Ga naar inhoud

logje nakijken

zubrrr
 Delen

Aanbevolen berichten

zubrrr Ervaren

zubrrr

Geplaatst:
Geplaatst:

Logfile of random's system information tool 1.09 (written by random/random)

Run by Anja at 2013-12-24 10:38:25

Microsoft® Windows Vista™ Home Basic Service Pack 2

System drive C: has 92 GB (62%) free of 149 GB

Total RAM: 3198 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 10:38:27, on 24/12/2013

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16526)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe

C:\Windows\System32\nvraidservice.exe

C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

C:\Windows\System32\wpcumi.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\Anja\Documents\Downloads\RSIT.exe

C:\Program Files\trend micro\Anja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

O1 - Hosts: ::1 localhost

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll

O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe

O4 - HKLM\..\Run: [NVRaidService] C:\Windows\system32\nvraidservice.exe

O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

O4 - HKLM\..\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [skytel] Skytel.exe

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe

O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe

O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe

O23 - Service: Google Updateservice (gupdate1ca21eaa00e0650) (gupdate1ca21eaa00e0650) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--

End of file - 6871 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-13 194128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-03-04 142896]

{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-08-28 352256]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-13 194128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-10-11 4702208]

"eDataSecurity Loader"=C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [2008-03-04 526896]

"eRecoveryService"= []

"NVRaidService"=C:\Windows\system32\nvraidservice.exe [2007-12-07 196128]

"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-06-19 195072]

"WPCUMI"=C:\Windows\system32\WpcUmi.exe [2006-11-02 176128]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2011-08-31 40368]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29 937920]

"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 948440]

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

"Skytel"=C:\Windows\Skytel.exe [2007-10-11 1826816]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

""= []

"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HijackThis startup scan]

C:\Program Files\Trend Micro\HiJackThis\HijackThis.exe /startupscan []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BsScanner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"LogonHoursAction"=2

"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"

"C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"

"C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"

"C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"

"C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"

"C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"

"C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"

"C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"

"C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"

"C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"msacm.siren"=sirenacm.dll

"MSVideo8"=VfWWDM32.dll

"msacm.sl_anet"=sl_anet.acm

"msacm.divxa32"=DivXa32.acm

"vidc.vp60"=vp6vfw.dll

"vidc.vp61"=vp6vfw.dll

"vidc.vp62"=vp6vfw.dll

"msacm.ac3filter"=ac3filter.acm

"msacm.lameacm"=LameACM.acm

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2013-12-24 10:38:25 ----D---- C:\rsit

2013-12-24 10:38:25 ----D---- C:\Program Files\trend micro

2013-12-13 14:26:08 ----D---- C:\Program Files\NirSoft

2013-12-11 06:26:09 ----A---- C:\Windows\system32\vbscript.dll

2013-12-11 06:26:09 ----A---- C:\Windows\system32\mshtmled.dll

2013-12-11 06:26:07 ----A---- C:\Windows\system32\jsproxy.dll

2013-12-11 06:26:07 ----A---- C:\Windows\system32\ieui.dll

2013-12-11 06:26:06 ----A---- C:\Windows\system32\wininet.dll

2013-12-11 06:26:06 ----A---- C:\Windows\system32\msfeeds.dll

2013-12-11 06:26:06 ----A---- C:\Windows\system32\ieUnatt.exe

2013-12-11 06:26:05 ----A---- C:\Windows\system32\url.dll

2013-12-11 06:26:05 ----A---- C:\Windows\system32\jscript9.dll

2013-12-11 06:26:05 ----A---- C:\Windows\system32\jscript.dll

2013-12-11 06:26:04 ----A---- C:\Windows\system32\iertutil.dll

2013-12-11 06:26:03 ----A---- C:\Windows\system32\urlmon.dll

2013-12-11 06:26:02 ----A---- C:\Windows\system32\mshtml.dll

2013-12-11 06:26:00 ----A---- C:\Windows\system32\ieframe.dll

2013-12-11 05:48:55 ----A---- C:\Windows\system32\win32k.sys

2013-12-11 05:48:54 ----A---- C:\Windows\system32\SysFxUI.dll

2013-12-11 05:48:53 ----A---- C:\Windows\system32\drivers\portcls.sys

2013-12-11 05:48:53 ----A---- C:\Windows\system32\drivers\drmk.sys

2013-12-11 05:48:51 ----A---- C:\Windows\system32\wshcon.dll

2013-12-11 05:48:51 ----A---- C:\Windows\system32\wscript.exe

2013-12-11 05:48:51 ----A---- C:\Windows\system32\scrrun.dll

2013-12-11 05:48:51 ----A---- C:\Windows\system32\cscript.exe

2013-12-11 05:48:42 ----A---- C:\Windows\system32\imagehlp.dll

2013-11-13 11:52:06 ----A---- C:\Windows\system32\gdi32.dll

2013-11-13 11:52:04 ----A---- C:\Windows\system32\crypt32.dll

2013-11-13 11:52:01 ----A---- C:\Windows\system32\IKEEXT.DLL

2013-11-13 11:52:01 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2013-10-19 07:41:06 ----D---- C:\Windows\Sun

