Logfile of random's system information tool 1.10 (written by random/random) Run by Minecraft server at 2015-01-04 11:16:51 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 99 GB (41%) free of 241 GB Total RAM: 3582 MB (28% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 11:17:17, on 4/01/2015 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16584) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Program Files\CCleaner\CCleaner.exe C:\Program Files\Malwarebytes Anti-Malware\mbam.exe C:\Windows\Explorer.EXE C:\Program Files\Malwarebytes Anti-Malware\mbam.exe C:\Windows\system32\taskeng.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Windows\System32\wbem\unsecapp.exe C:\Windows\system32\cmd.exe C:\Windows\system32\conime.exe C:\ProgramData\Oracle\Java\javapath\java.exe D:\Documents\RSIT.exe C:\Program Files\trend micro\Minecraft server.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [tsnp2uvc] C:\Windows\tsnp2uvc.exe O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1888000082-453831406-3507009004-1000\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR (User 'Hoofdgebruiker') O4 - HKUS\S-1-5-21-1888000082-453831406-3507009004-1000\..\RunOnce: [Application Restart #4] C:\Program Files\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session -- http://trk.ong.travelbird.net/?xt=KIKjXFZvovVhXFQ3oFRxZu1apTDiAu8hpTVtpyHeKyxkLO5uLE8kYls5YE9xK3Vbnu1wpE1eKIYfK2thoypxok8%2Fo3HioTVxo3ZroS9ipJM9YEL1pS1ro291oyZxBJf7pJDfJ3ZhpJVvLJ19VzH0nH9fLIDbpI09LI1tmIiypJDfJ2ZtnJNtmIpgBIVxXJpdYvsfYvMjZO1xK3Vbnu1wpE1eKIYfK2thoypxokL1pIxwBJf7pJHbLT19h&xi=*****.*********@**ynet.be&utm_source=google&uuid=e0aa94af-6170-4b94-b6cb-5e7e16fe1f00 (User 'Hoofdgebruiker') O4 - S-1-5-21-1888000082-453831406-3507009004-1000 Startup: hpqtra08.exe (User 'Hoofdgebruiker') O4 - S-1-5-21-1888000082-453831406-3507009004-1000 User Startup: hpqtra08.exe (User 'Hoofdgebruiker') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O17 - HKLM\System\CCS\Services\Tcpip\..\{94D8357E-92A3-405A-9750-BCF619DD4D88}: NameServer = 89.41.60.38,95.169.183.219 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing) O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files\WinPcap\rpcapd.exe -- End of file - 4628 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2014-10-18 460712] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-08 586968] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-18 172968] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-12 5227112] "tsnp2uvc"=C:\Windows\tsnp2uvc.exe [2009-11-13 320512] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 974432] ""= [] "HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-12 5227112] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eraser] C:\PROGRA~1\Eraser\Eraser.exe [2012-05-22 980920] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RazerCortex] C:\Program Files\Razer\Razer Cortex\RazerCortex.exe [2014-09-11 60640] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files\Skype\Phone\Skype.exe [2014-12-11 30872168] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp2uvc] C:\Windows\vsnp2uvc.exe [2008-08-01 675840] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper] C:\Users\Hoofdgebruiker\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-10-08 1514040] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe] C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2014-09-11 2087264] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon] SDWinLogon.dll [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmadmin] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmboot.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmio.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmload.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmserver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SRService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dmadmin] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dmboot.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dmio.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dmload.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dmserver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ip6fw.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NtLmSsp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpcdd.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpdd.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpwd.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SRService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tdpipe.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tdtcp.