DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 9.0.8112.16450  BrowserJavaVersion: 1.6.0_27
Run by User at 12:48:00 on 2012-11-20
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.48.1045.18.4078.2084 [GMT 1:00]
.
AV: ESET NOD32 Antivirus 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\atieclxx.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraGrd.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\Grid64.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD64.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
C:\Program Files (x86)\T-Mobile\InternetManager_Z\Bin\mcserver.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\IR\shutTask.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\windows\SysWOW64\RunDll32.exe
C:\windows\SysWOW64\cmd.exe
C:\Program Files (x86)\T-Mobile\InternetManager_Z\Bin\dbus-daemon.exe
C:\Program Files (x86)\T-Mobile\InternetManager_Z\Bin\db_daemon.exe
C:\Users\User\Drivers\explorer.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://lenovo.msn.com
uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
mStart Page = hxxp://lenovo.msn.com
uProxyServer = 190.110.221.34:80
uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll
mURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Pomocnik logowania za pomocą identyfikatora Windows Live: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: Microsoft Web Test Recorder 10.0 Helper: {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
BHO: IplexToALLPlayer: {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: uTorrentBar Toolbar: {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll
TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 
EB: Web Test Recorder 10.0: {5802D092-1784-4908-8CDB-99B6842D353D} - 
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Grid] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraGrd.exe"
uRun: [HydraVisionMDEngine] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"
uRun: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
uRun: [Windows Explorer] C:\Users\User\Drivers\msconfig.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
mRun: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
mRun: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
mRun: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
mRun: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
mRun: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [shutTask] "C:\Program Files (x86)\IR\shutTask.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Windows Explorer] C:\Users\User\Drivers\msconfig.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\mcserver.lnk - C:\Program Files (x86)\T-Mobile\InternetManager_Z\Bin\mcserver.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&ksportuj do programu Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Wyślij &do programu OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{DEA4968D-7662-496A-A543-65BEA21B16E2} : DHCPNameServer = 10.0.0.11 194.204.159.1
TCP: Interfaces\{E3AF2340-205F-4C10-A6A2-97FD06FBD288} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{E3AF2340-205F-4C10-A6A2-97FD06FBD288}\5646974716 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{E3AF2340-205F-4C10-A6A2-97FD06FBD288}\65D20534 : DHCPNameServer = 192.168.2.200
TCP: Interfaces\{E3AF2340-205F-4C10-A6A2-97FD06FBD288}\67E65647D2737343739354 : DHCPNameServer = 95.160.170.92 88.156.222.92 82.139.8.40
TCP: Interfaces\{E3AF2340-205F-4C10-A6A2-97FD06FBD288}\A424D4 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{E3AF2340-205F-4C10-A6A2-97FD06FBD288}\A54554F524635443 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{E3AF2340-205F-4C10-A6A2-97FD06FBD288}\E4544574541425 : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-mStart Page = hxxp://lenovo.msn.com
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe
x64-Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
x64-Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
x64-Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
x64-DPF: {816BE035-1450-40D0-8A3B-BA7825A83A77} - hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\btg6ockw.default\
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\btg6ockw.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\plugins\np-mswmp.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 BMLoad;Bytemobile Boot Time Load Driver;C:\windows\System32\drivers\BMLoad.sys [2012-9-3 16512]
R0 fbfmon;fbfmon;C:\windows\System32\drivers\fbfmon.sys [2011-4-20 57952]
R0 LHDmgr;LHDmgr;C:\windows\System32\drivers\LhdX64.sys [2011-4-20 39008]
R1 BPntDrv;BPntDrv;C:\windows\System32\drivers\BPntDrv.sys [2011-4-20 13408]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\windows\System32\drivers\dtsoftbus01.sys [2011-9-25 270912]
