.
DDS (Ver_2011-08-26.01) - NTFSAMD64 
Internet Explorer: 9.0.8112.16421  BrowserJavaVersion: 10.2.0
Run by Nerwign at 11:15:49 on 2012-01-15
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.4094.2383 [GMT -8:00]
.
AV: Lavasoft Ad-Watch Live! Anti-Virus *Enabled/Updated* {9FF26384-70D4-CE6B-3ECB-E759A6A40116}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Lavasoft Ad-Watch Live! *Enabled/Updated* {24938260-56EE-C1E5-047B-DC2BDD234BAB}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WUDFHost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\Program Files (x86)\Secunia\PSI\sua.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\DRIVERS\xaudio64.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\hp\support\hpsysdrv.exe
C:\hp\KBD\KbdStub.exe
C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\SysWOW64\cscript.exe
C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\iTunes\iTunes.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=84&bd=Pavilion&pf=cndt
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [HPAdvisor] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe autorun=AUTORUN
uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
mRun: [hpsysdrv] c:\hp\support\hpsysdrv.exe
mRun: [KBD] C:\HP\KBD\KbdStub.EXE
mRun: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
DPF: {1663ed61-23eb-11d2-b92f-008048fdd814} - hxxp://www.bestmark.com/support/ScriptX.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {26B2A5DA-BFD6-422F-A89A-28A54C74B12B} - hxxp://www.costcophotocenter.com/upload/activex/v3_0_0_4/PhotoCenter_ActiveX_Control.cab
DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} - hxxp://picasaweb.google.com/s/v/58.17/uploader2.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab
DPF: {A1662FB6-39BE-41BB-ACDC-0448FB1B5817} - hxxp://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_5/PhotoCenter_ActiveX_Control.cab
DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab
DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} - hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} - hxxp://download.mcafee.com/molbin/iss-loc/mcfscan/3,0,0,5990/mcfscan.cab
DPF: {EFD1E13D-1CB3-4545-B754-CA410FE7734F} - hxxp://www.costcophotocenter.com/upload/activex/v3_0_0_2/PhotoCenter_ActiveX_Control.cab?
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{04B24052-B720-4B69-90A1-29885A84A3D4} : DhcpNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
BHO-X64: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO-X64:     0x1 - No File
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64:     AcroIEHelperStub - No File
BHO-X64: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO-X64:     Increase performance and video formats for your HTML5 <video> - No File
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO-X64: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO-X64:     SkypeIEPluginBHO - No File
BHO-X64: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
mRun-x64: [hpsysdrv] c:\hp\support\hpsysdrv.exe
mRun-x64: [KBD] C:\HP\KBD\KbdStub.EXE
mRun-x64: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun-x64: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
mRun-x64: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun-x64: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun-x64: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Nerwign\AppData\Roaming\Mozilla\Firefox\Profiles\vsacdmk5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Codex\DivX\DivX Player\npDivxPlayerPlugin.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npicaN.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\Users\Nerwign\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Nerwign\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
.
============= SERVICES / DRIVERS ===============
.
R0 Lbd;Lbd;C:\Windows\system32\DRIVERS\Lbd.sys --> C:\Windows\system32\DRIVERS\Lbd.sys [?]
R1 ctxusbm;Citrix USB Monitor Driver;C:\Windows\system32\DRIVERS\ctxusbm.sys --> C:\Windows\system32\DRIVERS\ctxusbm.sys [?]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2011-8-11 140672]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263};C:\Program Files (x86)\HP\DVDPlay\000.fcl [2008-8-28 32240]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]
R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2011-10-13 994360]
R2 Secunia Update Agent;Secunia Update Agent;C:\Program Files (x86)\Secunia\PSI\sua.exe [2011-10-13 399416]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-1-7 378984]
R3 CAXHWBS3;CAXHWBS3;C:\Windows\system32\DRIVERS\CAXHWBS3.sys --> C:\Windows\system32\DRIVERS\CAXHWBS3.sys [?]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S2 FontCache;Windows Font Cache Service;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-24 136176]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-9-18 89920]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-24 136176]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-12-12 2152152]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;C:\Program Files (x86)\Lavasoft\Ad-Aware\kernexplorer64.sys [2011-12-22 17152]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 PCD5SRVC{E2AF211B-86DA020A-05040000};PCD5SRVC{E2AF211B-86DA020A-05040000} - PCDR Kernel Mode Service Helper Driver;C:\PROGRA~2\PC-DOC~1\PCD5SRVC_x64.pkms [2008-5-22 25888]
S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-20 19968]
S3 PSI;PSI;C:\Windows\system32\DRIVERS\psi_mf.sys --> C:\Windows\system32\DRIVERS\psi_mf.sys [?]
.
=============== File Associations ===============
.
JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
.
=============== Created Last 30 ================
.
