
Zoek.exe v5.0.0.0 Updated 09-August-2014
Tool run by Zoe on Sat 08/09/2014 at 16:52:40.89.
Microsoft Windows 8 6.2.9200  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Zoe\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

8/9/2014 4:54:21 PM Zoek.exe System Restore Point Created Succesfully.

==== Installed Programs ======================

Adobe Reader X (10.1.3)  
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver  
Auslogics DiskDefrag  
Bejeweled 3  
D3DX10  
FATE  
Gardenscapes: Mansion Makeover  
Intel(R) Management Engine Components  
Intel(R) Processor Graphics  
Intel(R) Rapid Storage Technology  
Intel(R) SDK for OpenCL - CPU Only Runtime Package  
Intelr Trusted Connect Service Client  
Malwarebytes Anti-Malware version 2.0.2.1012  
Microsoft Application Error Reporting  
Microsoft Office  
Microsoft SQL Server 2005 Compact Edition [ENU]  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
More Games - WildTangent  
Movie Maker  
MSVCRT  
MSVCRT110  
MSVCRT110_amd64  
Norton Anti-Theft  
Norton Internet Security  
Norton Online Backup  
Norton Online Backup ARA  
Norton PC Checkup  
Norton Security Dashboard  
Origin  
Penguins  
Photo Common  
Photo Gallery  
Plants vs. Zombies - Game of the Year  
PlayReady PC Runtime amd64  
Polar Bowler  
Premium Sound HD  
Realtek Bluetooth Filter Driver Package  
Realtek High Definition Audio Driver  
Realtek USB 2.0 Card Reader  
Realtek WLAN Driver  
Synaptics Pointing Device Driver  
Toshiba App Place  
TOSHIBA Application Installer  
Toshiba Book Place  
TOSHIBA Desktop Assist  
TOSHIBA eco Utility  
TOSHIBA Function Key  
TOSHIBA HDD Accelerator  
TOSHIBA Password Utility  
TOSHIBA PC Health Monitor  
TOSHIBA Quality Application  
TOSHIBA Recovery Media Creator  
TOSHIBA Resolution+ Plug-in for Windows Media Player  
TOSHIBA Service Station  
TOSHIBA System Driver  
TOSHIBA System Settings  
TOSHIBA User's Guide  
TOSHIBA VIDEO PLAYER  
TOSHIBARegistration  
Update Installer for WildTangent Games App  
Vacation QuestT - Australia  
Virtual Villagers 5 - New Believers  
WildTangent Games  
WildTangent Games App (Toshiba Games)  
Windows Driver Package - Realtek Semiconductor Corp. RtkBtFilter Bluetooth  (07/11/2012 2.3.13.3)  
Windows Live Communications Platform  
Windows Live Essentials  
Windows Live Installer  
Windows Live Photo Common  
Windows Live PIMT Platform  
Windows Live SOXE  
Windows Live SOXE Definitions  
Windows Live UX Platform  
Windows Live UX Platform Language Pack  
Youda Jewel Shop  

==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\ccSvcHst.exe
C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\ccSvcHst.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\SymcPCCULaunchSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\ccSvcHst.exe
C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\ccSvcHst.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe
C:\Program Files (x86)\Toshiba\System Setting\TSleepSrv.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Zoe\Desktop\zoek.exe
C:\windows\SysWOW64\cmd.exe
C:\windows\SysWOW64\cmd.exe
C:\windows\SysWOW64\cmd.exe

==== Services (whitelist) ======================
Powered by [url=http://www.antimalwarehelp.be/EDev/]E Dev[/url]

