Logfile of random's system information tool 1.10 (written by random/random) Run by Donald at 2014-09-06 18:29:03 Microsoft Windows 8.1 System drive C: has 141 GB (48%) free of 294 GB Total RAM: 3683 MB (26% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:29:41, on 6-9-2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.9600.17239) Boot mode: Normal Running processes: C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe C:\Users\Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE C:\Program Files (x86)\SunriseBrowse\bin\SunriseBrowse.BrowserAdapter.exe C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe c:\PROGRA~2\mcafee\SITEAD~1\saui.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe C:\Program Files\trend micro\Donald.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: SearchHook Class - {D8278076-BC68-4484-9233-6E7F1628B56C} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\searchhook.dll" (file missing) R3 - URLSearchHook: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Search Better App BHO - {5245414C-352D-5900-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll" (file missing) O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SunriseBrowse - {b110ca24-17f3-4555-b0d2-672ab034adf9} - C:\Program Files (x86)\SunriseBrowse\SunriseBrowsebho.dll O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O3 - Toolbar: &Inbox Toolbar - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll O3 - Toolbar: Search Better App - {5245414C-352D-5900-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll" (file missing) O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [TPUReg] "C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe" /Retimes O4 - HKLM\..\Run: [Intel AppUp(R) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [InboxToolbar] "C:\Program Files (x86)\Inbox Toolbar\Inbox.exe" /STARTUP O4 - HKLM\..\Run: [24x7HELP] "C:\Program Files (x86)\24x7Help\App24x7Help.exe" /STARTUP O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" O4 - HKCU\..\Run: [fTalk] "C:\Users\Donald\AppData\Local\fTalk\fTalk.exe" -autorun O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Donald\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKCU\..\Run: [SkyDrive] "C:\Users\Donald\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [Google Update] "C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [Google+ Auto Backup] "C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_68486C93B827CA2C6824B95048E28803] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [BRS] C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe -runBRS O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session http://home.mcafee.com/Root/RenewProduct.aspx?lang=nl&lcid=1043&langid=30&culture=nl-NL&rcode=WSS1282&version=12.8&wuiv=11.0&affid=739&hres=1366&vres=768&rnwsrc=mma&expdt=20140129&xexpdt=20140228&segid=3&segtyid=1&pkgs=275_739_nl_0_190328E8-3D7E-4C87-8B8B-C23438B8EE57_20140129_44_2&email=donald.q.64@gmail.com&hardware_id=30a516637cf6569756cdeb1e1d0efea3&windows_id=_{E0FD470E-5B86-4F80-90E3-84831AE5B185}&pk=190328E8-3D7E-4C87-8B8B-C23438B8EE57&pkgid=275&os_country=NL&os_culture=nl&rtmui_lcid=1043 O4 - Startup: Dropbox.lnk = Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {55A2C0CD-3DE8-4264-9637-A0B40B05714E} (Mail Migration) - https://col0-sec.mail.live.com/mail/MailMigrationCabFileHolder.aspx?n=1275858554 O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\Program Files (x86)\Inbox Toolbar\Inbox64.dll O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll O20 - AppInit_DLLs: C:\PROGRA~3\Wincert\WIN32C~1.DLL C:\PROGRA~2\MOVIES~1\Datamngr\mgrldr.dll O23 - Service: McAfee Application Installer Cleanup (0323271409988089) (0323271409988089mcinstcleanup) - McAfee, Inc. - C:\WINDOWS\TEMP\032327~1.EXE O23 - Service: 24x7HelpService (24x7HelpSvc) - PCRx.com, LLC - C:\Program Files (x86)\24x7Help\App24x7Svc.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Ask-updateservice (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe O23 - Service: Datamngr Coordinator (DatamngrCoordinator) - Unknown owner - (no file) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\WINDOWS\system32\mfevtps.exe (file missing) O23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Samsung Link Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing) O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Update SunriseBrowse - Unknown owner - C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe O23 - Service: Util SunriseBrowse - Unknown owner - C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 17832 bytes ======Listing Processes====== wininit.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\atiesrxx.exe C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe" C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\WLANExt.exe 13663246928 \??\C:\WINDOWS\system32\conhost.exe 0x4 "C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe" C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\24x7Help\App24x7Svc.exe" "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe" "C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe" "C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService \??