 13:02:10 ----A---- C:\Windows\system32\ATIODE.exe 2014-12-10 13:02:10 ----A---- C:\Windows\system32\ATIODCLI.exe 2014-12-10 13:02:10 ----A---- C:\Windows\system32\atibtmon.exe 2014-12-10 13:02:09 ----A---- C:\Windows\system32\atiuxpag.dll 2014-12-10 13:02:02 ----A---- C:\Windows\system32\atiu9pag.dll 2014-12-10 13:01:24 ----A---- C:\Windows\system32\aticfx32.dll 2014-12-10 13:01:00 ----A---- C:\Windows\system32\atipblag.dat 2014-12-10 13:00:56 ----A---- C:\Windows\system32\coinst_8.97.100.7.dll 2014-12-10 13:00:38 ----A---- C:\Windows\system32\drivers\AtihdW73.sys 2014-12-10 13:00:37 ----A---- C:\Windows\system32\DelayAPO.dll 2014-12-10 13:00:22 ----N---- C:\Windows\system32\stapi32.dll 2014-12-10 13:00:19 ----A---- C:\Windows\system32\aestecap.dll 2014-12-10 13:00:18 ----A---- C:\Windows\system32\aestaren.dll 2014-12-10 13:00:18 ----A---- C:\Windows\system32\aestacap.dll 2014-12-10 13:00:16 ----A---- C:\Windows\system32\idtmini1.exe 2014-12-10 13:00:16 ----A---- C:\Windows\system32\AESTCom.dll 2014-12-10 13:00:15 ----A---- C:\Windows\system32\stlang.dll 2014-12-10 13:00:15 ----A---- C:\Windows\sttray.exe 2014-12-10 13:00:03 ----D---- C:\Program Files\IDT 2014-12-10 13:00:00 ----D---- C:\Windows\system32\SRSLabs 2014-12-10 12:58:16 ----A---- C:\Windows\system32\drivers\stwrt.sys 2014-12-10 12:58:08 ----A---- C:\Windows\system32\stcplx.dll 2014-12-10 12:58:07 ----A---- C:\Windows\system32\stapo.dll 2014-12-10 12:58:05 ----A---- C:\Windows\system32\st326433.dll 2014-12-10 12:57:45 ----A---- C:\Windows\system32\drivers\hpdskflt.sys 2014-12-10 12:57:45 ----A---- C:\Windows\system32\drivers\Accelerometer.sys 2014-12-10 12:57:43 ----A---- C:\Windows\system32\hpservice.exe 2014-12-10 12:57:43 ----A---- C:\Windows\system32\HPMDPCoInst12.dll 2014-12-10 12:57:43 ----A---- C:\Windows\system32\accelerometerdll.DLL 2014-12-10 12:57:24 ----A---- C:\Windows\system32\drivers\johci.sys 2014-12-10 12:57:24 ----A---- C:\Windows\system32\drivers\enecir.sys 2014-12-10 12:57:06 ----A---- C:\Windows\system32\drivers\iaStorF.sys 2014-12-10 12:57:06 ----A---- C:\Windows\system32\drivers\iaStorA.sys 2014-12-10 12:56:03 ----A---- C:\Windows\system32\drivers\Rt86win7.sys 2014-12-10 12:55:56 ----A---- C:\Windows\system32\RTNUninst32.dll 2014-12-10 12:55:56 ----A---- C:\Windows\system32\RtNicProp32.dll 2014-12-10 12:54:29 ----A---- C:\Windows\system32\drivers\jmcr.sys 2014-12-10 12:54:22 ----A---- C:\Windows\system32\jmcricon.dll 2014-12-10 12:54:13 ----A---- C:\Windows\system32\drivers\btcusb.sys 2014-12-10 12:54:12 ----A---- C:\Windows\system32\btinstall.dll 2014-12-10 00:36:28 ----D---- C:\Users\nightwalker\AppData\Roaming\AVG2015 2014-12-10 00:35:51 ----D---- C:\Users\nightwalker\AppData\Roaming\TuneUp Software 2014-12-10 00:35:23 ----HD---- C:\$AVG 2014-12-10 00:35:23 ----D---- C:\ProgramData\AVG2015 2014-12-10 00:35:12 ----D---- C:\Program Files\AVG 2014-12-10 00:20:55 ----HD---- C:\ProgramData\Common Files 2014-12-10 00:20:55 ----D---- C:\ProgramData\MFAData 2014-12-09 23:51:01 ----D---- C:\Users\nightwalker\AppData\Roaming\WinRAR 2014-12-09 22:34:51 ----SHD---- C:\Windows\system32\AI_RecycleBin 2014-12-09 22:34:48 ----D---- C:\ProgramData\Spotnet 2014-12-09 22:30:55 ----D---- C:\Program Files\Spotnet 2014-12-09 22:29:49 ----D---- C:\Users\nightwalker\AppData\Roaming\Spotnet 2014-12-09 22:27:02 ----D---- C:\Users\nightwalker\AppData\Roaming\Macromedia 2014-12-09 21:27:02 ----D---- C:\Users\nightwalker\AppData\Roaming\Identities 2014-12-09 21:26:55 ----D---- C:\Users\nightwalker\AppData\Roaming\Adobe 2014-12-09 21:26:44 ----SD---- C:\Users\nightwalker\AppData\Roaming\Microsoft 