Internet explorer en chrome

Hallo, sinds een daar dagen heb ik problemen met de browsers IE en chrome. Het begon ermee dat IE na een tijdje de melding gaf Int. expl. werkt niet meer , en, er wordt naar een oplossing gezocht (die overigens nooit gevonden lijkt te worden want ik hoor er nooit iets van terug). En sinds gisteren heb ik een soortgelijk probleem met chrome. Wanneer ik de tegel aanklik, lijkt hij te openen maar springt dan direct terug naar het startscherm. Ik snap het in zoverre niet dat deze dingen alleen gebeuren wanneer ik de tegels gebruik van IE of Chrome want wanneer ik op een andere koppeling of link klik, kom ik wel gewoon online op de plaats waar ik zijn moet. ik heb ze beide al eens opnieuw geïnstalleerd maar het probleem komt gewoon terug na twee of drie keer gebruiken. Ik kan nu alleen torch gebruiken om op een neutrale startpagina te komen. Help. Bedankt.

Hoi Donald,

welkom op PC-Helpforum.be. ;-)

Kan je het onderstaande uitvoeren en het gevraagde logje hier in je topic posten ? ...

Download RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hoe je controleert of je met een 32- of 64-bitversie van Windows werkt kan je hier bekijken.

• RSIT 32 bit (RSIT.exe)
  
• RSIT 64 bit (RSITx64.exe)
  

Dubbelklik op RSIT.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  
• Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .
  

RSIT Logbestanden plaatsen

• Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  
• Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  
• Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
  

De handleiding voor het gebruik van RSIT kan je HIER bekijken en we hebben ook nog een instructievideo.

Hallo Asus. Bedankt voor je snelle reactie. Dat ik een 64 bits versie wist ik al. Ik (lol) zat je reactie op mijn telefoon te bekijken en heb nu per ongeluk R.SIT op mijn Android toestel gedownload. Dat betekent dat het al erg laat is en ik nu absoluut niet meer moet gaan sleutelen. Ik laat je morgen weten of het gelukt is. Iig bedankt.

log.txt

maar ik hoop dat ik het zo goed heb gedaan. Sorry dat het zo lang duurde maar ik kreeg het niet voor elkaar omdat internet er steeds uitvloog en ik vanaf de app in windows 8.1 geen link aan kan klikken. Ik hoop dat het zo goed is . En anders doe ik het nog een keer toekomen. Ik weet nu waar hij zit. Het wilde ook niet lukken omdat ik het voorbeeld staat dat rsit achter een dubbele backslash zit en dat moest een enkele wezen. Tja, ik ben eer niet zo heel handig in merk ik. Iig al bedankt voor de gedane moeite en het geduld. Ik word echt eeen beetje moe van die pc zo.

Logfile of random's system information tool 1.10 (written by random/random)

Run by Donald at 2014-09-06 18:29:03

Microsoft Windows 8.1

System drive C: has 141 GB (48%) free of 294 GB

Total RAM: 3683 MB (26% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 18:29:41, on 6-9-2014

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v11.0 (11.00.9600.17239)

Boot mode: Normal

Running processes:

C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe

C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe

C:\Users\Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe

C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE

C:\Program Files (x86)\SunriseBrowse\bin\SunriseBrowse.BrowserAdapter.exe

C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe

C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe

c:\PROGRA~2\mcafee\SITEAD~1\saui.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe

C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe

C:\Program Files\trend micro\Donald.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: SearchHook Class - {D8278076-BC68-4484-9233-6E7F1628B56C} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\searchhook.dll" (file missing)

R3 - URLSearchHook: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll

O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll

O2 - BHO: Search Better App BHO - {5245414C-352D-5900-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll" (file missing)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SunriseBrowse - {b110ca24-17f3-4555-b0d2-672ab034adf9} - C:\Program Files (x86)\SunriseBrowse\SunriseBrowsebho.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: &Inbox Toolbar - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll

O3 - Toolbar: Search Better App - {5245414C-352D-5900-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll" (file missing)

O4 - HKLM\..\Run: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4

O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [TPUReg] "C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe" /Retimes

O4 - HKLM\..\Run: [intel AppUp® center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4

O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe

O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [inboxToolbar] "C:\Program Files (x86)\Inbox Toolbar\Inbox.exe" /STARTUP

O4 - HKLM\..\Run: [24x7HELP] "C:\Program Files (x86)\24x7Help\App24x7Help.exe" /STARTUP

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot

O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"

O4 - HKCU\..\Run: [fTalk] "C:\Users\Donald\AppData\Local\fTalk\fTalk.exe" -autorun

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Donald\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart

O4 - HKCU\..\Run: [skyDrive] "C:\Users\Donald\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [Google Update] "C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [Google+ Auto Backup] "C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_68486C93B827CA2C6824B95048E28803] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [bRS] C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe -runBRS

O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session http://home.mcafee.com/Root/RenewProduct.aspx?lang=nl&lcid=1043&langid=30&culture=nl-NL&rcode=WSS1282&version=12.8&wuiv=11.0&affid=739&hres=1366&vres=768&rnwsrc=mma&expdt=20140129&xexpdt=20140228&segid=3&segtyid=1&pkgs=275_739_nl_0_190328E8-3D7E-4C87-8B8B-C23438B8EE57_20140129_44_2&email=donald.q.64@gmail.com&hardware_id=30a516637cf6569756cdeb1e1d0efea3&windows_id=_{E0FD470E-5B86-4F80-90E3-84831AE5B185}&pk=190328E8-3D7E-4C87-8B8B-C23438B8EE57&pkgid=275&os_country=NL&os_culture=nl&rtmui_lcid=1043

O4 - Startup: Dropbox.lnk = Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe

