Logfile of random's system information tool 1.09 (written by random/random) Run by PC at 2011-11-23 19:33:10 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 406 GB (90%) free of 454 GB Total RAM: 8175 MB (77% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:33:49, on 2011-11-23 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v8.00 (8.00.7601.17514) Boot mode: Normal Running processes: C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe C:\Windows\Xerox\PanelMgr\SSMMgr.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe C:\Program Files (x86)\Western Digital Technologies\Spindown\ExSpinDn.exe C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Windows\SysWOW64\rundll32.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files\trend micro\PC.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Splashtop Connect SearchHook - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\AddressBarSearch.dll F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Splashtop Connect VisualBookmark - {0E5680D1-BF44-4929-94AF-FD30D784AD1D} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\PROGRA~2\ALLPLA~1\Iplex\IPLEXT~1.DLL O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll O4 - HKLM\..\Run: [Xerox PanelMgr] C:\Windows\Xerox\PanelMgr\SSMMgr.exe /autorun O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKLM\..\Run: [WD Spindown Utility] "C:\Program Files (x86)\Western Digital Technologies\Spindown\ExSpinDn.exe" O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'Default user') O8 - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Wyślij &do programu OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll O9 - Extra button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing) O23 - Service: Usługa Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Smart TimeLock Service (Smart TimeLock) - Gigabyte Technology CO., LTD. - C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 10973 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService "C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe" C:\Windows\system32\nvvsvc.exe -session -first C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe" -r "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe" "C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-998347be-1778-48aa-bd58-ecded49f21a0 -SystemEventPortName:HostProcess-cb3fb67a-78c8-4d6d-91fa-7d0b1d3ef79a -IoCancelEventPortName:HostProcess-5c17ce1d-4cc3-425b-ae7d-106bf0ecc710 -NonStateChangingEventPortName:HostProcess-53e5047a-2950-4036-91f3-fd280f01ba6f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:abb2451a-8588-4d01-8237-146a3b8fe17b RPMDaemon.exe "C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe" -m "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Windows\Xerox\PanelMgr\SSMMgr.exe" /autorun "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe" "C:\Program Files (x86)\Western Digital Technologies\Spindown\ExSpinDn.exe" C:\Windows\Xerox\PanelMgr\caller64.exe Xerox PanelMgr "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" C:\Windows\system32\svchost.exe -k WindowsMobile C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe" C:\Windows\system32\svchost.exe -k SDRSVC "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=en-US --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Www_Prefix/WarmSocketImpact/warmest_socket/ --enable-print-preview --channel=3520.00CA96E0.124818277 --ignored=" --type=renderer " /prefetch:3 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=en-US --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Www_Prefix/WarmSocketImpact/warmest_socket/ --enable-print-preview --channel=3520.00CA9580.1359830621 --ignored=" --type=renderer " /prefetch:3 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=en-US --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Www_Prefix/WarmSocketImpact/warmest_socket/ --enable-print-preview --channel=3520.00CA9DC0.1116747664 --ignored=" --type=renderer " /prefetch:3 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\plugin/npVKPlugin.dll" --lang=en-US --channel=3520.0764E540.1037660117 /prefetch:4 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.397_0\plugin/npUrlAdvisor.dll" --lang=en-US --channel=3520.0764E8C0.745651023 /prefetch:4 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll" --lang=en-US --channel=3520.0764EC40.70233903 /prefetch:4 "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtblfs.exe" -Embedding "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Www_Prefix/WarmSocketImpact/warmest_socket/ --enable-print-preview --channel=3520.06A0BC60.691071374 /prefetch:3 