DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: BrowserJavaVersion: 10.21.2
Run by majo at 10:22:40 on 2013-05-02
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.353.1033.18.7294.5033 [GMT 1:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: PC Tools Firewall Plus *Enabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}
.
============== Running Processes ===============
.
H:\PROGRA~2\AVG\AVG2013\avgrsa.exe
H:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
H:\Windows\system32\lsm.exe
H:\Windows\system32\svchost.exe -k DcomLaunch
H:\Windows\system32\svchost.exe -k RPCSS
H:\Windows\system32\atiesrxx.exe
H:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
H:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
H:\Windows\system32\svchost.exe -k LocalService
H:\Windows\system32\svchost.exe -k netsvcs
H:\Windows\system32\svchost.exe -k GPSvcGroup
H:\Windows\system32\svchost.exe -k NetworkService
H:\Windows\system32\atieclxx.exe
H:\Windows\system32\WLANExt.exe
H:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
H:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
H:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
H:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
H:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
H:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
H:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe
H:\Program Files (x86)\Edimax\Common\RaRegistry.exe
H:\Program Files (x86)\Edimax\Common\RaRegistry64.exe
H:\Windows\system32\svchost.exe -k imgsvc
H:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
H:\Windows\system32\wbem\wmiprvse.exe
H:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
H:\Windows\system32\Dwm.exe
H:\Windows\Explorer.EXE
H:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
H:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
H:\Program Files (x86)\AVG\AVG2013\avgemca.exe
H:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
H:\Program Files (x86)\Edimax\Common\RaUI.exe
H:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe
H:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
H:\Program Files (x86)\AVG\AVG2013\avgui.exe
H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
H:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
H:\Program Files (x86)\Opera\opera.exe
H:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
H:\Windows\system32\AUDIODG.EXE
H:\Windows\system32\wbem\wmiprvse.exe
H:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
mWinlogon: Userinit = userinit.exe
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - H:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - H:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [SpybotSD TeaTimer] H:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
mRun: [00PCTFW] "H:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s
mRun: [HDAudDeck] H:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [AVG_UI] "H:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [StartCCC] "H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] H:\Program Files (x86)\Google\Gmail Notifier\gnotify.exe
StartupFolder: H:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WIRELE~1.LNK - H:\Program Files (x86)\Edimax\Common\RaUI.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Free YouTube Download - H:\Users\majo\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - H:\Users\majo\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Pobierz plik wideo w FDM - H:\Program Files (x86)\Free Download Manager\dlfvideo.htm
IE: Pobierz w FDM - H:\Program Files (x86)\Free Download Manager\dllink.htm
IE: Pobierz wszystkie pliki w FDM - H:\Program Files (x86)\Free Download Manager\dlall.htm
IE: Pobierz zaznaczone pliki w FDM - H:\Program Files (x86)\Free Download Manager\dlselected.htm
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - H:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{22CD5F68-8CB0-4BB0-A961-ED798149E2AF} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{E7175EB0-9917-477B-ADED-46A9F2023119} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{E7175EB0-9917-477B-ADED-46A9F2023119}\244575966496 : DHCPNameServer = 192.168.22.22 192.168.22.23
TCP: Interfaces\{E7175EB0-9917-477B-ADED-46A9F2023119}\55053443532323830383 : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{E7175EB0-9917-477B-ADED-46A9F2023119}\C696E6B6379737 : DHCPNameServer = 192.168.1.1
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "H:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files\Java\jre7\bin\jp2ssv.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
Hosts: 127.0.0.1 www.spywareinfo.com
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;H:\Windows\System32\drivers\avgidsha.sys [2012-10-15 63328]
R0 Avgloga;AVG Logging Driver;H:\Windows\System32\drivers\avgloga.sys [2012-9-21 225120]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;H:\Windows\System32\drivers\avgmfx64.sys [2012-11-16 111968]
R0 Avgrkx64;AVG Anti-Rootkit Driver;H:\Windows\System32\drivers\avgrkx64.sys [2012-9-14 40800]
R1 AVGIDSDriver;AVGIDSDriver;H:\Windows\System32\drivers\avgidsdrivera.sys [2012-10-22 154464]
R1 Avgldx64;AVG AVI Loader Driver;H:\Windows\System32\drivers\avgldx64.sys [2012-10-2 185696]