2013-10-19 07:40:59 ----D---- C:\ProgramData\Oracle

2013-10-19 07:40:25 ----D---- C:\Program Files\Common Files\Java

2013-10-19 07:40:20 ----A---- C:\Windows\system32\javaws.exe

2013-10-19 07:40:12 ----A---- C:\Windows\system32\WindowsAccessBridge.dll

2013-10-19 07:40:12 ----A---- C:\Windows\system32\javaw.exe

2013-10-19 07:40:12 ----A---- C:\Windows\system32\java.exe

2013-10-18 04:59:39 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2013-10-18 04:59:39 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-10-18 04:59:39 ----A---- C:\Windows\system32\msrating.dll

2013-10-18 04:59:39 ----A---- C:\Windows\system32\msls31.dll

2013-10-18 04:59:39 ----A---- C:\Windows\system32\mshtmler.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\iesysprep.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\iesetup.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\iernonce.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\iedkcs32.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\ieapfltr.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\ieapfltr.dat

2013-10-18 04:59:38 ----A---- C:\Windows\system32\ie4uinit.exe

2013-10-18 04:59:38 ----A---- C:\Windows\system32\icardie.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\dxtrans.dll

2013-10-18 04:59:38 ----A---- C:\Windows\system32\dxtmsft.dll

2013-10-18 04:59:37 ----A---- C:\Windows\system32\wextract.exe

2013-10-18 04:59:37 ----A---- C:\Windows\system32\webcheck.dll

2013-10-18 04:59:37 ----A---- C:\Windows\system32\licmgr10.dll

2013-10-18 04:59:37 ----A---- C:\Windows\system32\inseng.dll

2013-10-18 04:59:37 ----A---- C:\Windows\system32\iexpress.exe

2013-10-18 04:59:36 ----A---- C:\Windows\system32\pngfilt.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\occache.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\mshta.exe

2013-10-18 04:59:36 ----A---- C:\Windows\system32\msfeedssync.exe

2013-10-18 04:59:36 ----A---- C:\Windows\system32\msfeedsbs.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\imgutil.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\iepeers.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\ieakui.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\ieaksie.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\ieakeng.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\IEAdvpack.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\advpack.dll

2013-10-18 04:59:36 ----A---- C:\Windows\system32\admparse.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\FntCache.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\DWrite.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\d3d10warp.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\d3d10level9.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\d3d10core.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\d3d10_1core.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\d3d10_1.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\d3d10.dll

2013-10-10 04:06:50 ----A---- C:\Windows\system32\d2d1.dll

2013-10-10 04:06:49 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2013-10-10 04:06:48 ----A---- C:\Windows\system32\cdd.dll

2013-10-10 04:06:41 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-10 04:06:36 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-10-10 04:06:36 ----A---- C:\Windows\system32\drivers\usbohci.sys

2013-10-10 04:06:36 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-10-10 04:06:36 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-10-10 04:06:36 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-10-10 04:06:36 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-10-10 04:06:35 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys

2013-10-10 04:06:34 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2013-10-10 04:06:33 ----A---- C:\Windows\system32\atmlib.dll

2013-10-10 04:06:33 ----A---- C:\Windows\system32\atmfd.dll

2013-10-10 04:06:32 ----A---- C:\Windows\system32\drivers\usbscan.sys

2013-10-10 04:06:32 ----A---- C:\Windows\system32\comctl32.dll

2013-10-10 04:06:31 ----A---- C:\Windows\system32\drivers\hidparse.sys

2013-09-27 09:53:06 ----A---- C:\Windows\system32\drivers\MpFilter.sys

======List of files/folders modified in the last 3 months======

2013-12-24 10:38:27 ----D---- C:\Windows\Prefetch

2013-12-24 10:38:25 ----D---- C:\Program Files

2013-12-24 10:37:59 ----D---- C:\Windows\Temp

2013-12-24 10:28:25 ----SHD---- C:\Windows\Installer

2013-12-24 10:28:25 ----SD---- C:\Users\Anja\AppData\Roaming\Microsoft

2013-12-24 10:28:22 ----SHD---- C:\System Volume Information

2013-12-24 06:17:36 ----D---- C:\Windows\System32

2013-12-24 06:17:36 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-12-24 06:17:35 ----D---- C:\Windows\inf

2013-12-24 06:14:12 ----D---- C:\Windows\SoftwareDistribution

2013-12-24 06:13:25 ----D---- C:\Windows

2013-12-24 06:12:11 ----D---- C:\Windows\Minidump

2013-12-22 21:35:50 ----D---- C:\Windows\system32\drivers

2013-12-22 21:05:37 ----D---- C:\Windows\system32\Adobe

2013-12-18 23:46:59 ----D---- C:\Windows\system32\catroot2

2013-12-16 14:42:21 ----HD---- C:\ProgramData

2013-12-16 14:42:21 ----D---- C:\Program Files\Acer GameZone

2013-12-13 18:15:05 ----D---- C:\Users\Anja\AppData\Roaming\Skype

2013-12-12 10:11:12 ----D---- C:\Windows\Debug

2013-12-11 17:12:18 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2013-12-11 06:31:29 ----D---- C:\Windows\system32\migration

