Logfile of random's system information tool 1.10 (written by random/random) Run by Sandra at 2014-07-26 12:08:21 Microsoft Windows 7 Starter Service Pack 1 System drive C: has 259 GB (88%) free of 293 GB Total RAM: 1012 MB (9% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:09:02, on 26.07.2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17207) Boot mode: Normal Running processes: C:\windows\system32\taskhost.exe C:\windows\system32\Dwm.exe C:\windows\Explorer.EXE C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe C:\Program Files\Toshiba TEMPRO\TemproTray.exe C:\Program Files\TOSHIBA\TECO\Teco.exe C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Windows\System32\igfxpers.exe C:\windows\system32\igfxsrvc.exe C:\Program Files\TOSHIBA\Utilities\KeNotify.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\windows\system32\taskeng.exe C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe C:\ProgramData\Updater\updater.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Universal Updater\CrashMon.exe C:\Program Files\Isis\isis.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe C:\ProgramData\RHelpers\ChromeHelper\ChromeHelper.exe C:\ProgramData\RHelpers\FireFoxHelper\FireFoxHelper.exe C:\ProgramData\RHelpers\IEHelper\IeHelper.exe C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Windows Media Player\wmplayer.exe C:\windows\system32\SearchFilterHost.exe C:\windows\system32\taskeng.exe C:\Users\Sandra\Downloads\RSIT.exe C:\Program Files\trend micro\Sandra.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1391076483&from=adks&uid=HitachiXHTS543232A7A384_120229E2M31233335Y4PX R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=b14853ff-bd20-cd2b-b2a1-315c5bd20249&searchtype=ds&q={searchTerms}&installDate=06/12/2013 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=b14853ff-bd20-cd2b-b2a1-315c5bd20249&searchtype=ds&q={searchTerms}&installDate=06/12/2013 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/?ctid=CT3320691&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP3A8E5D51-7B5F-4B35-B4FD-DBDA8A9269C4&SSPV= R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1391076483&from=adks&uid=HitachiXHTS543232A7A384_120229E2M31233335Y4PX R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com/web/?type=ds&ts=1391076483&from=adks&uid=HitachiXHTS543232A7A384_120229E2M31233335Y4PX&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com/web/?type=ds&ts=1391076483&from=adks&uid=HitachiXHTS543232A7A384_120229E2M31233335Y4PX&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.awesomehp.com/?type=hp&ts=1391076483&from=adks&uid=HitachiXHTS543232A7A384_120229E2M31233335Y4PX R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=b14853ff-bd20-cd2b-b2a1-315c5bd20249&searchtype=ds&q={searchTerms}&installDate=06/12/2013 R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=b14853ff-bd20-cd2b-b2a1-315c5bd20249&searchtype=ds&q={searchTerms}&installDate=06/12/2013 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - (no file) O2 - BHO: RichMediaViewV1release835 - {6350b6ab-3419-493e-a8d2-830304fe39ee} - C:\Program Files\RichMediaViewV1\RichMediaViewV1release835\ie\RichMediaViewV1release835.dll O2 - BHO: SaveSense - {71e129ff-6c2a-4984-818c-7e2c998b8d99} - C:\Users\Sandra\AppData\Local\SaveSense\SaveSenseIE.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: Value Apps plugin - {F63AAEDC-3602-49EF-AA45-262380A98980} - (no file) O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file) O4 - HKLM\..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3 O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe O4 - HKLM\..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE O4 - HKLM\..\Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe O4 - HKLM\..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe O4 - HKLM\..\Run: [TosReelTimeMonitor] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe O4 - HKLM\..\Run: [TosNC] C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60 O4 - HKLM\..