R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - [Intel(R) Capability Licensing Service Interface] - Intel(R) Capability Licensing Service Interface - "C:\Program Files\Intel\iCLS Client\HeciServer.exe"
R2 - [Intel(R) ME Service] - Intel(R) ME Service - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
R2 - [jhi_service] - Intel(R) Dynamic Application Loader Host Interface Service - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
R2 - [LMS] - Intel(R) Management and Security Application Local Management Service - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
R2 - [NAT] - Norton Anti-Theft - "C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\ccSvcHst.exe" /s "NAT" /m "C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\diMaster.dll" /prefetch:1
R2 - [NIS] - Norton Internet Security - "C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\diMaster.dll" /prefetch:1
R2 - [NOBU] - Norton Online Backup - "C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE
R2 - [Norton PC Checkup Application Launcher] - Norton PC Checkup Application Launcher - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\SymcPCCULaunchSvc.exe /s
R2 - [PCCUJobMgr] - Common Client Job Manager Service - "C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe" /s "PCCUJobMgr" /m "C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\diMaster.dll" /prefetch:1
R2 - [taisregispinger] - taisregispinger - C:\Program Files (x86)\Toshiba\ToshibaRegistration\TaisRegistPinger.exe
R2 - [THAccelSvc] - TOSHIBA HDD Accelerator Service - C:\Program Files\TOSHIBA\HDD Accelerator\THAccelSvc.exe
R2 - [TODDSrv] - TOSHIBA Optical Disc Drive Service - C:\Windows\system32\TODDSrv.exe
R2 - [TOSHIBA eco Utility Service] - TOSHIBA eco Utility Service - "C:\Program Files\Toshiba\Teco\TecoService.exe"
R2 - [UNS] - Intel(R) Management and Security Application User Notification Service - "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
R2 - [WSearch] - Windows Search - C:\windows\system32\SearchIndexer.exe /Embedding
R3 - [TMachInfo] - TMachInfo - "C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
R3 - [TPCHSrv] - TPCH Service - "C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
R3 - [TrustedInstaller] - Windows Modules Installer - C:\windows\servicing\TrustedInstaller.exe
R3 - [VSS] - Volume Shadow Copy - C:\windows\system32\vssvc.exe
S2 - [sppsvc] - Software Protection - C:\windows\system32\sppsvc.exe
S3 - [ALG] - Application Layer Gateway Service - C:\windows\System32\alg.exe
S3 - [COMSysApp] - COM+ System Application - C:\windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - [cphs] - Intel(R) Content Protection HECI Service - C:\windows\SysWow64\IntelCpHeciSvc.exe
S3 - [Fax] - Fax - C:\windows\system32\fxssvc.exe
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - [GamesAppService] - GamesAppService - "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe"
S3 - [MSDTC] - Distributed Transaction Coordinator - C:\windows\System32\msdtc.exe
S3 - [msiserver] - Windows Installer - C:\windows\system32\msiexec.exe /V
S3 - [PerfHost] - Performance Counter DLL Host - C:\windows\SysWow64\perfhost.exe
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\windows\system32\locator.exe
S3 - [SNMPTRAP] - SNMP Trap - C:\windows\System32\snmptrap.exe
S3 - [vds] - Virtual Disk - C:\windows\System32\vds.exe
S3 - [wbengine] - Block Level Backup Engine Service - "C:\windows\system32\wbengine.exe"
S3 - [WinDefend] - Windows Defender Service - C:\Program Files\Windows Defender\MsMpEng.exe
S3 - [wmiApSrv] - WMI Performance Adapter - C:\windows\system32\wbem\WmiApSrv.exe
S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
SUnknown - [rpcnetp] - rpcnetp - 

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 8077 MB
CPU Info: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz
CPU Speed: 2415.4 MHz
Sound Card: Speakers (Realtek High Definiti | 
Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Bluetooth Device (Personal Area Network) | Microsoft Wi-Fi Direct Virtual Adapter | Realtek RTL8723AE Wireless LAN 802.11n PCI-E NIC | Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW TS-L633C
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  687.3GB
Hard Disks - Free: C:  634.2GB
Manufacturer *: Insyde Corp.
BIOS Info: AT/AT COMPATIBLE |  | TOSINV - 1
Time Zone: Central Standard Time
Motherboard *: TOSHIBA Portable PC
Country: United States 
Language: ENU 

==== System Specs (Software) ======================

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Virus: Norton Internet Security On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: Norton Internet Security disabled (Outdated)
Firewall: Norton Internet Security disabled
Internet Explorer Version: 10.0.9200.16384 
Adobe Reader version: 10.1.3.23