R2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2012-9-28 239616]
R2 Autodesk Content Service;Autodesk Content Service;C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-2-2 18656]
R2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE [2012-6-11 193616]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 eamonm;eamonm;C:\windows\System32\drivers\eamonm.sys [2011-8-9 202576]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-9-22 974944]
R2 epfwwfpr;epfwwfpr;C:\windows\System32\drivers\epfwwfpr.sys [2011-8-4 137144]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-11-19 2462128]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-4-20 13336]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R2 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-11-18 2848168]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-4-20 2656280]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\windows\System32\drivers\AcpiVpc.sys [2010-10-25 29792]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\windows\System32\drivers\AtihdW76.sys [2012-5-14 96896]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE [2012-6-11 240208]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\System32\drivers\clwvd.sys [2011-1-29 31088]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2011-4-20 76912]
R3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]
R3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]
R3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]
R3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
R3 vm2uvcflt;Vimicro USB Camera Filter 2;C:\windows\System32\drivers\vm2uvcflt.sys [2011-4-20 15056]
R3 vm332avs;Lenovo Camera2;C:\windows\System32\drivers\vm332avs.sys [2011-4-20 234960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 KMService;KMService;C:\windows\System32\srvany.exe --> C:\windows\System32\srvany.exe [?]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S3 AVerAF35;HP USB DVB-T TV Tuner;C:\windows\System32\drivers\HPAF35.sys [2012-11-1 511104]
S3 BTWAMPFL;BTWAMPFL;C:\windows\System32\drivers\btwampfl.sys [2011-4-20 349224]
S3 btwl2cap;Bluetooth L2CAP Service;C:\windows\System32\drivers\btwl2cap.sys [2011-4-20 39464]
S3 CMOS;CMOS;C:\Program Files\Lenovo\OneKey App\OneKey Recovery\CMOS.sys [2009-7-13 13328]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-6-4 1431888]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-11-18 135584]
S3 HPIR;HP TV Tuner Infrared Receiver;C:\windows\System32\drivers\HPIR.sys [2012-11-1 93184]
S3 IT9135BDA;IT9135 BDA Devices;C:\windows\System32\drivers\IT9135BDA.sys [2010-2-3 113280]
S3 npggsvc;nProtect GameGuard Service;C:\windows\System32\GameMon.des -service --> C:\windows\System32\GameMon.des -service [?]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\rtsuvstor.sys [2011-4-20 299520]
S3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2009-6-10 187392]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\windows\System32\drivers\ssadbus.sys [2011-5-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\windows\System32\drivers\ssadmdfl.sys [2011-5-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\windows\System32\drivers\ssadmdm.sys [2011-5-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\windows\System32\drivers\ssadserd.sys [2011-5-13 146920]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 VSPerfDrv100;Performance Tools Driver 10.0;C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [2010-3-17 68440]
S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\windows\System32\Wat\WatAdminSvc.exe [2011-9-17 1255736]
S3 wsvd;wsvd;C:\windows\System32\drivers\wsvd.sys [2009-7-21 121840]
S3 zte_cdc_acm;ZTE All CDC-ACM driver;C:\windows\System32\drivers\zte_cdc_acm.sys [2012-9-3 79872]
S3 zte_cpo;ZTE All Install;C:\windows\System32\drivers\zte_cpo.sys [2012-9-3 14336]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]
S4 RsFx0103;RsFx0103 Driver;C:\windows\System32\drivers\RsFx0103.sys [2009-3-30 311656]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-3-30 427880]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== File Associations ===============
.
FileExt: .scr: AutoCADScriptFile=C:\windows\System32\notepad.exe "%1"
FileExt: .vbe: VBEFile=C:\windows\SysWow64\CScript.exe "%1" %*
FileExt: .vbs: VBSFile=C:\windows\SysWow64\CScript.exe "%1" %*
FileExt: .js: JSFile=C:\windows\SysWow64\CScript.exe "%1" %*
FileExt: .jse: JSEFile=C:\windows\SysWow64\CScript.exe "%1" %*
FileExt: .wsf: WSFFile=C:\windows\SysWow64\CScript.exe "%1" %*
.
=============== Created Last 30 ================
.
