Jump to content


Photo

[RESOLVED] cannot get to google.com; hosts file corrupt?

MBAM finds 3 pum & locked up

  • You cannot start a new topic
  • Please log in to reply
50 replies to this topic

#1 zap

zap

    Member

  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 28 January 2014 - 12:12 PM

There is a problem with this website's security certificate.  
 
 
   
 
The security certificate presented by this website has expired or is not yet valid.
 
 

Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.   We recommend that you close this webpage and do not continue to this website.

#2 SmartestBot Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

SmartestBot

    SmartestBot

  • Moderators
  • 122 posts
  • 0 topics
    • Time Online: 2m 46s
  • Joined December 03, 2013
  • Skin: IP.Board
  • Local time: 11:53 AM
  • Zodiac:Aquarius
  • Gender:Male
  • OS:Windows 8
  • Country:
Offline

Posted 28 January 2014 - 12:12 PM

Welcome zap to Virus, Spyware and Malware Removal forum.
 
This is an automated message from Broni, SmartestComputing malware removal specialist.
 
Please be patient.
I'll reply to your post as soon as possible.
Usually I'm around here after 4PM PST (sometimes earlier) and whole days on weekends.
 
If you haven't done so make sure you complete all steps listed here:  BEFORE YOU POST, PLEASE READ THIS!
 
Broni

#3 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 28 January 2014 - 12:22 PM

Note: This log from the 2nd run.  First run locked up but apparently removed three PUM.

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.28.02

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Marla :: BACH [administrator]

1/1/2002 10:51:44 AM
mbam-log-2002-01-01 (10-51-44).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 246738
Time elapsed: 5 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



#4 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 28 January 2014 - 12:26 PM

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16526
Run by Marla at 18:16:02 on 2002-01-01
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.3062.1357 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Program Files\Kodak\printer\center\KodakSvc.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Windows\System32\spool\drivers\w32x86\3\EKIJ5000MUI.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Browny02\Brother\BrStMonW.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\Marla\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Windows\system32\schtasks.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\jusched.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\Marla\AppData\Roaming\Spotify\spotify.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Browny02\BrYNSvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Users\Marla\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Marla\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Marla\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Marla\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\hp\kbd\kbd.exe
c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Windows\system32\wuauclt.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k swprv
.
============== Pseudo HJT Report ===============
.



BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - <orphaned>
BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.6.0_01\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Windows Live Toolbar Helper: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
BHO: {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - <orphaned>
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Spotify Web Helper] "c:\users\marla\appdata\roaming\spotify\data\SpotifyWebHelper.exe"
uRun: [Spotify] "c:\users\marla\appdata\roaming\spotify\Spotify.exe" /uri spotify:autostart
mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide
mRun: [hpsysdrv] c:\hp\support\hpsysdrv.exe
mRun: [KBD] c:\hp\kbd\KbdStub.EXE
mRun: [OsdMaestro] "c:\program files\hewlett-packard\on-screen osd indicator\OSD.exe"
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun: [SunJavaUpdateReg] "c:\windows\system32\jureg.exe"
mRun: [itype] "c:\program files\microsoft intellitype pro\itype.exe"
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [SSBkgdUpdate] "c:\program files\common files\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
mRun: [PDF4 Registry Controller] "c:\program files\scansoft\pdf professional 4.0\RegistryController.exe"
mRun: [ScanSoft PDF Professional 4-reminder] "c:\program files\scansoft\pdf professional 4.0\ereg\ereg.exe" -r "c:\programdata\scansoft\pdf professional\4\ereg\Ereg.ini
mRun: [EKIJ5000StatusMonitor] c:\windows\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [BrStsMon00] c:\program files\browny02\brother\BrStMonW.exe /AUTORUN
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\users\marla\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\kodake~1.lnk - c:\program files\kodak\kodak easyshare software\bin\EasyShare.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\snapfi~1.lnk - c:\program files\snapfish picture mover\SnapfishMediaDetector.exe
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Add to Windows &Live Favorites - http://favorites.liv...m/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Open with ScanSoft PDF Converter 4.2 - c:\program files\scansoft\pdf professional 4.0\cnvres_eng.dll /100
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_01\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