==== Files Recently Created / Modified ======================

====== C:\windows ====
2014-08-09 19:24:41	165EB24F51291AA5D0EB1BA9D28648D2	17148	----a-w-	C:\windows\diagwrn.xml
2014-08-09 19:24:41	165EB24F51291AA5D0EB1BA9D28648D2	17148	----a-w-	C:\windows\diagerr.xml
====== C:\Users\Zoe\AppData\Local\Temp ====
2014-08-09 21:38:45	2E0323A94915FAAB10A25F3BABF82584	157696	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
====== Java Cache =====
====== C:\windows\SysWOW64 =====
====== C:\windows\SysWOW64\drivers =====
====== C:\windows\Sysnative =====
====== C:\windows\Sysnative\drivers =====
2014-08-09 20:20:38	9CEF6B9035974BB9CE3B6FB5CAAA2A62	13	--sh--r-	C:\windows\Sysnative\drivers\fbd.sys
2014-08-09 20:00:45	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-08-09 20:00:16	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\windows\Sysnative\drivers\mbam.sys
2014-08-09 20:00:16	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\windows\Sysnative\drivers\mbamchameleon.sys
2014-08-09 20:00:16	0664F6335F108F38FE08C3CA747311EE	64216	----a-w-	C:\windows\Sysnative\drivers\mwac.sys
====== C:\windows\Tasks ======
2014-08-09 19:37:02	E3ECB4AF1DA6DB2022CA7AAA9BEBA976	3594	----a-w-	C:\windows\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-486120364-2819949595-82885683-1001
2014-08-09 19:31:30	--------	d-----w-	C:\windows\Sysnative\Tasks\WPD
====== C:\windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
======= C: =====
2014-08-09 21:39:24	E893246F1276ED4727A8F3307B75CBA6	82432	----a-w-	C:\Utilman.exe
====== C:\Users\Zoe\AppData\Roaming ======
2014-08-09 20:02:48	--------	d-----w-	C:\Users\Zoe\AppData\Roaming\Browser Extensions
2014-08-09 19:59:58	--------	d-----w-	C:\Users\Zoe\AppData\Local\Programs
2014-08-09 19:51:03	--------	d-s---w-	C:\windows\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft
2014-08-09 19:41:47	--------	d-s---w-	C:\windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2014-08-09 19:31:46	--------	d-----w-	C:\Users\Zoe\AppData\Local\SRS Labs
2014-08-09 19:31:43	--------	d-----w-	C:\Users\Zoe\AppData\Local\TOSHIBA
2014-08-09 19:29:29	--------	d-----r-	C:\Users\Zoe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-08-09 19:29:29	--------	d-----r-	C:\Users\Zoe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-08-09 19:29:06	--------	d-----w-	C:\Users\Zoe\AppData\Roaming\Adobe
2014-08-09 19:28:27	--------	d-----w-	C:\Users\Zoe\AppData\Roaming\WinBatch
2014-08-09 19:26:54	--------	d-----w-	C:\Users\Zoe\AppData\Local\VirtualStore
2014-08-09 19:26:34	--------	d-----w-	C:\windows\SysNative\config\systemprofile\AppData\Local\Packages
2014-08-09 19:26:12	--------	d-s---w-	C:\Users\Zoe\AppData\Locallow\Microsoft
2014-08-09 19:25:19	9826F4027DB62718CE96FF353F1BB258	1698	----a-w-	C:\Users\Administrator\AppData\Local\Application.xml
2014-08-09 19:24:44	--------	d-s---w-	C:\Users\Zoe\AppData\Roaming\Microsoft
2014-08-09 19:24:44	--------	d-----w-	C:\Users\Zoe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-09 19:24:44	--------	d-----w-	C:\Users\Zoe\AppData\Local\Temp
2014-08-09 19:24:44	--------	d-----w-	C:\Users\Zoe\AppData\Local\Microsoft
2014-08-09 19:24:44	--------	d-----r-	C:\Users\Zoe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-09 19:24:44	--------	d-----r-	C:\Users\Zoe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-09 19:24:44	--------	d-----r-	C:\Users\Zoe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
====== C:\Users\Zoe ======
2014-08-09 21:36:27	CA630DBADEB5B6101531F986ADFE46C9	1016261	----a-w-	C:\Users\Zoe\Desktop\JRT.exe
2014-08-09 19:29:29	--------	d-----r-	C:\Users\Zoe\Searches
2014-08-09 19:26:06	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Zoe\ntuser.ini
2014-08-09 19:24:44	--------	d--h--w-	C:\Users\Zoe\AppData
2014-08-09 19:24:44	--------	d-----r-	C:\Users\Zoe\Favorites
2014-08-09 19:24:44	--------	d-----r-	C:\Users\Zoe\Desktop
2014-08-09 15:21:46	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Zoe\Desktop\OTL.exe
2014-07-16 03:32:14	--------	d-----r-	C:\Users\Zoe\SkyDrive