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\termservice] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WZCSVC] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 "SoftwareSASGeneration"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 "NoResolveTrack"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.siren"=sirenacm.dll "MSVideo8"=VfWWDM32.dll "VIDC.FFDS"=ff_vfw.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux3"=wdmaud.drv "vidc.XVID"=xvidvfw.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2015-01-04 11:16:51 ----D---- C:\rsit 2015-01-04 11:16:51 ----D---- C:\Program Files\trend micro 2015-01-03 23:13:33 ----A---- C:\Windows\ntbtlog.txt 2015-01-03 21:42:43 ----D---- C:\ProgramData\Sony 2015-01-03 21:40:04 ----D---- C:\Program Files\Sony 2015-01-03 18:19:56 ----D---- C:\Windows\system32\CatRoot2 2015-01-03 18:17:25 ----D---- C:\Windows\SoftwareDistribution 2015-01-03 18:16:22 ----A---- C:\Windows\system32\FNTCACHE.DAT 2015-01-03 17:55:33 ----A---- C:\Windows\tweaking.com-regbackup-VIPC-Microsoft®-Windows-Vista™-Home-Premium-(32-bit).dat 2015-01-03 17:55:15 ----D---- C:\RegBackup 2015-01-03 17:54:28 ----D---- C:\Program Files\Tweaking.com 2015-01-03 17:54:21 ----A---- C:\Windows\Tweaking.com - Windows Repair (All in One) Setup Log.txt 2015-01-03 10:43:35 ----D---- C:\Users\Minecraft server\AppData\Roaming\Skype 2015-01-02 16:02:52 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys 2015-01-02 16:01:52 ----A---- C:\Windows\system32\drivers\mwac.sys 2015-01-02 16:01:52 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys 2015-01-02 16:01:52 ----A---- C:\Windows\system32\drivers\mbam.sys 2015-01-02 16:01:51 ----D---- C:\ProgramData\Malwarebytes 2015-01-02 16:01:51 ----D---- C:\Program Files\Malwarebytes Anti-Malware 2015-01-02 09:10:39 ----D---- C:\AdwCleaner 2015-01-01 21:33:38 ----D---- C:\Program Files\Common Files\Skype 2015-01-01 07:39:35 ----SHD---- C:\ProgramData\SecuROM 2015-01-01 07:14:32 ----D---- C:\Users\Minecraft server\AppData\Roaming\New Technology Studio 2014-12-31 22:17:04 ----D---- C:\Program Files\Universal Extractor 2014-12-31 21:30:24 ----A---- C:\Windows\system32\CmdLineExt.dll 2014-12-31 20:56:15 ----D---- C:\Program Files\Rockstar Games 2014-12-28 18:51:29 ----D---- C:\ProgramData\dllescort 2014-12-28 18:51:13 ----D---- C:\Program Files\DLLEscort 2014-12-19 20:12:43 ----D---- C:\Games 2014-12-18 17:35:39 ----A---- C:\Windows\system32\d3dcsx_43.dll 2014-12-18 17:34:14 ----D---- C:\Program Files\Echobit 2014-12-18 17:34:03 ----D---- C:\ProgramData\Echobit 2014-12-18 15:44:53 ----RHD---- C:\Users\Minecraft server\AppData\Roaming\SecuROM 2014-12-18 14:42:22 ----D---- C:\Program Files\BO 2014-12-18 14:37:13 ----D---- C:\Program Files\redacted 2014-12-18 14:36:38 ----D---- C:\Program Files\sound 2014-12-18 14:36:37 ----D---- C:\Program Files\zone 2014-12-16 18:04:35 ----D---- C:\Windows\CheckSur 2014-12-16 09:53:34 ----A---- C:\Windows\system32\D3DCompiler_42.dll 2014-12-16 09:53:32 ----A---- C:\Windows\system32\d3dx11_42.dll 2014-12-15 16:24:04 ----A---- C:\Windows\system32\drivers\rzpmgrk.sys 2014-12-15 16:23:49 ----D---- C:\Program Files\Razer 2014-12-13 20:02:16 ----D---- C:\ProgramData\Riot Games 2014-12-13 20:00:39 ----A---- C:\Windows\system32\drivers\PnkBstrK.sys 2014-12-13 20:00:39 ----A---- C:\Users\Minecraft server\AppData\Roaming\PnkBstrK.sys 2014-12-13 20:00:30 ----A---- C:\Windows\system32\PnkBstrB.exe 2014-12-13 20:00:24 ----A---- C:\Windows\system32\XAudio2_2.dll 2014-12-13 20:00:24 ----A---- C:\Windows\system32\XAPOFX1_1.dll 2014-12-13 20:00:24 ----A---- C:\Windows\system32\PnkBstrA.exe 2014-12-13 20:00:23 ----A---- C:\Windows\system32\D3DCompiler_39.dll 2014-12-13 20:00:22 ----A---- C:\Windows\system32\d3dx10_39.dll 2014-12-13 20:00:19 ----A---- C:\Windows\system32\D3DX9_39.dll 2014-12-13 19:51:01 ----D---- C:\Users\Minecraft server\AppData\Roaming\Origin 2014-12-13 19:48:56 ----D---- C:\ProgramData\Origin 2014-12-13 19:47:34 ----D---- C:\Program Files\Microsoft Expression 2014-12-13 19:43:15 ----D---- C:\Program Files\EA Games 2014-12-13 16:59:13 ----D---- C:\Program Files\EaseUS 2014-12-13 16:48:29 ----N---- C:\Windows\system32\pwdrvio.sys 2014-12-13 16:48:29 ----A---- C:\Windows\system32\pwNative.exe 2014-12-13 16:48:28 ----N---- C:\Windows\system32\pwdspio.sys 2014-12-13 16:48:14 ----D---- C:\Program Files\MiniTool Partition Wizard Home Edition 8.1.1 2014-12-13 16:41:24 ----D---- C:\ProgramData\Wondershare 2014-12-07 09:55:59 ----D---- C:\Program Files\7-Zip 2014-12-05 20:22:01 ----D---- C:\Windows\system32\%LOCALAPPDATA% ======List of files/folders modified in the last 1 month====== 2015-01-04 11:16:51 ----D---- C:\Program Files 2015-01-04 11:16:48 ----D---- C:\Windows\Temp 2015-01-04 