DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16519 Run by danielpc at 18:02:01 on 2013-03-31 #Option Extended Search is enabled. Microsoft Windows 8 6.2.9200.0.1250.48.1045.18.8127.6752 [GMT 2:00] . AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5} AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E} . ============== Running Processes =============== . C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe C:\Windows\system32\dashost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\dwm.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\taskhostex.exe C:\Windows\Explorer.EXE C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files (x86)\Winstep\Nexus.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe C:\Program Files (x86)\Razer\DeathAdder\razerhid.exe C:\Program Files (x86)\Razer\DeathAdder\razertra.exe C:\Program Files (x86)\Razer\DeathAdder\razerofa.exe C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16455_none_624a7aa150f57306\TiWorker.exe D:\Gierki\The Sims 3\Game\Bin\Sims3LauncherW.exe C:\Windows\system32\taskhost.exe C:\Windows\System32\WUDFHost.exe C:\Windows\explorer.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = about:blank uLocal Page = about:blank mStart Page = about:blank mLocal Page = about:blank mDefault_Page_URL = about:blank BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll uRun: [Nexus] C:\Program Files (x86)\Winstep\Nexus.exe autostart mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\runner_avp.exe" mRun: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe mRun: [DeathAdder] C:\Program Files (x86)\Razer\DeathAdder\razerhid.exe StartupFolder: C:\Users\danielpc\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\AutorunsDisabled\EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:221 mPolicies-Explorer: NoDriveTypeAutoRun = dword:60 IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 IE: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm IE: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html TCP: NameServer = 192.168.1.1 TCP: Interfaces\{DAB89B57-7E30-45DC-9E05-22C26C7A9BFC} : NameServer = 208.67.222.222,208.67.220.220 TCP: Interfaces\{DAB89B57-7E30-45DC-9E05-22C26C7A9BFC} : DHCPNameServer = 192.168.1.1 SSODL: WebCheck - mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.43\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome x64-mStart Page = about:blank x64-BHO: Content Blocker Plugin: {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll x64-BHO: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll x64-BHO: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll x64-BHO: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" -f "C:\ProgramData\NVIDIA\Updatus\NvTmru\nvtmru.dat" x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s x64-mPolicies-Explorer: NoDriveTypeAutoRun = dword:60 x64-IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll x64-IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll x64-SSODL: WebCheck - . ============= SERVICES / DRIVERS =============== . R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2013-3-30 651832] R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\Drivers\klim6.sys [2012-8-2 28504] R1 klwfp;klwfp;C:\Windows\System32\Drivers\klwfp.sys [2013-3-2 50088] R1 kneps;kneps;C:\Windows\System32\Drivers\kneps.sys [2012-8-13 178008] R2 AVP;Usługa Kaspersky Anti-Virus;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2012-8-17 356376] R2 MSI_FastBoot;MSI_FastBoot;C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [2013-1-30 103992] R3 danewFltr;NewDeathAdder Mouse;C:\Windows\System32\Drivers\danew.sys [2013-3-30 12928] R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\Drivers\klkbdflt.sys [2012-10-25 