TCP: NameServer = 192.168.1.1
TCP: Interfaces\{EFAEC267-CDE2-4A36-9836-50363FE7A492} : DHCPNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
LSA: Security Packages =  kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-9-27 214696]
R1 MpKsl341fb873;MpKsl341fb873;c:\programdata\microsoft\microsoft antimalware\definition updates\{7e930799-0e20-4269-9090-a7ab490d0851}\MpKsl341fb873.sys [2002-1-1 40392]
R2 ACEDRV08;ACEDRV08;c:\windows\system32\drivers\ACEDRV08.sys [2008-2-18 108768]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-6-24 21504]
R2 KodakSvc;Kodak AiO Device Service;c:\program files\kodak\printer\center\KodakSvc.exe [2007-12-13 18944]
R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 104768]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2008-3-1 24652]
R3 BrYNSvc;BrYNSvc;c:\program files\browny02\BrYNSvc.exe [2012-12-29 245760]
R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2013-10-23 280288]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\magix\common\database\bin\fbserver.exe [2008-2-18 1527900]
S3 hcwhdpvr;Hauppauge HD PVR Capture Device;c:\windows\system32\drivers\hcwhdpvr.sys [2011-9-15 157568]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856]
.
=============== File Associations ===============
.
ShellExec: DigitalTheatre.exe: open="c:\program files\arcsoft\totalmedia extreme\digital theatre\uDTStart.exe" "%1"
ShellExec: EasyShare.exe: Preview="c:\program files\kodak\printer\center\AiOHomeCenter.exe"
.
=============== Created Last 30 ================
.
2014-01-24 11:18:24 7760024 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2014-01-23 11:18:22 719224 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3240493f-555c-482f-9d4f-129091eec81a}\gapaengine.dll
2014-01-06 19:23:36 4558848 ----a-w- c:\windows\system32\GPhotos.scr
2013-12-11 18:10:11 335360 ----a-w- c:\windows\system32\SysFxUI.dll
2013-12-11 18:10:11 2050560 ----a-w- c:\windows\system32\win32k.sys
2013-12-11 18:10:11 167936 ----a-w- c:\windows\system32\drivers\portcls.sys
2013-12-11 18:10:11 130048 ----a-w- c:\windows\system32\drivers\drmk.sys
2013-12-11 18:10:08 155648 ----a-w- c:\windows\system32\wscript.exe
2013-12-11 18:10:08 135168 ----a-w- c:\windows\system32\cscript.exe
2013-12-11 18:10:08 131072 ----a-w- c:\windows\system32\wshom.ocx
2013-12-11 18:10:07 36864 ----a-w- c:\windows\system32\wshcon.dll
2013-12-11 18:10:07 172032 ----a-w- c:\windows\system32\scrrun.dll
2013-12-11 18:10:07 158208 ----a-w- c:\windows\system32\imagehlp.dll
2013-11-24 11:39:17 -------- d-----w- c:\programdata\Hotspot Shield
2013-11-24 11:38:15 -------- d-----w- c:\program files\Hotspot Shield
2013-11-19 00:04:57 -------- d-----w- c:\users\marla\Northfield 1
2013-11-18 22:05:58 -------- d-----w- c:\users\marla\appdata\roaming\Samsung Multimedia Viewer
2013-11-18 22:02:24 -------- d-----w- c:\users\marla\appdata\roaming\iLauncher
2013-11-18 22:02:10 -------- d-----w- c:\program files\Samsung
2013-11-18 22:01:13 -------- d-----w- c:\users\marla\appdata\roaming\iLinker
2013-11-13 07:10:03 297984 ----a-w- c:\windows\system32\gdi32.dll
2013-11-13 07:10:02 993792 ----a-w- c:\windows\system32\crypt32.dll
2013-11-13 07:09:58 596480 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2013-11-13 07:09:58 444928 ----a-w- c:\windows\system32\IKEEXT.DLL
2013-10-28 22:26:08 1619120 ----a-w- c:\program files\common files\microsoft shared\office12\OGL.DLL
2013-10-09 00:07:34 1069056 ----a-w- c:\windows\system32\DWrite.dll
2013-10-09 00:07:33 798208 ----a-w- c:\windows\system32\FntCache.dll
2013-10-09 00:07:33 683008 ----a-w- c:\windows\system32\d2d1.dll
2013-10-09 00:07:33 486400 ----a-w- c:\windows\system32\d3d10level9.dll
2013-10-09 00:07:33 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-10-09 00:07:33 189952 ----a-w- c:\windows\system32\d3d10core.dll
2013-10-09 00:07:33 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2013-10-09 00:07:33 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2013-10-09 00:07:33 1029120 ----a-w- c:\windows\system32\d3d10.dll
2013-10-08 23:46:01 638400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-10-08 23:46:00 37376 ----a-w- c:\windows\system32\cdd.dll
2013-09-27 14:53:06 214696 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2013-09-25 16:51:12 957048 ----a-w- c:\program files\common files\microsoft shared\help\hxds.dll
2013-09-14 16:52:04 615936 ----a-w- c:\windows\system32\themeui.dll
2013-09-06 21:34:45 -------- d-----w- c:\users\marla\appdata\local\Slick Savings
2013-09-06 21:34:33 -------- d-----w- c:\program files\common files\Spigot
2013-09-06 21:34:16 -------- d-----w- c:\programdata\YTD Video Downloader
2013-08-29 21:18:20 1548288 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-15 21:20:03 24064 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-15 21:20:03 15872 ----a-w- c:\windows\system32\icaapi.dll
2013-08-15 21:20:00 914880 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-15 21:20:00 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-08-15 21:19:27 2048 ----a-w- c:\windows\system32\tzres.dll
2013-08-15 21:19:13 783360 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-15 21:19:09 3551680 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-08-15 21:19:08 3603904 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-08-15 21:19:08 1205168 ----a-w- c:\windows\system32\ntdll.dll
2013-08-15 21:18:50 98304 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-15 21:18:50 172544 ----a-w- c:\windows\system32\wintrust.dll
2013-08-15 21:18:50 133120 ----a-w- c:\windows\system32\cryptsvc.dll
2013-07-19 07:04:10 -------- d-----w- c:\windows\system32\MRT
2013-07-17 22:30:26 17325760 ----a-w- c:\program files\common files\microsoft shared\office12\MSO.DLL
2013-07-10 22:07:22 756888 ----a-w- c:\program files\common files\microsoft shared\office12\MSPTLS.DLL
2013-07-09 20:54:50 505344 ----a-w- c:\windows\system32\qedit.dll
2013-07-09 20:54:28 983552 ----a-w- c:\program files\windows journal\JNTFiltr.dll
2013-07-09 20:54:28 936960 ----a-w- c:\program files\common files\microsoft shared\ink\journal.dll
2013-07-09 20:54:28 1218048 ----a-w- c:\program files\windows journal\NBDoc.DLL
2013-07-09 20:54:27 964608 ----a-w- c:\program files\windows journal\JNWDRV.dll
2013-06-19 23:44:54 1366656 ----a-w- c:\program files\common files\microsoft shared\office11\msxml5.dll
2013-06-13 12:18:59 443904 ----a-w- c:\windows\system32\win32spl.dll
2013-06-13 12:18:59 37376 ----a-w- c:\windows\system32\printcom.dll
2013-06-13 12:18:54 812544 ----a-w- c:\windows\system32\certutil.exe
2013-06-13 12:18:53 41984 ----a-w- c:\windows\system32\certenc.dll
2013-06-13 12:18:00 24576 ----a-w- c:\windows\system32\cryptdlg.dll
2013-05-27 12:30:58 -------- d-----w- c:\programdata\APN
2013-05-08 19:01:10 1411816 ----a-w- c:\program files\common files\microsoft shared\office12\ACECORE.DLL
2013-04-10 11:31:08 1082232 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 11:31:06 64000 ----a-w- c:\windows\system32\smss.exe
2013-04-10 11:31:06 49152 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-10 11:31:04 376320 ----a-w- c:\windows\system32\winsrv.dll
2013-04-10 11:31:04 2067968 ----a-w- c:\windows\system32\mstscax.dll
2013-03-21 21:37:16 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-17 21:00:39 1314816 ----a-w- c:\windows\system32\quartz.dll
2013-01-09 01:22:12 204288 ----a-w- c:\windows\system32\ncrypt.dll
2013-01-09 01:22:10 1400832 ----a-w- c:\windows\system32\msxml6.dll
2012-12-29 16:44:52 -------- d-----r- c:\users\marla\appdata\roaming\Brother
2012-12-29 16:40:59 -------- d-----w- C:\Brother
2012-12-29 16:40:52 -------- d-----w- c:\program files\Browny02
2012-12-29 16:40:49 73728 ------w- c:\windows\system32\BrDctF2.dll
2012-12-29 16:40:49 5120 ------w- c:\windows\system32\BrDctF2L.dll