\C:\WINDOWS\system32\conhost.exe 0x4 "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe" "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service dashost.exe {ddcd350c-fe1c-4b6e-8e178e6524a5eb3a} "C:\WINDOWS\system32\mfevtps.exe" "C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe" "c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe" "C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe" "C:\Program Files\Samsung\Samsung Link\Samsung Link.exe" "C:\Program Files\Samsung\Samsung Link\Samsung Link.exe" "Samsung Link Service" __i4j_restart "C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe" C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Windows\system32\TODDSrv.exe "C:\Program Files\McAfee\MSC\McAPExe.exe" "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" "C:\Program Files\TOSHIBA\Teco\TecoService.exe" C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e1a4bf6f-d966-40a8-b0bb-6eedbd503261 -SystemEventPortName:HostProcess-dfa5cfd6-5123-4abc-9b76-c241f5a930d5 -IoCancelEventPortName:HostProcess-b135b0a8-f29a-4717-b0fd-8b22a8c5fea4 -NonStateChangingEventPortName:HostProcess-444d57c2-b010-4cbb-8930-1be8f15dc9f6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bbe13ca6-26a2-44dd-8901-fc951e69190f -DeviceGroupId:WpdFsGroup C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding "C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe" "C:\Program Files (x86)\Nero\Update\NASvc.exe" C:\WINDOWS\system32\SearchIndexer.exe /Embedding "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\WINDOWS\system32\wbem\wmiprvse.exe taskhost.exe $(Arg0) "C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe" C:\WINDOWS\System32\WinLogon.exe -SpecialSession -hiberboot atieclxx "C:\WINDOWS\SysWOW64\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait "C:\WINDOWS\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait "C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe" /wts 1540 556 560 "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS C:\WINDOWS\Explorer.EXE taskhostex.exe C:\Windows\System32\skydrive.exe -Embedding "C:\Program Files\McAfee\MAT\McPvTray.exe" "C:\Program Files\SAMSUNG\Samsung Link\Samsung Link Tray Agent.exe" "C:\Windows\System32\SettingSyncHost.exe" -Embedding "C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart "C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe" -runBRS "C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe" "C:\Users\Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" C:\Windows\System32\RuntimeBroker.exe -Embedding C:\WINDOWS\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} "C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding "C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe" "C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc "C:\Program Files (x86)\McAfeeMOBK\WrapperTrayIcon.exe" "C:\Program Files\mcafee\VirusScan\mcods.exe" "C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe" "C:\Program Files (x86)\SunriseBrowse\bin\SunriseBrowse.PurBrowse64.exe" /l false /s false /c "SunriseBrowse" /t "C:\Program Files (x86)\SunriseBrowse\bin\TEMP" /i "http://apisunrisebrowse-a.akamaihd.net/gsrs?is=isgiwhNL&bp=PBG&g=00000000-0000-0000-0000-000000000000" /d {fef7f75c-f985-4250-96f9-8183cd04238b}Gw64 /p 523424a0-e638-456d-9e82-53ea314e6065:chrome /p c0d57e08-3aad-4369-84e9-fc72c6807862:torch \??\C:\WINDOWS\system32\conhost.exe 0x4 /c 523424a0-e638-456d-9e82-53ea314e6065 /t 523424a0-e638-456d-9e82-53ea314e6065 /o 523424a0-e638-456d-9e82-53ea314e6065 /s 523424a0-e638-456d-9e82-53ea314e6065 /b 523424a0-e638-456d-9e82-53ea314e6065 /a 523424a0-e638-456d-9e82-53ea314e6065 /r 523424a0-e638-456d-9e82-53ea314e6065 /s /z "n=SunriseBrowse&is=isgiwhNL&dpt=21" /c 523424a0-e638-456d-9e82-53ea314e6065 /t 523424a0-e638-456d-9e82-53ea314e6065 /o 523424a0-e638-456d-9e82-53ea314e6065 /s 523424a0-e638-456d-9e82-53ea314e6065 /b 523424a0-e638-456d-9e82-53ea314e6065 /a 523424a0-e638-456d-9e82-53ea314e6065 /r 523424a0-e638-456d-9e82-53ea314e6065 /s /z "n=SunriseBrowse&is=isgiwhNL&dpt=21" "C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe" taskeng.exe {7C7F54A1-766F-454B-B55B-1173CB551B0E} "C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe" "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-470de339-56e5-43b2-89f6-797e8146a26a -SystemEventPortName:HostProcess-67ac1050-a527-4d0d-81b5-38c08342644a -IoCancelEventPortName:HostProcess-d24a21ba-a83a-42c8-bccb-e551531c4776 -NonStateChangingEventPortName:HostProcess-464f55a5-d44e-459d-983a-01bc049c0930 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ed567050-47f5-41d1-a879-d1b8b2f660b0 -DeviceGroupId:WudfDefaultDevicePool "C:\Program Files\WindowsApps\GoogleInc.GoogleSearch_1.2.1.12_x64__yfg5n0ztvskxp\google-search.exe" -ServerName:App.AppXg6pfmg0p3b0tmgkcdg7at2v06vr6mdm0.mca "C:\WINDOWS\system32\wwahost.exe" -ServerName:Microsoft.WindowsLive.Mail.wwa "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe" /bgrecordhelpersvc "c:\PROGRA~2\mcafee\SITEAD~1\saui.exe" -Embedding "C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6260.145e2480.1337739254 "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 6260 "\\.