O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe

O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000

O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll

O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {55A2C0CD-3DE8-4264-9637-A0B40B05714E} (Mail Migration) - https://col0-sec.mail.live.com/mail/MailMigrationCabFileHolder.aspx?n=1275858554

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\Program Files (x86)\Inbox Toolbar\Inbox64.dll

O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll

O20 - AppInit_DLLs: C:\PROGRA~3\Wincert\WIN32C~1.DLL C:\PROGRA~2\MOVIES~1\Datamngr\mgrldr.dll

O23 - Service: McAfee Application Installer Cleanup (0323271409988089) (0323271409988089mcinstcleanup) - McAfee, Inc. - C:\WINDOWS\TEMP\032327~1.EXE

O23 - Service: 24x7HelpService (24x7HelpSvc) - PCRx.com, LLC - C:\Program Files (x86)\24x7Help\App24x7Svc.exe

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)

O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe

O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)

O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe

O23 - Service: Ask-updateservice (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe

O23 - Service: Datamngr Coordinator (DatamngrCoordinator) - Unknown owner - (no file)

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)

O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe

O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe

O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe

O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\WINDOWS\system32\mfevtps.exe (file missing)

O23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe

O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)

O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: Samsung Link Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)

O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe

O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe

O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)

O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe

O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)

O23 - Service: Update SunriseBrowse - Unknown owner - C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe

O23 - Service: Util SunriseBrowse - Unknown owner - C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 17832 bytes

======Listing Processes======

wininit.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe -k DcomLaunch

C:\WINDOWS\system32\svchost.exe -k RPCSS

C:\WINDOWS\system32\atiesrxx.exe

C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted

"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\system32\WLANExt.exe 13663246928

\??\C:\WINDOWS\system32\conhost.exe 0x4

"C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe"

C:\WINDOWS\System32\spoolsv.exe

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\24x7Help\App24x7Svc.exe"

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe"

"C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe"

"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService

\??\C:\WINDOWS\system32\conhost.exe 0x4

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"

"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service

dashost.exe {ddcd350c-fe1c-4b6e-8e178e6524a5eb3a}

"C:\WINDOWS\system32\mfevtps.exe"

"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"

"c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe"

"C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe"

"C:\Program Files\Samsung\Samsung Link\Samsung Link.exe"

"C:\Program Files\Samsung\Samsung Link\Samsung Link.exe" "Samsung Link Service" __i4j_restart

"C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe"

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Windows\system32\TODDSrv.exe

"C:\Program Files\McAfee\MSC\McAPExe.exe"

"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"

"C:\Program Files\TOSHIBA\Teco\TecoService.exe"

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e1a4bf6f-d966-40a8-b0bb-6eedbd503261 -SystemEventPortName:HostProcess-dfa5cfd6-5123-4abc-9b76-c241f5a930d5 -IoCancelEventPortName:HostProcess-b135b0a8-f29a-4717-b0fd-8b22a8c5fea4 -NonStateChangingEventPortName:HostProcess-444d57c2-b010-4cbb-8930-1be8f15dc9f6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bbe13ca6-26a2-44dd-8901-fc951e69190f -DeviceGroupId:WpdFsGroup

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe"

"C:\Program Files (x86)\Nero\Update\NASvc.exe"

C:\WINDOWS\system32\SearchIndexer.exe /Embedding

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\WINDOWS\system32\wbem\wmiprvse.exe

taskhost.exe $(Arg0)

"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession

-hiberboot

atieclxx

"C:\WINDOWS\SysWOW64\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait

"C:\WINDOWS\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait

"C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe" /wts 1540 556 560

"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS

C:\WINDOWS\Explorer.EXE

taskhostex.exe

C:\Windows\System32\skydrive.exe -Embedding

"C:\Program Files\McAfee\MAT\McPvTray.exe"

"C:\Program Files\SAMSUNG\Samsung Link\Samsung Link Tray Agent.exe"

"C:\Windows\System32\SettingSyncHost.exe" -Embedding

"C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart

"C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe" -runBRS

"C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe"

"C:\Users\Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"

C:\Windows\System32\RuntimeBroker.exe -Embedding

C:\WINDOWS\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide

"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding

"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"

"C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc

"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc

"C:\Program Files (x86)\McAfeeMOBK\WrapperTrayIcon.exe"

"C:\Program Files\mcafee\VirusScan\mcods.exe"

"C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe"

"C:\Program Files (x86)\SunriseBrowse\bin\SunriseBrowse.PurBrowse64.exe" /l false /s false /c "SunriseBrowse" /t "C:\Program Files (x86)\SunriseBrowse\bin\TEMP" /i "http://apisunrisebrowse-a.akamaihd.net/gsrs?is=isgiwhNL&bp=PBG&g=00000000-0000-0000-0000-000000000000" /d {fef7f75c-f985-4250-96f9-8183cd04238b}Gw64 /p 523424a0-e638-456d-9e82-53ea314e6065:chrome /p c0d57e08-3aad-4369-84e9-fc72c6807862:torch

\??\C:\WINDOWS\system32\conhost.exe 0x4

/c 523424a0-e638-456d-9e82-53ea314e6065 /t 523424a0-e638-456d-9e82-53ea314e6065 /o 523424a0-e638-456d-9e82-53ea314e6065 /s 523424a0-e638-456d-9e82-53ea314e6065 /b 523424a0-e638-456d-9e82-53ea314e6065 /a 523424a0-e638-456d-9e82-53ea314e6065 /r 523424a0-e638-456d-9e82-53ea314e6065 /s /z "n=SunriseBrowse&is=isgiwhNL&dpt=21"

