
DDS (Ver_10-12-05.01) - NTFS_AMD64  
Run by Paulinka2006 at 13:32:41,99 on 2010-12-11
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Ultimate   6.1.7600.0.1250.48.1045.18.4094.2492 [GMT 1:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
D:\Ró¿ne Programy\USB Safely Remove\USBSRService.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
D:\Programy do czyszczenia\Ashampoo HDD Control 2\AHDDC2_Service.exe
D:\Programy do czyszczenia\Ashampoo HDD Control 2\DfSdkS64.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
D:\Programy do nagrywania\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
D:\Programy do czyszczenia\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
D:\Ró¿ne Programy\SetPointP\SetPoint.exe
C:\Program Files\Windows Sidebar\sidebar.exe
D:\Ró¿ne Programy\USB Safely Remove\USBSafelyRemove.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
D:\Przegladarki internetowe\Mozilla Firefox\firefox.exe
D:\Ró¿ne Programy\Screamer Radio\screamer.exe
D:\Ró¿ne Programy\Internet Download Manager\IDMan.exe
D:\Ró¿ne Programy\Internet Download Manager\IEMonitor.exe
C:\Users\Paulinka2006\Desktop\OTL_3.2.17.3(dobreprogramy.pl).exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Paulinka2006\Desktop\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.interia.pl/
BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - D:\Ró¿ne Programy\Internet Download Manager\IDMIECC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - D:\Antywirus\Kaspersky Internet Security 2010\ievkbd.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - D:\Antywirus\Kaspersky Internet Security 2010\klwtbbho.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [USB Safely Remove] D:\Ró¿ne Programy\USB Safely Remove\USBSafelyRemove.exe /startup
uRun: [AlcoholAutomount] "D:\Programy do nagrywania\Alcohol 120\axcmd.exe" /automount
uRun: [KiesTrayAgent] 
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [NBAgent] "D:\Programy do nagrywania\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
mRun: [AVP] "D:\Antywirus\Kaspersky Internet Security 2010\avp.exe"
mRun: [Adobe Reader Speed Launcher] "D:\Ró¿ne Programy\Adobe Reader\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Malwarebytes' Anti-Malware] "D:\Programy do czyszczenia\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: EnableLinkedConnections = 1 (0x1)
IE: Dodaj do blokowanych banerów - D:\Antywirus\Kaspersky Internet Security 2010\ie_banner_deny.htm
IE: E&ksportuj do programu Microsoft Excel - D:\RNEPRO~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Œci¹gnij przez IDM - D:\Ró¿ne Programy\Internet Download Manager\IEExt.htm
IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - D:\Antywirus\Kaspersky Internet Security 2010\klwtbbho.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - D:\Antywirus\Kaspersky Internet Security 2010\klwtbbho.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
AppInit_DLLs: D:\ANTYWI~1\KASPER~1\mzvkbd3.dll, D:\ANTYWI~1\KASPER~1\sbhook.dll
mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
{E33CF602-D945-461A-83F0-819F76A199F8}
mRun-x64: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
mRun-x64: [EvtMgr6] D:\R¢¾ne Programy\SetPointP\SetPoint.exe /launchGaming
mRun-x64: [BCSSync] "D:\R¢¾ne Programy\Microsoft Office\Office14\BCSSync.exe" /DelayServices
AppInit_DLLs-X64: D:\ANTYWI~1\KASPER~1\x64\sbhook64.dll,D:\ANTYWI~1\KASPER~1\x64\kloehk.dll