2012-11-20 11:28:54	61440	----a-w-	C:\windows\SysWow64\drivers\vprrfuh.sys
2012-11-19 22:59:32	--------	d-----w-	C:\Program Files (x86)\LogMeIn Hamachi
2012-11-19 19:37:14	102912	--sha-r-	C:\setup.exe
2012-11-19 19:36:49	--------	d-sh--w-	C:\Users\User\Drivers
2012-11-18 17:29:42	--------	d-----w-	C:\Program Files (x86)\TeamViewer
2012-11-18 17:05:47	303616	----a-w-	C:\windows\System32\drivers\atksgt.sys
2012-11-18 17:05:46	35328	----a-w-	C:\windows\System32\drivers\lirsgt.sys
2012-11-18 17:01:47	--------	d-----w-	C:\Program Files (x86)\Gothic III
2012-11-18 17:00:53	733184	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll
2012-11-18 17:00:53	69715	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll
2012-11-18 17:00:53	5632	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe
2012-11-18 17:00:53	32768	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2012-11-18 17:00:53	266240	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll
2012-11-18 17:00:53	172032	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll
2012-11-18 17:00:52	303236	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll
2012-11-18 17:00:52	180356	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll
2012-11-18 16:55:36	--------	d-----w-	C:\Users\User\AppData\Local\{9472B6AD-2D99-430F-8F35-266FF5D62B0A}
2012-11-18 13:31:12	--------	d-----w-	C:\Users\User\AppData\Local\IsolatedStorage
2012-11-18 13:31:11	--------	d-----w-	C:\Users\User\AppData\Local\Futuremark_Corporation
2012-11-18 13:30:00	--------	d-----w-	C:\Program Files (x86)\Futuremark
2012-11-18 13:29:19	--------	d-----w-	C:\Program Files\Futuremark
2012-11-18 13:08:42	--------	d-----w-	C:\Program Files (x86)\Sapphire TRIXX
2012-11-18 12:57:56	--------	d-----w-	C:\Program Files (x86)\GPU-Z
2012-11-16 23:59:00	--------	d-----w-	C:\Program Files (x86)\Activision
2012-11-16 11:50:34	805400	----a-r-	C:\windows\SysWow64\tmp40.tmp
2012-11-16 11:48:57	805400	----a-r-	C:\windows\SysWow64\tmp3F.tmp
2012-11-16 11:28:23	--------	d-----w-	C:\Program Files (x86)\Codemasters
2012-11-16 08:32:39	--------	d-----w-	C:\Users\User\Race Driver GRID
2012-11-16 01:39:15	9291768	----a-w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3D3ADBE0-CEB2-4D4E-84F8-E8958BFD6372}\mpengine.dll
2012-11-15 13:59:29	--------	d-----w-	C:\Users\User\AppData\Local\{CC22C467-5F25-407C-86BE-2C5055150F3C}
2012-11-15 10:55:43	0	----a-w-	C:\windows\SysWow64\shoCAE.tmp
2012-11-14 20:04:47	--------	d-----w-	C:\Users\User\AppData\Local\{DBD517EE-FA28-499E-B5CA-93326A1A0259}
2012-11-13 07:39:57	--------	d-----w-	C:\windows\pss
2012-11-12 19:46:50	4682	----a-w-	C:\windows\SysWow64\npptNT2.sys
2012-11-12 19:46:49	5174	----a-w-	C:\windows\SysWow64\nppt9x.vxd
2012-11-12 19:44:51	--------	d-----w-	C:\Log