/c 523424a0-e638-456d-9e82-53ea314e6065 /t 523424a0-e638-456d-9e82-53ea314e6065 /o 523424a0-e638-456d-9e82-53ea314e6065 /s 523424a0-e638-456d-9e82-53ea314e6065 /b 523424a0-e638-456d-9e82-53ea314e6065 /a 523424a0-e638-456d-9e82-53ea314e6065 /r 523424a0-e638-456d-9e82-53ea314e6065 /s /z "n=SunriseBrowse&is=isgiwhNL&dpt=21"

"C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe"

taskeng.exe {7C7F54A1-766F-454B-B55B-1173CB551B0E}

"C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe"

"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-470de339-56e5-43b2-89f6-797e8146a26a -SystemEventPortName:HostProcess-67ac1050-a527-4d0d-81b5-38c08342644a -IoCancelEventPortName:HostProcess-d24a21ba-a83a-42c8-bccb-e551531c4776 -NonStateChangingEventPortName:HostProcess-464f55a5-d44e-459d-983a-01bc049c0930 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ed567050-47f5-41d1-a879-d1b8b2f660b0 -DeviceGroupId:WudfDefaultDevicePool

"C:\Program Files\WindowsApps\GoogleInc.GoogleSearch_1.2.1.12_x64__yfg5n0ztvskxp\google-search.exe" -ServerName:App.AppXg6pfmg0p3b0tmgkcdg7at2v06vr6mdm0.mca

"C:\WINDOWS\system32\wwahost.exe" -ServerName:Microsoft.WindowsLive.Mail.wwa

"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server

"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"

"C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe" /bgrecordhelpersvc

"c:\PROGRA~2\mcafee\SITEAD~1\saui.exe" -Embedding

"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6260.145e2480.1337739254 "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 6260 "\\.\pipe\gecko-crash-server-pipe.6260" plugin

"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe" --proxy-stub-channel=Flash8140.5C7CD018.7451 --host-broker-channel=Flash8140.5C7CD018.2702 --host-pid=8140 --host-npapi-version=22 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_14_0_0_179.dll"

"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe" --channel=6728.00E1F8E4.1094410759 --proxy-stub-channel=Flash8140.5C7CD018.7451 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_14_0_0_179.dll" --host-npapi-version=22 --type=renderer

taskeng.exe {5686A824-E4B2-4DBF-B6CE-D9B8D54A8EEE}

C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding

"C:\Users\Donald\Downloads\RSITx64.exe"

C:\WINDOWS\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001Core.job - C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver

C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001UA.job - C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001Core.job - C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe /c

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001UA.job - C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\WINDOWS\tasks\WSE_Astromenda.job - C:\Users\Donald\AppData\Roaming\WSE_AS~1\UPDATE~1\UPDATE~1.EXE /Check

=========Mozilla firefox=========

ProfilePath - C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default

prefs.js - "browser.startup.homepage" - "http://www.searchbetter.com/?tpid=REAL5-Y&o=Y10017&pf=V7&trgb=IE, FF, CR&p2=%5EBNT%5Eayn130%5EYY%5ENL&gct=hp&apn_ptnrs=BNT&apn_dtid=%5Eayn130%5EYY%5ENL&apn_dbr=ie_11.0.9600.17239&apn_uid=74BF4EB1-2D03-44A0-BB56-D9025902D164&itbv=12.16.0.21&doi=2014-09-02&psv=&pt=tb"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 14.0.0.179 Plugin

"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin]

"Description"=McAfee Mss Plugin

"Path"=C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]

"Description"=McAfee Total Protection MIME Plugin

"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]

"Description"=Microsoft SharePoint Plug-in for Firefox

"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]

"Description"=

"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.13.2]

"Description"=RealPlayer LiveConnect-Enabled Plug-In

"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.13]

"Description"=RealPlayer Video Downloader for HTML5 (32-bit)

"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.13.2]

"Description"=RealPlayer Download Plugin

"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 14.0.0.179 Plugin

"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]

"Description"=McAfee Total Protection MIME Plugin

"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\extensions\

5affxtbr@MyWebFace_5a.com

{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\searchplugins\

ask-search.xml

Astromenda.xml

Mysearchdial.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]

RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-07-30 590408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]

Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-08-28 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5245414C-352D-5900-76A7-7A786E7484D7}]

Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport_x64.dll [2014-08-29 13720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-27 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-06-30 294400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]

Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-08-28 2335960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}]

Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox64.dll [2014-06-30 1652672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]

MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll [2014-01-16 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]

RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2014-07-30 475720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5245414C-352D-5900-76A7-7A786E7484D7}]

Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll [2014-08-29 12184]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-29 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b110ca24-17f3-4555-b0d2-672ab034adf9}]

SunriseBrowse - C:\Program Files (x86)\SunriseBrowse\SunriseBrowsebho.dll [2014-08-29 250616]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}]

Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll [2014-06-30 1087936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-29 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-27 256456]

{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-06-30 294400]

{D7E97865-918F-41E4-9CD0-25AB1C574CE8} - &Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox64.dll [2014-06-30 1652672]

{5245414C-352D-5900-76A7-7A786E7484D7} - Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport_x64.dll [2014-08-29 13720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]

{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]

{D7E97865-918F-41E4-9CD0-25AB1C574CE8} - &Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll [2014-06-30 1087936]

{5245414C-352D-5900-76A7-7A786E7484D7} - Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll [2014-08-29 12184]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-12-10 13261456]

"SRS Premium Sound HD"=C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe [2012-08-20 2170784]

"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2012-09-05 2611112]

"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2012-08-14 169896]

"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2012-07-11 356776]

"TODDMain"=C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [2012-08-05 213136]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-20 2774256]

"Samsung Link"=C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [2014-08-13 596320]

