Logfile of random's system information tool 1.10 (written by random/random) Run by pc at 2014-12-23 11:07:37 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 313 GB (66%) free of 477 GB Total RAM: 4094 MB (61% free) HijackThis download failed ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Windows\system32\nvvsvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\SvcHost.exe -k BullGuard_Main C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe" C:\Windows\system32\nvvsvc.exe -session -first C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files\LSI SoftModem\agr64svc.exe" C:\Windows\System32\SvcHost.exe -k BullGuard_Backup "C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe" "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE taskeng.exe {20550796-1249-4BFA-9D32-4DD01C585EC1} C:\Windows\System32\SvcHost.exe -k BullGuard_Cache C:\Windows\System32\SvcHost.exe -k BullGuard C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy "C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe" "C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\SysWOW64\GTRUSBFltrInst.exe C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt "C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe" "C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe" -boot C:\Windows\System32\svchost.exe -k HPZ12 "C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden "C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe" C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart "C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe" "C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c699f86d-3ecf-4854-849d-99c1b7eb37d7 -SystemEventPortName:HostProcess-82af73a1-fbc3-407b-8e7a-e41551bd0282 -IoCancelEventPortName:HostProcess-62ba3030-2280-4a27-8dff-43505d170f8f -NonStateChangingEventPortName:HostProcess-bb22ff1a-3780-4ed3-a062-0d0d2962f66e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8ad730e7-58af-42f3-b437-2e91b2a217bc -DeviceGroupId:WpdFsGroup "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe" C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe "C:\Program Files (x86)\Nero\Update\NASvc.exe" "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" "taskhost.exe" "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1276 CREDAT:267521 /prefetch:2 C:\Windows\system32\Macromed\Flash\FlashUtil64_16_0_0_235_ActiveX.exe -Embedding "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1276 CREDAT:2299147 /prefetch:2 "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1276 CREDAT:2561314 /prefetch:2 C:\Windows\splwow64.exe 4096 "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T2OYQWWG\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\svchost.exe -k WerSvcGroup ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\OptimizerProUpdaterTask{859C2718-7650-41C1-8231-FF74F99E28EC}.job - C:\ProgramData\Premium\OptimizerPro\OptimizerPro.exe /schedule /profilepath "C:\ProgramData\Premium\OptimizerPro\profile.ini" C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job - C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe -StartupTask C:\Windows\tasks\RegCure Pro_sch_A0DF6878-D705-11E3-9B5C-90E6BA31E83E.job - C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe /schedule:"A0DF6878-D705-11E3-9B5C-90E6BA31E83E" =========Mozilla firefox========= ProfilePath - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\m6dp0l53.default-1377764343086 prefs.js - "browser.search.useDBForOrder" - "false" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.246 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.71.