================= FIREFOX ===================

FF - ProfilePath - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - component: C:\Users\Paulinka2006\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - plugin: D:\Odtwarzacze i kodeki\Real Alternative\browser\plugins\nppl3260.dll
FF - plugin: D:\Odtwarzacze i kodeki\Real Alternative\browser\plugins\nprpjplug.dll
FF - plugin: D:\Przegladarki internetowe\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: D:\Przegladarki internetowe\Opera\program\plugins\NP_IDM1.dll
FF - plugin: D:\Przegladarki internetowe\Opera\program\plugins\NP_IDM2.dll
FF - plugin: D:\Przegladarki internetowe\Opera\program\plugins\NP_IDM4.dll
FF - plugin: D:\Przegladarki internetowe\Opera\program\plugins\NP_IDM5.dll
FF - plugin: D:\Przegladarki internetowe\Opera\program\plugins\npfdm.dll
FF - plugin: D:\Przegladarki internetowe\Opera\program\plugins\nppl3260.dll
FF - plugin: D:\Przegladarki internetowe\Opera\program\plugins\nprpjplug.dll
FF - plugin: D:\RÃ³Å¼ne Programy\Adobe Reader\Reader\browser\nppdf32.dll
FF - HiddenExtension: Java Console: No Registry Reference - D:\Przegladarki internetowe\Mozilla Firefox\extensions\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - D:\Przegladarki internetowe\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - Extension: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - D:\Przegladarki internetowe\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Extension: Java Console: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA} - D:\Przegladarki internetowe\Mozilla Firefox\extensions\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}
FF - Extension: Java Console: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - D:\Przegladarki internetowe\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - Extension: Fast Dial: fastdial@telega.phpnet.us - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\fastdial@telega.phpnet.us
FF - Extension: Xmarks: foxmarks@kei.com - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\foxmarks@kei.com
FF - Extension: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Extension: Qute: {36C13C8F-54F1-412e-8177-2E411719162D} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{36C13C8F-54F1-412e-8177-2E411719162D}
FF - Extension: Humanity: {6c3ecbdd-7981-4df0-8420-f419ff22779f} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{6c3ecbdd-7981-4df0-8420-f419ff22779f}
FF - Extension: Camifox: camifox@altmusictv.com - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\camifox@altmusictv.com
FF - Extension: ArzoFox: ArzoFox@sjcmankimo.ilovetw - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\ArzoFox@sjcmankimo.ilovetw
FF - Extension: SoCool-Calx: SoCoolFox-Calx@sjcmankimo.tw - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\SoCoolFox-Calx@sjcmankimo.tw
FF - Extension: NoScript: {73a6fe31-595d-460b-a920-fcc0f8843232} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
FF - Extension: AniWeather: {4176DFF4-4698-11DE-BEEB-45DA55D89593} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}
FF - Extension: Download Manager Tweak: {F8A55C97-3DB6-4961-A81D-0DE0080E53CB} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{F8A55C97-3DB6-4961-A81D-0DE0080E53CB}
FF - Extension: Quick Translator: {5C655500-E712-41e7-9349-CE462F844B19} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{5C655500-E712-41e7-9349-CE462F844B19}
FF - Extension: Fast Translation: fasttrans@kemot - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\fasttrans@kemot
FF - Extension: FlashGot: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
FF - Extension: Firesay: {ac0c2044-c51f-4194-9bf1-9116e03B1b0e} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{ac0c2044-c51f-4194-9bf1-9116e03B1b0e}
FF - Extension: Foxdie for Firefox: foxdie_ext_ocelot@foxdie.us - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\foxdie_ext_ocelot@foxdie.us
FF - Extension: Foxdie (Graphite): FoxdieGraphite@tanjihay.com - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\FoxdieGraphite@tanjihay.com
FF - Extension: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - C:\Users\PAULIN~1\AppData\Roaming\Mozilla\Firefox\Profiles\yqewnkah.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Extension: IDM CC: mozilla_cc@internetdownloadmanager.com - C:\Users\Paulinka2006\AppData\Roaming\IDM\idmmzcc3

============= SERVICES / DRIVERS ===============

R0 KLBG;Kaspersky Lab Boot Guard Driver;C:\Windows\System32\drivers\klbg.sys [2008-12-15 38416]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2009-5-15 26640]
R2 AHDDC2;Ashampoo HDD Control 2 Service;D:\Programy do czyszczenia\Ashampoo HDD Control 2\AHDDC2_Service.exe [2010-12-9 1513304]
R2 AVP;Kaspersky Internet Security;D:\Antywirus\Kaspersky Internet Security 2010\avp.exe [2009-7-3 311680]
R2 DfSdkS;Defragmentation-Service;D:\Programy do czyszczenia\Ashampoo HDD Control 2\DfSdkS64.exe [2010-12-9 544768]
R2 IDMWFP;IDMWFP;C:\Windows\System32\drivers\idmwfp.sys [2010-11-6 137792]
R2 MBAMService;MBAMService;D:\Programy do czyszczenia\Malwarebytes' Anti-Malware\mbamservice.exe [2010-12-6 363344]
R2 StarWindServiceAE;StarWind AE Service;D:\Programy do nagrywania\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-5-28 275968]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-4-3 240232]
R2 USBSafelyRemoveService;USB Safely Remove Assistant;D:\Ró¿ne Programy\USB Safely Remove\USBSRService.exe [2009-12-13 532280]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2009-5-16 21008]
R3 LgBttPort;LGE Bluetooth TransPort;C:\Windows\System32\drivers\lgbtpt64.sys [2009-9-29 16384]
R3 lgbusenum;LG Bluetooth Bus Enumerator;C:\Windows\System32\drivers\lgbtbs64.sys [2009-9-29 14848]
R3 LGVMODEM;LGE Virtual Modem;C:\Windows\System32\drivers\lgvmdm64.sys [2009-9-29 17408]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2010-12-6 24152]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-3-1 187392]
S2 .1283331218;1283331218;C:\Program Files (x86)\1283331218\Paulinka20061283331218L.exe --> C:\Program Files (x86)\1283331218\Paulinka20061283331218L.exe [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 KMService;KMService;C:\Windows\system32\srvany.exe --> C:\Windows\system32\srvany.exe [?]
S3 dgderdrv;dgderdrv;C:\Windows\System32\drivers\dgderdrv.sys [2010-2-4 20568]
S3 FlashUSB;FlashUSB;C:\Windows\System32\drivers\FlashUSB_x64.sys [2010-11-3 20480]
S3 KiesAllShare;SAMSUNG KiesAllShare Service;D:\Programy do telefonu\Samsung\Kies\WiselinkPro\WiselinkPro.exe --> D:\Programy do telefonu\Samsung\Kies\WiselinkPro\WiselinkPro.exe [?]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 TFsExDisk;TFsExDisk;C:\Windows\System32\drivers\TFsExDisk.sys [2010-9-5 16392]
S3 WatAdminSvc;Us³uga Technologie aktywacji systemu Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-9-1 1255736]

