Logfile of random's system information tool 1.09 (written by random/random) Run by Luc at 2013-10-12 10:46:54 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 388 GB (87%) free of 446 GB Total RAM: 3831 MB (54% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:47:03, on 12/10/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16720) Boot mode: Normal Running processes: C:\Program Files (x86)\Garmin\Training Center\gStart.exe C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files\Norman\Npm\Bin\zlh.exe C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE C:\Program Files (x86)\BrowserCompanion\BCHelper.exe C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe C:\Program Files (x86)\Ask.com\Updater\Updater.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe C:\Users\Luc\AppData\Roaming\BrowserCompanion\tcbhn.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin C:\Program Files\Norman\Npm\Bin\zlhh.exe C:\Program Files\Norman\Nvc\Bin\cclaw.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\Luc.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: script helper for ie - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files (x86)\BrowserCompanion\jsloader.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Update Timer - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program Files (x86)\BrowserCompanion\updatebhoWin32.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: NCH - {c2db4fe6-8409-45ce-8010-189a7b5cce86} - C:\Program Files (x86)\NCH\prxtbNCH.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file) O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: NCH Toolbar - {c2db4fe6-8409-45ce-8010-189a7b5cce86} - C:\Program Files (x86)\NCH\prxtbNCH.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [Name of App] C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe r O4 - HKLM\..\Run: [Norman ZANDA] "C:\Program Files\Norman\Npm\Bin\ZLH.EXE" /LOAD /SPLASH O4 - HKLM\..\Run: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon O4 - HKLM\..\Run: [Browser companion helper] C:\Program Files (x86)\BrowserCompanion\BCHelper.exe /T=3 /CHI=clbfjfbnelcflpgpklppgplejolacbej O4 - HKLM\..\Run: [Garmin Lifetime Updater] C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [gStart] C:\Program Files (x86)\Garmin\Training Center\gStart.exe O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ANT Agent] C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: OpenOffice.org 3.2 .lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe O4 - Startup: tcbhn.lnk = C:\Users\Luc\AppData\Roaming\BrowserCompanion\tcbhn.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.3.0/GarminAxControl_32.CAB O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O20 - AppInit_DLLs: c:\progra~3\browse~1\23796~1.11\{16cdf~1\browse~1.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Browser Manager - Unknown owner - C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Norman eLogger Service (eLoggerSvc6) - Norman AS - C:\Program Files\Norman\Npm\Bin\elogsvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norman Hash Server (NHS) - Unknown owner - C:\Program Files\Norman\Nvc\bin\nhs.exe O23 - Service: Norman Network Filtering service (NNFSVC) - Norman Safeground AS - C:\Program Files\Norman\Ngs\Bin\Nnf.exe O23 - Service: Norman NJeeves - Unknown owner - C:\Program Files\Norman\Npm\Bin\Njeeves.exe O23 - Service: Norman ZANDA - Norman AS - C:\Program Files\Norman\Npm\Bin\Zanda.exe O23 - Service: Norman Personal Firewall Service (NPFSvc32) - Norman Safeground AS - C:\Program Files\Norman\npf\bin\npfsvc32.exe O23 - Service: Norman Security service (NPROSECSVC) - Norman Safeground AS - C:\Program Files\Norman\Ngs\Bin\Nprosec.exe O23 - Service: Norman Scanner Engine Service (nsesvc) - Norman ASA - C:\Program Files\Norman\Nse\Bin\NSESVC.EXE O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman AS - C:\Program Files\Norman\Nvc\Bin\nvcoas.exe O23 - Service: Norman Resource Provider (NICCA) (NVOY) - Norman AS - C:\Program Files\Norman\Npm\Bin\Nvoy.