29016] R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\Drivers\klmouflt.sys [2012-10-25 29528] R3 NTIOLib_FastBoot;NTIOLib_FastBoot;C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [2013-1-30 13368] R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-1-23 690832] R3 SmbDrvI;SmbDrvI;C:\Windows\System32\Drivers\Smb_driver_Intel.sys [2013-3-30 44344] R3 WUDFWpdComp;WUDFWpdComp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656] R3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656] S0 klelam;klelam;C:\Windows\System32\Drivers\klelam.sys [2012-7-27 29616] S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-3-14 383264] S4 Winstep Xtreme Service;Winstep Xtreme Service;C:\Program Files (x86)\Winstep\WsxService --> C:\Program Files (x86)\Winstep\WsxService [?] . =============== File Associations =============== . FileExt: .vbs: VBSFile=C:\Windows\SysWow64\WScript.exe "%1" %* FileExt: .js: jsfile=C:\Windows\SysWow64\WScript.exe "%1" %* . =============== Created Last 60 ================ . 2013-03-30 14:56:11 -------- d-----w- C:\Windows\SysWow64\RTCOM 2013-03-30 14:56:11 -------- d-----w- C:\Program Files\Realtek 2013-03-30 14:49:06 2079968 ----a-w- C:\Windows\RtlExUpd.dll 2013-03-30 13:16:40 -------- d-----w- C:\Users\danielpc\AppData\Roaming\Razer 2013-03-30 13:09:53 85504 ----a-w- C:\Windows\SysWow64\DeathAdder64.cpl 2013-03-30 13:09:51 12928 ----a-w- C:\Windows\System32\drivers\danew.sys 2013-03-30 12:56:09 -------- d-----w- C:\Intel 2013-03-30 12:51:36 -------- d-----w- C:\Program Files\Synaptics 2013-03-30 12:51:32 44344 ----a-w- C:\Windows\System32\drivers\Smb_driver_Intel.sys 2013-03-30 12:44:32 651832 ----a-w- C:\Windows\System32\drivers\iaStorA.sys 2013-03-30 12:36:48 -------- d-----w- C:\Users\danielpc\AppData\Local\Innovative Solutions 2013-03-30 12:30:24 -------- d-----w- C:\Users\danielpc\AppData\Roaming\Easeware 2013-03-30 12:30:20 -------- d-----w- C:\Program Files\Easeware 2013-03-30 12:11:13 -------- d-----w- C:\Users\danielpc\AppData\Roaming\Wise Registry Cleaner 2013-03-30 12:10:45 -------- d-----w- C:\Program Files (x86)\Wise 2013-03-26 20:45:11 -------- d-----w- C:\Windows\LastGood.Tmp 2013-03-24 14:29:00 -------- d-----w- C:\Users\danielpc\AppData\Local\Evernote 2013-03-24 14:26:52 -------- d-----w- C:\Program Files (x86)\Evernote 2013-03-24 12:46:44 -------- d-----w- C:\Users\danielpc\AppData\Local\Thunderbird 2013-03-23 18:56:08 798208 ----a-w- C:\Windows\SysWow64\NextControls.ocx 2013-03-23 18:56:08 608448 ----a-w- C:\Windows\SysWow64\comctl32.ocx 2013-03-23 18:56:08 1347344 ----a-w- C:\Windows\SysWow64\msvbvm50.dll 2013-03-23 18:56:08 -------- d-----w- C:\Program Files (x86)\Winstep 2013-03-23 18:44:04 -------- d-----w- C:\Users\danielpc\AppData\Local\ODUI 2013-03-23 18:43:50 -------- d-----w- C:\Users\danielpc\AppData\Roaming\Stardock 2013-03-23 18:43:49 -------- d-----w- C:\Users\danielpc\AppData\Local\Stardock 2013-03-23 18:43:27 -------- d-----w- C:\Users\danielpc\AppData\Local\PackageAware 2013-03-23 14:33:58 -------- d-----w- C:\Users\danielpc\AppData\Local\IM 2013-03-23 14:33:53 -------- d-----w- C:\ProgramData\IncrediMail 2013-03-23 14:33:53 -------- d-----w- C:\ProgramData\IM 2013-03-23 14:29:38 -------- d-----w- C:\Users\danielpc\AppData\Roaming\CintaNotes 2013-03-23 14:28:54 -------- d-----w- C:\Program Files (x86)\CintaNotes 2013-03-23 14:13:13 -------- d-----w- C:\Users\danielpc\AppData\Local\Arcode 2013-03-16 16:34:27 78168 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-03-16 16:34:27 692568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-03-16 16:14:15 1807136 ----a-w- C:\Windows\System32\nvdispco6431421.dll 2013-03-16 16:14:15 1510176 ----a-w- C:\Windows\System32\nvdispgenco6431421.dll 2013-03-16 15:01:38 -------- d-----w- C:\Users\danielpc\AppData\Local\Programs 