=============== Created Last 30 ================

2010-12-11 09:02:18	8199504	----a-w-	C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{C6066734-3792-40F9-A048-BBE719C80085}\mpengine.dll
2010-12-09 19:18:33	34304	----a-w-	C:\Windows\System32\DfSdkBt.exe
2010-12-08 19:04:40	--------	d-----w-	C:\Program Files (x86)\Common Files\PX Storage Engine
2010-12-06 21:47:25	--------	d-----w-	C:\Program Files (x86)\The Cleaner
2010-12-06 11:31:31	--------	d-----w-	C:\Users\PAULIN~1\AppData\Roaming\Malwarebytes
2010-12-06 11:31:27	38224	----a-w-	C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2010-12-06 11:31:26	--------	d-----w-	C:\PROGRA~3\Malwarebytes
2010-12-06 11:31:23	24152	----a-w-	C:\Windows\System32\drivers\mbam.sys
2010-12-06 10:08:37	561152	----a-w-	C:\Windows\SysWow64\AltST.dll
2010-12-06 10:08:37	--------	d-----w-	C:\Program Files (x86)\Batch Rename .EXE
2010-12-06 10:07:19	--------	d-----w-	C:\Users\PAULIN~1\AppData\Roaming\GetRightToGo
2010-12-05 18:11:38	286208	----a-w-	C:\Windows\SysWow64\eftp.exe
2010-12-03 19:37:32	--------	d-----w-	C:\Windows\pss
2010-12-02 18:56:32	--------	d-----w-	C:\Users\PAULIN~1\AppData\Roaming\IDM
2010-12-02 18:55:17	--------	d-----w-	C:\Program Files\Windows Live Show
2010-11-18 17:07:27	--------	d-----w-	C:\PROGRA~3\Electronic Arts
2010-11-18 17:07:27	--------	d-----w-	C:\PROGRA~3\EA Core
2010-11-18 16:48:11	5425496	----a-w-	C:\Windows\System32\D3DX9_41.dll
2010-11-18 16:45:48	--------	d-----w-	C:\PROGRA~3\Solidshield
2010-11-18 16:20:53	--------	d-----w-	C:\Users\PAULIN~1\AppData\Local\Sidebar7
2010-11-16 19:08:51	--------	d-----w-	C:\PROGRA~3\OpenFM
2010-11-16 19:08:50	--------	d-----w-	C:\Users\PAULIN~1\AppData\Roaming\OpenFM
2010-11-12 12:05:36	--------	d-----w-	C:\Users\PAULIN~1\AppData\Roaming\Outerspace Software
2010-11-12 10:53:36	--------	d-----w-	C:\Users\PAULIN~1\AppData\Local\Activision
2010-11-12 10:31:58	5554512	----a-w-	C:\Windows\System32\d3dcsx_42.dll
2010-11-12 10:30:55	3767504	----a-w-	C:\Windows\System32\d3dx9_26.dll
2010-11-12 10:30:55	2297552	----a-w-	C:\Windows\SysWow64\d3dx9_26.dll
2010-11-12 10:20:58	1998168	----a-w-	C:\Windows\System32\D3DX9_43.dll

==================== Find3M  ====================

2010-11-05 22:34:48	137792	----a-w-	C:\Windows\System32\drivers\idmwfp.sys
2010-10-19 09:41:44	270720	------w-	C:\Windows\System32\MpSigStub.exe
2010-09-29 12:00:21	118104	----a-w-	C:\Windows\dxsdkuninst.exe
2010-09-15 03:50:37	472808	----a-w-	C:\Windows\SysWow64\deployJava1.dll

============= FINISH: 13:33:29,94 ===============