DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16720 BrowserJavaVersion: 10.45.2 Run by Igor at 16:31:56 on 2013-11-11 Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1045.18.8189.5211 [GMT 1:00] . AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Windows\system32\rundll32.exe C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\BOINC\boincmgr.exe C:\Program Files\BOINC\boinctray.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe H:\Steam\Steam.exe C:\Program Files\BOINC\boinc.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\Samsung\Kies\Kies.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Users\Igor\AppData\Roaming\Paradox Interactive\Paradox Interactive.exe C:\Users\Igor\AppData\Local\GG\Application\gghub.exe C:\Windows\SysWOW64\rundll32.exe C:\Program Files (x86)\eMule\emule.exe C:\Users\Igor\AppData\Local\GG\Application\ggapp.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\TP-LINK\TP-LINK Wireless N Client Utility\jswtrayutil.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Common Files\Steam\SteamService.exe C:\Users\Igor\AppData\Local\GG\Application\ggdrive\ggdrive.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.onet.pl/?utm_source=appliki&utm_medium=31665&utm_campaign=onetsg_start_pliki mWinlogon: Userinit = userinit.exe, BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden uRun: [Steam] "H:\Steam\Steam.exe" -silent uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun uRun: [C:\Users\Igor\AppData\Roaming\Paradox Interactive\Paradox Interactive.exe] C:\Users\Igor\AppData\Roaming\Paradox Interactive\Paradox Interactive.exe uRun: [GG] "C:\Users\Igor\AppData\Local\GG\Application\gghub.exe" uRun: [tsiVideo] C:\Windows\SysWOW64\rundll32.exe C:\Users\Igor\AppData\Local\Temp\\tsiVi132.dll,start uRun: [eMuleAutoStart] C:\Program Files (x86)\eMule\emule.exe -AutoStart mRun: [jswtrayutil] "C:\Program Files (x86)\TP-LINK\TP-LINK Wireless N Client Utility\jswtrayutil.exe" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui mRunOnce: [aswAhAScr.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\AhAScr.dll" mRunOnce: [aswasOutExt.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\asOutExt.dll" mRunOnce: [aswasOutExt64.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr64.exe" "C:\Program Files\AVAST Software\Avast\asOutExt64.dll" StartupFolder: C:\Users\Igor\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\PARADO~1.LNK - C:\Users\Igor\AppData\Roaming\Paradox Interactive\Paradox Interactive.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MICROS~1.LNK - C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 TCP: NameServer = 192.168.1.1 TCP: Interfaces\{28F5E8CF-0FE6-4929-9C12-7844C42C651F} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{7ABF12C6-504E-441E-8826-E23891AEB039} : DHCPNameServer = 192.168.1.1 SSODL: WebCheck - mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe" mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s x64-Run: [boincmgr] "C:\Program Files\BOINC\boincmgr.exe" /a /s x64-Run: [boinctray] "C:\Program Files\BOINC\boinctray.exe" x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart x64-SSODL: WebCheck - . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Igor\AppData\Roaming\Mozilla\Firefox\Profiles\4il1me7w.default\ FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=293224&p= FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: C:\Program Files (x86)\Winamp Detect\npwachk.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll FF - ExtSQL: 2013-10-13 19:23; wrc@avast.com; C:\Program Files\AVAST Software\Avast\WebRep\FF FF - ExtSQL: 2013-10-17 19:24; {b6b1a201-b252-484f-b9fe-68efbb273fbd}; C:\Users\Igor\AppData\Roaming\Mozilla\Firefox\Profiles\4il1me7w.default\extensions\{b6b1a201-b252-484f-b9fe-68efbb273fbd}.xpi FF - ExtSQL: 2013-11-11 11:19; {5ebdca98-43b3-45bb-87e0-716029fb42ab}; C:\Users\Igor\AppData\Roaming\Mozilla\Firefox\Profiles\4il1me7w.default\extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab} . ---- FIREFOX POLICIES ---- FF - user.js: extensions.irspeeddial.aflt - fxtb103 FF - user.js: extensions.irspeeddial.instlRef - FF - user.js: extensions.irspeeddial.cr - 2039122091 FF - user.js: extensions.irspeeddial.cd - 2XzuyEtN2Y1L1Qzu0DzzyD0DyE0C0ByEyDtDtC0A0DyCyB0EtN0D0Tzu0CyCzztDtN1L2XzutBtFtBtFyBtFtCtBtDtCtN1L1Czu1G2Z1S . ============= SERVICES / DRIVERS =============== . R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-10-13 65776] R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-10-13 205320] R1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2013-9-5 21104] R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-10-13 1032416] R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-10-13 409832] R1 VirtDiskBus;3TB+ Unlock;C:\Windows\System32\drivers\VirtDiskBus64.sys [2013-9-5 66160] R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-10-13 38984] R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-10-13 84328] R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-13 46808] R2 ES lite Service;ES lite Service for program management.;C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe [2013-9-5 68136] R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-11 15122208] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496] R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;C:\Windows\System32\drivers\EtronHub3.sys [2011-3-7 40832] R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;C:\Windows\System32\drivers\EtronXHCI.sys [2011-3-7 65280] R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2013-11-11 39200] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-9-5 413800] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?] S3 CGVPNCliSrvc;CyberGhost VPN Client;C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2013-11-11 2438696] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-8-20 103576] S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168] S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2013-9-5 30528] S3 jswpsapi;Jumpstart Wifi Protected Setup;C:\Program Files (x86)\TP-LINK\TP-LINK Wireless N Client Utility\jswpsapi.exe [2013-9-5 937984] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2013-8-20 204568] S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960] S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2010-11-21 34816] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248] S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-9-6 1255736] . =============== File Associations =============== . ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1" . =============== Created Last 30 ================ . 2013-11-11 15:27:25 -------- d-----w- C:\Program Files\trend micro 2013-11-11 14:54:58 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2025327A-7B94-41EA-9D0B-5A912E8B1CC4}\offreg.dll 2013-11-11 13:59:36 -------- d-----w- C:\Users\Igor\AppData\Local\NVIDIA 2013-11-11 13:43:01 1063200 ----a-w- C:\Windows\System32\nvspcap64.dll 2013-11-11 13:43:00 955168 ----a-w- C:\Windows\SysWow64\nvspcap.dll 2013-11-11 10:19:34 -------- d-----w- C:\Users\Igor\AppData\Roaming\FoxTab 2013-11-11 10:18:27 -------- d-----w- C:\Users\Igor\AppData\Local\Mobogenie 2013-11-11 10:18:27 -------- d-----w- C:\Users\Igor\AppData\Local\cache 2013-11-11 10:18:13 31232 ----a-w- C:\Windows\System32\drivers\tap0901.sys 2013-11-11 10:18:11 -------- d-----w- C:\Program Files\CyberGhost VPN 2013-11-11 10:17:11 -------- d-----w- C:\Program Files (x86)\Foxtab 2013-11-10 12:58:12 -------- d-----w- C:\ProgramData\GG 2013-11-08 17:28:24 10280728 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2025327A-7B94-41EA-9D0B-5A912E8B1CC4}\mpengine.dll 2013-11-03 19:34:05 -------- d-s---w- C:\Users\Igor\GG dysk 2013-11-03 19:31:02 -------- d-----w- C:\Users\Igor\AppData\Roaming\GG 2013-11-03 19:30:57 -------- d-----w- C:\Users\Igor\AppData\Local\GG 2013-11-01 12:03:12 -------- d-----w- C:\Program Files\CPUID 2013-11-01 11:57:08 -------- d-----w- C:\Program Files (x86)\SpeedFan 2013-11-01 11:35:45 -------- d-----w- C:\Program Files\Core Temp 2013-11-01 11:33:56 -------- d-----w- C:\ProgramData\APN 2013-11-01 11:05:31 -------- d-----w- C:\ProgramData\BOINC 2013-11-01 11:05:31 -------- d-----w- C:\Program Files\BOINC 2013-11-01 11:04:23 -------- d-----w- C:\Windows\Downloaded Installations 2013-10-30 22:29:33 -------- d-----w- C:\ProgramData\firebird 2013-10-30 22:26:01 -------- d-----w- C:\Program Files (x86)\Common Files\Business Objects 2013-10-23 02:02:36 589600 ----a-w- C:\Windows\SysWow64\nvStreaming.exe 2013-10-20 16:39:16 -------- d-----w- C:\Users\Igor\AppData\Local\Chromium 2013-10-20 16:36:41 -------- d-----w- C:\Users\Igor\AppData\Local\SKIDROW 2013-10-20 16:36:39 -------- d-----w- C:\Users\Igor\AppData\Roaming\Sports Interactive 2013-10-20 16:36:39 -------- d-----w- C:\Users\Igor\AppData\Local\Sports Interactive 2013-10-19 10:42:54 108968 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll 2013-10-19 10:39:14 -------- d-----w- C:\ProgramData\Oracle 2013-10-19 10:38:57 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2013-10-13 17:24:08 92544 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys 2013-10-13 17:24:02 1032416 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2013-10-13 17:24:00 205320 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2013-10-13 17:23:59 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2013-10-13 17:23:58 84328 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2013-10-13 17:23:28 43152 ----a-w- C:\Windows\avastSS.scr . ==================== Find3M ==================== . 2013-11-11 14:47:06 25640 ----a-w- C:\Windows\gdrv.sys 2013-10-23 08:20:08 6669600 ----a-w- C:\Windows\System32\nvcpl.dll 2013-10-23 08:20:07 3489568 ----a-w- C:\Windows\System32\nvsvc64.dll 2013-10-23 08:20:05 922912 ----a-w- C:\Windows\System32\nvvsvc.exe 2013-10-23 08:20:05 63776 ----a-w- C:\Windows\System32\nvshext.dll 2013-10-23 08:20:05 2559776 ----a-w- C:\Windows\System32\nvsvcr.dll 2013-10-23 08:20:05 219424 ----a-w- C:\Windows\System32\nvmctray.dll 2013-10-23 08:20:03 3426956 ----a-w- C:\Windows\System32\nvcoproc.bin 2013-10-11 18:58:05 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-10-11 18:58:05 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-09-27 23:01:44 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys 2013-09-27 23:01:38 29984 ----a-w- C:\Windows\System32\nvaudcap64v.dll 2013-09-27 23:01:38 28960 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll 2013-09-22 23:28:06 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll 2013-09-22 23:27:49 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll 2013-09-22 23:27:48 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll 2013-09-22 23:27:48 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2013-09-22 22:55:10 2241024 ----a-w- C:\Windows\System32\wininet.dll 2013-09-22 22:54:51 3959296 ----a-w- C:\Windows\System32\jscript9.dll 2013-09-22 22:54:50 67072 ----a-w- C:\Windows\System32\iesetup.dll 2013-09-22 22:54:50 136704 ----a-w- C:\Windows\System32\iesysprep.dll 2013-09-21 03:38:39 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-09-21 03:30:24 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2013-09-21 02:48:36 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-09-21 02:39:47 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe 2013-09-14 01:10:19 497152 ----a-w- C:\Windows\System32\drivers\afd.sys 2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll 2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll 2013-09-06 14:37:18 81768 ----a-w- C:\Windows\SysWow64\xinput1_3.dll 2013-09-06 00:32:15 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-09-05 18:25:40 29480 ----a-w- C:\Windows\SysWow64\msxml3a.dll 2013-09-05 18:25:39 505128 ----a-w- C:\Windows\SysWow64\msvcp71.dll 2013-09-05 18:25:39 353576 ----a-w- C:\Windows\SysWow64\msvcr71.dll 2013-09-05 17:56:33 30528 ----a-w- C:\Windows\GVTDrv64.sys 2013-09-03 12:35:10 278800 ------w- C:\Windows\System32\MpSigStub.exe 2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll 2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll 2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll 2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll 2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll 2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll 2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll 2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll 2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll 2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe 2013-08-28 01:21:06 3155968 ----a-w- C:\Windows\System32\win32k.sys 2013-08-28 01:12:33 461312 ----a-w- C:\Windows\System32\scavengeui.dll 2013-08-20 05:02:14 708168 ----a-w- C:\Windows\System32\WinUSBCoInstaller.dll 2013-08-20 05:02:14 1490656 ----a-w- C:\Windows\System32\WdfCoInstaller01007.dll 2013-08-20 05:02:12 204568 ----a-w- C:\Windows\System32\drivers\ssudmdm.sys 2013-08-20 05:02:12 103576 ----a-w- C:\Windows\System32\drivers\ssudbus.sys . ============= FINISH: 16:32:11,66 ===============