"McAfeeWrapperApplication"=C:\Program Files (x86)\McAfeeMOBK\WrapperTrayIcon.exe [2013-09-09 459232]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"fTalk"=C:\Users\Donald\AppData\Local\fTalk\fTalk.exe [2013-08-05 9428016]

"Spotify Web Helper"=C:\Users\Donald\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-08-31 1245752]

"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2014-08-08 22734160]

"SkyDrive"=C:\Users\Donald\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-06-20 251080]

"Facebook Update"=C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 138096]

"Google Update"=C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-27 116648]

"Google+ Auto Backup"=C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [2014-08-13 3746120]

"GoogleChromeAutoLaunch_68486C93B827CA2C6824B95048E28803"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-08-30 852808]

"BRS"=C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe [2014-08-29 1072128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"Application Restart #1"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-08-30 852808]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2013-07-17 156000]

"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992]

"TPUReg"=C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe [2012-10-31 7148032]

"Intel AppUp® center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2013-07-17 156000]

"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-02-14 311616]

"mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992]

"InboxToolbar"=C:\Program Files (x86)\Inbox Toolbar\Inbox.exe [2014-06-30 1417664]

"24x7HELP"=C:\Program Files (x86)\24x7Help\App24x7Help.exe [2014-04-11 1924960]

"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-07-04 766688]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

"TkBellExe"=c:\program files (x86)\real\realplayer\Update\realsched.exe [2014-09-02 296520]

"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-08-29 1942424]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe

RealPlayer Cloud Service UI.lnk - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe

C:\Users\Donald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

Dropbox.lnk - C:\Users\Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe

Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll "

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"EnableLinkedConnections"=1

"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoRun"=0

"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe]

"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"VIDC.YUY2"=msyuv.dll

"vidc.i420"=iyuv_32.dll

"msacm.msgsm610"=msgsm32.acm

"msacm.msg711"=msg711.acm

"VIDC.YVYU"=msyuv.dll

"VIDC.YVU9"=tsbyuv.dll

"wavemapper"=msacm32.drv

"midimapper"=midimap.dll

"VIDC.UYVY"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.mrle"=msrle32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msadpcm"=msadp32.acm

"vidc.msvc"=msvidc32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"MSVideo8"=VfWWDM32.dll

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-09-06 18:29:04 ----D---- C:\Program Files\trend micro

2014-09-06 18:29:03 ----D---- C:\rsit

2014-09-02 22:20:38 ----D---- C:\Users\Donald\AppData\Roaming\RealNetworks

2014-09-02 22:03:23 ----D---- C:\ProgramData\AskPartnerNetwork

2014-09-02 22:03:23 ----D---- C:\Program Files (x86)\AskPartnerNetwork

2014-09-02 22:01:14 ----D---- C:\ProgramData\RealNetworks

2014-09-02 22:01:14 ----D---- C:\Program Files (x86)\RealNetworks

2014-09-02 21:58:37 ----A---- C:\WINDOWS\SYSWOW64\rmoc3260.dll

2014-09-02 21:57:39 ----A---- C:\WINDOWS\SYSWOW64\pncrt.dll

2014-09-02 21:57:22 ----A---- C:\WINDOWS\SYSWOW64\msvcr71.dll

2014-09-02 21:57:22 ----A---- C:\WINDOWS\SYSWOW64\msvcp71.dll

2014-08-29 23:16:03 ----A---- C:\WINDOWS\system32\drivers\{fef7f75c-f985-4250-96f9-8183cd04238b}Gw64.sys