2012-12-29 16:40:49 2560 ------w- c:\windows\system32\BrDctF2S.dll
2012-12-29 16:40:49 217088 ------w- c:\windows\system32\NSSearch.dll
2012-12-29 16:40:48 -------- d-----w- c:\program files\Brother
2012-12-29 16:29:30 -------- d-----w- c:\programdata\Brother
2012-12-13 08:04:21 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-12-13 08:04:13 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-12-13 08:04:12 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-12-13 08:04:12 16896 ----a-w- c:\windows\system32\winusb.dll
2012-12-13 08:04:11 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-12-13 08:04:11 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-12-13 08:04:09 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-12-13 08:04:07 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-12-13 08:04:07 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2012-12-13 08:04:06 613888 ----a-w- c:\windows\system32\WUDFx.dll
2012-12-12 11:42:10 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys
2012-12-12 11:42:09 376320 ----a-w- c:\windows\system32\dpnet.dll
2012-12-12 11:42:09 23040 ----a-w- c:\windows\system32\dpnsvr.exe
2012-12-12 05:53:28 6543944 ----a-w- c:\program files\common files\microsoft shared\office12\office setup controller\OSETUP.DLL
2012-11-13 21:32:48 75776 ----a-w- c:\windows\system32\synceng.dll
2012-11-08 02:51:58 -------- d-----w- c:\program files\common files\SWF Studio
2012-09-21 23:38:40 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-19 13:10:11 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2012-09-19 08:05:35 -------- d-----w- c:\program files\Windows Portable Devices
2012-09-19 07:40:33 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2012-09-19 07:40:32 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2012-09-19 07:40:32 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2012-09-19 07:31:01 5120 ----a-w- c:\windows\system32\wmi.dll
2012-09-19 07:31:01 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-09-19 07:22:16 979456 ----a-w- c:\windows\system32\MFH264Dec.dll
2012-09-19 07:21:18 519680 ----a-w- c:\windows\system32\d3d11.dll
2012-09-19 07:21:18 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2012-09-19 07:21:18 252928 ----a-w- c:\windows\system32\dxdiag.exe
2012-09-19 07:21:18 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2012-09-19 07:21:17 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2012-09-19 07:21:17 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2012-09-19 07:21:17 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2012-09-19 02:21:11 69632 ----a-w- c:\windows\system32\Mpeg2Data.ax
2012-09-19 02:21:11 57856 ----a-w- c:\windows\system32\MSDvbNP.ax
2012-09-19 02:21:11 293376 ----a-w- c:\windows\system32\psisdecd.dll
2012-09-19 02:21:11 217088 ----a-w- c:\windows\system32\psisrndr.ax
2012-09-19 02:21:08 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-09-19 02:21:08 189952 ----a-w- c:\windows\system32\winmm.dll
2012-09-19 02:21:05 623616 ----a-w- c:\windows\system32\localspl.dll
2012-09-19 02:19:50 429056 ----a-w- c:\windows\system32\EncDec.dll
2012-09-19 02:19:03 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-09-19 02:19:01 6144 ----a-w- c:\program files\internet explorer\iecompat.dll
2012-09-19 02:19:00 1404928 ----a-w- c:\program files\common files\microsoft shared\ink\InkObj.dll
2012-09-19 02:18:59 47104 ----a-w- c:\program files\windows journal\PDIALOG.exe
2012-09-19 02:18:54 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2012-09-19 02:18:00 66560 ----a-w- c:\windows\system32\packager.dll
2012-09-19 02:17:42 680448 ----a-w- c:\windows\system32\msvcrt.dll
2012-09-19 02:17:23 708608 ----a-w- c:\program files\common files\system\ado\msado15.dll
2012-09-19 02:16:20 497152 ----a-w- c:\windows\system32\qdvd.dll
2012-09-19 02:16:18 377344 ----a-w- c:\windows\system32\winhttp.dll
2012-09-19 02:15:53 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2012-09-19 02:15:49 563712 ----a-w- c:\windows\system32\oleaut32.dll
2012-09-19 02:15:49 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2012-09-19 02:15:49 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2012-09-19 02:15:49 238080 ----a-w- c:\windows\system32\oleacc.dll
2012-09-19 02:15:28 1248768 ----a-w- c:\windows\system32\msxml3.dll
2012-09-19 02:15:09 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-09-19 02:15:06 707584 ----a-w- c:\program files\common files\system\wab32.dll
2012-09-19 02:14:15 9728 ----a-w- c:\windows\system32\lsass.exe
2012-09-19 02:14:15 72704 ----a-w- c:\windows\system32\secur32.dll
2012-09-19 02:14:15 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-09-19 02:14:15 278528 ----a-w- c:\windows\system32\schannel.dll
2012-09-19 02:14:15 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-09-19 02:14:13 231424 ----a-w- c:\windows\system32\msshsq.dll
2012-09-19 01:49:42 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-09-19 01:39:24 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-09-19 01:39:01 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-09-19 01:38:54 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-09-19 01:38:54 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-09-18 22:02:39 -------- d-----w- c:\windows\system32\eu-ES
2012-09-18 22:02:39 -------- d-----w- c:\windows\system32\ca-ES
2012-09-18 22:02:38 -------- d-----w- c:\windows\system32\vi-VN
2012-06-11 02:16:44 118384 ----a-w- c:\program files\common files\microsoft shared\textconv\MSCONV97.DLL
2012-06-07 00:59:42 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2012-05-15 07:17:34 2594632 ----a-w- c:\program files\common files\microsoft shared\vba\vba6\VBE6.DLL
2012-04-28 22:49:59 978432 ----a-w- c:\windows\system32\drmv2clt.dll
2012-04-28 22:48:59 860160 ----a-w- c:\windows\system32\WerFaultSecure.exe
2012-04-28 22:47:53 705536 ----a-w- c:\windows\system32\SmiEngine.dll
2012-04-28 22:47:40 218624 ----a-w- c:\windows\system32\wdscore.dll
2012-04-28 22:47:40 130560 ----a-w- c:\windows\system32\PkgMgr.exe
2012-04-28 22:47:10 247808 ----a-w- c:\windows\system32\drvstore.dll
2012-04-18 00:41:42 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-04-18 00:41:42 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2012-04-18 00:40:57 -------- d-----w- c:\program files\iPod
2012-04-18 00:40:47 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2012-04-18 00:40:47 -------- d-----w- c:\program files\iTunes
2012-04-18 00:37:46 -------- d-----w- c:\program files\Bonjour
2012-04-09 21:14:52 -------- d-----w- C:\6a15729d7ab57056c40eb8
2012-04-05 22:35:22 -------- d-----w- c:\users\marla\appdata\local\Spotify
2012-04-05 22:34:19 -------- d-----w- c:\users\marla\appdata\roaming\Spotify
2012-04-05 22:34:10 -------- d-----w- c:\users\marla\appdata\local\Apps
2012-04-05 22:34:09 -------- d-----w- c:\users\marla\appdata\local\Deployment
2012-03-30 22:14:34 677136 ----a-w- c:\programdata\microsoft\ehome\packages\mcespotlight\mcespotlight\SpotlightResources.dll
2011-09-24 00:28:12 -------- d-----w- c:\programdata\AVS4YOU
2011-09-24 00:28:04 -------- d-----w- c:\users\marla\appdata\roaming\AVS4YOU
2011-09-24 00:25:39 10833920 ----a-w- c:\windows\system32\libmfxsw32.dll
2011-09-24 00:25:38 10915840 ----a-w- c:\windows\system32\libmfxhw32.dll
2011-09-24 00:25:28 -------- d-----w- c:\program files\common files\AVSMedia
2011-09-24 00:25:25 24576 ----a-w- c:\windows\system32\msxml3a.dll
2011-09-24 00:25:25 -------- d-----w- c:\program files\AVS4YOU
2011-09-22 01:55:04 -------- d-----w- c:\program files\NCH Software
2011-09-15 10:27:53 73728 ----a-w- c:\windows\system32\MMCEDT3.exe
2011-09-15 10:27:52 11776 ----a-w- c:\windows\system32\drivers\afc.sys
2011-09-15 10:26:01 -------- d-----w- c:\programdata\ArcSoft