\Run: [Toshiba TEMPRO] C:\Program Files\Toshiba TEMPRO\TemproTray.exe O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe O4 - HKLM\..\Run: [Teco] "C:\Program Files\TOSHIBA\TECO\Teco.exe" /r O4 - HKLM\..\Run: [TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [KeNotify] "C:\Program Files\TOSHIBA\Utilities\KeNotify.exe" LPCM O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [GfxServiceInstall] C:\windows\system32\GfxCUIServiceInstall.vbs O4 - HKLM\..\Run: [Updater] C:\ProgramData\Updater\Updater.exe O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [CrashMon] "C:\Program Files\Universal Updater\CrashMon.exe" "UniversalUpdater" O4 - HKLM\..\Run: [Isis] C:\Program Files\Isis\isis.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Updater] C:\ProgramData\Updater\updater.exe O4 - HKCU\..\Run: [NextLive] C:\windows\system32\rundll32.exe "C:\Users\Sandra\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l O4 - HKCU\..\Run: [LiveSupport] "C:\Program Files\LiveSupport\LiveSupport.exe" /noshow /log O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\Run: [TOPI.EXE] C:\Program Files\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [TOPI.EXE] C:\Program Files\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [TOPI.EXE] C:\Program Files\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'Default user') O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user') O4 - Global Startup: Toshiba Places Icon Utility.lnk = ? O8 - Extra context menu item: Zu TOSHIBA Bulletin Board hinzufügen - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-229 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-228 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O17 - HKLM\System\CCS\Services\Tcpip\..\{4DCF9AB2-771A-4DD4-B9DE-F0B058B046DB}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\..\{FC8234D9-A7C0-4E75-943B-B12FE4914D99}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CS1\Services\Tcpip\..\{4DCF9AB2-771A-4DD4-B9DE-F0B058B046DB}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CS2\Services\Tcpip\..\{4DCF9AB2-771A-4DD4-B9DE-F0B058B046DB}: NameServer = 8.8.8.8,8.8.4.4 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe O23 - Service: Internet Updater (InternetUpdater) - Parallel Lines Development, LLC - C:\ProgramData\InternetUpdater\InternetUpdaterService.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: Network HTTP Support Service (NetHttpService) - Unknown owner - C:\windows\system32\nethtsrv.exe O23 - Service: SaveSenseLive Service (savesenselive) (savesenselive) - SaveSense - C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe O23 - Service: SaveSenseLive Service (savesenselivem) (savesenselivem) - SaveSense - C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe O23 - Service: Network Support Service Updater (ServiceUpdater) - Unknown owner - C:\windows\system32\netupdsrv.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TemproSvc.exe O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe O23 - Service: Universal Updater Service (UniversalUpdater) - Unknown owner - C:\Program Files\Universal Updater\UpdaterService.exe -- End of file - 12999 bytes ======Scheduled tasks folder====== C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\windows\tasks\AmiUpdXp.job - C:\Users\Sandra\AppData\Local\SwvUpdater\Updater.exe C:\windows\tasks\SaveSense.job - C:\Users\Sandra\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE /Check C:\windows\tasks\SaveSenseLiveUpdateTaskMachineCore.job - C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe /c C:\windows\tasks\SaveSenseLiveUpdateTaskMachineUA.job - C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe /ua /installsource scheduler =========Mozilla firefox========= ProfilePath - C:\Users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\b38gqdzn.default-1403295181862 "{D19CA586-DD6C-4a0a-96F8-14644F340D60}"=C:\Program Files\Common Files\McAfee\SystemCore "speedtestanalysis@SpeedAnalysis.com"=C:\Users\Sandra\AppData\Roaming\Mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com "ext@flashenhancer.com"=C:\Program