2014-08-29 23:09:38 ----D---- C:\Users\Donald\AppData\Roaming\OpenOffice

2014-08-29 22:56:20 ----A---- C:\WINDOWS\Reimage.ini

2014-08-29 22:51:22 ----D---- C:\Program Files (x86)\OpenOffice 4

2014-08-29 22:47:11 ----D---- C:\Users\Donald\AppData\Roaming\WSE_Astromenda

2014-08-29 22:46:55 ----D---- C:\Program Files (x86)\SunriseBrowse

2014-08-29 22:46:53 ----D---- C:\Program Files (x86)\WSE_Astromenda

2014-08-29 22:44:39 ----D---- C:\Program Files (x86)\PC Speed Maximizer

2014-08-29 15:39:40 ----A---- C:\WINDOWS\SYSWOW64\javaws.exe

2014-08-29 15:39:20 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll

2014-08-29 15:39:20 ----A---- C:\WINDOWS\SYSWOW64\javaw.exe

2014-08-29 15:39:20 ----A---- C:\WINDOWS\SYSWOW64\java.exe

2014-08-29 15:38:57 ----D---- C:\Program Files (x86)\Java

2014-08-28 13:52:03 ----A---- C:\WINDOWS\system32\win32k.sys

2014-08-23 07:44:54 ----D---- C:\Users\Donald\AppData\Roaming\dvdcss

2014-08-23 06:58:48 ----D---- C:\Program Files (x86)\Mozilla Firefox

2014-08-22 14:08:30 ----HD---- C:\OneDriveTemp

2014-08-20 17:18:31 ----D---- C:\ProgramData\ATI

2014-08-20 16:08:08 ----D---- C:\Program Files\ATI Technologies

2014-08-20 16:07:20 ----D---- C:\Program Files (x86)\ATI Technologies

2014-08-20 15:55:37 ----D---- C:\Program Files\Microsoft Silverlight

2014-08-20 15:55:36 ----D---- C:\Program Files (x86)\Microsoft Silverlight

2014-08-15 13:46:57 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

2014-08-14 10:47:48 ----A---- C:\WINDOWS\system32\rpcrt4.dll

2014-08-14 10:47:47 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll

2014-08-14 10:47:43 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll

2014-08-14 10:47:43 ----A---- C:\WINDOWS\system32\dxgi.dll

2014-08-14 10:47:42 ----A---- C:\WINDOWS\system32\dwmcore.dll

2014-08-14 10:47:42 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys

2014-08-14 10:46:53 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll

2014-08-14 10:46:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll

2014-08-14 10:46:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll

2014-08-14 10:46:51 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll

2014-08-14 10:46:50 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll

2014-08-14 10:46:49 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll

2014-08-14 10:46:45 ----A---- C:\WINDOWS\system32\urlmon.dll

2014-08-14 10:46:44 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll

2014-08-14 10:46:43 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll

2014-08-14 10:46:43 ----A---- C:\WINDOWS\system32\msfeeds.dll

2014-08-14 10:46:43 ----A---- C:\WINDOWS\system32\dxtmsft.dll

2014-08-14 10:46:41 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll

2014-08-14 10:46:37 ----A---- C:\WINDOWS\system32\iertutil.dll

2014-08-14 10:46:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll

2014-08-14 10:46:35 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll

2014-08-14 10:46:33 ----A---- C:\WINDOWS\system32\ieframe.dll

2014-08-14 10:46:33 ----A---- C:\WINDOWS\system32\dxtrans.dll

2014-08-14 10:46:31 ----A---- C:\WINDOWS\system32\mshtmled.dll

2014-08-14 10:46:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll

2014-08-14 10:46:30 ----A---- C:\WINDOWS\system32\jscript9.dll

2014-08-14 10:46:29 ----A---- C:\WINDOWS\system32\ieapfltr.dll

2014-08-14 10:46:26 ----A---- C:\WINDOWS\system32\mshtml.dll

2014-08-14 10:46:17 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll

2014-08-14 10:46:17 ----A---- C:\WINDOWS\system32\iedkcs32.dll

2014-08-14 10:46:16 ----A---- C:\WINDOWS\system32\wininet.dll

2014-08-14 10:46:15 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll

2014-08-14 10:46:14 ----A---- C:\WINDOWS\system32\ie4uinit.exe

2014-08-14 10:46:12 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll

2014-08-14 10:46:12 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll

2014-08-14 10:46:10 ----A---- C:\WINDOWS\system32\MshtmlDac.dll

2014-08-14 10:46:09 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll

2014-08-14 10:46:07 ----A---- C:\WINDOWS\system32\vbscript.dll

2014-08-14 10:46:06 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll

2014-08-14 10:44:17 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys

2014-08-14 10:43:36 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe

2014-08-14 10:43:36 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe

2014-08-14 10:33:48 ----A---- C:\WINDOWS\system32\WpcMon.exe

2014-08-14 10:33:48 ----A---- C:\WINDOWS\system32\Wpc.dll

2014-08-14 10:33:47 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll

2014-08-14 10:33:47 ----A---- C:\WINDOWS\system32\WpcWebSync.dll

2014-08-14 10:33:42 ----A---- C:\WINDOWS\system32\SyncEngine.dll

2014-08-14 10:33:41 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll

2014-08-14 10:33:41 ----A---- C:\WINDOWS\system32\SkyDrive.exe

2014-08-14 10:32:03 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll

2014-08-14 10:32:03 ----A---- C:\WINDOWS\system32\d3d9.dll

2014-08-14 10:32:02 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll

2014-08-14 10:31:59 ----A---- C:\WINDOWS\system32\mfcore.dll

2014-08-14 10:31:57 ----A---- C:\WINDOWS\system32\localspl.dll

2014-08-14 10:31:56 ----A---- C:\WINDOWS\system32\vpnike.dll

2014-08-14 10:31:55 ----A---- C:\WINDOWS\system32\fveapi.dll

2014-08-14 10:31:55 ----A---- C:\WINDOWS\system32\dhcpcore.dll

2014-08-14 10:31:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll

2014-08-14 10:31:54 ----A---- C:\WINDOWS\system32\ntdll.dll

2014-08-14 10:31:53 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll

2014-08-14 10:31:53 ----A---- C:\WINDOWS\system32\actxprxy.dll

2014-08-14 10:31:52 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll

2014-08-14 10:31:51 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll

2014-08-14 10:31:51 ----A---- C:\WINDOWS\system32\framedynos.dll

2014-08-14 10:31:51 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys

2014-08-14 10:31:48 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll

2014-08-14 10:31:48 ----A---- C:\WINDOWS\system32\dhcpcore6.dll

2014-08-14 10:31:48 ----A---- C:\WINDOWS\system32\bdesvc.dll

2014-08-14 10:31:47 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll

2014-08-14 10:31:46 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys

2014-08-14 10:31:46 ----A---- C:\WINDOWS\system32\BFE.DLL

2014-08-14 10:31:45 ----A---- C:\WINDOWS\system32\ncobjapi.dll

2014-08-14 10:31:44 ----A---- C:\WINDOWS\system32\framedyn.dll

2014-08-14 10:31:43 ----A---- C:\WINDOWS\system32\winbici.dll

2014-08-14 10:31:42 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll

2014-08-14 10:31:40 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys

2014-08-14 10:31:39 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll

2014-08-14 10:31:39 ----A---- C:\WINDOWS\system32\WebClnt.dll

2014-08-14 10:31:39 ----A---- C:\WINDOWS\system32\Robocopy.exe

2014-08-14 10:31:38 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe

2014-08-14 10:31:38 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll

2014-08-14 10:31:37 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll

2014-08-14 10:31:37 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll

2014-08-14 10:31:37 ----A---- C:\WINDOWS\system32\IKEEXT.DLL

2014-08-14 10:31:37 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll

2014-08-14 10:31:36 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll

2014-08-14 10:31:36 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe

2014-08-14 10:31:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll

2014-08-14 10:31:35 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys

2014-08-14 10:31:33 ----A---- C:\WINDOWS\system32\reseteng.dll

2014-08-14 10:31:32 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll

2014-08-14 10:31:32 ----A---- C:\WINDOWS\system32\srms.dat

2014-08-14 10:30:15 ----A---- C:\WINDOWS\system32\aepdu.dll

2014-08-14 10:30:14 ----A---- C:\WINDOWS\system32\aeinv.dll

2014-08-14 10:29:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll

2014-08-14 10:29:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll

2014-08-14 10:29:48 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys

2014-08-14 10:29:46 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys

2014-08-14 10:29:46 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys

2014-08-14 10:29:45 ----A---- C:\WINDOWS\system32\rsaenh.dll

2014-08-14 10:29:43 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll

2014-08-14 10:29:43 ----A---- C:\WINDOWS\system32\WUDFHost.exe

2014-08-14 10:29:43 ----A---- C:\WINDOWS\system32\drivers\WUDFRd.sys

2014-08-14 10:29:42 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS

2014-08-14 10:29:42 ----A---- C:\WINDOWS\system32\WUDFSvc.dll

2014-08-14 10:29:42 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll

2014-08-14 10:29:42 ----A---- C:\WINDOWS\system32\drivers\WUDFPf.sys

2014-08-14 10:29:41 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys

2014-08-14 10:29:41 ----A---- C:\WINDOWS\system32\DaOtpCredentialProvider.dll

2014-08-14 10:29:40 ----AC---- C:\WINDOWS\system32\drivers\usbuhci.sys

2014-08-14 10:29:40 ----AC---- C:\WINDOWS\system32\drivers\usbd.sys

2014-08-14 10:29:40 ----A---- C:\WINDOWS\SYSWOW64\DaOtpCredentialProvider.dll

2014-08-14 10:29:40 ----A---- C:\WINDOWS\system32\hal.dll

2014-08-14 10:28:53 ----A---- C:\WINDOWS\system32\MDMAgent.exe

2014-08-14 10:28:45 ----A---- C:\WINDOWS\system32\MrmCoreR.dll

2014-08-14 10:28:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll

2014-08-14 10:28:30 ----A---- C:\WINDOWS\system32\gdi32.dll

2014-08-14 10:28:26 ----A---- C:\WINDOWS\system32\authui.dll

2014-08-14 10:28:25 ----A---- C:\WINDOWS\SYSWOW64\authui.dll

2014-08-14 10:28:25 ----A---- C:\WINDOWS\system32\msi.dll

2014-08-14 10:28:24 ----A---- C:\WINDOWS\SYSWOW64\msi.dll

2014-08-14 10:28:24 ----A---- C:\WINDOWS\system32\consent.exe

2014-08-14 10:28:23 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll

2014-08-14 10:28:23 ----A---- C:\WINDOWS\system32\msihnd.dll

======List of files/folders modified in the last 1 month======

2014-09-06 18:29:30 ----D---- C:\WINDOWS\Prefetch

2014-09-06 18:29:11 ----D---- C:\WINDOWS\Temp

2014-09-06 18:29:04 ----RD---- C:\Program Files

2014-09-06 18:00:00 ----D---- C:\WINDOWS\system32\sru

2014-09-06 13:16:35 ----A---- C:\WINDOWS\win.ini

2014-09-06 09:22:59 ----D---- C:\WINDOWS\AppReadiness

2014-09-06 09:22:58 ----HD---- C:\Program Files\WindowsApps

2014-09-06 09:20:52 ----D---- C:\WINDOWS\system32\drivers

2014-09-06 09:20:46 ----D---- C:\Program Files\Common Files\mcafee

2014-09-06 09:14:08 ----D---- C:\Users\Donald\AppData\Roaming\Dropbox

2014-09-06 00:22:33 ----D---- C:\WINDOWS\system32\Tasks

2014-09-06 00:20:16 ----D---- C:\WINDOWS\Microsoft.NET

2014-09-06 00:10:55 ----D---- C:\WINDOWS\system32\catroot

2014-09-06 00:05:55 ----SHD---- C:\Config.Msi

2014-09-05 23:39:53 ----SHD---- C:\WINDOWS\Installer

2014-09-05 16:12:40 ----D---- C:\Users\Donald\AppData\Roaming\Real

2014-09-05 12:14:36 ----D---- C:\WINDOWS\Inf

2014-09-03 10:04:37 ----D---- C:\WINDOWS\system32\config

2014-09-02 23:07:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2014-09-02 22:03:23 ----HD---- C:\ProgramData

2014-09-02 22:03:23 ----D---- C:\Program Files (x86)

2014-09-02 22:01:39 ----D---- C:\Program Files (x86)\Real

2014-09-02 21:59:21 ----D---- C:\Program Files (x86)\Common Files

2014-09-02 21:59:14 ----D---- C:\ProgramData\Real

2014-09-02 21:58:37 ----D---- C:\WINDOWS\SysWOW64

2014-09-02 19:29:57 ----SHD---- C:\System Volume Information

2014-09-02 16:02:44 ----RD---- C:\Users

2014-09-02 15:26:57 ----D---- C:\WINDOWS\system32\DriverStore

2014-09-02 15:25:27 ----D---- C:\Program Files (x86)\MyFree Codec

2014-09-02 14:58:11 ----RD---- C:\WINDOWS\System32

2014-09-02 14:58:11 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2014-08-31 18:24:15 ----D---- C:\Users\Donald\AppData\Roaming\Spotify