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin] "Description"=McAfee Mss Plugin "Path"=C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision] "Description"=NVIDIA stereo images plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming] "Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.246 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll C:\Program Files (x86)\Mozilla Firefox\components\ nsIQTScriptablePlugin.xpt C:\Program Files (x86)\Mozilla Firefox\plugins\ nppdf32.dll WMP Firefox Plugin License.rtf WMP Firefox Plugin RelNotes.txt C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\m6dp0l53.default-1377764343086\extensions\ dmjgiu1@vlbdoxx.com ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-06 43520] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}] HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-12-05 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-12-05 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}] HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "BullGuard"=C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [2014-12-16 1357648] "BullGuardUpdate2"=c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2014-12-16 2933072] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392] "Driver Whiz"=C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe /applicationMode:systemTray /showWelcome:false [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Adobe Speed Launcher"=1419323671 [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-11-20 1021128] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [] "NBAgent"=C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216] "HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2010-06-09 49208] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2014-08-25 5188112] "ApnUpdater"=C:\Program Files (x86)\Ask.com\Updater\Updater.exe [] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BsMain] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BsScanner] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BsUpdate] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableLinkedConnections"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "aux4"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "wave6"=wdmaud.drv "midi6"=wdmaud.drv "mixer6"=wdmaud.drv "wave7"=wdmaud.drv "midi7"=wdmaud.drv "mixer7"=wdmaud.drv "wave8"=wdmaud.drv "midi8"=wdmaud.drv "mixer8"=wdmaud.drv "wave9"=wdmaud.drv "midi9"=wdmaud.drv "mixer9"=wdmaud.drv "aux5"=wdmaud.drv "aux6"=wdmaud.drv "aux7"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-12-23 11:07:38 ----D---- C:\Program Files\trend micro 2014-12-23 11:07:37 ----D---- C:\rsit 2014-12-18 09:22:57 ----D---- C:\ProgramData\HitmanPro 2014-12-18 08:55:38 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2014-12-18 08:55:38 ----A---- C:\Windows\system32\ieUnatt.exe 2014-12-17 17:34:26 ----D---- C:\Users\pc\AppData\Roaming\KSafe 2014-12-17 17:34:26 ----D---- C:\ProgramData\KSafe 2014-12-17 17:34:21 ----D---- C:\Program Files (x86)\MaxUtilities 2014-12-16 11:43:07 ----A---- C:\Windows\SYSWOW64\BgGamingMonitor.dll 2014-12-16 11:43:07 ----A---- C:\Windows\system32\BgGamingMonitor.dll 2014-12-16 11:42:59 ----A---- C:\Windows\system32\BGLsp.dll 2014-12-16 11:42:58 ----A---- C:\Windows\SYSWOW64\BGLsp.dll 2014-12-10 10:03:26 ----D---- C:\Windows\system32\appraiser 2014-12-10 09:50:12 ----A---- C:\Windows\SYSWOW64\mf.dll 2014-12-10 09:50:12 ----A---- C:\Windows\system32\mf.dll 2014-12-10 08:38:39 ----A---- C:\Windows\system32\invagent.dll 2014-12-10 08:38:39 ----A---- C:\Windows\system32\generaltel.dll 2014-12-10 08:38:39 ----A---- C:\Windows\system32\devinv.dll 2014-12-10 08:38:39 ----A---- C:\Windows\system32\appraiser.dll 2014-12-10 08:38:39 ----A---- C:\Windows\system32\aitstatic.exe 2014-12-10 08:38:39 ----A---- C:\Windows\system32\aepic.dll 2014-12-10 08:38:39 ----A---- C:\Windows\system32\aeinv.dll 2014-12-10 08:38:38 ----A---- C:\Windows\system32\aepdu.dll 2014-12-10 08:38:18 