Logfile of random's system information tool 1.10 (written by random/random) Run by Dosje at 2015-01-01 14:06:06 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 273 GB (93%) free of 294 GB Total RAM: 3539 MB (49% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:06:13, on 1/01/2015 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17496) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Program Files\Malwarebytes Anti-Malware\mbam.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Bitdefender\Bitdefender\bdagent.exe C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe C:\Windows\system32\taskeng.exe C:\Program Files\CCleaner\CCleaner.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\CCleaner\CCleaner.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\Dosje\Downloads\RSIT.exe C:\Program Files\trend micro\Dosje.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s O4 - HKLM\..\Run: [Bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe" O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe" O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart O4 - HKCU\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" O4 - HKCU\..\Run: [Bitdefender Agent Wallet-toepassing] "C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe" O4 - HKCU\..\Run: [Bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'Default user') O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe -- End of file - 4981 bytes =========Mozilla firefox========= ProfilePath - C:\Users\Dosje\AppData\Roaming\Mozilla\Firefox\Profiles\y89nynxo.default-1419962407733 "ffpwdman@bitdefender.com"=C:\Program Files\Bitdefender\Bitdefender\ffpwdman\ [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll C:\Users\Dosje\AppData\Roaming\Mozilla\Firefox\Profiles\y89nynxo.default-1419962407733\extensions\ {b9db16a4-6edc-47ec-a1f4-b86292ed211d} ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}] Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-02-17 156400] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-10-23 12107480] "Bdagent"=C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [2014-03-25 1845064] "NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472] "ShadowPlay"=C:\Windows\system32\nvspcap.dll [2014-12-13 2210040] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Bitdefender Wallet Agent"=C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [2014-03-19 482392] "Bitdefender Agent Wallet-toepassing"=C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [2014-03-19 614232] "Bitdefender Wallet"=C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [2014-03-15 901096] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=221 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=i420vfw.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=l3codeca.acm "vidc.cvid"=iccvid.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "msacm.l3codecp"=l3codecp.acm "vidc.yv12"=yv12vfw.dll "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2015-01-01 14:06:06 ----D---- C:\rsit 2015-01-01 14:06:06 ----D---- C:\Program Files\trend micro 2015-01-01 10:13:17 ----D---- C:\AdwCleaner 2014-12-31 21:04:23 ----A---- C:\bdlog.txt 2014-12-31 19:48:21 ----D---- C:\Users\Dosje\AppData\Roaming\vlc 2014-12-31 19:36:05 ----D---- C:\Program Files\Mozilla Maintenance Service 2014-12-31 19:36:04 ----D---- C:\Program Files\Mozilla Firefox 2014-12-31 13:21:39 ----A---- C:\Windows\system32\FNTCACHE.DAT 2014-12-25 05:46:32 ----D---- C:\Program Files\Speccy 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvumdshim.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvopencl.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvoglv32.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvoglshim32.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvinit.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\NvIFROpenGL.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\NvIFR.