\pipe\gecko-crash-server-pipe.6260" plugin "C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe" --proxy-stub-channel=Flash8140.5C7CD018.7451 --host-broker-channel=Flash8140.5C7CD018.2702 --host-pid=8140 --host-npapi-version=22 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_14_0_0_179.dll" "C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe" --channel=6728.00E1F8E4.1094410759 --proxy-stub-channel=Flash8140.5C7CD018.7451 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_14_0_0_179.dll" --host-npapi-version=22 --type=renderer taskeng.exe {5686A824-E4B2-4DBF-B6CE-D9B8D54A8EEE} C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding "C:\Users\Donald\Downloads\RSITx64.exe" C:\WINDOWS\System32\svchost.exe -k WerSvcGroup ======Scheduled tasks folder====== C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001Core.job - C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001UA.job - C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001Core.job - C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-134718675-1712662102-2122747189-1001UA.job - C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\WINDOWS\tasks\WSE_Astromenda.job - C:\Users\Donald\AppData\Roaming\WSE_AS~1\UPDATE~1\UPDATE~1.EXE /Check =========Mozilla firefox========= ProfilePath - C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default prefs.js - "browser.startup.homepage" - "http://www.searchbetter.com/?tpid=REAL5-Y&o=Y10017&pf=V7&trgb=IE, FF, CR&p2=%5EBNT%5Eayn130%5EYY%5ENL&gct=hp&apn_ptnrs=BNT&apn_dtid=%5Eayn130%5EYY%5ENL&apn_dbr=ie_11.0.9600.17239&apn_uid=74BF4EB1-2D03-44A0-BB56-D9025902D164&itbv=12.16.0.21&doi=2014-09-02&psv=&pt=tb" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 14.0.0.179 Plugin "Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin] "Description"=McAfee Mss Plugin "Path"=C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10] "Description"=McAfee Total Protection MIME Plugin "Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM] "Description"= "Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.13.2] "Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In "Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.13] "Description"=RealPlayer Video Downloader for HTML5 (32-bit) "Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.13.2] "Description"=RealPlayer Download Plugin "Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 14.0.0.179 Plugin "Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10] "Description"=McAfee Total Protection MIME Plugin "Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\extensions\ 5affxtbr@MyWebFace_5a.com {b9db16a4-6edc-47ec-a1f4-b86292ed211d} C:\Users\Donald\AppData\Roaming\Mozilla\Firefox\Profiles\esc7he3y.default\searchplugins\ ask-search.xml Astromenda.xml Mysearchdial.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-07-30 590408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}] Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-08-28 218776] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5245414C-352D-5900-76A7-7A786E7484D7}] Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport_x64.dll [2014-08-29 13720] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-27 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}] McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-06-30 294400] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-08-28 2335960] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}] Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox64.dll [2014-06-30 1652672] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}] MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll [2014-01-16 96128] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2014-07-30 475720] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5245414C-352D-5900-76A7-7A786E7484D7}] Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll [2014-08-29 12184] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-29 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b110ca24-17f3-4555-b0d2-672ab034adf9}] SunriseBrowse - C:\Program Files (x86)\SunriseBrowse\SunriseBrowsebho.dll [2014-08-29 250616] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}] McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}] Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll [2014-06-30 1087936] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-29 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-27 256456] {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-06-30 294400] {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - &Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox64.dll [2014-06-30 1652672] {5245414C-352D-5900-76A7-7A786E7484D7} - Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport_x64.dll [2014-08-29 13720] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504] {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352] {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - &Inbox Toolbar - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll [2014-06-30 