2014-12-09 21:26:44 ----D---- C:\Users\nightwalker\AppData\Roaming\Media Center Programs 2014-12-09 21:24:55 ----SHD---- C:\Recovery 2014-12-09 21:24:55 ----SHD---- C:\ProgramData\Sjablonen 2014-12-09 21:24:55 ----SHD---- C:\ProgramData\Menu Start 2014-12-09 21:24:55 ----SHD---- C:\ProgramData\Favorieten 2014-12-09 21:24:55 ----SHD---- C:\ProgramData\Documenten 2014-12-09 21:24:55 ----SHD---- C:\ProgramData\Bureaublad 2014-12-09 21:24:09 ----D---- C:\Windows\SoftwareDistribution 2014-12-09 20:39:40 ----D---- C:\Windows\CSC 2014-12-09 20:39:09 ----ASH---- C:\pagefile.sys 2014-12-09 20:39:08 ----SHD---- C:\System Volume Information 2014-12-09 20:38:17 ----RA---- C:\Windows\system32\delnext.exe 2014-12-09 20:38:17 ----RA---- C:\Windows\system32\cWnd.exe 2014-12-09 20:38:17 ----D---- C:\Program Files\Autoruns ======List of files/folders modified in the last 1 month====== 2014-12-17 00:25:55 ----D---- C:\Windows\Temp 2014-12-16 15:00:02 ----D---- C:\Windows\Prefetch 2014-12-16 14:59:14 ----D---- C:\Windows\System32 2014-12-16 14:59:14 ----D---- C:\Windows\inf 2014-12-16 14:59:14 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-12-15 20:54:04 ----RD---- C:\Program Files 2014-12-15 16:33:07 ----SHD---- C:\Windows\Installer 2014-12-14 23:25:36 ----D---- C:\Windows 2014-12-14 01:20:30 ----D---- C:\Windows\Panther 2014-12-14 01:20:30 ----D---- C:\Windows\Logs 2014-12-14 01:20:30 ----D---- C:\Windows\debug 2014-12-14 01:19:34 ----D---- C:\Windows\Tasks 2014-12-14 01:15:58 ----D---- C:\Windows\system32\Tasks 2014-12-14 01:14:38 ----HD---- C:\ProgramData 2014-12-13 03:50:06 ----D---- C:\Windows\system32\config 2014-12-13 03:39:56 ----D---- C:\Windows\winsxs 2014-12-13 03:39:45 ----D---- C:\Program Files\Common Files\microsoft shared 2014-12-13 01:30:08 ----D---- C:\Windows\system32\drivers 2014-12-12 21:48:24 ----D---- C:\Windows\system32\catroot 2014-12-12 21:47:41 ----D---- C:\Windows\system32\DriverStore 2014-12-12 21:47:13 ----D---- C:\Program Files\Common Files 2014-12-11 00:17:19 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-12-10 22:10:06 ----D---- C:\ProgramData\Oracle 2014-12-10 13:42:07 ----D---- C:\Windows\system32\catroot2 2014-12-09 22:26:26 ----SD---- C:\ProgramData\Microsoft 2014-12-09 21:44:19 ----D---- C:\Windows\Microsoft.NET 2014-12-09 21:41:12 ----RSD---- C:\Windows\assembly 2014-12-09 21:27:01 ----SHD---- C:\$Recycle.Bin 2014-12-09 21:26:43 ----RD---- C:\Users 2014-12-09 21:24:55 ----D---- C:\Program Files\Windows NT 2014-12-09 21:24:31 ----D---- C:\Windows\rescache 2014-12-09 21:24:19 ----D---- C:\Windows\system32\wdi 2014-12-09 20:38:17 ----D---- C:\Windows\Setup ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-18 147736] R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-07-18 230680] R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2014-10-05 98584] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2014-06-18 27416] R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-09-24 27968] R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2012-12-11 526904] R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2012-12-11 25656] R0 iusb3hcs;Intel(R) USB 3.0 hostcontrollerswitch-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-12-21 17032] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-08-21 320120] R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-18 121624] R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys [2013-09-26 47928] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2014-10-29 213784] R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-18 