2011-09-15 10:24:40 256768 ----a-w- c:\windows\system32\MSLURT.dll
2011-09-15 10:24:39 393216 ----a-w- c:\windows\system32\MSLUP60.dll
2011-09-15 10:24:39 1645320 ----a-w- c:\windows\system32\gdiplus.dll
2011-09-15 10:14:29 317440 ----a-w- c:\windows\system32\hcwhdpvr.ax
2011-09-15 10:14:29 157568 ----a-w- c:\windows\system32\drivers\hcwhdpvr.sys
2011-08-31 03:05:04 83816 ----a-w- c:\windows\system32\dns-sd.exe
2011-08-31 03:05:04 73064 ----a-w- c:\windows\system32\dnssd.dll
2011-08-31 03:05:04 50536 ----a-w- c:\windows\system32\jdns_sd.dll
2011-08-31 03:05:04 178536 ----a-w- c:\windows\system32\dnssdX.dll
2011-08-11 21:40:41 719224 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\nisbackup\gapaengine.dll
2011-08-09 22:38:29 214016 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-07-27 21:49:22 95608 ----a-w- c:\program files\common files\microsoft shared\office12\EXP_PDF.DLL
2011-07-27 21:49:22 56696 ----a-w- c:\program files\common files\microsoft shared\office12\EXP_XPS.DLL
2011-07-27 21:49:22 177536 ----a-w- c:\program files\common files\microsoft shared\smart tag\IETAG.DLL
2011-07-27 09:33:08 1064296 ----a-w- c:\program files\common files\microsoft shared\office12\RICHED20.DLL
2011-07-27 09:13:08 434080 ----a-w- c:\program files\common files\microsoft shared\dw\DWTRIG20.EXE
2011-07-27 09:13:06 813960 ----a-w- c:\program files\common files\microsoft shared\dw\DW20.EXE
2011-07-27 08:58:56 439160 ----a-w- c:\program files\common files\microsoft shared\office12\office setup controller\SETUP.EXE
2011-07-27 08:41:30 677808 ----a-w- c:\program files\common files\microsoft shared\office12\1033\ACEWSTR.DLL
2011-07-27 08:36:06 481640 ----a-w- c:\program files\common files\microsoft shared\portal\PortalConnectCore.dll
2011-07-20 09:18:26 2872184 ----a-w- c:\program files\common files\microsoft shared\office12\OFFDIAG.EXE
2011-07-20 09:18:24 440696 ----a-w- c:\program files\common files\microsoft shared\office12\ODSERV.EXE
2011-07-14 01:34:36 1117584 ----a-w- c:\program files\common files\microsoft shared\filters\offfiltx.dll
2011-07-12 02:01:09 -------- d-----w- c:\users\marla\appdata\roaming\HpUpdate
2011-07-12 02:01:06 -------- d-----w- c:\windows\Hewlett-Packard
2011-07-07 06:28:22 1193320 ----a-w- c:\windows\system32\FM20.DLL
2011-06-26 20:21:32 -------- d-----w- c:\users\marla\appdata\roaming\Roni Music
2011-06-26 20:20:56 -------- d-----w- c:\program files\Roni Music
2011-06-26 14:49:17 -------- d-----w- c:\programdata\YouTube Downloader
2011-06-26 14:49:08 -------- d-----w- c:\program files\YouTube Downloader
2011-06-22 12:16:34 1681784 ----a-w- c:\program files\common files\microsoft shared\web server extensions\12\bin\FPSRVUTL.DLL
2011-06-22 00:02:40 341888 ----a-w- c:\program files\common files\microsoft shared\proof\MSTH3ES.DLL
2011-06-21 06:36:44 341888 ----a-w- c:\program files\common files\microsoft shared\proof\MSTH3FR.DLL
2011-06-16 20:52:28 75264 ----a-w- c:\windows\system32\drivers\dfsc.sys
2011-06-16 20:52:20 273408 ----a-w- c:\windows\system32\drivers\afd.sys
2011-06-16 20:52:11 146432 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-06-16 20:52:11 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-06-16 20:51:18 739328 ----a-w- c:\windows\system32\inetcomm.dll
2011-06-16 20:51:10 79872 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-06-16 20:51:10 106496 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-06-16 02:35:34 -------- d-----w- c:\windows\system32\EventProviders
2011-06-12 18:15:19 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-08 22:10:59 -------- d-----w- c:\program files\Microsoft Money
2011-06-08 21:13:22 69632 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\CNMPP83.DLL
2011-06-08 21:13:22 27136 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\CNMPD83.DLL
2011-06-08 21:11:40 198656 ----a-w- c:\windows\system32\CNMLM83.DLL
2011-06-08 21:11:31 69632 ----a-w- c:\windows\system32\CNCI160.DLL
2011-06-08 21:11:31 135168 ----a-w- c:\windows\system32\CNCL160.DLL
2011-06-08 21:11:31 1302528 ----a-w- c:\windows\system32\CNCC160.DLL
2011-06-08 21:11:31 106496 ----a-w- c:\windows\system32\cnco160.dll
2011-06-08 00:05:03 -------- d-----w- c:\windows\Temp2C182348-418B-7184-E411-AC36365776C2-Signatures
2011-06-08 00:04:23 -------- d-----w- c:\program files\Microsoft Security Client
2011-06-08 00:03:32 221568 ----a-w- c:\windows\system32\drivers\netio.sys
2011-05-31 20:26:54 986000 ----a-w- c:\program files\common files\microsoft shared\office12\msoshext.dll
2011-05-31 20:26:52 88448 ----a-w- c:\program files\common files\microsoft shared\smart tag\METCONV.DLL
2011-05-26 23:28:06 6637952 ----a-w- c:\program files\common files\microsoft shared\office12\MSORES.DLL
2011-05-24 02:09:38 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-05-24 02:09:35 1162240 ----a-w- c:\windows\system32\mfc42u.dll
2011-05-24 02:09:35 1136640 ----a-w- c:\windows\system32\mfc42.dll
2011-05-24 02:09:32 305152 ----a-w- c:\windows\system32\drivers\srv.sys
2011-05-24 02:09:30 86528 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-05-24 02:09:29 25088 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-05-24 02:09:09 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2011-05-24 02:09:09 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2011-05-24 01:42:05 2048 ----a-w- c:\windows\system32\winrsmgr.dll
2011-05-14 01:11:54 641536 ----a-w- c:\program files\common files\microsoft shared\vc\msdia80.dll
2011-04-06 05:21:20 242704 ----a-w- c:\program files\common files\system\ole db\MSMDCB80.DLL
2011-03-30 15:42:42 65 ----a-w- c:\windows\system32\killexplorer.bat
2011-03-17 03:08:24 322560 ----a-w- c:\windows\system32\sbe.dll
2011-03-17 03:08:24 177664 ----a-w- c:\windows\system32\mpg2splt.ax
2011-03-17 03:08:24 153088 ----a-w- c:\windows\system32\sbeio.dll
2011-03-17 03:08:22 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-03-17 03:08:22 63488 ----a-w- c:\windows\system32\tscupgrd.exe
2011-01-26 02:47:06 -------- d-----w- c:\program files\Daniusoft
2011-01-12 02:56:25 1169408 ----a-w- c:\windows\system32\sdclt.exe
2011-01-12 02:56:22 413696 ----a-w- c:\windows\system32\odbc32.dll
2011-01-12 02:56:21 57344 ----a-w- c:\program files\common files\system\msadc\msadcs.dll
2011-01-12 02:56:21 253952 ----a-w- c:\program files\common files\system\ado\msadox.dll
2011-01-12 02:56:21 241664 ----a-w- c:\program files\common files\system\ado\msadomd.dll
2011-01-12 02:56:21 180224 ----a-w- c:\program files\common files\system\msadc\msadco.dll
2010-12-22 01:14:42 -------- d-----w- c:\program files\Veetle
2010-12-21 05:01:37 -------- d-----r- c:\program files\Skype
2010-12-19 02:38:06 66048 ----a-w- c:\program files\windows mail\wabmig.exe
2010-12-19 02:38:06 515584 ----a-w- c:\program files\windows mail\wab.exe
2010-12-19 02:38:06 33280 ----a-w- c:\program files\windows mail\wabfind.dll
2010-12-19 02:38:00 601600 ----a-w- c:\windows\system32\schedsvc.dll
2010-12-19 02:38:00 352768 ----a-w- c:\windows\system32\taskschd.dll
2010-12-19 02:37:59 345600 ----a-w- c:\windows\system32\wmicmiplugin.dll
2010-12-19 02:37:59 270336 ----a-w- c:\windows\system32\taskcomp.dll
2010-12-19 02:37:59 171520 ----a-w- c:\windows\system32\taskeng.exe
2010-12-19 02:37:57 81920 ----a-w- c:\windows\system32\consent.exe
2010-12-19 02:36:43 72704 ----a-w- c:\windows\system32\fontsub.dll
2010-11-07 15:15:15 1696256 ----a-w- c:\windows\system32\gameux.dll
2010-10-25 01:25:38 104768 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2010-10-14 00:27:14 125952 ----a-w- c:\windows\system32\srvsvc.dll
2010-10-14 00:27:13 17920 ----a-w- c:\windows\system32\netevent.dll
2010-10-14 00:27:03 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2010-10-14 00:27:03 168960 ----a-w- c:\program files\windows media player\wmplayer.exe