Files\AmiExt\flashEnhancer\ff "lightningnewtab@gmail.com"=C:\Users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\im88ttw7.default\extensions\lightningnewtab@gmail.com.xpi "ext@MediaViewerV1alpha127.net"=C:\Program Files\MediaViewerV1\MediaViewerV1alpha127\ff "ext@MediaViewV1alpha4038.net"=C:\Program Files\MediaViewV1\MediaViewV1alpha4038\ff "ext@MediaViewV1alpha1160.net"=C:\Program Files\MediaViewV1\MediaViewV1alpha1160\ff "ext@MediaWatchV1home2038.net"=C:\Program Files\MediaWatchV1\MediaWatchV1home2038\ff "ext@MediaBuzzV1mode1720.net"=C:\Program Files\MediaBuzzV1\MediaBuzzV1mode1720\ff "ext@RichMediaViewV1release835.net"=C:\Program Files\RichMediaViewV1\RichMediaViewV1release835\ff "ext@TrustMediaViewerV1alpha5759.net"=C:\Program Files\TrustMediaViewerV1\TrustMediaViewerV1alpha5759\ff [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 14.0.0.145 Plugin "Path"=C:\windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.65.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.65.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513] "Description"=WLPG Install MIME type "Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3] "Description"=SaveSenseLive Update "Path"=C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9] "Description"=SaveSenseLive Update "Path"=C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6350b6ab-3419-493e-a8d2-830304fe39ee}] Rich Media View - C:\Program Files\RichMediaViewV1\RichMediaViewV1release835\ie\RichMediaViewV1release835.dll [2014-05-13 87552] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71e129ff-6c2a-4984-818c-7e2c998b8d99}] SaveSense - C:\Users\Sandra\AppData\Local\SaveSense\SaveSenseIE.dll [2014-01-07 99336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-07-11 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-07-11 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F63AAEDC-3602-49EF-AA45-262380A98980}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {ae07101b-46d4-4a98-af68-0333ea26e113} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] ""= [] "RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [2011-10-20 1571432] "TSleepSrv"=C:\Program Files\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [2010-06-05 252792] "TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2011-09-23 542640] "TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-12 22840] "TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2011-06-10 612256] "TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2011-06-28 32168] "TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2011-06-28 469424] "ToshibaServiceStation"=C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2011-07-12 1298816] "Toshiba TEMPRO"=C:\Program Files\Toshiba TEMPRO\TemproTray.exe [2011-02-10 1546720] "Toshiba Registration"=C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [2012-01-29 150992] "Teco"=C:\Program Files\TOSHIBA\TECO\Teco.exe [2011-09-23 1370032] "TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2011-08-03 849280] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-01 2295080] "SVPWUTIL"=C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [2011-10-08 532480] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-11-02 11442792] "Persistence"=C:\windows\system32\igfxpers.exe [2011-12-14 161280] "KeNotify"=C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2010-08-16 34160] "IgfxTray"=C:\windows\system32\igfxtray.exe [2011-12-14 135168] "HWSetup"=C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2011-03-10 425984] "HotKeysCmds"=C:\windows\system32\hkcmd.exe [2011-12-14 168960] "GfxServiceInstall"=C:\windows\system32\GfxCUIServiceInstall.vbs [2011-12-14 131] "Updater"=C:\ProgramData\Updater\Updater.exe [2013-12-18 486264] "mobilegeni daemon"=C:\Program Files\Mobogenie\DaemonProcess.exe [] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 951576] "CrashMon"=C:\Program Files\Universal Updater\CrashMon.exe [2014-06-18 388096] "Isis"=C:\Program Files\Isis\isis.exe [2014-07-15 330544] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-11 