2012-01-15 19:15:16	69000	----a-w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{922DF879-0FFF-447B-88EC-D4E91F8020B6}\offreg.dll
2012-01-15 04:30:43	94720	----a-w-	C:\Windows\System32\secur32.dll
2012-01-15 04:30:43	77312	----a-w-	C:\Windows\SysWow64\secur32.dll
2012-01-15 04:30:43	515968	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2012-01-15 04:30:43	442368	----a-w-	C:\Windows\System32\winhttp.dll
2012-01-15 04:30:43	377344	----a-w-	C:\Windows\SysWow64\winhttp.dll
2012-01-15 04:30:43	347136	----a-w-	C:\Windows\System32\schannel.dll
2012-01-15 04:30:43	278528	----a-w-	C:\Windows\SysWow64\schannel.dll
2012-01-15 04:30:43	1689600	----a-w-	C:\Windows\System32\lsasrv.dll
2012-01-15 04:30:43	11264	----a-w-	C:\Windows\System32\lsass.exe
2012-01-15 00:14:03	--------	d-----w-	C:\Windows\SysWow64\spool
2012-01-14 23:18:30	98816	----a-w-	C:\Windows\SysWow64\mfps.dll
2012-01-14 23:17:08	792576	----a-w-	C:\Windows\System32\d3d11.dll
2012-01-14 20:22:27	85504	----a-w-	C:\Windows\System32\csrsrv.dll
2012-01-14 20:22:26	497152	----a-w-	C:\Windows\SysWow64\qdvd.dll
2012-01-14 20:22:26	352256	----a-w-	C:\Windows\System32\qdvd.dll
2012-01-14 20:22:26	1570816	----a-w-	C:\Windows\System32\quartz.dll
2012-01-14 20:22:26	1314816	----a-w-	C:\Windows\SysWow64\quartz.dll
2012-01-14 20:22:25	1426304	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2012-01-14 20:22:21	2048	----a-w-	C:\Windows\SysWow64\tzres.dll
2012-01-14 20:22:21	2048	----a-w-	C:\Windows\System32\tzres.dll
2012-01-14 20:22:09	1585152	----a-w-	C:\Windows\System32\ntdll.dll
2012-01-14 20:22:09	1167984	----a-w-	C:\Windows\SysWow64\ntdll.dll
2012-01-14 20:20:52	4699536	----a-w-	C:\Windows\System32\ntoskrnl.exe
2012-01-14 19:07:08	--------	d-----w-	C:\Windows\SysWow64\vi-VN
2012-01-14 19:07:08	--------	d-----w-	C:\Windows\SysWow64\eu-ES
2012-01-14 19:07:08	--------	d-----w-	C:\Windows\SysWow64\ca-ES
2012-01-14 19:07:08	--------	d-----w-	C:\Windows\System32\eu-ES
2012-01-14 19:07:08	--------	d-----w-	C:\Windows\System32\ca-ES
2012-01-14 19:07:07	--------	d-----w-	C:\Windows\System32\vi-VN
2012-01-14 18:34:50	--------	d-----w-	C:\Users\Nerwign\AppData\Roaming\Citrix
2012-01-14 18:34:31	--------	d-----w-	C:\Users\Nerwign\AppData\Local\Citrix
2012-01-14 17:27:53	--------	d-----w-	C:\Users\Nerwign\AppData\Local\WindowsUpdate
2012-01-14 16:07:47	11776	----a-w-	C:\Program Files (x86)\Mozilla Firefox\plugins\nprjplug.dll
2012-01-14 16:06:55	--------	d-----w-	C:\Program Files (x86)\Common Files\xing shared
2012-01-14 16:06:33	150696	----a-w-	C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll
2012-01-14 16:06:09	108544	----a-w-	C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll
2012-01-14 16:05:43	499712	----a-w-	C:\Windows\SysWow64\msvcp71.dll
2012-01-14 16:05:43	348160	----a-w-	C:\Windows\SysWow64\msvcr71.dll
2012-01-14 16:05:20	--------	d-----w-	C:\ProgramData\Citrix
2012-01-14 16:01:49	--------	d-----w-	C:\Program Files (x86)\Citrix
2012-01-14 16:01:15	--------	d-sh--w-	C:\Windows\SysWow64\%APPDATA%
2012-01-14 16:01:08	--------	d-----w-	C:\Program Files (x86)\Winamp Detect
2012-01-14 15:20:50	--------	d-----w-	C:\Users\Nerwign\AppData\Local\Secunia PSI
2012-01-14 15:20:27	--------	d-----w-	C:\Program Files (x86)\Secunia
2012-01-14 09:31:50	--------	d-----w-	C:\Windows\System32\EventProviders
2012-01-14 09:29:53	8822856	----a-w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{922DF879-0FFF-447B-88EC-D4E91F8020B6}\mpengine.dll
2012-01-10 13:55:09	--------	d-sh--w-	C:\$RECYCLE.BIN