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Www_Prefix/WarmSocketImpact/warmest_socket/ --enable-print-preview --channel=3520.041C26E0.984156919 /prefetch:3 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Www_Prefix/WarmSocketImpact/warmest_socket/ --enable-print-preview --channel=3520.09198C60.1491925182 /prefetch:3 C:\Windows\system32\rundll32.exe "C:\PROGRA~2\Google\Chrome\APPLIC~1\150874~1.121\gcswf32.dll",BrokerMain browser=chrome "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Program Files (x86)\Google\Chrome\Application\15.0.874.121\gcswf32.dll" --lang=en-US --channel=3520.0677FA80.661757046 --flash-broker=4892 /prefetch:4 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel=3520.0B58F000.663024926 /prefetch:12 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540 "C:\Users\PC\Downloads\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\svchost.exe -k WerSvcGroup ======Scheduled tasks folder====== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job =========Mozilla firefox========= ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dc6i6x04.default prefs.js - "extensions.enabledItems" - "{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 10.1 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] "Description"= "Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision] "Description"=NVIDIA stereo images plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming] "Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin] "Description"=This plugin detects and launches Pando Media Booster "Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 10.1 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_0_1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL C:\Program Files (x86)\Mozilla Firefox\extensions\ {972ce4c6-7e08-4474-a285-3208198ce6fd} C:\Program Files (x86)\Mozilla Firefox\components\ binary.manifest browsercomps.dll C:\Program Files (x86)\Mozilla Firefox\plugins\ npwachk.dll C:\Program Files (x86)\Mozilla Firefox\searchplugins\ amazondotcom.xml bing.xml eBay.xml google.xml wikipedia.xml yahoo.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}] GBHO.BHO - C:\Windows\system32\mscoree.dll [2010-11-21 444752] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll [2011-04-24 91536] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll [2011-04-24 292752] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}] Splashtop Connect VisualBookmark - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll [2011-01-21 345968] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll [2011-04-24 86416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF925EF3-7A87-44E4-9CAF-8D7B280BF616}] IplexToALLPlayer - C:\PROGRA~2\ALLPLA~1\Iplex\IPLEXT~1.DLL [2011-02-09 400384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll [2011-04-24 229776] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {1d09c093-f71e-43c3-b948-19316cbd695e} - Smart Recovery 2 - C:\Windows\system32\mscoree.dll [2010-11-21 444752] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-04 11772520] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "RPMKickstart"=C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe [2010-08-23 2552320] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe -onlytray [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "Xerox PanelMgr"=C:\Windows\Xerox\PanelMgr\SSMMgr.exe [2009-12-21 626688] "AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [2011-04-24 202296] "Malwarebytes' Anti-Malware"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608] "WD Spindown Utility"=C:\Program Files (x86)\Western Digital Technologies\Spindown\ExSpinDn.exe [2004-08-09 278528] "ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2005-02-17 81920] "BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce] "EasyTuneVI"=C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [2007-07-26 20480] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] C:\Windows\System32\klogon.dll [2011-04-24 234896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2011-11-14 13:50:39 ----A---- C:\Windows\NeroDigital.ini 2011-11-10 16:19:40 ----A---- C:\Windows\system32\win32k.sys 2011-11-09 23:26:19 ----A---- C:\Windows\system32\drivers\tcpip.sys 2011-11-08 23:22:10 ----D---- C:\lp 2011-11-08 22:56:08 ----D---- C:\ProgramData\Protexis 2011-11-08 22:53:43 ----D---- C:\Program Files (x86)\Microsoft SDKs 2011-11-08 22:53:39 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 9.0 2011-11-07 22:58:29 ----D---- C:\Program Files (x86)\HD Tune 2011-11-07 22:32:48 ----D---- C:\Program Files\trend micro 2011-11-07 22:32:47 ----D---- C:\rsit 2011-11-07 22:07:16 ----D---- C:\Program Files (x86)\Trend Micro 2011-11-07 21:04:10 ----D---- C:\ProgramData\Corel 2011-11-06 22:28:07 ----D---- C:\Program Files (x86)\Western Digital Technologies 2011-11-06 22:25:04 ----D---- C:\Program Files (x86)\Western Digital Corporation 2011-11-06 18:26:28 ----D---- C:\Users\PC\AppData\Roaming\Malwarebytes 2011-11-06 18:26:07 ----D---- C:\ProgramData\Malwarebytes 2011-11-06 18:26:02 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2011-11-06 18:26:02 ----A---- C:\Windows\system32\drivers\mbam.sys 2011-11-06 18:25:27 ----D---- C:\Program Files\CCleaner 2011-11-06 18:18:14 ----A---- C:\DEBUG.TXT 2011-11-06 09:41:55 ----D---- C:\Users\PC\AppData\Roaming\Tropico 3 2011-11-05 19:21:49 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll 2011-11-05 19:21:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll 2011-11-05 19:21:49 ----A---- C:\Windows\system32\d3dx10_41.dll 2011-11-05 19:21:49 ----A---- C:\Windows\system32\D3DCompiler_41.dll 2011-11-05 19:21:48 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll 2011-11-05 19:21:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll 2011-11-05 19:21:48 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll 2011-11-05 19:21:48 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll 2011-11-05 19:21:48 ----A---- C:\Windows\system32\XAudio2_4.dll 2011-11-05 19:21:48 ----A---- C:\Windows\system32\XAPOFX1_3.dll 2011-11-05 19:21:48 ----A---- C:\Windows\system32\xactengine3_4.dll 2011-11-05 19:21:48 ----A---- C:\Windows\system32\D3DX9_41.dll 2011-11-05 19:21:46 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll 2011-11-05 19:21:46 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll 2011-11-05 19:21:46 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll 2011-11-05 19:21:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll 2011-11-05 19:21:46 ----A---- C:\Windows\system32\X3DAudio1_6.dll 2011-11-05 19:21:46 ----A---- C:\Windows\system32\D3DX9_40.dll 2011-11-05 19:21:46 ----A---- C:\Windows\system32\d3dx10_40.dll 2011-11-05 19:21:46 ----A---- C:\Windows\system32\D3DCompiler_40.dll 2011-11-05 19:21:45 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll 2011-11-05 19:21:45 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll 2011-11-05 19:21:45 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll 2011-11-05 19:21:45 ----A---- C:\Windows\system32\XAudio2_3.dll 2011-11-05 19:21:45 ----A---- C:\Windows\system32\XAPOFX1_2.dll 2011-11-05 19:21:45 ----A---- C:\Windows\system32\xactengine3_3.dll 2011-11-05 19:21:44 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll 2011-11-05 19:21:44 ----A---- C:\Windows\system32\X3DAudio1_5.dll 2011-11-05 19:21:43 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll 2011-11-05 19:21:43 ----A---- C:\Windows\system32\XAudio2_2.dll 2011-11-05 19:21:43 ----A---- C:\Windows\system32\XAPOFX1_1.dll 2011-11-05 19:21:43 ----A---- C:\Windows\system32\xactengine3_2.dll 2011-11-05 19:21:42 ----A---- C:\Windows\system32\d3dx10_39.dll 2011-11-05 19:21:42 ----A---- C:\Windows\system32\D3DCompiler_39.dll 2011-11-05 19:21:39 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll 2011-11-05 19:21:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll 2011-11-05 19:21:39 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll 2011-11-05 19:21:39 ----A---- C:\Windows\system32\XAudio2_1.dll 2011-11-05 19:21:39 ----A---- C:\Windows\system32\XAPOFX1_0.dll 2011-11-05 19:21:39 ----A---- C:\Windows\system32\xactengine3_1.dll 2011-11-05 19:21:39 ----A---- C:\Windows\system32\D3DX9_39.dll 2011-11-05 19:21:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll 2011-11-05 19:21:38 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll 2011-11-05 19:21:38 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll 2011-11-05 19:21:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll 2011-11-05 19:21:38 ----A---- C:\Windows\system32\X3DAudio1_4.dll 2011-11-05 19:21:38 ----A---- C:\Windows\system32\D3DX9_38.dll 2011-11-05 19:21:38 ----A---- C:\Windows\system32\d3dx10_38.dll 2011-11-05 19:21:38 ----A---- C:\Windows\system32\D3DCompiler_38.dll 2011-11-05 19:21:37 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll 2011-11-05 19:21:37 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll 2011-11-05 19:21:37 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll 2011-11-05 19:21:37 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll 2011-11-05 19:21:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll 2011-11-05 19:21:37 ----A---- C:\Windows\system32\XAudio2_0.dll 2011-11-05 19:21:37 ----A---- C:\Windows\system32\xactengine3_0.dll 2011-11-05 19:21:37 ----A---- C:\Windows\system32\X3DAudio1_3.dll 2011-11-05 19:21:37 ----A---- C:\Windows\system32\d3dx10_37.dll 2011-11-05 19:21:37 ----A---- C:\Windows\system32\D3DCompiler_37.dll 2011-11-05 19:21:36 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll 2011-11-05 19:21:36 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll 2011-11-05 19:21:36 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll 2011-11-05 19:21:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll 2011-11-05 19:21:36 ----A---- C:\Windows\system32\xactengine2_10.dll 2011-11-05 19:21:36 ----A---- C:\Windows\system32\D3DX9_37.dll 2011-11-05 19:21:36 ----A---- C:\Windows\system32\d3dx10_36.dll 2011-11-05 19:21:36 ----A---- C:\Windows\system32\D3DCompiler_36.dll 2011-11-05 19:21:35 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll 2011-11-05 19:21:35 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll 2011-11-05 19:21:35 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll 2011-11-05 19:21:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll 2011-11-05 19:21:35 ----A---- C:\Windows\system32\xactengine2_9.dll 2011-11-05 19:21:35 ----A---- C:\Windows\system32\d3dx9_36.dll 2011-11-05 19:21:35 ----A---- C:\Windows\system32\d3dx10_35.dll 2011-11-05 19:21:35 ----A---- C:\Windows\system32\D3DCompiler_35.dll 2011-11-05 19:21:34 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll 2011-11-05 19:21:34 ----A---- C:\Windows\system32\d3dx9_35.dll 2011-11-05 19:21:33 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll 2011-11-05 19:21:33 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll 2011-11-05 19:21:33 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll 2011-11-05 19:21:33 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll 2011-11-05 19:21:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll 2011-11-05 19:21:33 ----A---- C:\Windows\system32\xactengine2_8.dll 2011-11-05 19:21:33 ----A---- C:\Windows\system32\X3DAudio1_2.dll 2011-11-05 19:21:33 ----A---- C:\Windows\system32\d3dx9_34.dll 2011-11-05 19:21:33 ----A---- C:\Windows\system32\d3dx10_34.dll 2011-11-05 19:21:33 ----A---- C:\Windows\system32\D3DCompiler_34.dll 2011-11-05 19:21:32 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll 2011-11-05 19:21:32 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll 2011-11-05 19:21:32 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll 2011-11-05 19:21:32 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll 2011-11-05 19:21:32 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll 2011-11-05 19:21:32 ----A---- C:\Windows\system32\xinput1_3.dll 2011-11-05 19:21:32 ----A---- C:\Windows\system32\xactengine2_7.dll 2011-11-05 19:21:32 ----A---- C:\Windows\system32\d3dx9_33.dll 2011-11-05 19:21:32 ----A---- C:\Windows\system32\d3dx10_33.dll 2011-11-05 19:21:32 ----A---- C:\Windows\system32\D3DCompiler_33.dll 2011-11-05 19:21:31 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll 2011-11-05 19:21:31 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll 2011-11-05 19:21:31 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll 2011-11-05 19:21:31 ----A---- C:\Windows\SYSWOW64\d3dx10.dll 2011-11-05 19:21:31 ----A---- C:\Windows\system32\xactengine2_6.dll 2011-11-05 19:21:31 ----A---- C:\Windows\system32\xactengine2_5.dll 2011-11-05 19:21:31 ----A---- C:\Windows\system32\d3dx9_32.dll 2011-11-05 19:21:31 ----A---- C:\Windows\system32\d3dx10.dll 2011-11-05 19:21:30 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll 2011-11-05 19:21:30 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll 2011-11-05 19:21:30 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll 2011-11-05 19:21:30 ----A---- C:\Windows\system32\xactengine2_4.dll 2011-11-05 19:21:30 ----A---- C:\Windows\system32\x3daudio1_1.dll 2011-11-05 19:21:30 ----A---- C:\Windows\system32\d3dx9_31.dll 2011-11-05 19:21:29 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll 2011-11-05 19:21:29 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll 2011-11-05 19:21:29 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll 2011-11-05 19:21:29 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll 2011-11-05 19:21:29 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll 2011-11-05 19:21:29 ----A---- C:\Windows\system32\xinput1_2.dll 2011-11-05 19:21:29 ----A---- C:\Windows\system32\xinput1_1.dll 2011-11-05 19:21:29 ----A---- C:\Windows\system32\xactengine2_3.dll 2011-11-05 19:21:29 ----A---- C:\Windows\system32\xactengine2_2.dll 2011-11-05 19:21:29 ----A---- C:\Windows\system32\xactengine2_1.dll 2011-11-05 19:21:26 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll 2011-11-05 