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvhdap32.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvhdagenco32.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\NvFBC.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvEncodeAPI.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvdispgenco3234709.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvdispco3234709.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvcuvid.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\nvcuda.dll 2014-12-25 05:43:22 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys 2014-12-25 05:43:22 ----A---- C:\Windows\system32\drivers\nvhda32v.sys 2014-12-25 05:43:21 ----A---- C:\Windows\system32\nvcompiler.dll 2014-12-18 05:02:56 ----D---- C:\Users\Dosje\AppData\Roaming\MPC-HC 2014-12-18 02:51:21 ----D---- C:\Program Files\MPC-HC 2014-12-18 00:57:47 ----A---- C:\Windows\system32\ieUnatt.exe 2014-12-17 13:34:11 ----D---- C:\Users\Dosje\AppData\Roaming\Digiarty 2014-12-17 13:34:11 ----D---- C:\Program Files\Digiarty 2014-12-17 01:20:01 ----A---- C:\Windows\system32\drivers\nvvad32v.sys 2014-12-16 17:17:23 ----SH---- C:\Windows\system32\devil.dll 2014-12-16 17:17:23 ----SH---- C:\Windows\system32\avisynth.dll 2014-12-16 17:17:22 ----SH---- C:\Windows\system32\yv12vfw.dll 2014-12-16 17:17:22 ----SH---- C:\Windows\system32\AVSredirect.dll 2014-12-16 17:17:21 ----SH---- C:\Windows\system32\i420vfw.dll 2014-12-16 16:56:17 ----A---- C:\Windows\system32\pncrt.dll 2014-12-16 16:56:17 ----A---- C:\Windows\system32\msvcr71.dll 2014-12-16 16:56:17 ----A---- C:\Windows\system32\msvcp71.dll 2014-12-16 16:56:17 ----A---- C:\Windows\system32\drvc.dll 2014-12-16 12:00:41 ----D---- C:\OutputFolder 2014-12-16 11:23:14 ----D---- C:\Users\Dosje\AppData\Roaming\NVIDIA 2014-12-16 11:12:39 ----D---- C:\Users\Dosje\AppData\Roaming\MediaInfo 2014-12-16 11:12:15 ----D---- C:\Program Files\MediaInfo 2014-12-16 06:43:57 ----A---- C:\Windows\system32\SmartDefragBootTime.exe 2014-12-16 06:42:32 ----D---- C:\ProgramData\ProductData 2014-12-16 06:41:52 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141216064355.dll 2014-12-16 06:40:05 ----A---- C:\Windows\system32\unrar.dll 2014-12-16 03:23:42 ----AD---- C:\ProgramData\TEMP 2014-12-15 22:50:30 ----D---- C:\Program Files\Ultra Video Joiner 2014-12-15 22:49:23 ----D---- C:\Program Files\Ultra Video Splitter 2014-12-15 22:48:14 ----A---- C:\Windows\system32\AVERM.dll 2014-12-15 22:48:14 ----A---- C:\Windows\system32\AVEQT.dll 2014-12-15 22:48:13 ----D---- C:\Program Files\Ultra Video Converter 2014-12-09 22:16:19 ----D---- C:\Windows\system32\appraiser 2014-12-09 22:13:52 ----A---- C:\Windows\system32\rrinstaller.exe 2014-12-09 22:13:52 ----A---- C:\Windows\system32\mfps.dll 2014-12-09 22:13:52 ----A---- C:\Windows\system32\mfpmp.exe 2014-12-09 22:13:52 ----A---- C:\Windows\system32\mferror.dll 2014-12-09 22:13:52 ----A---- C:\Windows\system32\mf.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\wininet.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\vbscript.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-12-09 22:11:38 ----A---- C:\Windows\system32\jsproxy.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\jscript9diag.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-12-09 22:11:38 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-12-09 22:11:38 ----A---- C:\Windows\system32\dxtmsft.dll 2014-12-09 22:11:37 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-12-09 22:11:37 ----A---- C:\Windows\system32\mshtmled.dll 2014-12-09 22:11:37 ----A---- C:\Windows\system32\ieui.dll 2014-12-09 22:11:37 ----A---- C:\Windows\system32\dxtrans.dll 2014-12-09 22:11:36 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-12-09 22:11:36 ----A---- C:\Windows\system32\jscript9.dll 2014-12-09 22:11:36 ----A---- C:\Windows\system32\iertutil.dll 2014-12-09 22:11:35 ----A---- C:\Windows\system32\urlmon.dll 2014-12-09 22:11:35 ----A---- C:\Windows\system32\mshtml.dll 2014-12-09 22:11:35 ----A---- C:\Windows\system32\msfeeds.dll 2014-12-09 22:11:35 ----A---- C:\Windows\system32\iernonce.dll 2014-12-09 22:11:35 ----A---- C:\Windows\system32\iedkcs32.dll 2014-12-09 22:11:35 ----A---- C:\Windows\system32\ieapfltr.dll 2014-12-09 22:11:35 ----A---- C:\Windows\system32\ie4uinit.exe 2014-12-09 22:11:34 ----A---- C:\Windows\system32\msrating.dll 2014-12-09 22:11:34 ----A---- C:\Windows\system32\iesetup.dll 2014-12-09 22:11:34 ----A---- C:\Windows\system32\ieframe.dll 2014-12-09 22:10:52 ----A---- C:\Windows\system32\charmap.exe 2014-12-09 22:10:47 ----A---- C:\Windows\system32\WsmWmiPl.dll 2014-12-09 22:10:47 ----A---- C:\Windows\system32\WsmSvc.dll 2014-12-09 22:10:47 ----A---- C:\Windows\system32\WsmAuto.dll 2014-12-09 22:10:47 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll 2014-12-09 22:10:47 ----A---- C:\Windows\system32\WSManHTTPConfig.exe 2014-12-09 22:10:40 ----A---- C:\Windows\system32\tzres.dll 2014-12-09 22:10:29 ----A---- C:\Windows\system32\drivers\tdx.sys 2014-12-09 22:10:23 ----A---- C:\Windows\system32\invagent.dll 2014-12-09 22:10:23 ----A---- C:\Windows\system32\generaltel.dll 2014-12-09 22:10:23 ----A---- C:\Windows\system32\devinv.dll 2014-12-09 22:10:23 ----A---- C:\Windows\system32\appraiser.dll 2014-12-09 22:10:23 ----A---- C:\Windows\system32\aitstatic.exe 2014-12-09 22:10:23 ----A---- C:\Windows\system32\aepic.dll 2014-12-09 22:10:23 ----A---- C:\Windows\system32\aepdu.dll 2014-12-09 22:10:23 ----A---- C:\Windows\system32\aeinv.dll 2014-12-09 22:10:02 ----A---- C:\Windows\system32\WindowsCodecs.dll 2014-12-09 02:56:41 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe 2014-12-07 03:39:09 ----D---- C:\Users\Dosje\AppData\Roaming\Greenshot 2014-12-04 23:26:48 ----D---- C:\Program Files\Greenshot 2014-12-03 03:16:39 ----D---- C:\Program Files\VideoLAN 2014-12-02 19:05:50 ----A---- C:\Windows\system32\SETB8.tmp 2014-12-02 19:05:50 ----A---- C:\Windows\system32\nvwgf2um.dll 2014-12-02 19:05:49 ----A---- C:\Windows\system32\nvdispgenco3234475.dll 2014-12-02 19:05:49 ----A---- C:\Windows\system32\nvdispco3234475.dll 2014-12-02 18:51:47 ----A---- C:\Windows\system32\drivers\dptf_pch.sys 2014-12-02 18:51:45 ----A---- C:\Windows\system32\drivers\WdfCoInstaller01011.dll 2014-12-02 18:50:43 ----A---- C:\Windows\system32\drivers\iusb3xhc.sys 2014-12-02 18:50:31 ----A---- C:\Windows\system32\drivers\athr.sys 2014-12-02 18:46:20 ----A---- C:\Windows\system32\SETF8C4.tmp 2014-12-02 18:46:20 ----A---- C:\Windows\system32\nvd3dum.dll 2014-12-02 18:45:53 ----A---- C:\Windows\system32\nvdispgenco3234465.dll 2014-12-02 18:45:53 ----A---- C:\Windows\system32\nvdispco3234465.dll 2014-12-02 18:42:46 ----A---- C:\Windows\system32\drivers\rtvienna.dat 2014-12-02 18:42:46 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT 2014-12-02 18:42:45 ----A---- C:\Windows\system32\RCoRes.dat 2014-12-02 18:42:44 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys 2014-12-02 18:42:43 ----A---- C:\Windows\system32\tadefxapo2.dll 2014-12-02 18:42:43 ----A---- C:\Windows\system32\SStudio.dll 2014-12-02 18:42:42 ----A---- C:\Windows\system32\SRRPTR.dll 2014-12-02 18:42:42 ----A---- C:\Windows\system32\SRCOM.dll 2014-12-02 18:42:42 ----A---- C:\Windows\system32\SRAPO.dll 2014-12-02 18:42:38 ----A---- C:\Windows\system32\RtkPgExt.dll 2014-12-02 18:42:38 ----A---- C:\Windows\system32\RtkCoInstII.dll 2014-12-02 18:42:38 ----A---- C:\Windows\system32\RtkApoApi.dll 2014-12-02 18:42:37 ----A---- C:\Windows\system32\RltkAPO.dll 2014-12-02 18:42:36 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2014-12-02 18:42:36 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll 2014-12-02 18:42:35 ----A---- C:\Windows\system32\MaxxVoiceAPO30.dll 2014-12-02 18:42:35 ----A---- C:\Windows\system32\MaxxVoiceAPO20.dll 2014-12-02 18:42:34 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll 2014-12-02 18:42:34 