2012-11-12 19:44:18	--------	d-----w-	C:\ProgramData\AMD
2012-11-12 19:44:17	--------	d-----w-	C:\Program Files (x86)\AMD AVT
2012-11-12 19:44:11	--------	d-----w-	C:\Program Files (x86)\AMD APP
2012-11-12 19:44:04	--------	d-----w-	C:\Program Files\Common Files\ATI Technologies
2012-11-12 19:44:04	--------	d-----w-	C:\Program Files (x86)\Common Files\ATI Technologies
2012-11-12 19:35:00	--------	d-----w-	C:\Program Files (x86)\Fifa Online 2
2012-11-12 18:17:48	--------	d-----w-	C:\Users\User\gry i programy 360x640 25.10.2010
2012-11-12 17:55:21	0	----a-w-	C:\windows\SysWow64\shoAA59.tmp
2012-11-12 12:42:26	--------	d-----w-	C:\Users\User\AppData\Roaming\Xfire
2012-11-12 12:42:24	--------	d-----w-	C:\ProgramData\Xfire
2012-11-12 12:42:24	--------	d-----w-	C:\Program Files (x86)\Xfire
2012-11-12 12:41:57	--------	d-----w-	C:\ProgramData\media center programs
2012-11-12 12:41:54	--------	d-----w-	C:\Program Files (x86)\Funcom
2012-11-08 22:49:22	--------	d-----w-	C:\Users\User\World of Warcraft - Cataclysm
2012-11-08 13:24:07	--------	d-----w-	C:\Users\User\VirtualBox VMs
2012-11-08 13:04:38	--------	d-----w-	C:\Users\User\.VirtualBox
2012-11-08 12:58:48	237400	----a-w-	C:\windows\System32\drivers\VBoxDrv.sys
2012-11-08 12:58:36	119640	----a-w-	C:\windows\System32\drivers\VBoxUSBMon.sys
2012-11-08 12:58:24	--------	d-----w-	C:\Program Files\Oracle
2012-11-06 15:08:51	--------	d-----w-	C:\Program Files (x86)\Bethesda Softworks
2012-11-06 11:39:45	--------	d-----w-	C:\Program Files (x86)\Nordic Games
2012-11-05 12:38:50	8282192	----a-w-	C:\ProgramData\Microsoft\BingBar\BBSvc\7.1.391.0oemBingBarSetup-Partner.EXE
2012-11-01 14:25:03	--------	d-----w-	C:\Program Files\PlayReady
2012-11-01 11:26:58	9728	----a-w-	C:\windows\System32\CIRCoInst.dll
2012-11-01 11:26:58	93184	----a-w-	C:\windows\System32\drivers\HPIR.sys
2012-11-01 11:26:58	511104	----a-w-	C:\windows\System32\drivers\HPAF35.sys
2012-11-01 11:26:58	--------	d-----w-	C:\windows\Driver Cache
2012-11-01 11:26:55	--------	d-----w-	C:\Program Files (x86)\HP
2012-11-01 11:26:52	--------	d-----w-	C:\Program Files (x86)\HP USB DVB-T TV Tuner
2012-10-30 12:15:43	--------	d-----w-	C:\Program Files (x86)\Medal of Honor Warfighter
2012-10-27 14:24:27	--------	d-----w-	C:\ead6d16549b612420a3396
2012-10-27 14:19:51	--------	d-----w-	C:\Program Files (x86)\Viking Battle for Asgard
2012-10-26 18:00:50	131416	----a-w-	C:\windows\System32\drivers\VBoxNetAdp.sys
2012-10-26 17:59:44	203608	----a-w-	C:\windows\System32\VBoxNetFltNobj.dll
2012-10-26 17:59:44	146264	----a-w-	C:\windows\System32\drivers\VBoxNetFlt.sys
2012-10-25 16:18:55	686416	----a-w-	C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
.
==================== Find3M  ====================
.