19:21:26 ----A---- C:\Windows\system32\d3dx9_30.dll 2011-11-05 19:21:25 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll 2011-11-05 19:21:25 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll 2011-11-05 19:21:25 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll 2011-11-05 19:21:25 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll 2011-11-05 19:21:25 ----A---- C:\Windows\system32\xactengine2_0.dll 2011-11-05 19:21:25 ----A---- C:\Windows\system32\x3daudio1_0.dll 2011-11-05 19:21:25 ----A---- C:\Windows\system32\d3dx9_29.dll 2011-11-05 19:21:25 ----A---- C:\Windows\system32\d3dx9_28.dll 2011-11-05 19:21:24 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll 2011-11-05 19:21:24 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll 2011-11-05 19:21:24 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll 2011-11-05 19:21:24 ----A---- C:\Windows\system32\d3dx9_27.dll 2011-11-05 19:21:24 ----A---- C:\Windows\system32\d3dx9_26.dll 2011-11-05 19:21:24 ----A---- C:\Windows\system32\d3dx9_25.dll 2011-11-05 19:21:23 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll 2011-11-05 19:21:23 ----A---- C:\Windows\system32\d3dx9_24.dll 2011-11-05 18:50:59 ----D---- C:\Program Files (x86)\Kalypso 2011-11-02 18:41:41 ----D---- C:\Windows\pss 2011-10-28 19:17:04 ----D---- C:\Users\PC\AppData\Roaming\Canneverbe Limited 2011-10-28 19:17:04 ----D---- C:\ProgramData\Canneverbe Limited 2011-10-28 19:16:54 ----D---- C:\Program Files\CDBurnerXP 2011-10-24 21:24:02 ----A---- C:\Windows\SYSWOW64\TwnLib20.dll 2011-10-24 21:24:02 ----A---- C:\Windows\SYSWOW64\picn20.dll 2011-10-24 21:24:01 ----A---- C:\Windows\SYSWOW64\NeroCheck.exe 2011-10-24 21:24:01 ----A---- C:\Windows\SYSWOW64\ImagXpr5.dll 2011-10-24 21:24:01 ----A---- C:\Windows\SYSWOW64\imagx5.dll 2011-10-24 21:24:01 ----A---- C:\Windows\SYSWOW64\imagr5.dll 2011-10-24 21:23:57 ----D---- C:\Program Files (x86)\Ahead 2011-10-24 17:33:43 ----D---- C:\Users\PC\AppData\Roaming\PC Suite 2011-10-24 17:33:43 ----D---- C:\Users\PC\AppData\Roaming\Nokia 2011-10-24 17:33:43 ----D---- C:\ProgramData\PC Suite 2011-10-24 17:28:48 ----D---- C:\Program Files\DIFX 2011-10-24 17:28:47 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys 2011-10-24 17:28:44 ----DC---- C:\Windows\system32\DRVSTORE 2011-10-24 17:28:31 ----D---- C:\Program Files (x86)\PC Connectivity Solution 2011-10-24 17:28:12 ----A---- C:\Windows\system32\nmwcdclsX64.dll 2011-10-24 17:27:29 ----D---- C:\ProgramData\Installations ======List of files/folders modified in the last 1 month====== 2011-11-23 19:33:49 ----D---- C:\Windows\Prefetch 2011-11-23 19:33:48 ----D---- C:\Windows\Temp 2011-11-23 18:52:07 ----D---- C:\ProgramData\Kaspersky Lab 2011-11-23 14:38:47 ----D---- C:\Windows\system32\config 2011-11-23 03:22:54 ----A---- C:\Windows\SYSWOW64\log.txt 2011-11-23 03:21:15 ----D---- C:\Windows\SysWOW64 2011-11-23 03:20:50 ----D---- C:\ProgramData\NVIDIA 2011-11-23 03:20:43 ----D---- C:\Windows 2011-11-23 03:20:17 ----D---- C:\Config.Msi 2011-11-23 03:19:48 ----D---- C:\Windows\system32\catroot 2011-11-23 03:08:12 ----D---- C:\Windows\Microsoft.NET 2011-11-23 03:08:11 ----RSD---- C:\Windows\assembly 2011-11-23 03:04:33 ----SHD---- C:\Windows\Installer 2011-11-23 03:04:18 ----D---- C:\ProgramData\Microsoft Help 2011-11-23 03:02:16 ----SHD---- C:\System Volume Information 2011-11-23 03:01:46 ----A---- C:\Windows\win.ini 2011-11-22 20:42:21 ----D---- C:\Program Files (x86)\Mozilla Firefox 2011-11-22 19:33:54 ----D---- C:\Windows\inf 2011-11-22 19:33:26 ----D---- C:\Windows\system32\DriverStore 2011-11-22 19:33:25 ----D---- C:\Windows\twain_32 2011-11-22 19:26:35 ----RD---- C:\Program Files (x86) 2011-11-22 19:25:23 ----D---- C:\Windows\system32\drivers 2011-11-22 19:25:21 ----D---- C:\Windows\system32\catroot2 2011-11-22 19:24:44 ----D---- C:\Windows\system32\Tasks 2011-11-22 19:24:40 ----D---- C:\ProgramData\Skype 2011-11-22 19:24:39 ----D---- C:\Users\PC\AppData\Roaming\Skype 2011-11-22 19:21:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2011-11-22 19:20:31 ----D---- C:\Program Files (x86)\Common Files 2011-11-22 19:03:57 ----D---- C:\Windows\SoftwareDistribution 2011-11-22 18:06:58 ----D---- C:\Ecru 2011-11-21 21:37:06 ----D---- C:\Windows\Minidump 2011-11-17 20:02:49 ----D---- C:\Users\PC\AppData\Roaming\Adobe 2011-11-17 20:02:49 ----D---- C:\ProgramData\Adobe 2011-11-16 23:44:34 ----D---- C:\Windows\System32 2011-11-16 23:44:34 ----A---- C:\Windows\system32\PerfStringBackup.INI 2011-11-13 22:09:04 ----D---- C:\VueScan 2011-11-13 20:05:14 ----D---- C:\ProgramData\PMB Files 2011-11-11 23:42:07 ----D---- C:\Windows\debug 2011-11-11 