2010-10-14 00:26:54 339968 ----a-w- c:\program files\windows nt\accessories\wordpad.exe
2010-10-14 00:26:54 1316864 ----a-w- c:\windows\system32\ole32.dll
2010-10-14 00:26:53 157184 ----a-w- c:\windows\system32\t2embed.dll
2010-10-14 00:26:44 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-10-14 00:26:44 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-10-14 00:26:38 867328 ----a-w- c:\windows\system32\wmpmde.dll
2010-09-15 23:27:11 502272 ----a-w- c:\windows\system32\usp10.dll
2010-09-15 23:27:09 128000 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-15 23:27:08 317952 ----a-w- c:\windows\system32\MP4SDECD.DLL
2010-08-12 11:57:00 81920 ----a-w- c:\windows\system32\iccvid.dll
2010-08-12 11:56:57 10926592 ----a-w- c:\program files\movie maker\MOVIEMK.dll
2010-08-12 11:56:55 150016 ----a-w- c:\program files\movie maker\MOVIEMK.exe
2010-08-12 11:56:51 36864 ----a-w- c:\windows\system32\rtutils.dll
2010-07-22 16:04:37 -------- d-----w- c:\program files\Acclaim
2010-07-19 19:37:42 499712 ----a-w- c:\windows\system32\kerberos.dll
2010-07-17 03:27:38 -------- d-----w- c:\users\marla\appdata\local\PokerStars
2010-07-17 03:27:18 -------- d-----w- c:\program files\PokerStars
2010-07-03 01:41:16 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-07-03 01:41:16 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-07-03 01:41:16 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-07-03 01:41:16 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-07-03 01:41:16 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-06-13 13:02:48 67072 ----a-w- c:\windows\system32\asycfilt.dll
2010-05-15 12:39:10 1616384 ----a-w- c:\program files\windows mail\msoe.dll
2010-05-10 08:45:58 103736 ----a-w- c:\windows\system32\BRRBTOOL.EXE
2010-04-14 22:33:07 62464 ----a-w- c:\windows\system32\l3codeca.acm
2010-04-14 22:33:07 220672 ----a-w- c:\windows\system32\l3codecp.acm
2010-04-14 22:33:06 200704 ----a-w- c:\windows\system32\iphlpsvc.dll
2010-04-14 22:33:05 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys
2010-04-14 22:29:52 98304 ----a-w- c:\windows\system32\cabview.dll
2010-04-11 15:44:07 24064 ----a-w- c:\windows\system32\nshhttp.dll
2010-04-11 15:44:03 411648 ----a-w- c:\windows\system32\drivers\http.sys
2010-04-11 15:44:03 30720 ----a-w- c:\windows\system32\httpapi.dll
2010-04-10 18:22:30 23040 ----a-w- c:\program files\movie maker\WMM2EXT.dll
2010-04-10 18:22:30 195072 ----a-w- c:\program files\movie maker\WMM2AE.dll
2010-04-02 05:33:34 25299 ----a-w- c:\windows\system32\BRLM03A.DLL
2010-03-18 17:16:28 771424 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2010-02-24 13:41:45 526336 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-02-24 13:41:45 518144 ----a-w- c:\windows\system32\RMActivate.exe
2010-02-24 13:41:44 471552 ----a-w- c:\windows\system32\secproc_isv.dll
2010-02-24 13:41:43 471552 ----a-w- c:\windows\system32\secproc.dll
2010-02-24 13:41:43 347136 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2010-02-24 13:41:42 346624 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-02-24 13:41:42 332288 ----a-w- c:\windows\system32\msdrm.dll
2010-02-24 13:41:41 152576 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-02-24 13:41:41 152064 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-02-20 15:45:55 -------- d-----w- c:\users\marla\eee
2010-02-20 15:36:25 -------- d-----w- c:\users\marla\appdata\roaming\GetRightToGo
2010-02-20 15:35:20 -------- d-----w- c:\users\marla\appdata\roaming\Architectural Home Designer 9.0
2010-02-20 15:28:25 -------- d-----w- c:\programdata\Architectural Home Designer 9.0
2010-02-20 15:28:25 -------- d-----w- c:\program files\Chief Architect
2010-02-14 16:56:28 31744 ----a-w- c:\windows\system32\msvidc32.dll
2010-02-14 16:56:28 12288 ----a-w- c:\windows\system32\tsbyuv.dll
2010-02-14 16:56:27 82944 ----a-w- c:\windows\system32\mciavi32.dll
2010-02-14 16:56:27 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2010-02-14 16:56:27 22528 ----a-w- c:\windows\system32\msyuv.dll
2010-02-14 16:56:27 13312 ----a-w- c:\windows\system32\msrle32.dll
2010-02-14 16:56:26 91136 ----a-w- c:\windows\system32\avifil32.dll
2010-02-14 16:56:26 123904 ----a-w- c:\windows\system32\msvfw32.dll
2010-02-13 16:31:39 5163344 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{9472de95-c9b6-4186-9401-87f8863a82a0}\mpengine.dll
2010-02-05 02:42:32 180224 ------w- c:\windows\system32\BroSNMP.dll
2010-01-26 00:57:50 -------- d-----w- c:\users\marla\appdata\roaming\NCH Software
2010-01-26 00:55:47 -------- d-----w- c:\program files\NCH Swift Sound
2009-12-10 01:19:03 243712 ----a-w- c:\windows\system32\rastls.dll
2009-11-28 15:45:58 714240 ----a-w- c:\windows\system32\timedate.cpl
2009-11-25 02:38:42 -------- d-----w- C:\GAMES
2009-11-21 21:56:35 -------- d-----w- c:\program files\TablEdit
2009-11-21 00:19:01 60928 ----a-w- c:\windows\system32\msasn1.dll
2009-11-21 00:18:58 355328 ----a-w- c:\windows\system32\WSDApi.dll
2009-11-21 00:18:56 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2009-11-21 00:18:48 310784 ----a-w- c:\windows\system32\unregmp2.exe
2009-11-21 00:18:48 1418752 ----a-w- c:\program files\windows media player\setup_wm.exe
2009-11-21 00:07:07 231584 ------w- c:\windows\system32\MpSigStub.exe
2009-08-28 00:01:14 71680 ----a-w- c:\windows\system32\atl.dll
2009-08-28 00:01:12 160256 ----a-w- c:\windows\system32\wkssvc.dll
2009-08-28 00:01:09 53248 ----a-w- c:\windows\system32\tsgqec.dll
2009-08-28 00:01:09 136192 ----a-w- c:\windows\system32\aaclient.dll
2009-08-28 00:01:00 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-08-28 00:01:00 4096 ----a-w- c:\windows\system32\msdxm.ocx
2009-08-28 00:01:00 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-08-28 00:01:00 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-08-28 00:01:00 107520 ----a-w- c:\program files\windows media player\wmpshare.exe
2009-08-28 00:01:00 107520 ----a-w- c:\program files\windows media player\wmpconfig.exe
2009-08-28 00:00:59 43520 ----a-w- c:\windows\system32\msdxm.tlb
2009-08-28 00:00:59 18432 ----a-w- c:\windows\system32\amcompat.tlb
2009-08-27 23:51:12 -------- d-----w- c:\program files\CCleaner
2009-07-21 05:05:40 1348432 ----a-w- c:\windows\system32\msxml4.dll
2009-07-18 16:24:28 23552 ----a-w- c:\windows\system32\lpk.dll
2009-07-18 16:24:28 10240 ----a-w- c:\windows\system32\dciman32.dll
2009-06-29 01:18:31 -------- d-----w- c:\program files\Finale NotePad 2009
2009-06-28 19:49:13 -------- d-----w- c:\program files\Finale Reader
2009-06-14 12:31:27 355832 ----a-w- c:\program files\internet explorer\pdm.dll
2009-06-14 12:31:27 265720 ----a-w- c:\program files\internet explorer\msdbg2.dll
2009-05-29 17:36:16 39424 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2009-05-29 17:36:16 2060288 ----a-w- c:\windows\system32\usbaaplrc.dll
2009-05-15 20:20:37 416128 ----a-w- c:\programdata\microsoft\ehome\packages\nettv\browse\NetTVResources.dll
2009-04-19 14:51:27 -------- d-----w- c:\programdata\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-04-02 17:07:44 186240 ----a-w- c:\program files\common files\microsoft shared\office12\office setup controller\office.en-us\OSETUPUI.DLL
2009-04-02 16:02:02 45968 ----a-w- c:\program files\common files\microsoft shared\office12\office setup controller\OSETUPPS.DLL
2009-04-02 16:02:02 14720 ----a-w- c:\program files\common files\microsoft shared\smart tag\SmartTagInstall.exe
2009-04-02 16:02:00 15760 ----a-w- c:\program files\common files\microsoft shared\office12\OPTINPS.DLL
2009-04-02 16:02:00 12616 ----a-w- c:\program files\common files\microsoft shared\office12\OFFREL.DLL
2009-04-02 16:01:58 42864 ----a-w- c:\program files\common files\microsoft shared\office12\MSSH.DLL
2009-04-02 16:01:46 18816 ----a-w- c:\program files\common files\microsoft shared\office12\MSMH.DLL