2013-12-11 06:31:28 ----D---- C:\Program Files\Internet Explorer

2013-12-11 06:31:18 ----D---- C:\Windows\system32\RTCOM

2013-12-11 06:30:34 ----D---- C:\Windows\winsxs

2013-12-11 06:30:09 ----D---- C:\ProgramData\Microsoft Help

2013-12-11 06:28:41 ----D---- C:\Windows\system32\MRT

2013-12-11 06:26:55 ----A---- C:\Windows\system32\mrt.exe

2013-12-11 06:26:26 ----D---- C:\Windows\system32\catroot

2013-11-19 22:26:45 ----D---- C:\ProgramData\Adobe

2013-11-19 21:58:55 ----D---- C:\ProgramData\Google

2013-11-19 21:58:51 ----D---- C:\Program Files\Google

2013-11-19 11:21:30 ----N---- C:\Windows\system32\MpSigStub.exe

2013-11-19 06:21:40 ----D---- C:\Program Files\Microsoft Security Client

2013-11-13 16:47:10 ----D---- C:\Windows\rescache

2013-11-13 16:28:45 ----D---- C:\Windows\system32\nl-NL

2013-10-30 03:13:01 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll

2013-10-27 09:30:55 ----D---- C:\Windows\Panther

2013-10-20 09:51:22 ----D---- C:\Windows\Cursors

2013-10-19 07:40:25 ----D---- C:\Program Files\Common Files

2013-10-19 07:40:12 ----D---- C:\Program Files\Java

2013-10-18 05:01:15 ----RD---- C:\Windows\Offline Web Pages

2013-10-18 05:01:15 ----D---- C:\Windows\system32\wbem

2013-10-18 05:01:15 ----D---- C:\Windows\system32\en-US

2013-10-18 05:01:15 ----D---- C:\Windows\PolicyDefinitions

2013-10-18 05:01:14 ----SD---- C:\Windows\Downloaded Program Files

2013-10-11 03:40:39 ----RSD---- C:\Windows\assembly

2013-10-11 03:40:39 ----D---- C:\Windows\Microsoft.NET

2013-10-11 03:20:18 ----D---- C:\Program Files\Microsoft Silverlight

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 214696]

R0 nvrd32;NVIDIA nForce RAID Driver; C:\Windows\system32\drivers\nvrd32.sys [2007-12-08 131616]

R0 nvstor32;nvstor32; C:\Windows\system32\drivers\nvstor32.sys [2007-12-08 140320]

R0 PSDFilter;PSDFilter; C:\Windows\system32\DRIVERS\psdfilter.sys [2008-03-04 18992]

R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2009-11-14 43528]

R2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys [2007-07-03 15392]

R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768]

R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-03-04 16944]

R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-03-04 60464]

R2 tvicport;tvicport; \??\C:\Windows\system32\drivers\tvicport.sys [2007-11-06 14544]

R2 zntport;zntport; \??\C:\Windows\system32\drivers\zntport.sys [2007-11-06 6080]

R3 ati2mtag;ati2mtag; C:\Windows\system32\DRIVERS\ati2mtag.sys [2006-11-02 1523200]

R3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2007-01-15 9728]

R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]

R3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344]

R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]

S3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2006-11-10 18688]

S3 Dot4;Microsoft IEEE-1284.4-stuurprogramma; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]

S3 Dot4Print;Stuurprogramma voor printerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]

S3 Dot4Scan;Stuurprogramma voor scannerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2008-01-21 10752]

S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]

S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]

S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-10-17 1971928]

S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]

S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]

S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]

S3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-04-24 6144]

S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-18 1040544]

S3 NVHDA;Service for NVIDIA HDMI Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2007-07-16 30752]

S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2012-10-10 10837352]

S3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2007-07-07 12032]

S3 RTL8187B;Wireless Network USB Adapter 54g WL-168v1.004; C:\Windows\system32\DRIVERS\RTL8187B.sys [2007-09-04 286208]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]

S3 vmfilter323;323 filter service, Normal; C:\Windows\system32\drivers\vmfilter323.sys [2006-08-08 476672]

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

S3 ZSMC326;Vimicro USB2.0 PC Camera(VC0323); C:\Windows\System32\Drivers\usbvm323.sys [2006-08-21 244864]

S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]

S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2006-06-13 247808]

S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]

R2 AcerMemUsageCheckService;ePerformance Service; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [2007-10-17 28672]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-02-26 55144]

R2 eDataSecurity Service;eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-03-04 500784]

R2 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [2007-09-10 57344]

R2 eSettingsService;eSettings Service; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [2007-12-19 24576]

R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]

R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 22208]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 645992]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]

R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate1ca21eaa00e0650;Google Updateservice (gupdate1ca21eaa00e0650); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-08-21 133104]

S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]

S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-10 1258856]

S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]

S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-21 162408]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-08-21 133104]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-19 194032]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.