1087936] {5245414C-352D-5900-76A7-7A786E7484D7} - Search Better App - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\REAL5-Y\Passport.dll [2014-08-29 12184] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-12-10 13261456] "SRS Premium Sound HD"=C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe [2012-08-20 2170784] "TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2012-09-05 2611112] "TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2012-08-14 169896] "TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2012-07-11 356776] "TODDMain"=C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [2012-08-05 213136] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-20 2774256] "Samsung Link"=C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [2014-08-13 596320] "McAfeeWrapperApplication"=C:\Program Files (x86)\McAfeeMOBK\WrapperTrayIcon.exe [2013-09-09 459232] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "fTalk"=C:\Users\Donald\AppData\Local\fTalk\fTalk.exe [2013-08-05 9428016] "Spotify Web Helper"=C:\Users\Donald\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-08-31 1245752] "GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2014-08-08 22734160] "SkyDrive"=C:\Users\Donald\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-06-20 251080] "Facebook Update"=C:\Users\Donald\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-06 138096] "Google Update"=C:\Users\Donald\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-27 116648] "Google+ Auto Backup"=C:\Users\Donald\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [2014-08-13 3746120] "GoogleChromeAutoLaunch_68486C93B827CA2C6824B95048E28803"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-08-30 852808] "BRS"=C:\Program Files (x86)\WSE_Astromenda\BRS\brs.exe [2014-08-29 1072128] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Application Restart #1"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-08-30 852808] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2013-07-17 156000] "mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992] "TPUReg"=C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe [2012-10-31 7148032] "Intel AppUp(R) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2013-07-17 156000] "KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-02-14 311616] "mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992] "InboxToolbar"=C:\Program Files (x86)\Inbox Toolbar\Inbox.exe [2014-06-30 1417664] "24x7HELP"=C:\Program Files (x86)\24x7Help\App24x7Help.exe [2014-04-11 1924960] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-07-04 766688] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896] "TkBellExe"=c:\program files (x86)\real\realplayer\Update\realsched.exe [2014-09-02 296520] "ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-08-29 1942424] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe RealPlayer Cloud Service UI.lnk - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe C:\Users\Donald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Dropbox.lnk - C:\Users\Donald\AppData\Roaming\Dropbox\bin\Dropbox.exe Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll " [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "EnableLinkedConnections"=1 "DisableTaskMgr"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoRun"=0 "NoFolderOptions"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe] "Debugger="tasklist.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "VIDC.YUY2"=msyuv.dll "vidc.i420"=iyuv_32.dll "msacm.msgsm610"=msgsm32.acm "msacm.msg711"=msg711.acm "VIDC.YVYU"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "wavemapper"=msacm32.drv "midimapper"=midimap.dll "VIDC.UYVY"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "vidc.msvc"=msvidc32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-09-06 18:29:04 ----D---- C:\Program Files\trend micro 2014-09-06 18:29:03 ----D---- C:\rsit 2014-09-02 22:20:38 ----D---- C:\Users\Donald\AppData\Roaming\RealNetworks 2014-09-02 22:03:23 ----D---- C:\ProgramData\AskPartnerNetwork 2014-09-02 22:03:23 ----D---- C:\Program Files (x86)\AskPartnerNetwork 2014-09-02 22:01:14 ----D---- C:\ProgramData\RealNetworks 2014-09-02 22:01:14 ----D---- C:\Program Files (x86)\RealNetworks 2014-09-02 21:58:37 ----A---- C:\WINDOWS\SYSWOW64\rmoc3260.dll 2014-09-02 21:57:39 ----A---- C:\WINDOWS\SYSWOW64\pncrt.dll 2014-09-02 21:57:22 ----A---- C:\WINDOWS\SYSWOW64\msvcr71.dll 2014-09-02 21:57:22 ----A---- C:\WINDOWS\SYSWOW64\msvcp71.dll 2014-08-29 23:16:03 ----A---- C:\WINDOWS\system32\drivers\{fef7f75c-f985-4250-96f9-8183cd04238b}Gw64.sys 2014-08-29 23:09:38 ----D---- C:\Users\Donald\AppData\Roaming\OpenOffice 2014-08-29 22:56:20 ----A---- C:\WINDOWS\Reimage.ini 2014-08-29 22:51:22 ----D---- C:\Program Files (x86)\OpenOffice 4 2014-08-29 22:47:11 ----D---- C:\Users\Donald\AppData\Roaming\WSE_Astromenda 2014-08-29 22:46:55 ----D---- C:\Program Files (x86)\SunriseBrowse 2014-08-29 22:46:53 ----D---- C:\Program Files (x86)\WSE_Astromenda 2014-08-29 22:44:39 ----D---- C:\Program Files (x86)\PC Speed Maximizer 2014-08-29 15:39:40 ----A---- C:\WINDOWS\SYSWOW64\javaws.exe 