2009-02-27 16:13:42 103792 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
2009-02-26 23:21:28 25968 ----a-w- c:\program files\common files\microsoft shared\euro\MSOEURO.DLL
2009-02-26 23:15:24 144208 ----a-w- c:\program files\common files\microsoft shared\office12\1033\ALRTINTL.DLL
2009-02-26 20:45:38 43392 ----a-w- c:\program files\common files\microsoft shared\office12\MSOXMLMF.DLL
2009-02-26 19:24:30 231864 ----a-w- c:\program files\common files\microsoft shared\office12\office setup controller\ODEPLOY.EXE
2009-02-26 19:24:20 970128 ----a-w- c:\program files\common files\microsoft shared\web server extensions\12\bin\FPWEC.DLL
2009-02-26 17:47:00 15184 ----a-w- c:\program files\common files\microsoft shared\portal\1033\PortalConnect.dll
2009-02-26 15:21:30 10340720 ----a-w- c:\program files\common files\microsoft shared\office12\1033\MSOINTL.DLL
2009-02-26 15:18:20 178096 ----a-w- c:\program files\common files\microsoft shared\office12\1033\ACEINTL.DLL
2009-02-26 15:18:12 14192 ----a-w- c:\program files\common files\microsoft shared\office12\ACEODTXT.DLL
2009-02-26 15:18:12 14192 ----a-w- c:\program files\common files\microsoft shared\office12\ACEODPDX.DLL
2009-02-26 15:18:12 14192 ----a-w- c:\program files\common files\microsoft shared\office12\ACEODEXL.DLL
2009-02-26 15:18:12 14192 ----a-w- c:\program files\common files\microsoft shared\office12\ACEODDBS.DLL
2009-02-26 02:25:56 79744 ----a-w- c:\program files\common files\microsoft shared\office12\1033\xlsrvintl.dll
2009-02-26 02:02:38 504176 ----a-w- c:\program files\common files\microsoft shared\office12\MSSOAP30.DLL
2009-02-26 01:46:02 435568 ----a-w- c:\program files\common files\microsoft shared\msorun\MSORUN.DLL
2009-02-21 12:22:42 18904 ----a-w- c:\windows\system32\StructuredQuerySchemaTrivial.bin
2009-02-20 02:44:48 -------- d-----w- C:\PerfLogs
2009-02-20 02:32:56 98304 ----a-w- c:\windows\RTKAUDIOSERVICE.EXE
2009-02-19 03:42:23 -------- d-----w- c:\windows\system32\Service
2009-02-17 21:14:40 117640 ----a-w- c:\program files\common files\microsoft shared\windows live\WLLoginProxy.exe
2009-02-17 21:11:04 408440 ----a-w- c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
2009-02-17 21:09:02 95128 ----a-w- c:\program files\common files\microsoft shared\windows live\LogicalDevice.dll
2009-02-17 21:09:00 236936 ----a-w- c:\program files\common files\microsoft shared\windows live\HWDeviceLogin.dll
2009-02-17 21:09:00 1141640 ----a-w- c:\program files\common files\microsoft shared\windows live\msidcrl40.dll
2009-02-12 16:58:34 162640 ----a-w- c:\program files\common files\microsoft shared\textconv\wkcvqr01.dll
2009-02-12 16:58:32 969552 ----a-w- c:\program files\common files\microsoft shared\textconv\wkcvqd01.dll
2008-11-23 19:21:59 -------- d-----w- c:\program files\common files\Software Update Utility
2008-11-10 06:27:52 31592 ----a-w- c:\program files\common files\microsoft shared\filters\msgfilt.dll
2008-10-15 02:29:33 305688 ----a-w- c:\windows\system32\drivers\iaStor.sys
2008-09-25 02:32:15 89600 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\HPZPPLHN.DLL
2008-09-17 20:29:12 20040 ----a-w- c:\programdata\microsoft\identitycrl\production\ppcrlconfig.dll
2008-09-05 23:34:58 -------- d-----w- C:\a3ed1bcc1e6ff402c4a0974c
2008-09-05 11:52:28 10752 ----a-w- c:\windows\DCEBoot.exe
2008-08-26 02:50:22 155648 ----a-w- c:\program files\common files\microsoft shared\vba\vba6\1033\VBE6INTL.DLL
2008-08-13 13:34:51 61440 ----a-w- c:\windows\system32\winipsec.dll
2008-08-13 13:34:51 272896 ----a-w- c:\windows\system32\polstore.dll
2008-08-11 14:22:59 652296 ----a-w- c:\programdata\microsoft\ehome\packages\sportstemplate\sportstemplatecore\Microsoft.MediaCenter.Sports.UI.dll
2008-07-06 21:33:08 -------- d-----w- C:\PSFONTS
2008-07-06 21:33:06 -------- d-----w- c:\programdata\MakeMusic
2008-06-26 18:26:58 -------- d-----w- c:\windows\system32\Adobe
2008-06-24 13:43:20 2730536 ----a-w- c:\programdata\microsoft\windows defender\definition updates\default\MpEngine.dll
2008-06-24 13:43:11 705536 ----a-w- c:\windows\system32\imagesp1.dll
2008-06-24 13:43:08 116736 ----a-w- c:\windows\system32\sstpsvc.dll
2008-06-24 13:43:03 1008184 ----a-w- c:\program files\windows defender\MSASCui.exe
2008-06-24 13:41:59 348160 ----a-w- c:\windows\system32\spwizeng.dll
2008-06-24 13:40:59 9728 ----a-w- c:\windows\system32\wscproxystub.dll
2008-06-24 13:39:54 102400 ----a-w- c:\windows\system32\wbem\mofinstall.dll
2008-06-24 13:39:53 357888 ----a-w- c:\windows\system32\wbemcomn.dll
2008-06-24 13:39:49 139264 ----a-w- c:\windows\system32\SmiInstaller.dll
2008-06-24 13:39:31 35328 ----a-w- c:\windows\system32\mspatcha.dll
2008-06-24 13:39:31 305152 ----a-w- c:\windows\system32\msdelta.dll
2008-06-24 13:39:31 258560 ----a-w- c:\windows\system32\dpx.dll
2008-05-08 09:05:18 266752 ----a-w- c:\windows\system32\drivers\HSXHWBS2.sys
2008-05-08 09:04:16 661504 ----a-w- c:\windows\system32\drivers\HSX_CNXT.sys
2008-05-08 09:03:18 980992 ----a-w- c:\windows\system32\drivers\HSX_DP.sys
2008-05-06 20:06:00 11520 ----a-w- c:\windows\system32\drivers\wdcsam.sys
2008-04-29 09:49:26 237568 ----a-w- c:\windows\system32\UCI32M29.dll
2008-04-12 15:42:09 306688 ----a-w- c:\windows\IsUninst.exe
2008-04-08 23:07:17 6656 ----a-w- c:\windows\system32\kbd106n.dll
2008-03-27 00:38:15 636416 ----a-w- c:\windows\system32\RtkPgExt.dll
2008-03-27 00:38:15 532480 ----a-w- c:\windows\system32\RTSndMgr.cpl
2008-03-27 00:38:15 4874240 ----a-w- c:\windows\RtHDVCpl.exe
2008-03-27 00:38:15 29696 ----a-w- c:\windows\system32\RtkCoInst.dll
2008-03-27 00:38:15 2156544 ----a-w- c:\windows\system32\RtkAPO.dll
2008-03-27 00:38:15 2047576 ----a-w- c:\windows\system32\drivers\RTKVHDA.sys
2008-03-27 00:38:15 1191936 ----a-w- c:\windows\RtlUpd.exe
2008-03-25 21:07:44 170520 ----a-w- c:\windows\system32\igfxzoom.exe
2008-03-25 21:07:40 141848 ----a-w- c:\windows\system32\igfxtray.exe
2008-03-25 21:07:36 256536 ----a-w- c:\windows\system32\igfxsrvc.exe
2008-03-25 21:07:34 133656 ----a-w- c:\windows\system32\igfxpers.exe
2008-03-25 21:07:26 170520 ----a-w- c:\windows\system32\igfxext.exe
2008-03-25 21:07:24 539160 ----a-w- c:\windows\system32\igfxcfg.exe
2008-03-25 21:07:22 166424 ----a-w- c:\windows\system32\hkcmd.exe
2008-03-25 20:56:08 147456 ----a-w- c:\windows\system32\igfxCoIn_v1461.dll
2008-03-25 20:44:24 2307072 ----a-w- c:\windows\system32\drivers\igdkmd32.sys
2008-03-25 20:42:46 29932 ----a-w- c:\windows\system32\igmedcompkrn.bin
2008-03-25 20:42:46 2215364 ----a-w- c:\windows\system32\igklg400.bin
2008-03-25 20:42:46 1971732 ----a-w- c:\windows\system32\igklg450.bin
2008-03-25 20:33:48 2174976 ----a-w- c:\windows\system32\ig4dev32.dll
2008-03-25 20:33:26 2420736 ----a-w- c:\windows\system32\ig4icd32.dll
2008-03-25 20:29:00 176128 ----a-w- c:\windows\system32\igfxrsve.lrc
2008-03-25 20:29:00 172032 ----a-w- c:\windows\system32\igfxrtrk.lrc
2008-03-25 20:29:00 163840 ----a-w- c:\windows\system32\igfxrtha.lrc
2008-03-25 20:25:54 69632 ----a-w- c:\windows\system32\oemdspif.dll
2008-03-25 20:25:46 204800 ----a-w- c:\windows\system32\igfxpph.dll
2008-03-25 20:25:38 24576 ----a-w- c:\windows\system32\igfxexps.dll
2008-03-25 20:25:36 122880 ----a-w- c:\windows\system32\igfxcpl.cpl
2008-03-25 20:25:06 135168 ----a-w- c:\windows\system32\igfxdo.dll
2008-03-25 20:24:42 3293184 ----a-w- c:\windows\system32\igfxress.dll
2008-03-25 20:24:42 172032 ----a-w- c:\windows\system32\igfxrenu.lrc
2008-03-22 03:07:58 -------- d-----w- c:\users\marla\appdata\local\Google
2008-03-18 02:12:06 -------- d-----w- c:\programdata\kds_kodak
2008-03-02 16:11:25 -------- d-----w- c:\programdata\LightScribe
2008-03-02 15:21:50 -------- d-----w- c:\users\marla\appdata\local\Apple Computer