2012-01-09 06:24:06	--------	d-----w-	C:\Program Files\World of Warcraft Model Viewer
2012-01-08 17:10:03	--------	d-----w-	C:\Program Files (x86)\ESET
2012-01-08 16:34:53	414368	----a-w-	C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-08 16:28:41	637848	----a-w-	C:\Windows\SysWow64\npdeployJava1.dll
2012-01-07 16:01:32	98816	----a-w-	C:\Windows\sed.exe
2012-01-07 16:01:32	518144	----a-w-	C:\Windows\SWREG.exe
2012-01-07 16:01:32	256000	----a-w-	C:\Windows\PEV.exe
2012-01-07 16:01:32	208896	----a-w-	C:\Windows\MBR.exe
2012-01-05 02:47:12	--------	d-----w-	C:\Users\Nerwign\AppData\Roaming\SUPERAntiSpyware.com
2012-01-05 02:46:49	--------	d-----w-	C:\ProgramData\SUPERAntiSpyware.com
2012-01-05 02:46:49	--------	d-----w-	C:\Program Files\SUPERAntiSpyware
2012-01-03 13:10:44	182672	----a-w-	C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2012-01-03 13:10:44	182672	----a-w-	C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2011-12-30 03:03:51	--------	d-----w-	C:\Program Files\iPod
2011-12-30 03:03:47	--------	d-----w-	C:\Program Files\iTunes
2011-12-30 03:03:47	--------	d-----w-	C:\Program Files (x86)\iTunes
2011-12-25 08:32:28	827728	----a-w-	C:\Windows\System32\msvcr100.dll
2011-12-25 08:32:24	607568	----a-w-	C:\Windows\System32\msvcp100.dll
2011-12-23 06:50:02	16432	----a-w-	C:\Windows\System32\lsdelete.exe
2011-12-23 02:22:42	69376	----a-w-	C:\Windows\System32\drivers\Lbd.sys
2011-12-23 02:22:33	--------	d-----w-	C:\Program Files (x86)\Lavasoft
2011-12-19 06:16:58	403304	----a-w-	C:\Windows\System32\xactengine2_7.dll
2011-12-19 06:06:46	--------	d-----w-	C:\Program Files (x86)\Combined Community Codec Pack
2011-12-19 06:06:05	--------	d--h--w-	C:\Windows\msdownld.tmp
2011-12-19 06:05:58	--------	d-----w-	C:\Windows\SysWow64\directx
.
==================== Find3M  ====================
.
2012-01-14 23:18:30	979456	----a-w-	C:\Windows\SysWow64\MFH264Dec.dll
2012-01-14 23:17:08	519680	----a-w-	C:\Windows\SysWow64\d3d11.dll
2012-01-14 23:17:08	449024	----a-w-	C:\Windows\System32\WMPhoto.dll
2012-01-14 23:17:08	369664	----a-w-	C:\Windows\SysWow64\WMPhoto.dll
2012-01-14 23:17:08	328192	----a-w-	C:\Windows\System32\dxdiag.exe
2012-01-14 23:17:08	262656	----a-w-	C:\Windows\System32\dxdiagn.dll
2012-01-14 23:17:08	252928	----a-w-	C:\Windows\SysWow64\dxdiag.exe
2012-01-14 23:17:08	245248	----a-w-	C:\Windows\System32\WindowsCodecsExt.dll
2012-01-14 23:17:08	195584	----a-w-	C:\Windows\SysWow64\dxdiagn.dll
2012-01-14 23:17:07	974848	----a-w-	C:\Windows\SysWow64\WindowsCodecs.dll
2012-01-14 23:17:07	411648	----a-w-	C:\Windows\System32\PhotoMetadataHandler.dll
2012-01-14 23:17:07	321024	----a-w-	C:\Windows\SysWow64\PhotoMetadataHandler.dll
2012-01-14 23:17:07	189440	----a-w-	C:\Windows\SysWow64\WindowsCodecsExt.dll
2012-01-14 23:17:07	1209856	----a-w-	C:\Windows\System32\WindowsCodecs.dll
2012-01-08 16:28:16	567184	----a-w-	C:\Windows\SysWow64\deployJava1.dll
2011-12-10 23:24:08	23152	----a-w-	C:\Windows\System32\drivers\mbam.sys
2011-11-25 16:25:32	451072	----a-w-	C:\Windows\System32\winsrv.dll
2011-11-23 13:57:38	2764800	----a-w-	C:\Windows\System32\win32k.sys
2011-11-18 18:07:45	76800	----a-w-	C:\Windows\System32\packager.dll
2011-11-18 17:47:03	66560	----a-w-	C:\Windows\SysWow64\packager.dll
2011-11-15 22:29:56	270720	------w-	C:\Windows\System32\MpSigStub.exe
2011-10-24 22:29:02	94208	----a-w-	C:\Windows\SysWow64\QuickTimeVR.qtx
2011-10-24 22:29:02	69632	----a-w-	C:\Windows\SysWow64\QuickTime.qts
.
============= FINISH: 11:21:56.90 ===============