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll 2014-12-02 18:42:34 ----A---- C:\Windows\system32\MaxxAudioAPO60.dll 2014-12-02 18:42:34 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll 2014-12-02 18:42:33 ----A---- C:\Windows\system32\ICEsoundAPO.dll 2014-12-02 18:42:32 ----A---- C:\Windows\system32\CX32APO.dll 2014-12-02 18:42:31 ----A---- C:\Windows\system32\audioLibVc.dll 2014-12-02 18:42:31 ----A---- C:\Windows\system32\AERTACap.dll 2014-12-02 18:42:11 ----A---- C:\Windows\system32\drivers\iaStorF.sys 2014-12-02 18:42:11 ----A---- C:\Windows\system32\drivers\iaStorA.sys 2014-12-02 18:41:41 ----A---- C:\Windows\system32\RtNicProp32.dll 2014-12-02 18:41:41 ----A---- C:\Windows\system32\drivers\Rt86win7.sys 2014-12-02 18:28:37 ----A---- C:\Windows\system32\d3dx11_43.dll 2014-12-02 18:28:37 ----A---- C:\Windows\system32\d3dx10_43.dll 2014-12-02 18:28:34 ----A---- C:\Windows\system32\D3DX9_43.dll 2014-12-02 18:27:57 ----A---- C:\Windows\system32\nvspcap.dll 2014-12-02 18:27:57 ----A---- C:\Windows\system32\nvspbridge.dll 2014-12-02 18:25:56 ----A---- C:\Windows\system32\nvaudcap32v.dll 2014-12-02 14:54:38 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys 2014-12-02 14:54:13 ----D---- C:\ProgramData\Malwarebytes 2014-12-02 14:54:13 ----D---- C:\Program Files\Malwarebytes Anti-Malware 2014-12-02 14:54:13 ----A---- C:\Windows\system32\drivers\mwac.sys 2014-12-02 14:54:13 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys 2014-12-02 14:54:13 ----A---- C:\Windows\system32\drivers\mbam.sys 2014-12-02 14:52:17 ----D---- C:\Users\Dosje\AppData\Roaming\Aiseesoft Studio 2014-12-02 14:52:17 ----D---- C:\Program Files\Aiseesoft Studio 2014-12-02 12:16:33 ----A---- C:\Windows\system32\rdpcorets.dll 2014-12-02 12:16:30 ----A---- C:\Windows\system32\mstscax.dll 2014-12-02 11:01:11 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-12-02 10:58:00 ----A---- C:\Windows\system32\msmpeg2vdec.dll 2014-12-02 10:42:52 ----D---- C:\Windows\system32\drivers\en-US 2014-12-02 10:40:56 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys 2014-12-02 10:40:54 ----A---- C:\Windows\system32\rdpudd.dll 2014-12-02 10:40:54 ----A---- C:\Windows\system32\rdpendp_winip.dll 2014-12-02 10:38:17 ----A---- C:\Windows\system32\spoolsv.exe 2014-12-02 10:38:10 ----A---- C:\Windows\system32\fsutil.exe 2014-12-02 10:38:10 ----A---- C:\Windows\system32\esent.dll 2014-12-02 10:38:10 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS 2014-12-02 10:38:10 ----A---- C:\Windows\system32\drivers\nvstor.sys 2014-12-02 10:38:10 ----A---- C:\Windows\system32\drivers\nvraid.sys 2014-12-02 10:38:10 ----A---- C:\Windows\system32\drivers\iaStorV.sys 2014-12-02 10:38:10 ----A---- C:\Windows\system32\drivers\amdxata.sys 2014-12-02 10:38:10 ----A---- C:\Windows\system32\drivers\amdsata.sys 2014-12-02 10:38:05 ----A---- C:\Windows\system32\WMPhoto.dll 2014-12-02 10:38:03 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS 2014-12-02 10:38:03 ----A---- C:\Windows\system32\drivers\bthport.sys 2014-12-02 10:38:00 ----A---- C:\Windows\system32\d3d10warp.dll 2014-12-02 10:37:58 ----A---- C:\Windows\explorer.exe 2014-12-02 10:37:51 ----A---- C:\Windows\system32\KBDYAK.DLL 2014-12-02 10:37:51 ----A---- C:\Windows\system32\KBDTAT.DLL 2014-12-02 10:37:51 ----A---- C:\Windows\system32\KBDRU1.DLL 2014-12-02 10:37:51 ----A---- C:\Windows\system32\KBDRU.DLL 2014-12-02 10:37:51 ----A---- C:\Windows\system32\KBDBASH.DLL 2014-12-02 10:37:49 ----A---- C:\Windows\system32\d2d1.dll 2014-12-02 10:36:26 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-12-02 10:36:25 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-12-02 10:36:24 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys 2014-12-02 10:36:22 ----A---- C:\Windows\system32\wksprtPS.dll 2014-12-02 10:36:22 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-12-02 10:36:22 ----A---- C:\Windows\system32\tsgqec.dll 2014-12-02 10:36:22 ----A---- C:\Windows\system32\MsRdpWebAccess.dll 2014-12-02 10:36:21 ----A---- C:\Windows\system32\wksprt.exe 2014-12-02 10:36:21 ----A---- C:\Windows\system32\TSWbPrxy.exe 2014-12-02 10:36:21 ----A---- C:\Windows\system32\rdvidcrl.dll 2014-12-02 10:36:21 ----A---- C:\Windows\system32\mstsc.exe 2014-12-02 10:29:51 ----A---- C:\Windows\system32\DWrite.dll ======List of files/folders modified in the last 1 month====== 2015-01-01 14:06:06 ----RD---- C:\Program Files 2015-01-01 14:03:31 ----D---- C:\Windows\system32\config 2015-01-01 14:03:07 ----D---- C:\Windows\System32 2015-01-01 14:03:07 ----D---- C:\Windows\inf 2015-01-01 14:03:07 ----A---- C:\Windows\system32\PerfStringBackup.INI 2015-01-01 14:02:26 ----D---- C:\Windows\Temp 2015-01-01 14:01:46 ----D---- C:\Windows\system32\drivers\etc 2014-12-31 22:36:00 ----SD---- C:\ProgramData\Microsoft 2014-12-31 22:34:50 ----D---- C:\Windows\system32\catroot2 2014-12-31 22:34:27 ----D---- C:\Windows 2014-12-31 19:55:17 ----SHD---- C:\System Volume Information 2014-12-31 19:53:51 ----D---- C:\Windows\Tasks 2014-12-31 19:53:51 ----D---- C:\Windows\system32\Tasks 2014-12-31 19:49:22 ----SHD---- C:\Windows\Installer 2014-12-31 19:27:53 ----D---- C:\ProgramData\Mozilla 2014-12-31 19:22:09 ----D---- C:\Program Files\Common Files 2014-12-31 14:09:05 ----D---- C:\ProgramData\NVIDIA 2014-12-31 07:00:34 ----D---- C:\Windows\system32\wdi 2014-12-31 05:31:30 ----D---- C:\Windows\Prefetch 2014-12-30 18:40:19 ----D---- C:\Windows\SoftwareDistribution 2014-12-28 13:47:55 ----HD---- C:\ProgramData 2014-12-28 11:45:52 ----D---- C:\Windows\debug 2014-12-25 05:44:46 ----D---- C:\Program Files\NVIDIA Corporation 2014-12-25 05:44:36 ----D---- C:\Windows\system32\drivers 2014-12-25 05:44:35 ----D---- C:\Windows\system32\DriverStore 2014-12-25 05:44:35 ----D---- C:\Windows\system32\catroot 2014-12-25 05:44:19 ----D---- C:\Windows\Help 2014-12-22 12:56:34 ----D---- C:\Windows\winsxs 2014-12-22 12:42:03 ----D---- C:\Windows\system32\LogFiles 2014-12-22 12:23:59 ----D---- C:\Program Files\CCleaner 2014-12-17 01:35:03 ----D---- C:\Windows\system32\NDF 2014-12-16 16:56:31 ----RSD---- C:\Windows\Fonts 2014-12-13 15:07:44 ----D---- C:\Windows\rescache 2014-12-13 12:51:34 ----D---- C:\Windows\system32\nl-NL 2014-12-13 11:02:10 ----A---- C:\Windows\system32\OpenCL.dll 2014-12-13 11:02:10 ----A---- C:\Windows\system32\nvapi.dll 2014-12-13 08:30:19 ----A---- C:\Windows\system32\nvsvc.dll 2014-12-13 08:30:19 ----A---- C:\Windows\system32\nvcpl.dll 2014-12-13 08:30:17 ----A---- C:\Windows\system32\nvvsvc.exe 2014-12-13 08:30:17 ----A---- C:\Windows\system32\nvsvcr.dll 2014-12-13 08:30:17 ----A---- C:\Windows\system32\nvshext.dll 2014-12-13 08:30:17 ----A---- C:\Windows\system32\nvmctray.dll 2014-12-09 22:16:20 ----D---- C:\Windows\system32\en-US 2014-12-09 22:16:20 ----D---- C:\Windows\PolicyDefinitions 2014-12-09 22:16:20 ----D---- C:\Program Files\Internet Explorer 2014-12-09 22:16:19 ----SD---- C:\Windows\system32\CompatTel 2014-12-09 22:16:19 ----D---- C:\Windows\AppCompat 2014-12-09 22:13:44 ----D---- C:\Windows\system32\MRT 2014-12-09 22:12:10 ----A---- C:\Windows\system32\MRT.exe 2014-12-09 02:59:47 ----D---- C:\Windows\Downloaded Program Files 2014-12-09 02:50:39 ----D---- C:\Windows\Panther 2014-12-04 23:48:09 ----HD---- C:\Windows\system32\GroupPolicy 2014-12-04 23:26:55 ----RSD---- C:\Windows\assembly 2014-12-04 23:26:55 ----D---- C:\Windows\Microsoft.NET 2014-12-03 04:53:54 ----SD---- C:\Users\Dosje\AppData\Roaming\Microsoft 2014-12-02 19:09:23 ----D---- C:\ProgramData\NVIDIA Corporation 2014-12-02 19:00:55 ----D---- C:\Windows\Logs 2014-12-02 18:44:01 ----D---- C:\Windows\system32\RTCOM 2014-12-02 10:42:53 ----D---- C:\Windows\system32\drivers\nl-NL 2014-12-02 10:42:53 ----D---- C:\Windows\ehome 2014-12-02 10:42:52 ----D---- C:\Windows\system32\wbem 2014-12-02 10:42:52 ----D---- C:\Program Files\Windows Journal 2014-12-02 10:42:52 ----D---- C:\Program Files\Common Files\System ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2013-12-02 778032] R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2013-08-23 165744] R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2014-10-09 1934488] R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2014-10-09 26776] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2013-08-07 360376] R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2013-02-22 78144] R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 90704] R1 bdselfpr;bdselfpr; \??