256896] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Updater"=C:\ProgramData\Updater\updater.exe [2013-12-18 486264] "NextLive"=C:\Users\Sandra\AppData\Roaming\newnext.me\nengine.dll [2014-01-06 1283584] "LiveSupport"=C:\Program Files\LiveSupport\LiveSupport.exe /noshow /log [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2011-04-02 80840] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent] C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe /WinStart [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Toshiba Places Icon Utility.lnk - C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\windows\system32\igfxdev.dll [2011-12-14 224768] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "msacm.siren"=sirenacm.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-07-26 12:08:23 ----D---- C:\Program Files\trend micro 2014-07-26 12:08:21 ----D---- C:\rsit 2014-07-26 09:55:13 ----A---- C:\awh2210.tmp 2014-07-25 13:50:46 ----A---- C:\awh2635.tmp 2014-07-24 13:10:08 ----A---- C:\awh4E9C.tmp 2014-07-23 20:14:11 ----A---- C:\awh28B4.tmp 2014-07-22 19:39:11 ----A---- C:\awh7ABA.tmp 2014-07-20 09:41:48 ----A---- C:\awh903D.tmp 2014-07-19 14:39:26 ----D---- C:\Program Files\Common Files\Java 2014-07-19 14:39:15 ----A---- C:\windows\system32\javaws.exe 2014-07-19 14:38:43 ----A---- C:\windows\system32\WindowsAccessBridge.dll 2014-07-19 14:38:42 ----A---- C:\windows\system32\javaw.exe 2014-07-19 14:38:42 ----A---- C:\windows\system32\java.exe 2014-07-19 14:29:55 ----A---- C:\awh4365.tmp 2014-07-19 08:54:09 ----A---- C:\awh5CEE.tmp 2014-07-18 20:58:37 ----D---- C:\windows\system32\drivers\Etc 2014-07-18 14:03:45 ----A---- C:\awh914.tmp 2014-07-17 14:20:33 ----A---- C:\awh63F0.tmp 2014-07-16 16:20:06 ----A---- C:\awh3D7C.tmp 2014-07-16 09:18:54 ----A---- C:\awh1BAA.tmp 2014-07-15 21:22:10 ----A---- C:\awh1998.tmp 2014-07-15 21:19:35 ----D---- C:\Program Files\Isis 2014-07-13 10:38:11 ----A---- C:\awh3FCD.tmp 2014-07-12 09:35:45 ----A---- C:\awhA3CD.tmp 2014-07-11 09:21:57 ----A---- C:\awh142B.tmp 2014-07-10 09:41:45 ----A---- C:\awh6D04.tmp 2014-07-09 09:51:28 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll 2014-07-09 09:51:27 ----A---- C:\windows\system32\ieetwproxystub.dll 2014-07-09 09:51:27 ----A---- C:\windows\system32\ieetwcollector.exe 2014-07-09 09:51:24 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe 2014-07-09 09:51:23 ----A---- C:\windows\system32\iernonce.dll 2014-07-09 09:51:22 ----A---- C:\windows\system32\urlmon.dll 2014-07-09 09:51:20 ----A---- C:\windows\system32\iedkcs32.dll 2014-07-09 09:51:19 ----A---- C:\windows\system32\jsproxy.dll 2014-07-09 09:51:18 ----A---- C:\windows\system32\ieUnatt.exe 2014-07-09 09:51:18 ----A---- C:\windows\system32\dxtmsft.dll 2014-07-09 09:51:17 ----A---- C:\windows\system32\ieapfltr.dll 2014-07-09 09:51:16 ----A---- C:\windows\system32\msfeeds.dll 2014-07-09 09:51:11 ----A---- C:\windows\system32\msrating.dll 2014-07-09 09:51:10 ----A---- C:\windows\system32\ie4uinit.exe 2014-07-09 09:51:09 ----A---- C:\windows\system32\iesetup.dll 2014-07-09 09:51:06 ----A---- C:\windows\system32\ieetwcollectorres.dll 2014-07-09 09:51:05 ----A---- C:\windows\system32\wininet.dll 2014-07-09 09:51:01 ----A---- C:\windows\system32\dxtrans.dll 2014-07-09 09:51:00 ----A---- C:\windows\system32\ieui.dll 2014-07-09 09:50:55 ----A---- C:\windows\system32\ieframe.dll 2014-07-09 09:50:51 ----A---- C:\windows\system32\mshtmled.dll 2014-07-09 09:50:50 ----A---- C:\windows\system32\mshtmlmedia.dll 2014-07-09 09:50:49 ----A---- C:\windows\system32\MshtmlDac.dll 2014-07-09 09:50:48 ----A---- C:\windows\system32\iertutil.dll 2014-07-09 09:50:44 ----A---- C:\windows\system32\jscript9diag.dll 2014-07-09 09:50:43 ----A---- C:\windows\system32\mshtml.dll 2014-07-09 09:50:40 ----A---- C:\windows\system32\vbscript.dll 2014-07-09 09:50:38 ----A---- C:\windows\system32\jscript9.dll 2014-07-09 09:49:02 ----A---- C:\windows\system32\win32k.sys 2014-07-09 09:49:01 ----A---- C:\windows\system32\osk.exe 2014-07-09 09:48:28 ----A---- C:\windows\system32\qedit.dll 2014-07-09 09:48:26 ----A---- C:\windows\system32\drivers\afd.sys 2014-07-09 09:48:20 ----A---- C:\windows\system32\kerberos.dll 2014-07-09 09:48:19 ----A---- C:\windows\system32\schannel.dll 2014-07-09 09:48:18 ----A---- C:\windows\system32\wdigest.dll 2014-07-09 09:48:18 ----A---- C:\windows\system32\ncrypt.dll 2014-07-09 09:48:18 ----A---- C:\windows\system32\msv1_0.dll 2014-07-09 09:48:17 ----A---- C:\windows\system32\TSpkg.dll 2014-07-09 09:48:16 ----A---- C:\windows\system32\credssp.dll 2014-07-09 09:47:51 ----A---- C:\windows\system32\aepdu.dll 2014-07-09 09:47:48 ----A---- C:\windows\system32\aeinv.dll 2014-07-09 09:47:39 ----A---- C:\windows\system32\lsasrv.dll 2014-07-09 09:28:56 ----A---- C:\windows\system32\drivers\nethfdrv.sys 2014-07-09 09:28:38 ----A---- C:\windows\system32\netupdsrv.exe 2014-07-09 09:28:30 ----A---- C:\windows\system32\installd.exe 2014-07-09 09:28:24 ----A---- C:\awh626A.tmp 2014-07-09 09:28:18 ----A---- C:\windows\system32\nethtsrv.exe 2014-07-09 09:28:08 ----A---- C:\windows\system32\hfnapi.dll 2014-07-09 09:28:00 ----A---- C:\windows\system32\hfpapi.dll 2014-07-08 09:25:47 ----A---- C:\awh67B7.tmp 2014-07-07 10:32:32 ----A---- C:\awh5E26.tmp 2014-07-06 10:03:04 ----A---- C:\awh4356.tmp 2014-07-05 10:31:04 ----A---- C:\awh622B.tmp 2014-07-04 17:17:44 ----D---- C:\Users\Sandra\AppData\Roaming\PhotoScape 2014-07-04 17:12:25 ----D---- C:\Program Files\PhotoScape 2014-07-04 09:50:32 ----A---- C:\awh6048.tmp 2014-07-03 10:03:25 ----A---- C:\awh5003.tmp 2014-07-02 08:58:41 ----A---- C:\awh401B.tmp 2014-07-01 11:07:32 ----A---- C:\awh2C7C.tmp 2014-06-30 10:41:18 ----A---- C:\awh278C.tmp 2014-06-27 09:28:15 ----A---- C:\awh49EB.tmp ======List of files/folders modified in the last 1 month====== 2014-07-26 12:08:23 ----D---- C:\Program Files 2014-07-26 10:15:44 ----D---- C:\windows\system32\config 2014-07-26 10:05:52 ----D---- C:\windows\Temp 2014-07-26 09:50:48 ----D---- C:\Users\Sandra\AppData\Roaming\newnext.me 2014-07-24 13:04:42 ----D---- C:\Program Files\Microsoft Silverlight 2014-07-23 21:56:56 ----SHD---- C:\windows\Installer 2014-07-23 21:54:45 ----SHD---- C:\System Volume Information 2014-07-20 17:00:25 ----D---- C:\windows\system32\NDF 2014-07-19 15:08:18 ----D---- C:\ProgramData\Oracle 2014-07-19 14:39:26 ----D---- C:\Program Files\Common Files 2014-07-19 14:39:15 ----AD---- C:\windows\System32 2014-07-19 14:38:41 ----D---- C:\Program Files\Java 2014-07-18 20:58:44 ----D---- C:\windows\system32\drivers 2014-07-16 23:26:49 ----D---- C:\windows\system32\catroot2 2014-07-16 10:39:35 ----A---- C:\windows\system32\PerfStringBackup.INI 2014-07-16 10:39:34 ----D---- C:\windows\inf 2014-07-15 21:17:47 ----D---- C:\Program Files\Addon Enabler 2014-07-10 09:37:02 ----D---- C:\windows\winsxs 2014-07-10 09:34:11 ----D---- C:\windows\system32\en-US 2014-07-10 09:34:09 ----D---- C:\Program Files\Internet Explorer 2014-07-10 09:34:05 ----D---- C:\windows\system32\Dism 2014-07-10 09:34:03 ----SD---- C:\windows\system32\CompatTel 2014-07-10 09:34:03 ----D---- C:\windows\system32\nl-NL 2014-07-10 09:34:03 ----D---- C:\windows\system32\it-IT 2014-07-10 09:34:03 ----D---- C:\windows\system32\fr-FR 2014-07-10 09:34:03 ----D---- C:\windows\system32\de-DE 2014-07-09 23:48:08 ----D---- C:\windows\system32\MRT 2014-07-09 23:43:26 ----A---- C:\windows\system32\MRT.exe 2014-07-09 11:57:48 ----A---- C:\windows\system32\FlashPlayerApp.exe 2014-07-09 09:46:50 ----D---- C:\windows\system32\catroot 2014-07-06 13:42:44 ----D---- C:\Users\Sandra\AppData\Roaming\AbiSuite 2014-06-29 22:33:50 ----HD---- C:\ProgramData ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-11-06 354840] R0 LPCFilter;LPC Lower Filter Driver; C:\windows\system32\DRIVERS\LPCFilter.sys [2009-07-31 36208] R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2014-01-25 231960] R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440] R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-15 23512] R1 isis;isis; C:\windows\system32\drivers\isis.sys [2014-05-27 35328] R1 nethfdrv;nethfdrv; \??