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norman Scheduler Service (Scheduler) - Norman AS - C:\Program Files\Norman\Npm\Bin\scheduler.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 13193 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Program Files\Norman\Npm\Bin\elogsvc.exe" "C:\Program Files\Norman\Npm\Bin\Nvoy.exe" "C:\Program Files\Norman\Ngs\Bin\Nnf.exe" "C:\Program Files\Norman\npf\bin\npfsvc32.exe" "C:\Program Files\Norman\Ngs\Bin\Nprosec.exe" C:\Windows\system32\svchost.exe -k RPCSS "C:\Program Files\Microsoft Security Client\MsMpEng.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup "C:\Program Files\Norman\Npm\Bin\Zanda.exe" C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork taskeng.exe {08DB3C25-A850-456B-918C-4BBAECD1CF8A} "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "taskhost.exe" "C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE" "C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE C:\ProgramData\GinyasBrowserCompanion\tbhcn.exe /task=4 /closebr=1 /InstallOn=7 /active=24 /update=24 /interval=2880 /pubId=ginyas_276 /affId=g276_c25 /uId={3551175F-2EEC-42F0-AA5C-023D402628B6} /version=1.0.0.5 /Override=true /IEhome=0 /IEsearch=0 /FFhome=0 /FFsearch=0 /CHhome=0 /CHsearch=0 /FFaddon=1 /CHaddon=1 /AutoSP=0 /regAppName=GinyasBrowserCompanion "C:\Program Files\Microsoft Security Client\NisSrv.exe" C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-65a9ead6-4aa0-492b-b619-42e162fae7c3 -SystemEventPortName:HostProcess-f9bb58a7-f8ae-452e-9354-c2a8ba8d5221 -IoCancelEventPortName:HostProcess-396b9c11-9323-4a6a-9c70-14cc3e41b642 -NonStateChangingEventPortName:HostProcess-d39707cb-d26e-4d53-ae00-d86f8a228ab4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3f5e5b71-6ac0-4236-a3bf-7dd39af28c16 -DeviceGroupId:WpdFsGroup "C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming "C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon "C:\Windows\System32\igfxtray.exe" "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey "C:\Program Files (x86)\Garmin\Training Center\gStart.exe" "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun "C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe" "C:\Program Files\Norman\Npm\Bin\scheduler.exe" "C:\Program Files\Norman\Npm\Bin\Njeeves.exe" KHALMNPR.EXE /API "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" "C:\Program Files\Norman\Npm\Bin\zlh.exe" /LOAD /SPLASH "C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe" "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon "C:\Program Files (x86)\BrowserCompanion\BCHelper.exe" /T=3 /CHI=clbfjfbnelcflpgpklppgplejolacbej "C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe" /StartMinimized "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart "C:\Users\Luc\AppData\Roaming\BrowserCompanion\tcbhn.exe" -interval=10 -IEhome=0 -IEsearch=0 -FFhome=0 -FFsearch=0 -CHhome=0 -CHsearch=0 -pubId= -affId= "C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program" "C:\Program Files\Norman\Npm\Bin\zlhh.exe" /LOAD /SPLASH C:\Windows\system32\SearchIndexer.exe /Embedding C:\Windows\splwow64.exe 8192 {DDC802C7-6D17-4CCE-A000-817D5BBF8C52} {933F9692-93B5-489B-8CE6-3AFDC44CCCD4} C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\sppsvc.exe "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe" C:\Windows\system32\svchost.exe -k SDRSVC taskeng.exe {F2DF5064-2B6D-41F5-B3BD-2D022121090F} "C:\Program Files\Norman\Nse\Bin\NSESVC.EXE" -daemon "C:\Program Files\Norman\Nvc\bin\nhs.exe" "C:\Program Files\Norman\Nvc\Bin\nvcoas.exe" "C:\Program Files\Norman\Nvc\Bin\cclaw.exe" /load "C:\Program Files\Internet Explorer\iexplore.exe" https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1286204466&rver=6.0.5285.0&wp=MBI&wreply=http:%2F%2Fmail.live.com%2Fdefault.aspx&lc=2067&id=64855&mkt=nl-be "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4340 CREDAT:267521 /prefetch:2 C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe -Embedding "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4340 CREDAT:2823597 /prefetch:2 "C:\Users\Luc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W1PGUETD\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GinyasBrowserCompanion Chrome Watcher.job C:\Windows\tasks\GinyasBrowserCompanion FireFox Watcher.job C:\Windows\tasks\GinyasBrowserCompanion Runner.job C:\Windows\tasks\GinyasBrowserCompanion Stats Report.job C:\Windows\tasks\GinyasBrowserCompanion Update Checker.