2008-03-02 15:18:34 -------- d-----w- c:\users\marla\appdata\local\Apple
2008-03-01 05:09:08 -------- d-----w- c:\users\marla\appdata\local\AOL OCP
2008-03-01 05:09:08 -------- d-----w- c:\users\marla\appdata\local\AOL
2008-03-01 05:08:18 -------- d-----w- c:\programdata\Viewpoint
2008-03-01 05:08:17 -------- d-----w- c:\program files\Viewpoint
2008-03-01 05:07:44 -------- d-----w- c:\program files\common files\AOL
2008-02-21 04:00:20 -------- d-----w- c:\users\marla\appdata\roaming\WildTangent
2008-02-20 00:55:40 -------- d-----w- c:\users\marla\appdata\roaming\WinBatch
2008-02-19 03:53:50 -------- d-----w- c:\program files\Windows Live Toolbar
2008-02-19 03:53:49 -------- d-----w- c:\program files\Windows Live Favorites
2008-02-19 03:47:52 -------- dcsh--w- c:\program files\common files\WindowsLiveInstaller
2008-02-19 02:50:48 -------- d-----w- c:\users\marla\appdata\local\Microsoft Games
2008-02-19 02:42:41 108768 ----a-w- c:\windows\system32\drivers\ACEDRV08.sys
2008-02-19 02:41:31 -------- d-----w- c:\users\marla\appdata\roaming\MAGIX
2008-02-19 01:14:39 -------- d-----w- c:\users\marla\appdata\local\Eastman_Kodak_Company
2008-02-19 00:37:15 -------- d-----w- c:\program files\MSXML 4.0
2008-02-19 00:22:05 -------- d-----w- c:\users\marla\appdata\local\KodakGallery
2008-02-19 00:05:24 -------- d-----w- c:\users\marla\appdata\local\Kodak
2008-02-19 00:05:12 192512 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\EKIJ5000PPR.dll
2008-02-19 00:05:00 -------- d-----w- c:\programdata\Eastman Kodak Company
2008-02-19 00:03:06 -------- d-----w- c:\users\marla\appdata\local\Eastman Kodak Company
2008-02-19 00:02:47 12800 ----a-w- c:\windows\system32\EKDeviceServices.dll
2008-02-19 00:02:12 65536 ----a-r- c:\users\marla\appdata\roaming\microsoft\installer\{843081bd-351f-46fc-8a17-517a0d9117a3}\NewShortcut5_843081BD351F46FC8A17517A0D9117A3.exe
2008-02-19 00:02:12 65536 ----a-r- c:\users\marla\appdata\roaming\microsoft\installer\{843081bd-351f-46fc-8a17-517a0d9117a3}\NewShortcut3_843081BD351F46FC8A17517A0D9117A3.exe
2008-02-19 00:02:12 65536 ----a-r- c:\users\marla\appdata\roaming\microsoft\installer\{843081bd-351f-46fc-8a17-517a0d9117a3}\NewShortcut2_843081BD351F46FC8A17517A0D9117A3.exe
2008-02-19 00:02:12 65536 ----a-r- c:\users\marla\appdata\roaming\microsoft\installer\{843081bd-351f-46fc-8a17-517a0d9117a3}\NewShortcut1_843081BD351F46FC8A17517A0D9117A3.exe
2008-02-19 00:01:18 -------- d-----w- c:\windows\system32\kodak
2008-02-19 00:00:31 -------- d-----w- c:\program files\common files\Kodak
2008-02-19 00:00:20 -------- d-----w- c:\program files\common files\PX Storage Engine
2008-02-18 23:59:55 -------- d-----w- c:\program files\Kodak
2008-02-18 23:59:55 -------- d-----w- c:\program files\common files\MSSoap
2008-02-18 23:54:49 -------- d-----w- c:\programdata\Kodak
2008-02-18 23:18:15 -------- d-----w- C:\hold
2008-02-18 22:48:14 663552 ----a-w- c:\windows\system32\mgxoschk.dll
2008-02-18 22:47:27 44544 ----a-w- c:\windows\system32\msxml4a.dll
2008-02-18 22:47:24 -------- d-----w- c:\programdata\MAGIX
2008-02-18 22:43:13 85504 ----a-w- c:\windows\system32\HtmlWH.dll
2008-02-18 22:43:13 49152 ----a-w- c:\windows\system32\INETWH32.dll
2008-02-18 22:43:13 1089536 ----a-w- c:\windows\system32\ROBOEX32.DLL
2008-02-18 22:43:13 -------- d-----w- c:\program files\MAGIX
2008-02-18 22:42:32 -------- d-----w- c:\windows\system32\MAGIX
2008-02-18 22:36:21 -------- d-----w- c:\users\marla\appdata\local\Scansoft
2008-02-18 22:33:50 -------- d-----w- c:\users\marla\appdata\roaming\Zeon
2008-02-18 22:28:13 -------- d-----w- c:\programdata\zeon
2008-02-18 22:28:13 -------- d-----w- c:\program files\common files\ScanSoft Shared
2008-02-18 22:28:05 -------- d-----w- c:\program files\ScanSoft
2008-02-18 22:07:21 -------- d-----w- c:\program files\Microsoft IntelliPoint
2008-02-18 22:06:09 -------- d-----w- c:\program files\Microsoft IntelliType Pro
2008-02-18 22:00:05 -------- d-----w- c:\windows\system32\x64
2008-02-18 21:40:02 33104 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\msonpppr.dll
2008-02-18 21:40:02 31640 ----a-w- c:\windows\system32\msonpmon.dll
2008-02-18 21:39:01 -------- d-----w- c:\windows\PCHEALTH
2008-02-18 21:37:03 -------- d-----w- c:\users\marla\appdata\local\Microsoft Help
2008-02-18 21:11:59 -------- d-----w- c:\users\marla\appdata\local\Adobe
2008-02-18 19:28:44 -------- d-----w- c:\users\marla\appdata\local\Hewlett-Packard
2008-02-18 19:28:39 5163344 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2008-02-18 19:27:33 -------- d-----w- c:\users\marla\appdata\roaming\Symantec
2008-02-18 19:27:06 -------- d-----w- c:\users\marla\appdata\local\VirtualStore
2008-01-02 21:57:36 147456 ----a-w- c:\windows\system32\igfxCoIn_v1409.dll
2008-01-02 21:47:22 1953696 ----a-w- c:\windows\system32\igklg400.dll
2008-01-02 21:47:22 1533360 ----a-w- c:\windows\system32\igklg450.dll
2007-12-28 16:21:54 104448 ----a-w- c:\windows\system32\drivers\Rtlh86.sys
2007-11-27 03:06:45 -------- d-----w- c:\windows\SMINST
2007-11-27 03:02:32 -------- d-----w- c:\programdata\Symantec
2007-11-27 03:02:29 -------- d-----w- c:\program files\common files\Symantec Shared
2007-11-27 03:00:06 -------- d-----w- c:\program files\earthlink totalaccess
2007-11-27 02:57:48 -------- d-----w- c:\programdata\WildTangent
2007-11-27 02:57:48 -------- d-----w- c:\program files\HP Games
2007-11-27 02:57:11 -------- d-----w- c:\program files\AWS
2007-11-27 02:57:05 -------- d-----w- c:\program files\Online Services
2007-11-27 02:56:11 753664 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iKernel.dll
2007-11-27 02:56:11 69714 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\ctor.dll
2007-11-27 02:56:11 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\DotNetInstaller.exe
2007-11-27 02:56:11 331908 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\setup.dll
2007-11-27 02:56:11 274432 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iscript.dll
2007-11-27 02:56:11 200836 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iGdi.dll
2007-11-27 02:56:11 184320 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iuser.dll
2007-11-27 02:55:25 -------- d-----w- c:\programdata\PC-Doctor
2007-11-27 02:55:07 -------- d-----w- c:\program files\PC-Doctor 5 for Windows
2007-11-27 02:51:43 69632 ----a-w- c:\windows\system32\javacpl.cpl
2007-11-27 02:51:43 54936 ----a-w- c:\windows\system32\jureg.exe
2007-11-27 02:51:43 272024 ----a-w- c:\windows\system32\jucheck.exe
2007-11-27 02:51:43 132760 ----a-w- c:\windows\system32\jusched.exe
2007-11-27 02:51:14 -------- d-----w- c:\program files\Snapfish Picture Mover
2007-11-27 02:50:02 -------- d-----w- c:\program files\muvee Technologies
2007-11-27 02:50:02 -------- d-----w- c:\program files\common files\muvee Technologies
2007-11-27 02:49:42 -------- d-----w- c:\program files\LightScribeTemplateLabeler
2007-11-27 02:49:17 -------- d---a-w- c:\program files\common files\LS Getting Started
2007-11-27 02:42:45 77824 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\ctor.dll
2007-11-27 02:42:45 32768 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\objectps.dll
2007-11-27 02:42:45 225280 ----a-w- c:\program files\common files\installshield\iscript\iscript.dll
2007-11-27 02:42:45 176128 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\iuser.dll
2007-11-27 02:42:44 614532 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\IKernel.exe
2007-11-27 02:42:21 -------- d-----w- c:\program files\common files\HP
2007-11-27 02:42:20 -------- d-----w- c:\program files\HP
2007-11-27 02:38:59 339968 ----a-w- c:\windows\system32\SRSTSXT.dll
2007-11-27 02:38:59 135168 ----a-w- c:\windows\system32\SRSWOW.dll
2007-11-27 02:29:07 61440 ----a-w- c:\windows\system32\OsdRemove.exe