\C:\windows\system32\drivers\nethfdrv.sys [2014-07-09 40528] R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128] R1 wStLibG;wStLibG; C:\windows\system32\drivers\wStLibG.sys [2014-03-25 52928] R2 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264] R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2010-12-18 2129408] R3 CeKbFilter;CeKbFilter; C:\windows\system32\DRIVERS\CeKbFilter.sys [2012-03-10 17520] R3 igddim32;igddim32; C:\windows\system32\DRIVERS\igddim32.sys [2011-12-14 1336320] R3 igdkmd32;igdkmd32; C:\windows\system32\DRIVERS\igdkmd32.sys [2011-12-14 417280] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2011-11-02 3527720] R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-10 278528] R3 PGEffect;Pangu effect driver; C:\windows\system32\DRIVERS\pgeffect.sys [2011-02-09 33616] R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-07-15 402536] R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-10-01 296112] R3 tosrfec;Bluetooth ACPI; C:\windows\system32\DRIVERS\tosrfec.sys [2011-07-13 16064] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336] S1 MpKslfe4dc10d;MpKslfe4dc10d; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EF851410-34F2-4FC2-AAAD-175A2D871288}\MpKslfe4dc10d.sys [] S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704] S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720] S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888] S3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\windows\system32\DRIVERS\btfilter.sys [2011-08-09 38248] S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-07-21 194664] S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304] S3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\windows\system32\DRIVERS\tdcmdpst.sys [2009-07-31 22912] S3 Tosrfcom;Tosrfcom; C:\windows\system32\drivers\Tosrfcom.sys [] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\drivers\viac7.sys [2009-07-14 52736] S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 cfWiMAXService;ConfigFree WiMAX Service; C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe [2011-06-07 186296] R2 ConfigFree Service;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2011-06-07 47032] R2 IconMan_R;IconMan_R; C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2010-08-05 1809920] R2 InternetUpdater;Internet Updater; C:\ProgramData\InternetUpdater\InternetUpdaterService.exe [2014-01-15 45568] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 22216] R2 NetHttpService;Network HTTP Support Service; C:\windows\system32\nethtsrv.exe [2014-07-09 179200] R2 ServiceUpdater;Network Support Service Updater; C:\windows\system32\netupdsrv.exe [2014-07-09 159744] R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\windows\system32\TODDSrv.exe [2010-10-21 128416] R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2011-11-09 530352] R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\TECO\TecoService.exe [2011-09-23 210880] R2 UniversalUpdater;Universal Updater Service; C:\Program Files\Universal Updater\UpdaterService.exe [2014-06-18 606136] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776] R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2011-07-12 57216] R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2011-06-10 112552] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 savesenselive;SaveSenseLive Service (savesenselive); C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe [2014-01-20 146920] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2014-06-19 108032] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-20 119408] S3 savesenselivem;SaveSenseLive Service (savesenselivem); C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe [2014-01-20 146920] S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files\Toshiba TEMPRO\TemproSvc.exe [2011-02-10 112080] S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2011-04-02 152496] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040] -----------------EOF-----------------