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}] Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2010-04-28 132456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-10-07 256080] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00cbb66b-1d3b-46d3-9577-323a336acb50}] Browser Companion Helper - C:\Program Files (x86)\BrowserCompanion\jsloader.dll [2012-06-28 225584] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-27 463272] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Aanmelden - Help - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}] Ginyas Browser Companion Verifier - C:\Program Files (x86)\BrowserCompanion\updatebhoWin32.dll [2013-02-18 129088] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-07 194640] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2db4fe6-8409-45ce-8010-189a7b5cce86}] NCH Toolbar - C:\Program Files (x86)\NCH\prxtbNCH.dll [2011-05-09 176936] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-05-04 1519272] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-27 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-10-07 256080] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352] {98889811-442D-49dd-99D7-DC866BE87DBC} {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] {c2db4fe6-8409-45ce-8010-189a7b5cce86} - NCH Toolbar - C:\Program Files (x86)\NCH\prxtbNCH.dll [2011-05-09 176936] {D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-05-04 1519272] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-07 194640] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-03-26 10135584] "EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2010-06-26 1609296] "CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2726728] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-01-10 167704] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-01-10 392984] "Persistence"=C:\Windows\system32\igfxpers.exe [2012-01-10 417560] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-07-18 1356240] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "gStart"=C:\Program Files (x86)\Garmin\Training Center\gStart.exe [2008-08-13 1891416] "swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-10-07 39408] "OM2_Monitor"=C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2008-10-31 95536] "PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-06-16 1500160] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584] "ANT Agent"=C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe [2013-02-15 14731776] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-10-02 284696] "Name of App"=C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe [2010-08-04 692317] "Norman ZANDA"=C:\Program Files\Norman\Npm\Bin\ZLH.EXE [2013-03-08 66888] "OM2_Monitor"=C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\FirstStart.exe [2008-10-31 54576] "CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112] "Browser companion helper"=C:\Program Files (x86)\BrowserCompanion\BCHelper.exe [2011-12-16 187696] "Garmin Lifetime Updater"=C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe [2012-06-04 1466760] ""= [] "ApnUpdater"=C:\Program Files (x86)\Ask.com\Updater\Updater.exe [2012-05-04 1561768] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816] C:\Users\Luc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup OpenOffice.org 3.2 .lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe tcbhn.lnk - C:\Users\Luc\AppData\Roaming\BrowserCompanion\tcbhn.