R1 Avgtdia;AVG TDI Driver;H:\Windows\System32\drivers\avgtdia.sys [2012-9-21 200032]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;H:\Windows\System32\drivers\dtsoftbus01.sys [2012-3-1 279616]
R1 JSWPSLWF;JumpStart Wireless Filter Driver;H:\Windows\System32\drivers\jswpslwfx.sys [2012-1-3 26624]
R1 pctgntdi;pctgntdi;H:\Windows\System32\drivers\pctgntdi64.sys [2012-5-5 334976]
R2 AMD External Events Utility;AMD External Events Utility;H:\Windows\System32\atiesrxx.exe [2012-11-16 238080]
R2 AMD FUEL Service;AMD FUEL Service;H:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-11-16 361984]
R2 AODDriver4.01;AODDriver4.01;H:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]
R2 AODDriver4.1.0;AODDriver4.1.0;H:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [2012-2-10 56448]
R2 AVGIDSAgent;AVGIDSAgent;H:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-16 5814904]
R2 avgwd;AVG WatchDog;H:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
R2 cpuz135;cpuz135;H:\Windows\System32\drivers\cpuz135_x64.sys [2012-3-9 21992]
R2 MBAMScheduler;MBAMScheduler;H:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-4-28 418376]
R2 MBAMService;MBAMService;H:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-4-28 701512]
R2 PCToolsFirewallPlus;PC Tools Firewall Plus;H:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe [2012-5-5 286000]
R2 RalinkRegistryWriter;Ralink Registry Writer;H:\Program Files (x86)\Edimax\Common\RaRegistry.exe [2012-9-4 185632]
R2 RalinkRegistryWriter64;Ralink Registry Writer 64;H:\Program Files (x86)\Edimax\Common\RaRegistry64.exe [2012-9-4 211232]
R2 SBSDWSCService;SBSD Security Center Service;H:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2012-3-24 1153368]
R3 amdiox64;AMD IO Driver;H:\Windows\System32\drivers\amdiox64.sys [2012-3-1 46136]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;H:\Windows\System32\drivers\AtihdW76.sys [2012-2-23 95760]
R3 MBAMProtector;MBAMProtector;H:\Windows\System32\drivers\mbam.sys [2013-4-28 25928]
R3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;H:\Windows\System32\drivers\pctNdis-PacketFilter64.sys [2012-5-5 119688]
R3 pctNdisMP;PC Tools Driver;H:\Windows\System32\drivers\pctNdis64.sys [2012-5-5 79000]
R3 pctplfw;pctplfw;H:\Windows\System32\drivers\pctplfw64.sys [2012-5-5 179976]
R3 RTL8167;Realtek 8167 NT Driver;H:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]
R3 usbfilter;AMD USB Filter Driver;H:\Windows\System32\drivers\usbfilter.sys [2012-12-1 54400]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;H:\Windows\System32\drivers\viahduaa.sys [2012-3-1 1235968]
S2 AODDriver4.1;AODDriver4.1;H:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]
S2 AODService;AODService;H:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [2012-2-10 136616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;H:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;H:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1;system32\libusbd-nt.exe --> system32\libusbd-nt.exe [?]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;H:\Windows\System32\drivers\ssadadb.sys [2012-11-11 36328]
S3 dmvsc;dmvsc;H:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ggflt;SEMC USB Flash Driver Filter;H:\Windows\System32\drivers\ggflt.sys [2012-12-28 14448]
S3 pctNdis;PC Tools Firewall Intermediate Filter Service;H:\Windows\System32\drivers\pctNdis64.sys [2012-5-5 79000]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;H:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-3 19456]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);H:\Windows\System32\drivers\ss_bbus.sys [2012-11-11 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);H:\Windows\System32\drivers\ss_bmdfl.sys [2012-11-11 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;H:\Windows\System32\drivers\ss_bmdm.sys [2012-11-11 161280]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;H:\Windows\System32\drivers\ss_bserd.sys [2012-11-11 128000]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);H:\Windows\System32\drivers\ssadbus.sys [2012-11-11 157160]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);H:\Windows\System32\drivers\ssadmdfl.sys [2012-11-11 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;H:\Windows\System32\drivers\ssadmdm.sys [2012-11-11 177128]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);H:\Windows\System32\drivers\ssadserd.sys [2012-11-11 145384]
S3 Synth3dVsc;Synth3dVsc;H:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;H:\Windows\System32\drivers\terminpt.sys [2012-12-3 29696]
S3 TsUsbFlt;TsUsbFlt;H:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-3 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;H:\Windows\System32\drivers\TsUsbGD.sys [2012-12-3 30208]
S3 VBoxUSB;VirtualBox USB;H:\Windows\System32\drivers\VBoxUSB.sys [2012-4-3 117040]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;H:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]
S4 PuranDefrag;PuranDefrag;H:\Windows\System32\PuranDefragS.exe [2012-4-11 289792]
S4 RsFx0105;RsFx0105 Driver;H:\Windows\System32\drivers\RsFx0105.sys [2011-9-22 311144]
S4 SkypeUpdate;Skype Updater;H:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);H:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2011-9-22 431464]
SUnknown tsusbhub;tsusbhub; [x]
.