2013-03-16 12:52:29 388096 ----a-r- C:\Users\danielpc\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2013-03-16 12:52:29 -------- d-----w- C:\Program Files (x86)\Trend Micro 2013-03-16 12:45:59 -------- d-----w- C:\ProgramData\WRData 2013-03-15 19:06:45 3767504 ----a-w- C:\Windows\System32\d3dx9_26.dll 2013-03-15 19:06:45 2297552 ----a-w- C:\Windows\SysWow64\d3dx9_26.dll 2013-03-15 18:48:50 468992 ----a-w- C:\Windows\System32\MFMediaEngine.dll 2013-03-14 21:07:52 559904 ----a-w- C:\Windows\SysWow64\nvStreaming.exe 2013-03-10 14:56:23 -------- d-----w- C:\Users\danielpc\AppData\Local\Chromium 2013-03-10 14:54:38 -------- d-----w- C:\Program Files (x86)\Comodo 2013-03-10 14:54:00 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll 2013-03-10 14:54:00 1060864 ----a-w- C:\Windows\SysWow64\mfc71.dll 2013-03-10 14:42:34 -------- d-----w- C:\Users\danielpc\AppData\Local\Apple Computer 2013-03-10 14:42:21 -------- d-----w- C:\Users\danielpc\AppData\Local\Apple 2013-03-10 14:26:17 -------- d-----w- C:\Users\danielpc\AppData\Local\Opera 2013-03-10 14:26:07 -------- d-----w- C:\Program Files\Opera x64 2013-03-09 17:34:25 -------- d--h--w- C:\$WINDOWS.~BT 2013-03-08 17:37:30 -------- d-----r- C:\sms 2013-03-08 17:09:10 -------- d-----w- C:\Program Files (x86)\Phyxion.net 2013-03-08 14:55:30 -------- d-----w- C:\Windows\SysWow64\%Report% 2013-03-08 14:45:11 -------- d-----w- C:\Windows\MUITweaker 2013-03-08 14:38:20 -------- d-----w- C:\Program Files (x86)\TweakMe! 2013-03-02 16:05:55 -------- d-----w- C:\Users\danielpc\AppData\Local\NokiaAccount 2013-03-02 15:58:55 -------- d-----w- C:\Users\danielpc\AppData\Local\Nokia 2013-03-02 15:58:29 -------- d-----w- C:\ProgramData\Nokia 2013-03-02 15:58:16 26112 ----a-w- C:\Windows\System32\drivers\pccsmcfdx64.sys 2013-03-02 15:58:13 -------- d-----w- C:\Program Files (x86)\PC Connectivity Solution 2013-03-02 15:57:05 -------- d-----w- C:\ProgramData\NokiaInstallerCache 2013-03-02 15:13:23 -------- d-----w- C:\moje smsy pc suite 2013-03-02 11:47:37 -------- d-----w- C:\Program Files (x86)\Common Files\Nokia 2013-03-02 11:47:22 -------- d-----w- C:\Program Files (x86)\Nokia 2013-03-02 11:31:25 -------- d-----w- C:\Users\danielpc\AppData\Local\Google 2013-03-02 10:50:21 50088 ----a-w- C:\Windows\System32\drivers\klwfp.sys 2013-03-02 10:49:32 35104 ----a-w- C:\Windows\System32\TURegOpt.exe 2013-03-02 10:49:31 26400 ----a-w- C:\Windows\System32\authuitu.dll 2013-03-02 10:49:31 21792 ----a-w- C:\Windows\SysWow64\authuitu.dll 2013-03-02 10:48:40 -------- d-----w- C:\Program Files (x86)\data 2013-03-02 10:48:37 -------- d-----w- C:\Users\danielpc\AppData\Roaming\TuneUp Software 2013-03-02 10:47:44 -------- d-----w- C:\ProgramData\TuneUp Software 2013-03-02 10:47:19 -------- d-sh--w- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 2013-03-02 10:47:19 -------- d--h--w- C:\ProgramData\Common Files 2013-03-02 10:30:45 443392 ----a-w- C:\Windows\System32\ReAgent.dll 2013-03-02 10:30:45 375808 ----a-w- C:\Windows\SysWow64\ReAgent.dll 2013-03-02 10:30:45 1010688 ----a-w- C:\Windows\System32\reseteng.dll 2013-02-23 14:44:53 -------- d-----w- C:\ProgramData\EA Core 2013-02-23 12:55:08 63776 ----a-w- C:\Windows\System32\nvshext.dll 2013-02-23 12:54:05 31672 ----a-w- C:\Windows\System32\nvhdap64.dll 2013-02-23 12:54:05 194488 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys 2013-02-23 12:54:05 1510328 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll 2013-02-23 12:54:04 1807136 ----a-w- C:\Windows\System32\nvdispco6420294.dll 2013-02-23 12:54:04 1510176 ----a-w- C:\Windows\System32\nvdispgenco6420162.dll 2013-02-23 12:24:51 6967016 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-02-23 12:24:20 817664 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll 2013-02-23 12:24:20 1084416 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll 2013-01-31 15:23:44 -------- d-----w- C:\Program Files\trend micro . ==================== Find6M ==================== . 