11:13:19 ----D---- C:\Users\Minecraft server\AppData\Roaming\.minecraft 2015-01-04 10:13:33 ----D---- C:\Windows\System32 2015-01-04 10:13:33 ----D---- C:\Windows\inf 2015-01-04 10:13:33 ----A---- C:\Windows\system32\PerfStringBackup.INI 2015-01-04 10:11:37 ----D---- C:\Windows\system32\LogFiles 2015-01-04 10:00:07 ----SHD---- C:\System Volume Information 2015-01-03 23:13:33 ----D---- C:\Windows 2015-01-03 21:44:55 ----D---- C:\Windows\Prefetch 2015-01-03 21:42:43 ----HD---- C:\ProgramData 2015-01-03 18:12:28 ----D---- C:\Windows\system32\drivers\etc 2015-01-03 18:09:36 ----D---- C:\Windows\system32\wbem 2015-01-03 15:19:29 ----D---- C:\Users\Minecraft server\AppData\Roaming\Notepad++ 2015-01-03 08:00:08 ----SHD---- C:\Windows\Installer 2015-01-02 20:59:23 ----D---- C:\ProgramData\NVIDIA 2015-01-02 20:13:23 ----HD---- C:\Program Files\InstallShield Installation Information 2015-01-02 16:02:52 ----D---- C:\Windows\system32\drivers 2015-01-02 09:25:40 ----D---- C:\Windows\AppPatch 2015-01-02 09:25:04 ----D---- C:\Windows\Logs 2015-01-01 22:00:31 ----D---- C:\Program Files\CCleaner 2015-01-01 21:33:47 ----D---- C:\ProgramData\Skype 2015-01-01 21:33:39 ----RD---- C:\Program Files\Skype 2015-01-01 21:33:38 ----D---- C:\Program Files\Common Files 2015-01-01 18:39:58 ----D---- C:\Windows\tracing 2015-01-01 08:26:33 ----RSD---- C:\Windows\assembly 2015-01-01 06:45:32 ----D---- C:\Windows\Microsoft.NET 2014-12-19 20:13:00 ----HD---- C:\Windows\msdownld.tmp 2014-12-19 20:12:59 ----D---- C:\Windows\system32\directx 2014-12-19 08:51:49 ----D---- C:\Windows\system32\Tasks 2014-12-18 17:33:58 ----SD---- C:\Users\Minecraft server\AppData\Roaming\Microsoft 2014-12-18 15:08:32 ----D---- C:\Windows\system32\Catroot2.old 2014-12-16 09:56:52 ----D---- C:\ProgramData\Package Cache 2014-12-15 16:25:26 ----D---- C:\ProgramData\Razer 2014-12-14 21:33:20 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-12-13 19:57:57 ----D---- C:\Windows\Tasks 2014-12-13 19:47:55 ----SD---- C:\ProgramData\Microsoft 2014-12-07 14:41:01 ----D---- C:\Program Files\Common Files\Adobe AIR 2014-12-06 07:53:01 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition 2014-12-05 18:32:39 ----D---- C:\Program Files\Microsoft Visual Studio 10.0 2014-12-05 18:29:06 ----RD---- C:\Users 2014-12-05 18:28:57 ----D---- C:\Program Files\MSBuild 2014-12-05 18:28:57 ----D---- C:\Program Files\Common Files\microsoft shared 2014-12-05 18:19:56 ----D---- C:\ProgramData\scar5 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-08 49944] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-08 206248] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 231800] R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2013-12-22 146464] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-11-24 320120] R1 AsrAppCharger;AsrAppCharger; C:\Windows\system32\DRIVERS\AsrAppCharger.sys [2010-06-11 13832] R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2014-11-08 55240] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-22 787800] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-20 423784] R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2014-11-08 57928] R1 SbFw;SbFw; C:\Windows\system32\drivers\SbFw.sys [2012-09-20 226080] R1 usedisk;USEDisk Driver; C:\Windows\system32\DRIVERS\usedisk.sys [2013-12-22 17408] R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-08 24184] R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-08 70384] R2 hmip;hmip; \??\C:\Windows\system32\Drivers\hmip.sys [2013-06-19 25448] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920] R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600] R2 rzpmgrk;rzpmgrk; \??\C:\Windows\system32\drivers\rzpmgrk.sys [2014-10-31 20416] R3 Dot4;Microsoft IEEE-1284.4-stuurprogramma; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584] R3 Dot4Print;Stuurprogramma voor printerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384] R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-11-21 23256] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-01-04 114904] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-11-21 51928] R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-12-22 10446112] R3 NVNET;NVIDIA nForce Ethernet Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2010-08-12 292712] R3 SBFWIMCLMP;GFI Software Firewall NDIS IM Filter Miniport; C:\Windows\system32\DRIVERS\SBFWIM.sys [2012-09-12 95488] R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-11-25 1108480] S1 AntiLog32;AntiLog32; \??\C:\Windows\system32\drivers\AntiLog32.sys [] S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 26032] S3 AsrCDDrv;AsrCDDrv; \??