21272] R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2014-08-28 192792] R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2014-10-10 200984] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128] R2 ubsbm;Unibrain 1394 SBM Driver; C:\Windows\system32\DRIVERS\ubsbm.sys [2012-10-05 17408] R2 ubumapi;Unibrain 1394 FireAPI Driver; C:\Windows\system32\DRIVERS\ubumapi.sys [2012-10-05 46592] R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-09-24 37696] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-29 9164800] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-03-28 265216] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2013-02-14 79872] R3 BCM43XX;Stuurprogramma voor de Broadcom 802.11-netwerkadapter; C:\Windows\system32\DRIVERS\bcmwl6.sys [2012-09-29 4269160] R3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [2012-12-25 36856] R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2011-11-17 65360] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 26840] R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2013-02-01 148208] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2012-12-27 614624] R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10305; C:\Windows\system32\DRIVERS\stwrt.sys [2012-10-24 452096] R3 ubohci;Unibrain 1394 OHCI Driver; C:\Windows\system32\DRIVERS\ubohci.sys [2012-10-05 116736] S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704] S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-29 9164800] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416] S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464] S3 E1G60;Stuurprogramma voor Intel(R) PRO/1000 NDIS 6-adapter; C:\Windows\system32\DRIVERS\E1G60I32.sys [2009-07-13 118784] S3 johci;JMicron 1394 Filter Driver; C:\Windows\system32\DRIVERS\johci.sys [2012-07-16 23136] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632] S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-20 84992] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032] S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver; C:\Windows\system32\drivers\Synth3dVsc.sys [2010-11-20 77184] S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 24064] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2013-10-02 26880] S3 tsusbhub;Remote Deskotop USB Hub; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640] S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2014-08-15 45056] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;Stuurprogramma voor VIA C7-processor; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736] S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2009-03-02 81920] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-03-28 163328] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744] R2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2015\avgfws.exe [2014-11-09 1486664] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [2014-11-09 3488784] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [2014-11-09 298080] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2012-09-24 27968] R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10101; C:\Program Files\IDT\WDM\STacSV.exe [2012-10-24 307282] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 540968] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-12-14 116648] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-11 267440] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-12-14 116648] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-14 194032] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 108032] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------