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2012-01-10 390656] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2010-05-06 66640] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-10-12 10:46:55 ----D---- C:\Program Files\trend micro 2013-10-12 10:46:54 ----D---- C:\rsit 2013-10-09 15:57:30 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-10-09 15:57:30 ----A---- C:\Windows\system32\ieui.dll 2013-10-09 15:57:29 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-10-09 15:57:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-10-09 15:57:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-10-09 15:57:29 ----A---- C:\Windows\system32\iesetup.dll 2013-10-09 15:57:29 ----A---- C:\Windows\system32\iernonce.dll 2013-10-09 15:57:28 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-10-09 15:57:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-10-09 15:57:28 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-09 15:57:28 ----A---- C:\Windows\system32\iesysprep.dll 2013-10-09 15:57:28 ----A---- C:\Windows\system32\iertutil.dll 2013-10-09 15:57:28 ----A---- C:\Windows\system32\ie4uinit.exe 2013-10-09 15:57:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-10-09 15:57:27 ----A---- C:\Windows\system32\msfeeds.dll 2013-10-09 15:57:26 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-10-09 15:57:26 ----A---- C:\Windows\system32\jscript9.dll 2013-10-09 15:57:26 ----A---- C:\Windows\system32\jscript.dll 2013-10-09 15:57:25 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-10-09 15:57:25 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-10-09 15:57:24 ----A---- C:\Windows\system32\urlmon.dll 2013-10-09 15:57:23 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-10-09 15:57:23 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-10-09 15:57:23 ----A---- C:\Windows\system32\jsproxy.dll 2013-10-09 15:57:22 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-10-09 15:57:22 ----A---- C:\Windows\system32\wininet.dll 2013-10-09 15:57:20 ----A---- C:\Windows\system32\ieframe.dll 2013-10-09 15:57:18 ----A---- C:\Windows\system32\mshtml.dll 2013-10-09 15:57:15 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-10-09 14:43:10 ----A---- C:\Windows\system32\comctl32.dll 2013-10-09 14:43:09 ----A---- C:\Windows\SYSWOW64\comctl32.dll 2013-10-09 14:43:09 ----A---- C:\Windows\system32\drivers\usbser.sys 2013-10-09 14:43:09 ----A---- C:\Windows\system32\atmfd.dll 2013-10-09 14:43:08 ----A---- C:\Windows\SYSWOW64\lpk.dll 2013-10-09 14:43:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll 2013-10-09 14:43:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll 2013-10-09 14:43:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll 2013-10-09 14:43:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll 2013-10-09 14:43:08 ----A---- C:\Windows\system32\lpk.dll 2013-10-09 14:43:08 ----A---- C:\Windows\system32\fontsub.dll 2013-10-09 14:43:08 ----A---- C:\Windows\system32\drivers\Wdf01000.sys 2013-10-09 14:43:08 ----A---- C:\Windows\system32\dciman32.dll 2013-10-09 14:43:08 ----A---- C:\Windows\system32\atmlib.dll 2013-10-09 14:43:07 ----A---- C:\Windows\system32\drivers\usbcir.sys 2013-10-09 14:43:07 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys 2013-10-09 14:43:07 ----A---- C:\Windows\system32\drivers\hidparse.sys 2013-10-09 14:43:07 ----A---- C:\Windows\system32\drivers\hidclass.sys 2013-10-09 14:43:06 ----A---- C:\Windows\SYSWOW64\WebClnt.dll 2013-10-09 14:43:06 ----A---- C:\Windows\SYSWOW64\davclnt.dll 2013-10-09 14:43:06 ----A---- C:\Windows\system32\WebClnt.dll 2013-10-09 14:43:06 ----A---- C:\Windows\system32\drivers\mrxdav.sys 2013-10-09 14:43:06 ----A---- C:\Windows\system32\davclnt.dll 2013-10-09 14:43:04 ----A---- C:\Windows\SYSWOW64\mswsock.dll 2013-10-09 14:43:04 ----A---- C:\Windows\system32\mswsock.dll 2013-10-09 14:43:04 ----A---- C:\Windows\system32\drivers\tcpip.sys 2013-10-09 14:43:04 ----A---- C:\Windows\system32\drivers\afd.sys 2013-10-09 14:43:02 ----A---- C:\Windows\system32\win32k.sys 2013-10-09 14:43:01 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2013-10-09 14:43:01 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-10-09 14:43:00 ----A---- C:\Windows\SYSWOW64\tdh.dll 2013-10-09 14:43:00 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2013-10-09 14:43:00 