\C:\Windows\system32\Drivers\AsrCDDrv.sys [] S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-01-28 35272] S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-04-11 89856] S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2014-01-23 20032] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632] S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2014-06-15 23456] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272] S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176] S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544] S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2014-09-13 30976] S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv.sys [2013-11-27 40736] S3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv.sys [2013-12-06 29728] S3 mirrorv3;mirrorv3; C:\Windows\system32\DRIVERS\rminiv3.sys [2012-12-18 3328] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016] S3 NinjaUSB;Freecom Turbo USB 2.0; C:\Windows\system32\drivers\NinjaUSB.sys [2013-05-30 24704] S3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2010-08-12 292712] S3 pgfilter;pgfilter; \??\C:\Program Files\PeerGuardian2\pgfilter.sys [] S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2013-09-30 15688] S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 10320] S3 SBFWIMCL;GFI Software Firewall NDIS IM Filter Service; C:\Windows\system32\DRIVERS\sbfwim.sys [2012-09-12 95488] S3 sbhips;sbhips; C:\Windows\system32\drivers\sbhips.sys [2012-09-20 94496] S3 sbwtis;sbwtis; C:\Windows\system32\DRIVERS\sbwtis.sys [2012-09-20 75552] S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-03 3482112] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-04 181912] S3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2013-08-22 35288] S3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [] S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344] S3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272] S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2009-04-11 6656] S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-08 50344] R2 FontCache;Windows Font Cache Service; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-11-21 1871160] R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2014-11-21 969016] R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 22192] R2 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-11-28 800040] R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504] R2 WPFFontCache_v0400;Windows Presentation Foundation-lettertypecache 4.0.0.0; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168] R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-08 3192344] R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120] S2 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840] S2 NetMsmqActivator;Net.Msmq Listener Adapter; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S2 NetPipeActivator;Net.Pipe Listener Adapter; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S2 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2013-03-01 118520] S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432] S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-14 267440] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 BBSvc;Bing Bar Update Service; C:\Program Files\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560] S4 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S4 CronService;Cron Service for Prey; C:\Prey\platform\windows\cronsvc.exe [2013-12-06 23552] S4 EvoSvc;Evolve Service; C:\Program Files\Echobit\Evolve\EvoSvc.exe [2014-12-18 1580448] S4 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-06 116648] S4 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-06-06 116648] S4 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504] S4 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2008-01-21 21504] S4 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-21 21504] S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-09-15 89352] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752] S4 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-11-11 664352] S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S4 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504] S4 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-12-13 76888] S4 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe [2014-10-31 183488] S4 RzKLService;RzKLService; C:\Program Files\Razer\Razer Cortex\RzKLService.exe [2014-09-11 105448] S4 SeaPort;SeaPort; C:\Program Files\Microsoft\BingBar\SeaPort.EXE [2011-03-28 249648] S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040] S4 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] -----------------EOF-----------------