2014-08-29 15:39:20 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll 2014-08-29 15:39:20 ----A---- C:\WINDOWS\SYSWOW64\javaw.exe 2014-08-29 15:39:20 ----A---- C:\WINDOWS\SYSWOW64\java.exe 2014-08-29 15:38:57 ----D---- C:\Program Files (x86)\Java 2014-08-28 13:52:03 ----A---- C:\WINDOWS\system32\win32k.sys 2014-08-23 07:44:54 ----D---- C:\Users\Donald\AppData\Roaming\dvdcss 2014-08-23 06:58:48 ----D---- C:\Program Files (x86)\Mozilla Firefox 2014-08-22 14:08:30 ----HD---- C:\OneDriveTemp 2014-08-20 17:18:31 ----D---- C:\ProgramData\ATI 2014-08-20 16:08:08 ----D---- C:\Program Files\ATI Technologies 2014-08-20 16:07:20 ----D---- C:\Program Files (x86)\ATI Technologies 2014-08-20 15:55:37 ----D---- C:\Program Files\Microsoft Silverlight 2014-08-20 15:55:36 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2014-08-15 13:46:57 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe 2014-08-14 10:47:48 ----A---- C:\WINDOWS\system32\rpcrt4.dll 2014-08-14 10:47:47 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll 2014-08-14 10:47:43 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll 2014-08-14 10:47:43 ----A---- C:\WINDOWS\system32\dxgi.dll 2014-08-14 10:47:42 ----A---- C:\WINDOWS\system32\dwmcore.dll 2014-08-14 10:47:42 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys 2014-08-14 10:46:53 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll 2014-08-14 10:46:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll 2014-08-14 10:46:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll 2014-08-14 10:46:51 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll 2014-08-14 10:46:50 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll 2014-08-14 10:46:49 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll 2014-08-14 10:46:45 ----A---- C:\WINDOWS\system32\urlmon.dll 2014-08-14 10:46:44 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll 2014-08-14 10:46:43 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll 2014-08-14 10:46:43 ----A---- C:\WINDOWS\system32\msfeeds.dll 2014-08-14 10:46:43 ----A---- C:\WINDOWS\system32\dxtmsft.dll 2014-08-14 10:46:41 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll 2014-08-14 10:46:37 ----A---- C:\WINDOWS\system32\iertutil.dll 2014-08-14 10:46:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll 2014-08-14 10:46:35 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll 2014-08-14 10:46:33 ----A---- C:\WINDOWS\system32\ieframe.dll 2014-08-14 10:46:33 ----A---- C:\WINDOWS\system32\dxtrans.dll 2014-08-14 10:46:31 ----A---- C:\WINDOWS\system32\mshtmled.dll 2014-08-14 10:46:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll 2014-08-14 10:46:30 ----A---- C:\WINDOWS\system32\jscript9.dll 2014-08-14 10:46:29 ----A---- C:\WINDOWS\system32\ieapfltr.dll 2014-08-14 10:46:26 ----A---- C:\WINDOWS\system32\mshtml.dll 2014-08-14 10:46:17 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll 2014-08-14 10:46:17 ----A---- C:\WINDOWS\system32\iedkcs32.dll 2014-08-14 10:46:16 ----A---- C:\WINDOWS\system32\wininet.dll 2014-08-14 10:46:15 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll 2014-08-14 10:46:14 ----A---- C:\WINDOWS\system32\ie4uinit.exe 2014-08-14 10:46:12 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll 2014-08-14 10:46:12 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll 2014-08-14 10:46:10 ----A---- C:\WINDOWS\system32\MshtmlDac.dll 2014-08-14 10:46:09 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll 2014-08-14 10:46:07 ----A---- C:\WINDOWS\system32\vbscript.dll 2014-08-14 10:46:06 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll 2014-08-14 10:44:17 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys 2014-08-14 10:43:36 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe 2014-08-14 10:43:36 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe 2014-08-14 10:33:48 ----A---- C:\WINDOWS\system32\WpcMon.exe 2014-08-14 10:33:48 ----A---- C:\WINDOWS\system32\Wpc.dll 2014-08-14 10:33:47 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll 2014-08-14 10:33:47 ----A---- C:\WINDOWS\system32\WpcWebSync.dll 2014-08-14 10:33:42 ----A---- C:\WINDOWS\system32\SyncEngine.dll 2014-08-14 10:33:41 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll 2014-08-14 10:33:41 ----A---- C:\WINDOWS\system32\SkyDrive.exe 2014-08-14 10:32:03 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll 2014-08-14 10:32:03 ----A---- C:\WINDOWS\system32\d3d9.dll 2014-08-14 10:32:02 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll 2014-08-14 10:31:59 ----A---- C:\WINDOWS\system32\mfcore.dll 2014-08-14 10:31:57 ----A---- C:\WINDOWS\system32\localspl.dll 2014-08-14 10:31:56 ----A---- C:\WINDOWS\system32\vpnike.dll 2014-08-14 10:31:55 ----A---- C:\WINDOWS\system32\fveapi.dll 2014-08-14 10:31:55 ----A---- C:\WINDOWS\system32\dhcpcore.dll 2014-08-14 10:31:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll 2014-08-14 10:31:54 ----A---- C:\WINDOWS\system32\ntdll.dll 2014-08-14 10:31:53 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll 2014-08-14 10:31:53 ----A---- C:\WINDOWS\system32\actxprxy.dll 2014-08-14 10:31:52 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll 2014-08-14 10:31:51 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll 2014-08-14 10:31:51 ----A---- C:\WINDOWS\system32\framedynos.dll 2014-08-14 10:31:51 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys 2014-08-14 10:31:48 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll 2014-08-14 10:31:48 ----A---- C:\WINDOWS\system32\dhcpcore6.dll 2014-08-14 10:31:48 ----A---- C:\WINDOWS\system32\bdesvc.dll 2014-08-14 10:31:47 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll 2014-08-14 10:31:46 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys 2014-08-14 10:31:46 ----A---- C:\WINDOWS\system32\BFE.DLL 2014-08-14 10:31:45 ----A---- C:\WINDOWS\system32\ncobjapi.dll 2014-08-14 10:31:44 ----A---- C:\WINDOWS\system32\framedyn.dll 2014-08-14 10:31:43 ----A---- C:\WINDOWS\system32\winbici.dll 2014-08-14 10:31:42 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll 2014-08-14 10:31:40 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys 2014-08-14 10:31:39 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll 2014-08-14 10:31:39 ----A---- C:\WINDOWS\system32\WebClnt.dll 2014-08-14 10:31:39 ----A---- C:\WINDOWS\system32\Robocopy.exe 2014-08-14 10:31:38 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe 2014-08-14 10:31:38 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll 2014-08-14 10:31:37 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll 2014-08-14 10:31:37 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll 2014-08-14 10:31:37 ----A---- C:\WINDOWS\system32\IKEEXT.DLL 2014-08-14 10:31:37 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll 2014-08-14 10:31:36 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll 2014-08-14 10:31:36 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe 2014-08-14 10:31:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll 2014-08-14 10:31:35 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys 2014-08-14 10:31:33 ----A---- C:\WINDOWS\system32\reseteng.dll 2014-08-14 10:31:32 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll 2014-08-14 10:31:32 ----A---- C:\WINDOWS\system32\srms.dat 2014-08-14 10:30:15 ----A---- C:\WINDOWS\system32\aepdu.dll 2014-08-14 10:30:14 ----A---- C:\WINDOWS\system32\aeinv.dll 2014-08-14 10:29:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll 2014-08-14 10:29:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll 2014-08-14 10:29:48 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys 2014-08-14 10:29:46 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys 2014-08-14 10:29:46 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys 2014-08-14 10:29:45 ----A---- C:\WINDOWS\system32\rsaenh.dll 2014-08-14 10:29:43 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll 2014-08-14 10:29:43 ----A---- C:\WINDOWS\system32\WUDFHost.exe 2014-08-14 10:29:43 ----A---- C:\WINDOWS\system32\drivers\WUDFRd.sys 2014-08-14 10:29:42 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS 2014-08-14 10:29:42 ----A---- C:\WINDOWS\system32\WUDFSvc.dll 2014-08-14 10:29:42 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll 2014-08-14 10:29:42 ----A---- C:\WINDOWS\system32\drivers\WUDFPf.sys 2014-08-14 10:29:41 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys 2014-08-14 10:29:41 ----A---- C:\WINDOWS\system32\DaOtpCredentialProvider.dll 2014-08-14 10:29:40 ----AC---- C:\WINDOWS\system32\drivers\usbuhci.sys 2014-08-14 10:29:40 ----AC---- C:\WINDOWS\system32\drivers\usbd.sys 2014-08-14 10:29:40 ----A---- C:\WINDOWS\SYSWOW64\DaOtpCredentialProvider.dll 2014-08-14 10:29:40 ----A---- C:\WINDOWS\system32\hal.dll 2014-08-14 10:28:53 ----A---- C:\WINDOWS\system32\MDMAgent.exe 2014-08-14 10:28:45 ----A---- C:\WINDOWS\system32\MrmCoreR.dll 2014-08-14 10:28:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll 2014-08-14 10:28:30 ----A---- C:\WINDOWS\system32\gdi32.dll 2014-08-14 10:28:26 ----A---- C:\WINDOWS\system32\authui.dll 2014-08-14 10:28:25 ----A---- C:\WINDOWS\SYSWOW64\authui.dll 2014-08-14 10:28:25 ----A---- C:\WINDOWS\system32\msi.dll 2014-08-14 10:28:24 ----A---- C:\WINDOWS\SYSWOW64\msi.dll 2014-08-14 10:28:24 ----A---- C:\WINDOWS\system32\consent.exe 2014-08-14 10:28:23 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll 2014-08-14 10:28:23 ----A---- C:\WINDOWS\system32\msihnd.dll ======List of files/folders modified in the last 1 month====== 2014-09-06 18:29:30 ----D---- C:\WINDOWS\Prefetch 2014-09-06 18:29:11 ----D---- C:\WINDOWS\Temp 2014-09-06 18:29:04 ----RD---- C:\Program Files 2014-09-06 18:00:00 ----D---- C:\WINDOWS\system32\sru 2014-09-06 13:16:35 ----A---- C:\WINDOWS\win.ini 2014-09-06 09:22:59 ----D---- C:\WINDOWS\AppReadiness 2014-09-06 09:22:58 ----HD---- C:\Program Files\WindowsApps 2014-09-06 09:20:52 ----D---- C:\WINDOWS\system32\drivers 2014-09-06 09:20:46 ----D---- C:\Program Files\Common Files\mcafee 2014-09-06 09:14:08 ----D---- C:\Users\Donald\AppData\Roaming\Dropbox 2014-09-06 00:22:33 ----D---- C:\WINDOWS\system32\Tasks 2014-09-06 00:20:16 ----D---- C:\WINDOWS\Microsoft.NET 2014-09-06 00:10:55 ----D---- C:\WINDOWS\system32\catroot 2014-09-06 00:05:55 ----SHD---- C:\Config.Msi 