03:17:13 ----D---- C:\Windows\winsxs 2011-11-11 01:37:15 ----D---- C:\Windows\system32\LogFiles 2011-11-10 16:34:49 ----D---- C:\Program Files\Common Files\System 2011-11-09 22:18:37 ----A---- C:\Windows\system32\MRT.exe 2011-11-08 22:56:10 ----D---- C:\Users\PC\AppData\Roaming\Corel 2011-11-08 22:56:08 ----HD---- C:\ProgramData 2011-11-08 22:54:56 ----SD---- C:\Users\PC\AppData\Roaming\Microsoft 2011-11-08 22:54:56 ----SD---- C:\ProgramData\Microsoft 2011-11-08 22:49:15 ----D---- C:\Windows\SYSWOW64\drivers 2011-11-08 19:27:46 ----RSD---- C:\Windows\Fonts 2011-11-07 22:32:48 ----RD---- C:\Program Files 2011-11-07 21:37:43 ----D---- C:\Program Files (x86)\Corel 2011-11-07 21:07:03 ----D---- C:\Program Files (x86)\Splashtop 2011-11-07 21:06:33 ----D---- C:\ProgramData\Splashtop 2011-11-07 20:54:00 ----D---- C:\Program Files (x86)\Kadu 2011-11-06 18:27:06 ----D---- C:\Users\PC\AppData\Roaming\Winamp 2011-11-06 18:27:06 ----D---- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite 2011-11-06 18:26:51 ----D---- C:\Windows\Panther 2011-11-06 18:26:51 ----D---- C:\Windows\Logs 2011-10-28 17:52:23 ----D---- C:\Windows\Tasks 2011-10-26 12:41:53 ----D---- C:\Windows\system32\wdi 2011-10-25 21:44:05 ----D---- C:\Program Files\Internet Explorer 2011-10-25 21:44:05 ----D---- C:\Program Files (x86)\Internet Explorer 2011-10-24 17:42:31 ----D---- C:\Windows\system32\drivers\UMDF 2011-10-24 07:27:58 ----D---- C:\ProgramData\DAEMON Tools Lite ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2011-03-04 460888] R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-09-04 526392] R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104] R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys [2011-03-04 11864] R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2011-04-20 615728] R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2011-03-10 29488] R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-04-06 11576] R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-01-26 39808] R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-01-26 64256] R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2011-11-23 25640] R3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2011-11-23 30528] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-01-04 2697448] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-06-25 76912] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 25416] R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752] S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [] S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328] S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2011-10-08 25640] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600] S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672] S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872] S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640] S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984] S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768] S3 WINUSB;WinUsb Driver; C:\Windows\system32\DRIVERS\WinUSB.SYS [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AVP;Usługa Kaspersky Anti-Virus; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [2011-04-24 202296] R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-05 325656] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152] R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-23 1005160] R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2009-07-24 189728] R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 Smart TimeLock;Smart TimeLock Service; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [2009-10-13 114688] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-02-23 378472] R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-05 2655768] R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 KMService;KMService; C:\Windows\syswow64\srvany.exe [2011-09-04 8192] S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272] S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-31 1255736] S4 gupdate;Usługa Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-31 136176] S4 gupdatem;Usługa Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-31 136176] S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632] S4 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 SCBackService;Splashtop Connect Service; C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000] S4 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856] S4 WCUService_STC_IE;Splashtop Connect IE Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480] -----------------EOF-----------------