2014-08-30 11:51:07 ----D---- C:\WINDOWS\WinSxS

2014-08-29 23:27:56 ----RSD---- C:\WINDOWS\assembly

2014-08-29 23:26:25 ----RSD---- C:\WINDOWS\Fonts

2014-08-29 22:56:20 ----D---- C:\Windows

2014-08-29 22:47:16 ----D---- C:\WINDOWS\Tasks

2014-08-29 21:23:33 ----D---- C:\Program Files\SAMSUNG

2014-08-29 20:07:41 ----D---- C:\Users\Donald\AppData\Roaming\vlc

2014-08-29 15:39:56 ----D---- C:\WINDOWS\CbsTemp

2014-08-28 08:24:37 ----A---- C:\model.bat

2014-08-28 08:11:48 ----D---- C:\WINDOWS\system32\MRT

2014-08-28 08:03:47 ----A---- C:\WINDOWS\system32\MRT.exe

2014-08-28 07:55:08 ----D---- C:\ProgramData\regid.1991-06.com.microsoft

2014-08-28 07:52:17 ----D---- C:\Program Files\Microsoft Office 15

2014-08-28 07:22:48 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

2014-08-20 17:14:29 ----D---- C:\WINDOWS\Minidump

2014-08-20 17:12:05 ----D---- C:\WINDOWS\system32\catroot2

2014-08-20 16:08:10 ----D---- C:\ProgramData\AMD

2014-08-20 16:07:07 ----D---- C:\ProgramData\Package Cache

2014-08-20 15:58:40 ----SD---- C:\ProgramData\Microsoft

2014-08-15 15:28:11 ----D---- C:\WINDOWS\rescache

2014-08-15 13:38:40 ----D---- C:\Program Files (x86)\Internet Explorer

2014-08-15 13:38:39 ----D---- C:\Program Files\Internet Explorer

2014-08-15 13:38:37 ----D---- C:\WINDOWS\SYSWOW64\nl-NL

2014-08-15 13:38:36 ----D---- C:\WINDOWS\PolicyDefinitions

2014-08-15 13:38:35 ----D---- C:\WINDOWS\system32\nl-NL

2014-08-15 13:38:03 ----RD---- C:\WINDOWS\ToastData

2014-08-15 13:38:03 ----D---- C:\WINDOWS\system32\migration

2014-08-15 13:37:52 ----D---- C:\WINDOWS\SYSWOW64\migration

2014-08-15 13:37:52 ----D---- C:\WINDOWS\MediaViewer

2014-08-15 13:37:51 ----D---- C:\WINDOWS\SYSWOW64\wbem

2014-08-15 13:37:49 ----D---- C:\WINDOWS\system32\wbem

2014-08-15 13:37:49 ----D---- C:\WINDOWS\system32\en-US

2014-08-15 13:37:43 ----D---- C:\WINDOWS\FileManager

2014-08-15 13:37:43 ----D---- C:\WINDOWS\Camera

2014-08-15 13:37:38 ----SD---- C:\WINDOWS\system32\CompatTel

2014-08-14 10:25:48 ----A---- C:\WINDOWS\system32\mfps.dll

2014-08-14 10:01:05 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll

2014-08-14 10:01:03 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll

2014-08-14 10:00:38 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll

2014-08-14 10:00:38 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll

2014-08-14 10:00:38 ----A---- C:\WINDOWS\system32\ieetwcollector.exe

2014-08-14 10:00:37 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll

2014-08-14 10:00:36 ----A---- C:\WINDOWS\system32\ieUnatt.exe

2014-08-14 10:00:35 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe

2014-08-14 10:00:35 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll

2014-08-14 10:00:35 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll

2014-08-14 10:00:34 ----A---- C:\WINDOWS\system32\iesetup.dll

2014-08-14 10:00:34 ----A---- C:\WINDOWS\system32\iernonce.dll

2014-08-14 10:00:25 ----A---- C:\WINDOWS\system32\msrating.dll

2014-08-14 10:00:23 ----A---- C:\WINDOWS\system32\jsproxy.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2014-06-20 786296]

R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2014-06-20 348552]

R0 tos_sps64;@oem11.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\WINDOWS\System32\drivers\tos_sps64.sys [2012-06-18 499096]

R0 TVALZ;@oem34.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [2012-07-26 32832]

R1 MOBKFilter;MOBKFilter; C:\WINDOWS\system32\DRIVERS\MOBK.sys [2010-04-13 66040]

R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]

R2 McPvDrv;McPvDrv Driver; C:\WINDOWS\system32\drivers\McPvDrv.sys [2013-09-09 74560]

R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [2009-09-12 14344]

R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\WINDOWS\system32\DRIVERS\TVALZFL.sys [2012-07-22 16768]

R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]

R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]

R3 AtiHDAudioService;@oem21.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-07-17 98472]

R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2014-06-20 72128]

R3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]

R3 Dot4Print;@oem15.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 27040]

R3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-12-10 3242896]

R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2014-06-20 181704]

R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2014-06-20 313544]

R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2014-06-20 523792]

R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2014-07-24 444720]

R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT-stuurprogramma; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]

R3 RTWlanE;@oem22.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-10-21 2946264]

R3 SynTP;@oem87.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-08-20 524016]

R3 TDCMDPST;TOSHIBA Writing Engine Filter Driver; C:\WINDOWS\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]

R3 Thotkey;@oem33.inf,%Thotkey%;Toshiba Hotkey Driver; C:\WINDOWS\System32\drivers\Thotkey.sys [2013-08-19 32624]

R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-06-19 57000]

R3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]

R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB-videoapparaat (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]

R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]

S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2014-06-20 70600]

S3 dg_ssudbus;@oem18.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-05-13 110336]