2013-03-15 04:16:18 3477280 ----a-w- C:\Windows\System32\nvsvc64.dll 2013-03-15 04:16:17 6398240 ----a-w- C:\Windows\System32\nvcpl.dll 2013-03-15 04:16:10 877856 ----a-w- C:\Windows\System32\nvvsvc.exe 2013-03-15 04:16:10 2555680 ----a-w- C:\Windows\System32\nvsvcr.dll 2013-03-15 04:16:10 237856 ----a-w- C:\Windows\System32\nvmctray.dll 2013-03-13 16:24:01 3065455 ----a-w- C:\Windows\System32\nvcoproc.bin 2013-03-02 08:22:18 361984 ----a-w- C:\Windows\SysWow64\MFMediaEngine.dll 2013-02-15 07:58:59 39936 ----a-w- C:\Windows\apppatch\apppatch64\acspecfc.dll 2013-02-15 06:35:40 444416 ----a-w- C:\Windows\apppatch\AcSpecfc.dll 2013-02-12 01:30:04 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll 2013-02-12 00:56:19 53760 ----a-w- C:\Windows\System32\UXInit.dll 2013-02-12 00:25:18 4041728 ----a-w- C:\Windows\System32\win32k.sys 2013-02-12 00:17:50 20992 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-02-07 04:09:56 69864 ----a-w- C:\Windows\System32\drivers\pdc.sys 2013-02-07 03:34:58 10115072 ----a-w- C:\Windows\System32\twinui.dll 2013-02-07 03:33:47 2302464 ----a-w- C:\Windows\System32\authui.dll 2013-02-07 03:33:42 2146816 ----a-w- C:\Windows\System32\actxprxy.dll 2013-02-07 01:34:00 8856576 ----a-w- C:\Windows\SysWow64\twinui.dll 2013-02-07 01:33:03 2033664 ----a-w- C:\Windows\SysWow64\authui.dll 2013-02-07 01:33:01 754176 ----a-w- C:\Windows\SysWow64\actxprxy.dll 2013-02-05 22:31:11 622080 ----a-w- C:\Windows\System32\drivers\srv2.sys 2013-02-05 22:29:09 370688 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2013-02-05 22:28:48 247808 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2013-02-05 22:28:36 215552 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2013-02-05 04:58:01 1766912 ----a-w- C:\Windows\SysWow64\wininet.dll 2013-02-05 04:56:33 2877952 ----a-w- C:\Windows\SysWow64\jscript9.dll 2013-02-05 04:56:27 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll 2013-02-05 04:56:27 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2013-02-05 03:55:27 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2013-02-05 01:44:50 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll 2013-02-04 22:39:47 2246656 ----a-w- C:\Windows\System32\wininet.dll 2013-02-04 22:39:39 907776 ----a-w- C:\Windows\System32\uxtheme.dll 2013-02-04 22:38:55 3966464 ----a-w- C:\Windows\System32\jscript9.dll 2013-02-04 22:38:53 136704 ----a-w- C:\Windows\System32\iesysprep.dll 2013-02-02 11:19:44 496872 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2013-02-02 11:19:44 446184 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS 2013-02-02 11:19:41 329960 ----a-w- C:\Windows\System32\drivers\storport.sys 2013-02-02 11:19:33 61672 ----a-w- C:\Windows\System32\drivers\crashdmp.sys 2013-02-02 10:54:54 1933544 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2013-02-02 10:28:54 993512 ----a-w- C:\Windows\System32\drivers\ndis.sys 2013-02-02 10:28:54 2226408 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-02-02 08:40:58 375808 ----a-w- C:\Windows\SysWow64\wbem\WmiPrvSE.exe 2013-02-02 08:40:55 80896 ----a-w- C:\Windows\SysWow64\tasklist.exe 2013-02-02 08:40:55 79360 ----a-w- C:\Windows\SysWow64\taskkill.exe 2013-02-02 08:40:36 155136 ----a-w- C:\Windows\SysWow64\XpsRasterService.dll 2013-02-02 08:40:35 370688 ----a-w- C:\Windows\SysWow64\WWanAPI.dll 2013-02-02 08:40:27 131072 ----a-w- C:\Windows\SysWow64\wbem\WmiDcPrv.dll 2013-02-02 08:40:26 410624 ----a-w- C:\Windows\SysWow64\wlroamextension.dll 2013-02-02 08:40:22 197632 ----a-w- C:\Windows\SysWow64\Windows.Networking.Connectivity.dll 