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2014-12-10 08:38:18 ----A---- C:\Windows\system32\WindowsCodecs.dll 2014-12-10 08:38:15 ----A---- C:\Windows\system32\drivers\tdx.sys 2014-12-10 08:38:10 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-12-10 08:38:10 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2014-12-10 08:38:10 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-12-10 08:38:10 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-12-10 08:38:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-12-10 08:38:05 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2014-12-10 08:38:05 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2014-12-10 08:38:05 ----A---- C:\Windows\system32\iernonce.dll 2014-12-10 08:38:05 ----A---- C:\Windows\system32\ie4uinit.exe 2014-12-10 08:38:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-12-10 08:38:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-12-10 08:38:04 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2014-12-10 08:38:04 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-12-10 08:38:04 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-12-10 08:38:03 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-12-10 08:38:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2014-12-10 08:38:02 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-12-10 08:38:02 ----A---- C:\Windows\system32\urlmon.dll 2014-12-10 08:38:02 ----A---- C:\Windows\system32\iedkcs32.dll 2014-12-10 08:38:01 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2014-12-10 08:38:01 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-12-10 08:38:00 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-12-10 08:38:00 ----A---- C:\Windows\SYSWOW64\ieui.dll 2014-12-10 08:38:00 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-12-10 08:38:00 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-12-10 08:38:00 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-12-10 08:38:00 ----A---- C:\Windows\system32\msfeeds.dll 2014-12-10 08:38:00 ----A---- C:\Windows\system32\dxtrans.dll 2014-12-10 08:37:59 ----A---- C:\Windows\system32\iesetup.dll 2014-12-10 08:37:59 ----A---- C:\Windows\system32\iertutil.dll 2014-12-10 08:37:59 ----A---- C:\Windows\system32\ieapfltr.dll 2014-12-10 08:37:58 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-12-10 08:37:58 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2014-12-10 08:37:58 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2014-12-10 08:37:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-12-10 08:37:58 ----A---- C:\Windows\system32\jsproxy.dll 2014-12-10 08:37:57 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-12-10 08:37:57 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2014-12-10 08:37:57 ----A---- C:\Windows\system32\ieui.dll 2014-12-10 08:37:57 ----A---- C:\Windows\system32\ieframe.dll 2014-12-10 08:37:57 ----A---- C:\Windows\system32\dxtmsft.dll 2014-12-10 08:37:56 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-12-10 08:37:56 ----A---- C:\Windows\system32\mshtmled.dll 2014-12-10 08:37:56 ----A---- C:\Windows\system32\jscript9diag.dll 2014-12-10 08:37:56 ----A---- C:\Windows\system32\jscript9.dll 2014-12-10 08:37:55 ----A---- C:\Windows\system32\vbscript.dll 2014-12-10 08:37:54 ----A---- C:\Windows\system32\wininet.dll 2014-12-10 08:37:54 ----A---- C:\Windows\system32\msrating.dll 2014-12-10 08:37:54 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-12-10 08:37:53 ----A---- C:\Windows\system32\mshtml.dll 2014-12-10 08:37:34 ----A---- C:\Windows\SYSWOW64\charmap.exe 2014-12-10 08:37:34 ----A---- C:\Windows\system32\charmap.exe 2014-12-10 08:37:33 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll 2014-12-10 08:37:33 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll 2014-12-10 08:37:33 