=============== Created Last 30 ================
.
2013-05-02 08:59:30 -------- d-----w- H:\ProgramData\F-Secure
2013-05-02 08:59:13 -------- d-----w- H:\ProgramData\boost_interprocess
2013-05-02 08:39:32 -------- d-----w- H:\ProgramData\SecTaskMan
2013-05-02 08:39:27 -------- d-----w- H:\Program Files (x86)\Security Task Manager
2013-04-30 21:24:34 -------- d-----w- H:\Users\majo\AppData\Local\Temp
2013-04-30 17:28:41 -------- d-----w- H:\Users\majo\AppData\Roaming\OmniTechSupport
2013-04-29 11:39:51 -------- d-----w- H:\ProgramData\Sophos
2013-04-29 11:39:45 73728 ----a-r- H:\Users\majo\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-04-29 11:39:45 73728 ----a-r- H:\Users\majo\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2013-04-29 11:39:45 73728 ----a-r- H:\Users\majo\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\ARPPRODUCTICON.exe
2013-04-29 11:39:42 -------- d-----w- H:\Program Files (x86)\Sophos
2013-04-29 07:16:37 -------- d-----w- H:\Program Files (x86)\ESET
2013-04-28 16:49:37 95648 ----a-w- H:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-28 16:36:11 1092512 ----a-w- H:\Windows\System32\npDeployJava1.dll
2013-04-28 16:36:05 108448 ----a-w- H:\Windows\System32\WindowsAccessBridge-64.dll
2013-04-28 15:14:47 -------- d-----w- H:\Users\majo\AppData\Roaming\Malwarebytes
2013-04-28 15:14:35 -------- d-----w- H:\ProgramData\Malwarebytes
2013-04-28 15:14:34 25928 ----a-w- H:\Windows\System32\drivers\mbam.sys
2013-04-28 15:14:34 -------- d-----w- H:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-04-27 17:40:35 -------- d-----w- H:\Users\majo\AppData\Local\IW4M
2013-04-24 07:38:10 -------- d-----w- H:\Program Files (x86)\MSXML 4.0
2013-04-24 07:30:15 1656680 ----a-w- H:\Windows\System32\drivers\ntfs.sys
2013-04-23 11:55:37 -------- d-----w- H:\ProgramData\WEBREG
2013-04-23 11:49:49 -------- d-----w- H:\Users\majo\AppData\Local\HP
2013-04-23 11:44:58 -------- d-----w- H:\Windows\SysWow64\spool
2013-04-23 11:44:13 -------- d-----w- H:\Program Files (x86)\Common Files\Hewlett-Packard
2013-04-23 11:43:54 -------- d-----w- H:\Program Files (x86)\Common Files\HP
2013-04-23 11:42:49 -------- d-----w- H:\Program Files (x86)\HP
2013-04-23 11:41:35 -------- d-----w- H:\Program Files\HP
2013-04-23 11:35:11 642360 ----a-w- H:\Windows\System32\hpzids40.dll
2013-04-22 10:02:55 -------- d-----w- H:\ProgramData\Package Cache
2013-04-22 09:05:25 -------- d-----w- H:\Program Files (x86)\AMD AVT
2013-04-20 15:25:25 809496 ----a-r- H:\Windows\SysWow64\tmp8D7.tmp
2013-04-18 08:10:18 101376 ----a-w- H:\Windows\System32\Spool\prtprocs\x64\HPZPPWN7.DLL
2013-04-16 12:09:34 -------- d-----w- H:\Users\majo\AppData\Roaming\Softland
2013-04-16 12:09:33 25920 ----a-w- H:\Windows\System32\dopdfmn7.dll
2013-04-16 12:09:33 21312 ----a-w- H:\Windows\System32\dopdfmi7.dll
2013-04-16 12:09:32 1700352 ----a-w- H:\Windows\System32\GdiPlus.dll
2013-04-16 12:09:32 -------- d-----w- H:\Program Files\Softland
2013-04-16 08:21:01 -------- d-----r- H:\Program Files (x86)\Skype