2013-02-02 08:40:22 10792448 ----a-w- C:\Windows\SysWow64\Windows.UI.Xaml.dll 2013-02-02 08:40:01 356352 ----a-w- C:\Windows\SysWow64\SettingSync.dll 2013-02-02 08:39:59 325632 ----a-w- C:\Windows\SysWow64\schannel.dll 2013-02-02 08:39:47 18432 ----a-w- C:\Windows\SysWow64\npmproxy.dll 2013-02-02 08:39:34 55296 ----a-w- C:\Windows\SysWow64\nlaapi.dll 2013-02-02 08:39:34 15872 ----a-w- C:\Windows\SysWow64\nlmproxy.dll 2013-02-02 08:39:34 12288 ----a-w- C:\Windows\SysWow64\nlmsprep.dll 2013-02-02 08:39:33 115712 ----a-w- C:\Windows\SysWow64\netprofm.dll 2013-02-02 08:39:28 5090816 ----a-w- C:\Windows\SysWow64\mstscax.dll 2013-02-02 08:39:15 157696 ----a-w- C:\Windows\SysWow64\mbsmsapi.dll 2013-02-02 08:38:54 567808 ----a-w- C:\Windows\SysWow64\duser.dll 2013-02-02 08:24:19 107520 ----a-w- C:\Windows\System32\taskkill.exe 2013-02-02 08:24:19 102400 ----a-w- C:\Windows\System32\tasklist.exe 2013-02-02 08:23:44 228352 ----a-w- C:\Windows\System32\XpsRasterService.dll 2013-02-02 08:23:43 475136 ----a-w- C:\Windows\System32\WWanAPI.dll 2013-02-02 08:23:37 611840 ----a-w- C:\Windows\System32\wpd_ci.dll 2013-02-02 08:23:37 105472 ----a-w- C:\Windows\System32\wpdbusenum.dll 2013-02-02 08:23:30 830464 ----a-w- C:\Windows\System32\wbem\WmiPrvSD.dll 2013-02-02 08:23:28 543232 ----a-w- C:\Windows\System32\wlroamextension.dll 2013-02-02 08:23:21 13643264 ----a-w- C:\Windows\System32\Windows.UI.Xaml.dll 2013-02-02 08:23:19 293376 ----a-w- C:\Windows\System32\Windows.Networking.Connectivity.dll 2013-02-02 08:23:18 731648 ----a-w- C:\Windows\System32\win32spl.dll 2013-02-02 08:23:16 87552 ----a-w- C:\Windows\System32\wersvc.dll 2013-02-02 08:22:28 448512 ----a-w- C:\Windows\System32\SettingSync.dll 2013-02-02 08:22:22 416256 ----a-w- C:\Windows\System32\schannel.dll 2013-02-02 08:21:45 467456 ----a-w- C:\Windows\System32\netprofmsvc.dll 2013-02-02 08:21:44 385024 ----a-w- C:\Windows\System32\ncsi.dll 2013-02-02 08:21:38 5977600 ----a-w- C:\Windows\System32\mstscax.dll 2013-02-02 08:21:10 225280 ----a-w- C:\Windows\System32\mbsmsapi.dll 2013-02-02 08:20:47 260096 ----a-w- C:\Windows\System32\hotspotauth.dll 2013-02-02 08:20:31 729600 ----a-w- C:\Windows\System32\duser.dll 2013-02-02 07:30:05 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-02-02 07:25:52 297984 ----a-w- C:\Windows\System32\drivers\ks.sys 2013-02-02 07:25:26 82944 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2013-02-02 07:25:23 37632 ----a-w- C:\Windows\System32\drivers\BthAvrcpTg.sys 2013-02-02 05:41:57 1437184 ----a-w- C:\Windows\SysWow64\GdiPlus.dll 2013-02-02 05:31:54 1690624 ----a-w- C:\Windows\System32\GdiPlus.dll 2013-01-29 01:57:05 35232 ----a-w- C:\Windows\System32\drivers\WdBoot.sys 2013-01-28 23:08:22 230904 ----a-w- C:\Windows\System32\drivers\WdFilter.sys 2013-01-23 22:25:08 29016 ----a-w- C:\Windows\System32\drivers\klkbdflt.sys 2013-01-15 17:49:06 26432 ----a-w- C:\Windows\System32\RegistryDefragBootTime.exe 2013-01-11 18:02:34 64624 ----a-w- C:\Windows\System32\drivers\HECIx64.sys 2013-01-10 01:53:32 28904 ----a-w- C:\Windows\System32\drivers\msgpiowin32.sys 2013-01-10 01:40:39 1448168 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2013-01-10 01:40:38 303848 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2013-01-10 01:39:29 194280 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2013-01-10 01:39:22 124648 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2013-01-10 01:29:56 91880 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2013-01-10 01:29:21 785504 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys 2013-01-09 23:26:53 83968 ----a-w- C:\Windows\SysWow64\wiaacmgr.exe 2013-01-09 23:26:46 1611776 ----a-w- C:\Windows\SysWow64\mmc.exe . ============= FINISH: 18:02:23,24 ===============