\C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys [2013-07-26 135600] R1 BDVEDISK;BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [2012-04-17 72704] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128] R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2014-08-11 3270144] R3 avchv;avchv Function Driver; C:\Windows\system32\DRIVERS\avchv.sys [2012-11-02 242504] R3 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2013-12-02 516936] R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-10-23 509224] R3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816] R3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696] R3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416] R3 dptf_pch;dptf_pch; C:\Windows\system32\DRIVERS\dptf_pch.sys [2014-06-10 31992] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-10-23 3317848] R3 iusb3xhc;Intel(R) USB 3.0 uitbreidbare hostcontroller-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-08-25 803312] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-11-21 23256] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-01-01 114904] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-11-21 51928] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2014-10-09 161424] R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 18576] R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2014-11-22 32912] R3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2014-07-16 719064] R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-07-30 27888] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336] S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704] S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 anvsnddrv;AnvSoft Virtual Sound Device; C:\Windows\system32\drivers\anvsnddrv.sys [] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888] S3 bdfwfpf_pc;bdfwfpf_pc; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-07-02 108008] S3 BDSandBox;BDSandBox; \??\C:\Windows\system32\drivers\bdsandbox.sys [2013-11-04 66832] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728] S3 DptfDevPch;DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [2013-10-14 103256] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848] S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-02-27 247000] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 915600] R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-11-21 1871160] R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2014-11-21 969016] R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520] R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 18186896] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-12-13 669840] R2 SafeBox;SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2013-07-08 81704] R2 UPDATESRV;Bitdefender Desktop Update Service; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2014-03-15 54424] R2 VSSERV;Bitdefender Virus Shield; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [2014-03-24 1248712] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 102912] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-26 114800] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 BdDesktopParental;Bitdefender Desktop Parental Control; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2014-03-15 69880] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------