2013-04-15 17:59:53 -------- d-----w- H:\Users\majo\AppData\Roaming\Aliens Colonial Marines
2013-04-15 08:22:43 -------- d-----w- H:\Users\majo\AppData\Local\Programs
2013-04-14 23:12:27 3153408 ----a-w- H:\Windows\System32\win32k.sys
2013-04-14 23:12:26 19968 ----a-w- H:\Windows\System32\drivers\usb8023x.sys
2013-04-14 23:12:26 19968 ----a-w- H:\Windows\System32\drivers\usb8023.sys
2013-04-14 23:11:36 223752 ----a-w- H:\Windows\System32\drivers\fvevol.sys
2013-04-14 23:11:35 5550424 ----a-w- H:\Windows\System32\ntoskrnl.exe
2013-04-14 23:11:34 6656 ----a-w- H:\Windows\SysWow64\apisetschema.dll
2013-04-14 23:11:34 43520 ----a-w- H:\Windows\System32\csrsrv.dll
2013-04-14 23:11:34 3968856 ----a-w- H:\Windows\SysWow64\ntkrnlpa.exe
2013-04-14 23:11:34 3913560 ----a-w- H:\Windows\SysWow64\ntoskrnl.exe
2013-04-14 23:11:34 112640 ----a-w- H:\Windows\System32\smss.exe
2013-04-08 16:38:22 -------- d-----w- H:\Users\majo\AppData\Roaming\Call of Duty Black Ops 2
.
==================== Find3M ====================
.
2013-04-29 08:26:30 71048 ----a-w- H:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-29 08:26:30 691592 ----a-w- H:\Windows\SysWow64\FlashPlayerApp.exe
2013-04-28 16:49:31 866720 ----a-w- H:\Windows\SysWow64\npdeployJava1.dll
2013-04-28 16:49:31 788896 ----a-w- H:\Windows\SysWow64\deployJava1.dll
2013-04-28 16:35:56 971680 ----a-w- H:\Windows\System32\deployJava1.dll
2013-04-20 15:25:25 466456 ----a-w- H:\Windows\System32\wrap_oal.dll
2013-04-20 15:25:25 444952 ----a-w- H:\Windows\SysWow64\wrap_oal.dll
2013-04-20 15:25:25 122904 ----a-w- H:\Windows\System32\OpenAL32.dll
2013-04-20 15:25:25 109080 ----a-w- H:\Windows\SysWow64\OpenAL32.dll
2013-02-22 06:27:49 2312704 ----a-w- H:\Windows\System32\jscript9.dll
2013-02-22 06:20:51 1392128 ----a-w- H:\Windows\System32\wininet.dll
2013-02-22 06:19:37 1494528 ----a-w- H:\Windows\System32\inetcpl.cpl
2013-02-22 06:15:48 173056 ----a-w- H:\Windows\System32\ieUnatt.exe
2013-02-22 06:15:23 599040 ----a-w- H:\Windows\System32\vbscript.dll
2013-02-22 06:12:41 2382848 ----a-w- H:\Windows\System32\mshtml.tlb
2013-02-22 03:46:00 1800704 ----a-w- H:\Windows\SysWow64\jscript9.dll
2013-02-22 03:38:00 1129472 ----a-w- H:\Windows\SysWow64\wininet.dll
2013-02-22 03:37:50 1427968 ----a-w- H:\Windows\SysWow64\inetcpl.cpl
2013-02-22 03:34:17 142848 ----a-w- H:\Windows\SysWow64\ieUnatt.exe
2013-02-22 03:34:03 420864 ----a-w- H:\Windows\SysWow64\vbscript.dll
2013-02-22 03:31:46 2382848 ----a-w- H:\Windows\SysWow64\mshtml.tlb
2013-02-12 05:45:24 135168 ----a-w- H:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45:22 350208 ----a-w- H:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45:22 308736 ----a-w- H:\Windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45:22 111104 ----a-w- H:\Windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48:31 474112 ----a-w- H:\Windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 2176512 ----a-w- H:\Windows\apppatch\AcGenral.dll
.
============= FINISH: 10:22:55.71 ===============