====== C: exe-files ==
2014-08-09 21:39:24	E893246F1276ED4727A8F3307B75CBA6	82432	----a-w-	C:\Utilman.exe
2014-08-09 21:38:45	2E0323A94915FAAB10A25F3BABF82584	157696	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
2014-08-09 21:36:27	CA630DBADEB5B6101531F986ADFE46C9	1016261	----a-w-	C:\Users\Zoe\Desktop\JRT.exe
2014-08-09 20:18:52	8624D93B2CD898328B92034466AFC6B0	337816	----a-w-	C:\Users\Zoe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62JWRCS5\OEMScanner[1].exe
2014-08-09 20:18:51	F993C523CAF433754BE99E96EB8ABD03	208720	----a-w-	C:\Users\Zoe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PZU7O4YN\NLRemovePCCU2[1].exe
2014-08-09 20:05:09	179C3C60DD7AFDC8F4AE8B6A6323DEA2	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-486120364-2819949595-82885683-1001\$IDA9VZ1.exe
2014-08-09 19:59:30	D9DE89F0FAF18019BC9595F0F47BCA61	50688	----a-w-	C:\Users\Zoe\Desktop\Greg's Tools\ATF-Cleaner.exe
2014-08-09 19:57:48	7137EFE5EC5240CF87A6DF44E73FCF69	6326216	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-486120364-2819949595-82885683-1001\$RDA9VZ1.exe
2014-08-09 15:21:46	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Zoe\Desktop\OTL.exe
=== C: other files ==
2014-08-09 21:38:45	DD1E4D974B1672ABD09EFFB225791C4A	1230	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\TDL4.bat
2014-08-09 21:38:45	AD2F52DC72B10AF331692E4A4DD80DFC	18670	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\medfos.bat
2014-08-09 21:38:45	A87CD1BAC46CAC0EEEDB571F07077032	8104	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\modules.bat
2014-08-09 21:38:45	8E6020C14F982CF11B3FE7DBB0CB8EDE	24738	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\searchlnk.bat
2014-08-09 21:38:45	86707BCE5CBB65D9B1C41E249B4423BA	152733	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\firefox.bat
2014-08-09 21:38:45	83F691D8398F0E37E71E9355BF730DB9	719	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\ev_clear.bat
2014-08-09 21:38:45	7D8282EB94B5D639B7378811C1924A8F	9516	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\runvalues.bat
2014-08-09 21:38:45	654E9FE74B930A454EE5BDE165794B65	85	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\delorphans.bat
2014-08-09 21:38:45	5B92615B0CEA08D6BA1217C08CBB1443	15919	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\get.bat
2014-08-09 21:38:45	5B71358F97544D9DE58A9A0893079506	39458	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\prelim.bat
2014-08-09 21:38:45	53B191266B30D57F2F835ABBF54C68C5	13963	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\chrome.bat
2014-08-09 21:38:45	3BC04DEBBE9027060D51901133F60101	154678	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\misc.bat
2014-08-09 21:38:45	38A0BDF322ACCC968B0A824C38D50157	29635	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\ask.bat
2014-08-09 21:38:45	335DFF8F23E5EC02B5426362F0F8509B	31401	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\iexplore.bat
2014-08-09 21:38:45	2F80D807DB405C8F6E0F3706B9FED710	10161	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\JRT.bat
2014-08-09 21:38:45	0D08FBD2E6F6C6AC6A504712C4CE6CE3	1226	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\FWPolicy.bat
2014-08-09 21:38:45	0C4649A62845AB5D5DBCC4998477FF6D	1813	----a-w-	C:\Users\Zoe\AppData\Local\Temp\jrt\delfolders.bat
2014-08-09 20:20:38	9CEF6B9035974BB9CE3B6FB5CAAA2A62	13	--sh--r-	C:\Windows\System32\Drivers\fbd.sys
2014-08-09 20:00:45	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2014-08-09 20:00:16	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\Windows\System32\Drivers\mbam.sys
2014-08-09 20:00:16	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\Windows\System32\Drivers\mbamchameleon.sys
2014-08-09 20:00:16	0664F6335F108F38FE08C3CA747311EE	64216	----a-w-	C:\Windows\System32\Drivers\mwac.sys

==== Startup Registry Enabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"
"ToshibaAppPlace"="C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\windows\system32\hkcmd.exe"
"Persistence"="C:\windows\system32\igfxpers.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"SRS Premium Sound HD"="C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe  /f=C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip /h"
"TecoResident"="C:\Program Files\TOSHIBA\Teco\TecoResident.exe"
"TSleepSrv"="C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe"
"TODDMain"="C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe"
"TCrdMain"="%ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe "
"TosWaitSrv"="%ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe "

==== Other Scheduled Tasks ======================

"C:\windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\WSCStub.exe"]
"C:\windows\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe]
"C:\windows\SysNative\tasks\Norton Anti-Theft\Norton Error Analyzer" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\SymErr.exe]
"C:\windows\SysNative\tasks\Norton Anti-Theft\Norton Error Processor" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\SymErr.exe]
"C:\windows\SysNative\tasks\Norton Internet Security\Norton Error Analyzer" [C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\SymErr.exe]
"C:\windows\SysNative\tasks\Norton Internet Security\Norton Error Processor" [C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\SymErr.exe]
"C:\windows\SysNative\tasks\TOSHIBA\Service Station" ["C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\coFFPlgn" [08/09/2014 02:28 PM]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Internet Security\Engine\20.1.0.24\Exts\Chrome.crx[08/21/2012 10:31 AM]

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.yahoo.com/"
"Default_Secondary_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Secondary_Page_URL"="http://www.google.com"
"Secondary Start Pages"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Secondary_Page_URL"="http://www.google.com"
"Secondary Start Pages"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{5D2F2164-CA2D-423B-BE54-E84DFB33EC84}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{5D2F2164-CA2D-423B-BE54-E84DFB33EC84} Yahoo  Url="https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=201117&p={searchTerms}"
{7DB7C3DF-01DC-484F-BCD1-65F70B4AA348} Unknown  Url="Not_Found"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Sat 08/09/2014 at 16:58:05.15 ======================