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll 2014-12-10 08:37:33 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe 2014-12-10 08:37:33 ----A---- C:\Windows\system32\WsmWmiPl.dll 2014-12-10 08:37:33 ----A---- C:\Windows\system32\WsmSvc.dll 2014-12-10 08:37:33 ----A---- C:\Windows\system32\WsmAuto.dll 2014-12-10 08:37:33 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll 2014-12-10 08:37:33 ----A---- C:\Windows\system32\WSManHTTPConfig.exe 2014-12-10 08:37:32 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll 2014-12-10 08:37:23 ----A---- C:\Windows\SYSWOW64\tzres.dll 2014-12-10 08:37:23 ----A---- C:\Windows\system32\tzres.dll 2014-12-08 15:11:13 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys 2014-12-08 15:10:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-12-05 12:56:34 ----A---- C:\Windows\SYSWOW64\javaws.exe 2014-12-05 12:56:28 ----A---- C:\Windows\SYSWOW64\javaw.exe 2014-12-05 12:56:28 ----A---- C:\Windows\SYSWOW64\java.exe 2014-12-05 12:55:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2014-12-03 22:44:17 ----D---- C:\Users\pc\AppData\Roaming\BullGuard 2014-12-03 22:41:39 ----D---- C:\Program Files\Common Files\BullGuard Ltd 2014-12-03 22:41:37 ----D---- C:\Program Files\BullGuard Ltd 2014-12-03 22:40:16 ----D---- C:\ProgramData\Package Cache 2014-12-03 22:40:03 ----D---- C:\Users\pc\AppData\Roaming\QuickScan 2014-12-03 22:34:56 ----D---- C:\ProgramData\BullGuard 2014-12-03 20:33:12 ----A---- C:\Windows\SYSWOW64\msaudite.dll 2014-12-03 20:33:12 ----A---- C:\Windows\SYSWOW64\adtschema.dll 2014-12-03 20:33:12 ----A---- C:\Windows\system32\termsrv.dll 2014-12-03 20:33:12 ----A---- C:\Windows\system32\msaudite.dll 2014-12-03 20:33:12 ----A---- C:\Windows\system32\adtschema.dll 2014-12-03 20:33:05 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL 2014-12-03 20:33:05 ----A---- C:\Windows\system32\IMJP10K.DLL 2014-12-03 20:33:03 ----A---- C:\Windows\SYSWOW64\msxml3.dll 2014-12-03 20:33:03 ----A---- C:\Windows\system32\msxml3.dll 2014-12-03 20:33:02 ----A---- C:\Windows\SYSWOW64\msxml3r.dll 2014-12-03 20:33:02 ----A---- C:\Windows\system32\msxml3r.dll 2014-12-03 20:32:36 ----A---- C:\Windows\SYSWOW64\pku2u.dll 2014-12-03 20:32:36 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2014-12-03 20:32:36 ----A---- C:\Windows\system32\pku2u.dll 2014-12-03 20:32:36 ----A---- C:\Windows\system32\lsasrv.dll 2014-12-03 20:32:36 ----A---- C:\Windows\system32\kerberos.dll 2014-12-03 20:32:36 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2014-12-03 20:32:35 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2014-12-03 20:32:35 ----A---- C:\Windows\SYSWOW64\secur32.dll 2014-12-03 20:32:31 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll 2014-12-03 20:32:31 ----A---- C:\Windows\system32\EncDump.dll 2014-12-03 20:32:31 ----A---- C:\Windows\system32\audiosrv.dll 2014-12-03 20:32:31 ----A---- C:\Windows\system32\AUDIOKSE.dll 2014-12-03 20:32:31 ----A---- C:\Windows\system32\AudioEng.dll 2014-12-03 20:32:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll 2014-12-03 20:32:30 ----A---- C:\Windows\SYSWOW64\AudioEng.dll 2014-12-03 20:32:30 ----A---- C:\Windows\system32\AudioSes.dll 2014-12-03 20:32:19 ----A---- C:\Windows\SYSWOW64\schannel.dll 2014-12-03 20:32:19 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2014-12-03 20:32:19 ----A---- C:\Windows\system32\schannel.dll 2014-12-03 20:32:19 ----A---- C:\Windows\system32\ncrypt.dll 2014-12-03 20:32:18 ----A---- C:\Windows\SYSWOW64\wdigest.dll 2014-12-03 20:32:18 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2014-12-03 20:32:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll 2014-12-03 20:32:18 ----A---- C:\Windows\system32\wdigest.dll 2014-12-03 20:32:18 ----A---- C:\Windows\system32\TSpkg.dll 2014-12-03 20:32:18 ----A---- C:\Windows\system32\msv1_0.dll 