2012-11-19 21:59:20	75136	----a-w-	C:\windows\SysWow64\PnkBstrA.exe
2012-11-19 21:59:20	189248	----a-w-	C:\windows\SysWow64\PnkBstrB.exe
2012-11-19 21:27:26	281392	----a-w-	C:\windows\SysWow64\PnkBstrB.xtr
2012-11-19 21:13:50	189248	----a-w-	C:\windows\SysWow64\PnkBstrB.ex0
2012-11-16 11:50:35	466456	----a-w-	C:\windows\System32\wrap_oal.dll
2012-11-16 11:50:34	444952	----a-w-	C:\windows\SysWow64\wrap_oal.dll
2012-10-15 20:29:30	3882096	----a-w-	C:\windows\SysWow64\GameMon.des
2012-10-11 11:31:55	8192	----a-w-	C:\windows\SysWow64\srvany.exe
2012-10-11 11:21:08	350	----a-w-	C:\windows\System32\AF15IRTBL.bin
2012-10-11 11:21:08	28672	----a-w-	C:\windows\System32\AF15BDAEX.dll
2012-09-28 14:37:02	221696	----a-w-	C:\windows\System32\clinfo.exe
2012-09-28 14:36:44	75776	----a-w-	C:\windows\System32\OpenVideo64.dll
2012-09-28 14:36:40	65536	----a-w-	C:\windows\SysWow64\OpenVideo.dll
2012-09-28 14:36:36	63488	----a-w-	C:\windows\System32\OVDecode64.dll
2012-09-28 14:36:34	56320	----a-w-	C:\windows\SysWow64\OVDecode.dll
2012-09-28 14:36:24	32635904	----a-w-	C:\windows\System32\amdocl64.dll
2012-09-28 14:32:16	27341824	----a-w-	C:\windows\SysWow64\amdocl.dll
2012-09-28 14:28:46	54784	----a-w-	C:\windows\System32\OpenCL.dll
2012-09-28 14:28:42	50176	----a-w-	C:\windows\SysWow64\OpenCL.dll
2012-09-28 02:23:00	5557928	----a-w-	C:\windows\SysWow64\atiumdag.dll
2012-09-28 02:21:20	10697216	----a-w-	C:\windows\System32\drivers\atikmdag.sys
2012-09-28 02:05:38	70144	----a-w-	C:\windows\System32\coinst_9.002.dll
2012-09-28 02:03:52	163840	----a-w-	C:\windows\System32\atiapfxx.exe
2012-09-28 02:02:30	51200	----a-w-	C:\windows\System32\aticalrt64.dll
2012-09-28 02:02:28	46080	----a-w-	C:\windows\SysWow64\aticalrt.dll
2012-09-28 02:02:22	44544	----a-w-	C:\windows\System32\aticalcl64.dll
2012-09-28 02:02:20	44032	----a-w-	C:\windows\SysWow64\aticalcl.dll
2012-09-28 02:02:08	16082432	----a-w-	C:\windows\System32\aticaldd64.dll
2012-09-28 01:59:56	23825920	----a-w-	C:\windows\System32\atio6axx.dll
2012-09-28 01:57:20	13703168	----a-w-	C:\windows\SysWow64\aticaldd.dll
2012-09-28 01:43:28	935424	----a-w-	C:\windows\SysWow64\aticfx32.dll
2012-09-28 01:41:40	1120768	----a-w-	C:\windows\System32\aticfx64.dll
2012-09-28 01:41:14	19624960	----a-w-	C:\windows\SysWow64\atioglxx.dll
2012-09-28 01:39:36	6536192	----a-w-	C:\windows\SysWow64\atidxx32.dll
2012-09-28 01:39:14	442368	----a-w-	C:\windows\System32\atidemgy.dll
2012-09-28 01:39:08	538112	----a-w-	C:\windows\System32\atieclxx.exe
2012-09-28 01:38:16	239616	----a-w-	C:\windows\System32\atiesrxx.exe
2012-09-28 01:36:50	120320	----a-w-	C:\windows\System32\atitmm64.dll
2012-09-28 01:36:36	21504	----a-w-	C:\windows\System32\atimuixx.dll
2012-09-28 01:36:30	59392	----a-w-	C:\windows\System32\atiedu64.dll
2012-09-28 01:36:26	43520	----a-w-	C:\windows\SysWow64\ati2edxx.dll
2012-09-28 01:31:26	3127296	----a-w-	C:\windows\System32\atiumd6a.dll
2012-09-28 01:25:24	6704640	----a-w-	C:\windows\System32\atiumd64.dll
2012-09-28 01:22:42	7167488	----a-w-	C:\windows\System32\atidxx64.dll