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2013-10-09 14:43:00 ----A---- C:\Windows\system32\wow64.dll 2013-10-09 14:43:00 ----A---- C:\Windows\system32\tdh.dll 2013-10-09 14:43:00 ----A---- C:\Windows\system32\ntdll.dll 2013-10-09 14:43:00 ----A---- C:\Windows\system32\advapi32.dll 2013-10-09 14:42:59 ----A---- C:\Windows\SYSWOW64\wow32.dll 2013-10-09 14:42:59 ----A---- C:\Windows\SYSWOW64\user.exe 2013-10-09 14:42:59 ----A---- C:\Windows\SYSWOW64\setup16.exe 2013-10-09 14:42:59 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2013-10-09 14:42:59 ----A---- C:\Windows\SYSWOW64\instnm.exe 2013-10-09 14:42:59 ----A---- C:\Windows\SYSWOW64\advapi32.dll 2013-10-09 14:42:49 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll 2013-10-09 14:42:49 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-10-09 14:42:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys 2013-10-09 14:42:47 ----A---- C:\Windows\system32\scavengeui.dll 2013-10-09 14:42:42 ----A---- C:\Windows\system32\drivers\usbuhci.sys 2013-10-09 14:42:42 ----A---- C:\Windows\system32\drivers\usbport.sys 2013-10-09 14:42:42 ----A---- C:\Windows\system32\drivers\usbohci.sys 2013-10-09 14:42:42 ----A---- C:\Windows\system32\drivers\usbhub.sys 2013-10-09 14:42:42 ----A---- C:\Windows\system32\drivers\usbehci.sys 2013-10-09 14:42:42 ----A---- C:\Windows\system32\drivers\usbd.sys 2013-10-09 14:42:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys 2013-10-07 18:27:57 ----D---- C:\Program Files (x86)\Microsoft Security Client 2013-10-07 18:27:55 ----D---- C:\Program Files\Microsoft Security Client 2013-10-07 17:24:31 ----D---- C:\Users\Luc\AppData\Roaming\Nico Mak Computing 2013-10-05 18:07:42 ----A---- C:\autoexec.bat 2013-10-05 18:07:22 ----D---- C:\Program Files\Enigma Software Group 2013-10-05 18:06:45 ----D---- C:\Windows\86CA3695A4124BAE92B649A60C2AC663.TMP ======List of files/folders modified in the last 1 month====== 2013-10-12 10:47:03 ----D---- C:\Windows\Prefetch 2013-10-12 10:46:55 ----RD---- C:\Program Files 2013-10-12 10:46:48 ----D---- C:\Windows\Temp 2013-10-12 10:45:22 ----D---- C:\Users\Luc\AppData\Roaming\BrowserCompanion 2013-10-12 10:45:12 ----D---- C:\Windows\system32\config 2013-10-12 10:35:18 ----A---- C:\Users\Luc\AppData\Roaming\SamsungLiveUpdateConfig.ini 2013-10-12 10:34:53 ----A---- C:\Windows\SYSWOW64\log.txt 2013-10-10 17:55:01 ----D---- C:\Program Files (x86)\DealPly 2013-10-10 16:53:05 ----D---- C:\Windows\rescache 2013-10-10 15:54:01 ----SHD---- C:\Windows\Installer 2013-10-10 15:49:38 ----RD---- C:\Program Files (x86) 2013-10-10 15:48:19 ----D---- C:\Windows\SysWOW64 2013-10-10 15:48:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-10-09 16:26:01 ----RSD---- C:\Windows\assembly 2013-10-09 16:26:01 ----D---- C:\Windows\Microsoft.NET 2013-10-09 16:12:13 ----D---- C:\Windows\System32 2013-10-09 16:12:13 ----D---- C:\Windows\inf 2013-10-09 16:12:13 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-10-09 16:07:27 ----D---- C:\Windows\winsxs 2013-10-09 16:04:06 ----D---- C:\Program Files (x86)\Internet Explorer 2013-10-09 16:04:05 ----D---- C:\Program Files\Internet Explorer 2013-10-09 16:04:04 ----D---- C:\Windows\system32\drivers 2013-10-09 16:04:03 ----D---- C:\Windows\AppPatch 2013-10-09 16:04:01 ----D---- C:\Windows\system32\nl-NL 2013-10-09 16:03:59 ----D---- C:\Windows\system32\DriverStore 2013-10-09 15:57:48 ----D---- C:\Windows\system32\catroot 2013-10-09 15:57:46 ----D---- C:\Windows\system32\catroot2 2013-10-09 15:56:13 ----D---- C:\Program Files\Microsoft Silverlight 2013-10-09 15:56:13 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2013-10-09 15:52:50 ----D---- C:\Windows\system32\MRT 2013-10-09 15:51:20 ----A---- C:\Windows\system32\MRT.exe 2013-10-09 15:48:32 ----SHD---- C:\System Volume Information 2013-10-07 18:39:29 ----D---- C:\Windows 2013-10-07 18:27:57 ----SD---- C:\ProgramData\Microsoft 2013-10-07 18:19:03 ----D---- C:\Windows\debug 2013-10-07 18:05:49 ----D---- C:\Windows\system32\Tasks 2013-10-07 18:05:48 ----HD---- C:\ProgramData 2013-10-05 18:06:44 ----D---- C:\Program Files (x86)\Common Files 2013-10-03 18:55:57 ----D---- C:\Windows\system32\NDF 2013-09-13 13:14:06 ----D---- C:\Windows\SYSWOW64\nl-NL ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-10-02 537112] R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 247216] R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R1 ALE_NF;Norman Network Filter ALE driver; \??