2014-12-03 20:32:17 ----A---- C:\Windows\SYSWOW64\credssp.dll 2014-12-03 20:32:17 ----A---- C:\Windows\system32\credssp.dll 2014-12-03 20:32:08 ----A---- C:\Windows\SYSWOW64\packager.dll 2014-12-03 20:32:08 ----A---- C:\Windows\system32\packager.dll 2014-12-03 20:32:07 ----A---- C:\Windows\system32\win32k.sys 2014-12-03 20:31:51 ----A---- C:\Windows\SYSWOW64\oleaut32.dll 2014-12-03 20:31:51 ----A---- C:\Windows\system32\oleaut32.dll 2014-12-03 20:31:45 ----A---- C:\Windows\SYSWOW64\msi.dll 2014-12-03 20:31:45 ----A---- C:\Windows\system32\msi.dll ======List of files/folders modified in the last 1 month====== 2014-12-23 11:08:01 ----D---- C:\Windows\Temp 2014-12-23 11:07:38 ----RD---- C:\Program Files 2014-12-23 10:52:56 ----D---- C:\Windows\system32\config 2014-12-23 10:25:42 ----D---- C:\Windows\system32\drivers 2014-12-23 09:47:43 ----D---- C:\Nero Autobackup 2014-12-23 09:36:27 ----D---- C:\Windows\System32 2014-12-23 09:34:26 ----D---- C:\Windows 2014-12-23 09:34:11 ----D---- C:\ProgramData\NVIDIA 2014-12-18 09:25:21 ----D---- C:\Windows\system32\Tasks 2014-12-18 09:22:57 ----HD---- C:\ProgramData 2014-12-18 09:10:53 ----D---- C:\Windows\winsxs 2014-12-18 09:10:43 ----D---- C:\Windows\SysWOW64 2014-12-18 09:10:32 ----SHD---- C:\System Volume Information 2014-12-17 17:34:21 ----RD---- C:\Program Files (x86) 2014-12-17 17:16:46 ----SHD---- C:\Windows\Installer 2014-12-17 17:16:45 ----HD---- C:\Config.Msi 2014-12-17 09:34:14 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2014-12-16 19:20:29 ----D---- C:\Users\pc\AppData\Roaming\Media Player Classic 2014-12-16 19:20:17 ----D---- C:\Windows\inf 2014-12-16 19:20:11 ----D---- C:\Windows\debug 2014-12-16 11:40:36 ----D---- C:\Users\pc\AppData\Roaming\HpUpdate 2014-12-10 10:03:27 ----SD---- C:\Windows\system32\CompatTel 2014-12-10 10:03:27 ----D---- C:\Windows\AppCompat 2014-12-10 10:03:26 ----SD---- C:\ProgramData\Microsoft 2014-12-10 10:03:25 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-12-10 10:03:25 ----D---- C:\Windows\SYSWOW64\en-US 2014-12-10 10:03:25 ----D---- C:\Windows\system32\nl-NL 2014-12-10 10:03:25 ----D---- C:\Windows\system32\en-US 2014-12-10 10:03:25 ----D---- C:\Windows\PolicyDefinitions 2014-12-10 10:03:25 ----D---- C:\Program Files\Internet Explorer 2014-12-10 10:03:24 ----D---- C:\Program Files (x86)\Internet Explorer 2014-12-10 09:57:17 ----D---- C:\ProgramData\Microsoft Help 2014-12-10 09:56:07 ----D---- C:\Windows\system32\MRT 2014-12-10 09:51:58 ----A---- C:\Windows\system32\MRT.exe 2014-12-10 08:36:37 ----D---- C:\Windows\system32\catroot2 2014-12-08 16:42:06 ----D---- C:\ProgramData\InstallMate 2014-12-08 15:10:53 ----D---- C:\ProgramData\Malwarebytes 2014-12-05 12:55:54 ----D---- C:\ProgramData\Oracle 2014-12-05 12:55:50 ----D---- C:\Program Files (x86)\Common Files 2014-12-05 12:55:11 ----D---- C:\Program Files (x86)\Java 2014-12-04 10:14:03 ----D---- C:\Windows\Panther 2014-12-04 09:11:48 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2014-12-03 23:16:50 ----D---- C:\Program Files (x86)\Mozilla Firefox 2014-12-03 22:53:19 ----D---- C:\ProgramData\MFAData 2014-12-03 22:53:18 ----D---- C:\ProgramData\AVG2015 2014-12-03 22:44:06 ----D---- C:\Windows\system32\DriverStore 2014-12-03 22:41:39 ----D---- C:\Program Files\Common Files 2014-12-03 22:38:47 ----HD---- C:\$AVG 2014-12-03 21:48:46 ----D---- C:\Windows\Microsoft.NET 2014-12-03 21:48:44 ----RSD---- C:\Windows\assembly 2014-12-03 21:07:17 ----D---- C:\Windows\system32\catroot 2014-12-03 20:07:13 ----D---- C:\Windows\system32\wbem 2014-12-03 20:05:56 ----D---- C:\Windows\Tasks 2014-12-03 20:05:56 ----D---- C:\Windows\system32\wfp 2014-12-03 20:05:49 ----D---- C:\Windows\system32\NDF 2014-12-03 20:05:49 ----D---- C:\Windows\system32\CodeIntegrity 2014-12-03 20:05:48 ----D---- C:\Users\pc\AppData\Roaming\MuseScore 2014-12-03 20:05:48 ----D---- C:\Users\pc\AppData\Roaming\MusE 2014-12-03 20:05:11 ----D---- C:\Windows\registration 2014-12-03 20:04:35 ----D---- C:\Windows\SYSWOW64\Macromed 2014-12-03 20:03:54 ----D---- C:\Windows\system32\Macromed 2014-12-03 20:02:53 ----D---- C:\Program Files\Common Files\Microsoft Shared ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 gfibto;gfibto; C:\Windows\system32\drivers\gfibto.sys [2013-07-18 14456] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R1 AFW;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2014-10-28 41680] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2014-08-18 50976] R1 BdAgent;BullGuard Security Agent; C:\Windows\system32\DRIVERS\BdAgent.sys [2014-10-28 117184] R1 BdSpy;BdSpy; C:\Windows\system32\drivers\BdSpy.sys [2014-10-28 67680] R1 NovaShieldFilterDriver;NovaShieldFilterDriver; C:\Windows\system32\DRIVERS\NSKernel.sys [2014-10-28 321112] R1 NovaShieldTDIDriver;NovaShieldTDIDriver; C:\Windows\system32\DRIVERS\NSNetmon.sys [2014-10-28 27544] R3 afwcore;afwcore; C:\Windows\system32\DRIVERS\afwcore.sys [2014-10-28 469712] R3 AGERESoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2010-01-26 1212416] R3 BdNet;BdNet; C:\Windows\system32\DRIVERS\BdNet.sys [2014-10-28 34896] R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920] R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 19968] R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-09-07 2484072] R3 NVENETFD;NVIDIA nForce-netwerkcontroller; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-10-27 196384] R3 Trufos;Trufos; C:\Windows\system32\DRIVERS\Trufos.sys [2014-10-28 350160] R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S3 gfiark;gfiark; C:\Windows\system32\drivers\gfiark.sys [2013-04-11 39504] S3 GTRUSBFilter;Peavey Xport Filter Driver; \??\C:\Windows\system32\Drivers\GTRUSBFilter.sys [2010-08-01 106104] S3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088] R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-12-03 28672] R2 BsBackup;BullGuard backup service; C:\Windows\System32\SvcHost.exe [2009-07-14 27136] R2 BsBhvScan;BullGuard Behavioural Detection; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [2014-12-22 601424] R2 BsCache;BullGuard cache service; C:\Windows\System32\SvcHost.exe [2009-07-14 27136] R2 BsFileScan;BullGuard on-access service; C:\Windows\System32\SvcHost.exe [2009-07-14 27136] R2 BsFire;BullGuard firewall service; C:\Windows\System32\SvcHost.exe [2009-07-14 27136] R2 BsMailProxy;BullGuard e-mail monitoring service; C:\Windows\System32\SvcHost.exe [2009-07-14 27136] R2 BsMain;BullGuard Main Service; C:\Windows\System32\SvcHost.exe [2009-07-14 27136] R2 BsScanner;BullGuard scanning service; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [2014-12-16 280912] R2 BsUpdate;BullGuard update service; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [2014-12-16 384336] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] R2 GTRUSBFilterInstaller;Peavey Xport Filter Driver Installer; C:\Windows\syswow64\GTRUSBFltrInst.exe [2011-08-26 8192] R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728] R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280] R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2011-04-07 5352960] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912] R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-27 1364256] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-07 116648] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-17 267440] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-07 116648] S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-12-03 119408] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-04 1255736] S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------