2014-09-05 23:39:53 ----SHD---- C:\WINDOWS\Installer 2014-09-05 16:12:40 ----D---- C:\Users\Donald\AppData\Roaming\Real 2014-09-05 12:14:36 ----D---- C:\WINDOWS\Inf 2014-09-03 10:04:37 ----D---- C:\WINDOWS\system32\config 2014-09-02 23:07:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2014-09-02 22:03:23 ----HD---- C:\ProgramData 2014-09-02 22:03:23 ----D---- C:\Program Files (x86) 2014-09-02 22:01:39 ----D---- C:\Program Files (x86)\Real 2014-09-02 21:59:21 ----D---- C:\Program Files (x86)\Common Files 2014-09-02 21:59:14 ----D---- C:\ProgramData\Real 2014-09-02 21:58:37 ----D---- C:\WINDOWS\SysWOW64 2014-09-02 19:29:57 ----SHD---- C:\System Volume Information 2014-09-02 16:02:44 ----RD---- C:\Users 2014-09-02 15:26:57 ----D---- C:\WINDOWS\system32\DriverStore 2014-09-02 15:25:27 ----D---- C:\Program Files (x86)\MyFree Codec 2014-09-02 14:58:11 ----RD---- C:\WINDOWS\System32 2014-09-02 14:58:11 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2014-08-31 18:24:15 ----D---- C:\Users\Donald\AppData\Roaming\Spotify 2014-08-30 11:51:07 ----D---- C:\WINDOWS\WinSxS 2014-08-29 23:27:56 ----RSD---- C:\WINDOWS\assembly 2014-08-29 23:26:25 ----RSD---- C:\WINDOWS\Fonts 2014-08-29 22:56:20 ----D---- C:\Windows 2014-08-29 22:47:16 ----D---- C:\WINDOWS\Tasks 2014-08-29 21:23:33 ----D---- C:\Program Files\SAMSUNG 2014-08-29 20:07:41 ----D---- C:\Users\Donald\AppData\Roaming\vlc 2014-08-29 15:39:56 ----D---- C:\WINDOWS\CbsTemp 2014-08-28 08:24:37 ----A---- C:\model.bat 2014-08-28 08:11:48 ----D---- C:\WINDOWS\system32\MRT 2014-08-28 08:03:47 ----A---- C:\WINDOWS\system32\MRT.exe 2014-08-28 07:55:08 ----D---- C:\ProgramData\regid.1991-06.com.microsoft 2014-08-28 07:52:17 ----D---- C:\Program Files\Microsoft Office 15 2014-08-28 07:22:48 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2014-08-20 17:14:29 ----D---- C:\WINDOWS\Minidump 2014-08-20 17:12:05 ----D---- C:\WINDOWS\system32\catroot2 2014-08-20 16:08:10 ----D---- C:\ProgramData\AMD 2014-08-20 16:07:07 ----D---- C:\ProgramData\Package Cache 2014-08-20 15:58:40 ----SD---- C:\ProgramData\Microsoft 2014-08-15 15:28:11 ----D---- C:\WINDOWS\rescache 2014-08-15 13:38:40 ----D---- C:\Program Files (x86)\Internet Explorer 2014-08-15 13:38:39 ----D---- C:\Program Files\Internet Explorer 2014-08-15 13:38:37 ----D---- C:\WINDOWS\SYSWOW64\nl-NL 2014-08-15 13:38:36 ----D---- C:\WINDOWS\PolicyDefinitions 2014-08-15 13:38:35 ----D---- C:\WINDOWS\system32\nl-NL 2014-08-15 13:38:03 ----RD---- C:\WINDOWS\ToastData 2014-08-15 13:38:03 ----D---- C:\WINDOWS\system32\migration 2014-08-15 13:37:52 ----D---- C:\WINDOWS\SYSWOW64\migration 2014-08-15 13:37:52 ----D---- C:\WINDOWS\MediaViewer 2014-08-15 13:37:51 ----D---- C:\WINDOWS\SYSWOW64\wbem 2014-08-15 13:37:49 ----D---- C:\WINDOWS\system32\wbem 2014-08-15 13:37:49 ----D---- C:\WINDOWS\system32\en-US 2014-08-15 13:37:43 ----D---- C:\WINDOWS\FileManager 2014-08-15 13:37:43 ----D---- C:\WINDOWS\Camera 2014-08-15 13:37:38 ----SD---- C:\WINDOWS\system32\CompatTel 2014-08-14 10:25:48 ----A---- C:\WINDOWS\system32\mfps.dll 2014-08-14 10:01:05 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll 2014-08-14 10:01:03 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll 2014-08-14 10:00:38 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll 2014-08-14 10:00:38 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll 2014-08-14 10:00:38 ----A---- C:\WINDOWS\system32\ieetwcollector.exe 2014-08-14 10:00:37 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll 2014-08-14 10:00:36 ----A---- C:\WINDOWS\system32\ieUnatt.exe 2014-08-14 10:00:35 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe 2014-08-14 10:00:35 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll 2014-08-14 10:00:35 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll 2014-08-14 10:00:34 ----A---- C:\WINDOWS\system32\iesetup.dll 2014-08-14 10:00:34 ----A---- C:\WINDOWS\system32\iernonce.dll 2014-08-14 10:00:25 ----A---- C:\WINDOWS\system32\msrating.dll 2014-08-14 10:00:23 ----A---- C:\WINDOWS\system32\jsproxy.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2014-06-20 786296] R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2014-06-20 348552] R0 tos_sps64;@oem11.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\WINDOWS\System32\drivers\tos_sps64.sys [2012-06-18 499096] R0 TVALZ;@oem34.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [2012-07-26 32832] R1 MOBKFilter;MOBKFilter; C:\WINDOWS\system32\DRIVERS\MOBK.sys [2010-04-13 66040] R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680] R2 McPvDrv;McPvDrv Driver; C:\WINDOWS\system32\drivers\McPvDrv.sys [2013-09-09 74560] R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [2009-09-12 14344] R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\WINDOWS\system32\DRIVERS\TVALZFL.sys [2012-07-22 16768] R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088] R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688] R3 AtiHDAudioService;@oem21.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-07-17 98472] R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2014-06-20 72128] R3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968] R3 Dot4Print;@oem15.