\C:\Windows\system32\drivers\ale7_nf64.sys [2013-08-16 123376] R1 NGS;Norman General Security Driver; \??\c:\program files\norman\ngs\bin\ngs64.sys [2012-06-25 22400] R1 NPROSEC;Norman Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nprosec64.sys [2013-08-16 41536] R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-06-18 139616] R2 nregsec;Norman Registry Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nregsec64.sys [2013-08-13 68792] R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-03-26 2307616] R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-01-07 271872] R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2010-03-18 63568] R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2010-03-18 57936] R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2010-03-18 41040] R3 NvcMFlt;NvcMFlt; C:\Windows\system32\DRIVERS\nvcv64mf.sys [2013-01-23 59104] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-04-28 61288] S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [] S3 grmnusb;Garmin USB Driver; C:\Windows\system32\drivers\grmnusb.sys [2009-05-08 20520] S3 libusb0;libusb-win32 - Kernel Driver 04/08/2011 1.2.4.0; C:\Windows\system32\DRIVERS\libusb0.sys [2011-05-17 44480] S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968] S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856] S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216] S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280] S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640] R2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176] R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648] R2 eLoggerSvc6;Norman eLogger Service; C:\Program Files\Norman\Npm\Bin\elogsvc.exe [2013-03-04 104920] R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-10-02 13336] R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 268824] R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-07-18 23816] R2 NHS;Norman Hash Server; C:\Program Files\Norman\Nvc\bin\nhs.exe [2012-10-17 793520] R2 NNFSVC;Norman Network Filtering service; C:\Program Files\Norman\Ngs\Bin\Nnf.exe [2013-08-13 279592] R2 Norman ZANDA;Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe [2013-03-20 433504] R2 NPFSvc32;Norman Personal Firewall Service; C:\Program Files\Norman\npf\bin\npfsvc32.exe [2013-08-13 408856] R2 NPROSECSVC;Norman Security service; C:\Program Files\Norman\Ngs\Bin\Nprosec.exe [2013-08-16 120456] R2 NVOY;Norman Resource Provider (NICCA); C:\Program Files\Norman\Npm\Bin\Nvoy.exe [2013-06-27 246560] R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2320920] R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-07-18 366600] R3 Norman NJeeves;Norman NJeeves; C:\Program Files\Norman\Npm\Bin\Njeeves.exe [2013-02-13 150120] R3 nsesvc;Norman Scanner Engine Service; C:\Program Files\Norman\Nse\Bin\NSESVC.EXE [2013-02-27 427288] R3 nvcoas;Norman Virus Control on-access component; C:\Program Files\Norman\Nvc\Bin\nvcoas.exe [2013-01-21 320696] R3 Scheduler;Norman Scheduler Service; C:\Program Files\Norman\Npm\Bin\scheduler.exe [2013-03-13 402072] R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856] S2 Browser Manager;Browser Manager; C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-07 135664] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10 257416] S3 fsssvc;De service Windows Live Family Safety; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-07 135664] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-31 194032] S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2010-05-06 357456] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-09-25 1255736] -----------------EOF-----------------