S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2013-09-23 197704]

S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2014-07-24 96592]

S3 RSUSBSTOR;@oem6.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2012-06-13 252048]

S3 ss_conn_usb_driver;@oem30.inf,%ssud.SvcDesc%;SAMSUNG Mobile USB Connectivity Device Driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [2014-05-13 26368]

S3 ssudmdm;@oem19.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-05-13 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 24x7HelpSvc;24x7HelpService; C:\Program Files (x86)\24x7Help\App24x7Svc.exe [2014-04-11 339808]

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]

R2 AllShare Framework DMS;AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [2013-12-21 404360]

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]

R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-07-04 344064]

R2 APNMCP;Ask-updateservice; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-08-29 166296]

R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-08-01 2369720]

R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [2011-10-14 156672]

R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-05-11 200728]

R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 178528]

R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-07-24 1041192]

R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-06-20 219752]

R2 mfevtp;McAfee Validation Trust Protection Service; C:\WINDOWS\system32\mfevtps.exe [2014-06-20 189912]

R2 MOBKbackup;1%; C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-04-13 231224]

R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]

R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-07-30 39568]

R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-09-02 1141848]

R2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-07-30 23552]

R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-08-31 201360]

R2 Samsung Link Service;Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [2014-08-13 604512]

R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-05-13 741640]

R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]

R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\Teco\TecoService.exe [2012-08-25 291240]

R2 Update SunriseBrowse;Update SunriseBrowse; C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe [2014-09-06 323320]

R2 Util SunriseBrowse;Util SunriseBrowse; C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe [2014-09-06 323320]

R3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2014-06-12 603424]

R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-07-28 53384]

S2 0323271409988089mcinstcleanup;McAfee Application Installer Cleanup (0323271409988089); C:\WINDOWS\TEMP\032327~1.EXE [2014-03-13 836168]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-02 116648]

S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2013-08-22 37768]

S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2013-08-22 37768]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-29 262320]

S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-02 116648]

S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-06-02 194032]

S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [2014-01-16 289256]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-23 119408]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-10-03 150600]

S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-07-18 116088]

S3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2012-07-28 458152]

-----------------EOF-----------------

Van zodra 1 van de experts online is zal deze je zeker verder helpen aangaande je vraag/probleem.;-)

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  {D8278076-BC68-4484-9233-6E7F1628B56C};c
 C:\Program Files (x86)\AskPartnerNetwork;fs
 {D3D233D5-9F6D-436C-B6C7-E63F77503B30};c
 C:\Program Files (x86)\Inbox Toolbar;fs
 {5245414C-352D-5900-76A7-7A786E7484D7};c
 {95B7759C-8C7F-4BF1-B163-73684A933233};c
 {b110ca24-17f3-4555-b0d2-672ab034adf9};c
 {D7E97865-918F-41E4-9CD0-25AB1C574CE8};c
 {5245414C-352D-5900-76A7-7A786E7484D7};c
 InboxToolbar;s
 ApnTBMon;s
 Application Restart #1;s
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501};c
 24x7HelpSvc;s
 C:\Program Files (x86)\24x7Help;fs
 APNMCP;s
 DatamngrCoordinator;s
 Update SunriseBrowse;s
 Util SunriseBrowse;s
 C:\Program Files (x86)\SunriseBrowse;fs
 {b110ca24-17f3-4555-b0d2-672ab034adf9};c
 C:\WINDOWS\tasks\WSE_Astromenda.job;f
 C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\extensions\[email="5affxtbr@MyWebFace_5a.com"]5affxtbr@MyWebFace_5a.com[/email];fs
 C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d};fs
 C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\searchplugins\ask-search.xml;f
 C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\searchplugins\Astromenda.xml;f
 C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\searchplugins\Mysearchdial.xml;f
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5245414C-352D-5900-76A7-7A786E7484D7}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5245414C-352D-5900-76A7-7A786E7484D7}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b110ca24-17f3-4555-b0d2-672ab034adf9}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}];r64
 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64
 "BRS"=-;r64
 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce];r64
"Application Restart #1"=-;r64
 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
 "InboxToolbar"=-;r64
"24x7HELP"=-;r64
 "ApnTBMon"=-;r64
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe];r64
 C:\ProgramData\AskPartnerNetwork;fs
C:\Users\Donald\AppData\Roaming\WSE_Astromenda;fs
C:\Program Files (x86)\WSE_Astromenda;fs
C:\Program Files (x86)\PC Speed Maximizer;fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

• Klik op de knop "More options" en vink nu de onderstaande opties aan.
  
• Do a Deep Scan
  
  
• Auto Clean
  
• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht als bijlage.
  

Zoek.exe logbestand plaatsen

• Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  
• Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
  

Zoek.exe v5.0.0.0 Updated 08-September-2014

Tool run by Donald on ma 08-09-2014 at 20:07:05,45.

Microsoft Windows 8.1 6.3.9600 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Donald\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

8-9-2014 20:19:40 Zoek.exe System Restore Point Created Succesfully.

Hallo, nou ik weet niet wat er gebeurd is maar het werkt weer als een lier. Zo heeft het in tijden niet gelopen. Mijn dank is groot. Ik zal jullie niet vergeten.

Hallo, nou ik weet niet wat er gebeurd is maar het werkt weer als een lier. Zo heeft het in tijden niet gelopen. Mijn dank is groot. Ik zal jullie niet vergeten.

Heb even je topic heropend, want we zijn er nog niet helemaal. Zou je het volledige logje van zoek.exe eens in een bericht willen plaatsen, want door de overvloedige besmettingen op de PC kan het nog nodig zijn om wat extra zaken uit te voeren om hem helemaal clean te krijgen.