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 27040] R3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-12-10 3242896] R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2014-06-20 181704] R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2014-06-20 313544] R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2014-06-20 523792] R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2014-07-24 444720] R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT-stuurprogramma; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360] R3 RTWlanE;@oem22.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-10-21 2946264] R3 SynTP;@oem87.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-08-20 524016] R3 TDCMDPST;TOSHIBA Writing Engine Filter Driver; C:\WINDOWS\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184] R3 Thotkey;@oem33.inf,%Thotkey%;Toshiba Hotkey Driver; C:\WINDOWS\System32\drivers\Thotkey.sys [2013-08-19 32624] R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-06-19 57000] R3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544] R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB-videoapparaat (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224] R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912] S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2014-06-20 70600] S3 dg_ssudbus;@oem18.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-05-13 110336] S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2013-09-23 197704] S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2014-07-24 96592] S3 RSUSBSTOR;@oem6.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2012-06-13 252048] S3 ss_conn_usb_driver;@oem30.inf,%ssud.SvcDesc%;SAMSUNG Mobile USB Connectivity Device Driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [2014-05-13 26368] S3 ssudmdm;@oem19.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-05-13 206080] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 24x7HelpSvc;24x7HelpService; C:\Program Files (x86)\24x7Help\App24x7Svc.exe [2014-04-11 339808] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432] R2 AllShare Framework DMS;AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [2013-12-21 404360] R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616] R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-07-04 344064] R2 APNMCP;Ask-updateservice; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-08-29 166296] R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-08-01 2369720] R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [2011-10-14 156672] R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-05-11 200728] R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 178528] R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-07-24 1041192] R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-06-20 219752] R2 mfevtp;McAfee Validation Trust Protection Service; C:\WINDOWS\system32\mfevtps.exe [2014-06-20 189912] R2 MOBKbackup;1%; C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-04-13 231224] R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928] R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432] R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-07-30 39568] R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-09-02 1141848] R2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-07-30 23552] R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-08-31 201360] R2 Samsung Link Service;Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [2014-08-13 604512] R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-05-13 741640] R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632] R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\Teco\TecoService.exe [2012-08-25 291240] R2 Update SunriseBrowse;Update SunriseBrowse; C:\Program Files (x86)\SunriseBrowse\updateSunriseBrowse.exe [2014-09-06 323320] R2 Util SunriseBrowse;Util SunriseBrowse; C:\Program Files (x86)\SunriseBrowse\bin\utilSunriseBrowse.exe [2014-09-06 323320] R3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2014-06-12 603424] R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-07-28 53384] S2 0323271409988089mcinstcleanup;McAfee Application Installer Cleanup (0323271409988089); C:\WINDOWS\TEMP\032327~1.EXE [2014-03-13 836168] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-02 116648] S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2013-08-22 37768] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2013-08-22 37768] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-29 262320] S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-02 116648] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-06-02 194032] S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [2014-01-16 289256] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-23 119408] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-10-03 150600] S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-07-18 116088] S3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2012-07-28 458152] -----------------EOF-----------------