2012-09-28 01:22:30	2691584	----a-w-	C:\windows\SysWow64\atiumdva.dll
2012-09-28 01:13:40	595456	----a-w-	C:\windows\System32\atiadlxx.dll
2012-09-28 01:13:30	405504	----a-w-	C:\windows\SysWow64\atiadlxy.dll
2012-09-28 01:13:16	17920	----a-w-	C:\windows\System32\atig6pxx.dll
2012-09-28 01:13:12	14848	----a-w-	C:\windows\SysWow64\atiglpxx.dll
2012-09-28 01:13:12	14848	----a-w-	C:\windows\System32\atiglpxx.dll
2012-09-28 01:13:08	41984	----a-w-	C:\windows\System32\atig6txx.dll
2012-09-28 01:13:00	33280	----a-w-	C:\windows\SysWow64\atigktxx.dll
2012-09-28 01:12:58	56320	----a-w-	C:\windows\System32\atimpc64.dll
2012-09-28 01:12:58	56320	----a-w-	C:\windows\System32\amdpcom64.dll
2012-09-28 01:12:52	460288	----a-w-	C:\windows\System32\drivers\atikmpag.sys
2012-09-28 01:12:48	56832	----a-w-	C:\windows\SysWow64\atimpc32.dll
2012-09-28 01:12:48	56832	----a-w-	C:\windows\SysWow64\amdpcom32.dll
2012-09-28 01:11:22	129536	----a-w-	C:\windows\System32\atiuxp64.dll
2012-09-28 01:11:16	109568	----a-w-	C:\windows\SysWow64\atiuxpag.dll
2012-09-28 01:11:08	103424	----a-w-	C:\windows\System32\atiu9p64.dll
2012-09-28 01:10:58	82944	----a-w-	C:\windows\SysWow64\atiu9pag.dll
2012-09-28 01:09:48	53248	----a-w-	C:\windows\System32\drivers\ati2erec.dll
2012-09-14 19:19:29	2048	----a-w-	C:\windows\System32\tzres.dll
2012-09-14 18:28:53	2048	----a-w-	C:\windows\SysWow64\tzres.dll
2012-09-03 12:42:41	118	----a-w-	C:\windows\SysWow64\SupportApp.bat
2012-08-31 18:19:35	1659760	----a-w-	C:\windows\System32\drivers\ntfs.sys
2012-08-30 18:03:45	5559664	----a-w-	C:\windows\System32\ntoskrnl.exe
2012-08-30 17:12:02	3968880	----a-w-	C:\windows\SysWow64\ntkrnlpa.exe
2012-08-30 17:12:02	3914096	----a-w-	C:\windows\SysWow64\ntoskrnl.exe
2012-08-24 18:05:07	220160	----a-w-	C:\windows\System32\wintrust.dll
2012-08-24 16:57:48	172544	----a-w-	C:\windows\SysWow64\wintrust.dll
2012-08-24 10:31:32	2312704	----a-w-	C:\windows\System32\jscript9.dll
2012-08-24 10:21:18	1392128	----a-w-	C:\windows\System32\wininet.dll
2012-08-24 10:20:11	1494528	----a-w-	C:\windows\System32\inetcpl.cpl
2012-08-24 10:14:45	173056	----a-w-	C:\windows\System32\ieUnatt.exe
2012-08-24 10:13:29	599040	----a-w-	C:\windows\System32\vbscript.dll
2012-08-24 10:09:42	2382848	----a-w-	C:\windows\System32\mshtml.tlb
2012-08-24 06:59:17	1800704	----a-w-	C:\windows\SysWow64\jscript9.dll
2012-08-24 06:51:27	1129472	----a-w-	C:\windows\SysWow64\wininet.dll
2012-08-24 06:51:02	1427968	----a-w-	C:\windows\SysWow64\inetcpl.cpl
2012-08-24 06:47:26	142848	----a-w-	C:\windows\SysWow64\ieUnatt.exe
2012-08-24 06:47:12	420864	----a-w-	C:\windows\SysWow64\vbscript.dll
2012-08-24 06:43:58	2382848	----a-w-	C:\windows\SysWow64\mshtml.tlb
2012-08-22 18:12:50	1913200	----a-w-	C:\windows\System32\drivers\tcpip.sys
2012-08-22 18:12:40	950128	----a-w-	C:\windows\System32\drivers\ndis.sys
2012-08-22 18:12:40	376688	----a-w-	C:\windows\System32\drivers\netio.sys
2012-08-22 18:12:33	288624	----a-w-	C:\windows\System32\drivers\FWPKCLNT.SYS
.
============= FINISH: 12:48:38,17 ===============