2007-11-27 02:28:50 19072 ----a-w- c:\windows\system32\drivers\PS2.sys
2007-11-27 02:28:06 253952 ----a-w- c:\windows\system32\cPC_DMIRD.dll
2007-11-27 02:26:30 327680 ----a-w- c:\windows\system32\pythoncom25.dll
2007-11-27 02:26:30 102400 ----a-w- c:\windows\system32\pywintypes25.dll
2007-11-27 02:25:58 -------- d-sh--w- c:\windows\Installer
2007-11-27 02:19:44 -------- d-----w- c:\program files\CONEXANT
2007-11-27 02:16:01 -------- d--h--w- C:\hp
2007-11-27 02:15:56 94208 ----a-w- c:\windows\system32\mdmxsdk.dll
2007-11-27 02:15:56 172032 ----a-w- c:\windows\system32\UCI32m15.dll
2007-11-27 02:15:56 12672 ----a-w- c:\windows\system32\drivers\mdmxsdk.sys
2007-11-27 02:12:09 8704 ----a-w- c:\windows\system32\hccoin.dll
2007-11-27 01:59:54 -------- d-----w- c:\windows\Users
2007-11-27 01:59:51 -------- d-----w- c:\windows\system32\OEM
2007-11-27 01:59:51 -------- d-----w- c:\windows\Panther
2007-11-27 01:59:34 -------- d-sh--w- C:\Boot
2007-11-27 01:52:41 40960 ----a-w- c:\program files\online services\esp\WizLink.exe
2007-11-13 15:00:32 335872 ----a-w- c:\windows\system32\EKIJ5000MON.dll
2007-10-18 11:37:04 386560 ----a-w- c:\windows\system32\drivers\XAudio.exe
2007-10-18 11:36:54 8704 ----a-w- c:\windows\system32\drivers\XAudio.sys
2007-09-24 07:38:52 221184 ----a-w- c:\windows\system32\UCI32M22.dll
2007-08-28 21:40:14 286720 ----a-w- c:\windows\system32\ZnMacroUI.dll
2007-08-23 06:07:20 6040432 ----a-w- c:\program files\common files\system\ole db\msmgdsrv.dll
2007-08-23 06:07:20 4298096 ----a-w- c:\program files\common files\system\ole db\msolap90.dll
2007-08-23 06:07:20 276336 ----a-w- c:\program files\common files\system\ole db\msolui90.dll
2007-08-23 06:07:20 15926640 ----a-w- c:\program files\common files\system\ole db\msmdlocal.dll
2007-08-23 00:34:26 287256 ----a-r- c:\windows\system32\AbaleZip.dll
2007-08-20 22:56:52 38176 ----a-w- c:\windows\system32\ZnMacroUIRes.enu
2007-06-23 00:42:54 272384 ----a-w- c:\windows\system32\ShellvRTF64.dll
2007-06-23 00:42:54 237568 ----a-w- c:\windows\system32\ShellvRTF.dll
2007-06-20 14:04:52 279904 ------w- c:\program files\common files\microsoft shared\textconv\WKLS31.DLL
2007-06-08 18:32:00 58704 ------r- c:\program files\common files\microsoft shared\works shared\msthes3.dll
2007-06-08 18:31:58 92944 ------r- c:\program files\common files\microsoft shared\works shared\msspell3.dll
2007-06-08 18:31:58 3175760 ------r- c:\program files\common files\microsoft shared\works shared\1033\msgr3en.dll
2007-06-08 00:30:54 230760 ------w- c:\program files\common files\microsoft shared\information retrieval\msitss.dll
2007-06-08 00:30:54 197992 ------w- c:\program files\common files\microsoft shared\information retrieval\itircl54.dll
2007-06-05 00:30:46 41296 ------r- c:\windows\system32\hlp95en.dll
2007-06-02 01:04:04 1398128 ------w- c:\program files\common files\microsoft shared\works shared\1033\MSGR3GE.DLL
2007-05-09 21:26:04 1142784 ----a-w- c:\windows\system32\ZDImage2pdf7.dll
2007-03-29 13:56:14 120056 ----a-w- c:\windows\system32\pxcpyi64.exe
2007-03-29 13:56:14 118520 ----a-w- c:\windows\system32\pxinsi64.exe
2007-03-29 13:56:10 68344 ----a-w- c:\windows\system32\drvins64.exe
2007-03-22 09:03:48 14656 ------r- c:\program files\common files\microsoft shared\textconv\WPEQU532.DLL
2007-03-10 17:47:36 348160 ------r- c:\program files\common files\microsoft shared\textconv\msvcr71.dll
2006-11-08 07:02:40 24064 ----a-w- c:\windows\system32\drivers\point32k.sys
2006-11-02 13:05:54 -------- d-----w- c:\windows\system32\wbem\Performance
2006-11-02 13:02:03 -------- d-sh--we C:\Documents and Settings
2006-11-02 13:01:53 -------- d-----w- c:\windows\system32\wbem\mof\good
2006-11-02 13:01:53 -------- d-----w- c:\windows\system32\wbem\mof\bad
2006-11-02 12:52:16 -------- d-----w- c:\windows\system32\wbem\MOF
2006-11-02 12:47:56 -------- d-----w- c:\windows\Setup
2006-11-02 12:47:52 -------- d-----w- c:\windows\ServiceProfiles
2006-11-02 12:47:46 -------- d-s---w- c:\windows\system32\Microsoft
2006-11-02 12:42:32 -------- d-----w- c:\windows\WindowsMobile
2006-11-02 12:42:32 -------- d-----w- c:\windows\system32\winrm
2006-11-02 12:42:32 -------- d-----w- c:\windows\system32\slmgr
2006-11-02 12:42:32 -------- d-----w- c:\windows\system32\en
2006-11-02 12:42:32 -------- d-----w- c:\windows\system32\drivers\umdf\en-US
2006-11-02 12:42:32 -------- d-----w- c:\windows\system32\drivers\en-US
2006-11-02 12:42:32 -------- d-----w- c:\windows\system32\Branding
2006-11-02 12:42:32 -------- d-----w- c:\windows\system32\0409
2006-11-02 12:42:32 -------- d-----w- c:\windows\en-US
2006-11-02 12:42:31 -------- d-----w- c:\windows\system32\WCN
2006-11-02 12:42:31 -------- d-----w- c:\windows\system32\wbem\en-US
2006-11-02 12:42:31 -------- d-----w- c:\windows\system32\Printing_Admin_Scripts
2006-11-02 12:41:30 36864 ----a-w- c:\program files\common files\microsoft shared\ink\en\Microsoft.Ink.Resources.dll
2006-11-02 12:40:56 3584 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\en-us\LMPRTPRC.DLL.mui
2006-11-02 12:36:25 2048 ----a-w- c:\windows\system32\dfsrres.dll
2006-11-02 12:36:04 89600 ----a-w- c:\windows\system32\NetProj.exe
2006-11-02 12:36:04 51712 ----a-w- c:\windows\system32\CRPPresentation.dll
2006-11-02 12:34:50 7168 ----a-w- c:\windows\system32\getuname.dll
.
==================== Find3M  ====================
.
2013-11-14 22:50:50 1806848 ----a-w- c:\windows\system32\jscript9.dll
2013-11-14 22:42:41 1129472 ----a-w- c:\windows\system32\wininet.dll
2013-11-14 22:42:32 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2013-11-14 22:38:54 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2013-11-14 22:38:16 420864 ----a-w- c:\windows\system32\vbscript.dll
2013-11-14 22:35:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-10-30 02:13:01 1304064 ----a-w- c:\windows\system32\WMALFXGFXDSP.dll
2013-07-20 10:44:53 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-07-04 04:21:15 532480 ----a-w- c:\windows\system32\comctl32.dll
2013-07-03 04:27:32 89088 ----a-w- c:\windows\system32\wiafbdrv.dll
2013-07-03 02:33:45 35328 ----a-w- c:\windows\system32\drivers\usbscan.sys
2013-07-03 02:10:50 25472 ----a-w- c:\windows\system32\drivers\hidparse.sys
2013-06-29 02:07:15 197632 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-06-29 02:07:04 73216 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-06-29 02:07:01 226304 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-06-29 02:06:53 6016 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-06-26 23:01:59 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-06-04 04:16:35 34304 ----a-w- c:\windows\system32\atmlib.dll
2013-06-04 01:49:59 293376 ----a-w- c:\windows\system32\atmfd.dll
2013-04-04 19:50:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-19 07:22:15 98816 ----a-w- c:\windows\system32\mfps.dll
2012-09-19 07:21:19 4096 ----a-w- c:\windows\system32\drivers\en-us\dxgkrnl.sys.mui
2012-07-26 03:26:03 2560 ----a-w- c:\windows\system32\drivers\en-us\wdf01000.sys.mui
2011-05-05 16:01:28 15872 ----a-w- c:\windows\system32\hcrstco.dll
2011-05-05 13:54:07 39936 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-05-05 13:54:07 23552 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-03-03 15:40:07 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2011-03-03 15:40:05 542720 ----a-w- c:\windows\apppatch\AcLayers.dll
2011-03-03 15:40:05 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2011-03-03 15:40:04 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll
2010-11-11 15:11:40 118849 ----a-w- c:\windows\system32\hcwi2c32.dll
2010-02-04 21:55:02 94271 ----a-w- c:\windows\system32\hcwblast.ocx
2010-02-04 21:41:42 69699 ----a-w- c:\windows\system32\hcwIRblast.dll
2009-11-03 21:46:54 36864 ----a-w- c:\windows\system32\drivers\en-us\http.sys.mui
2009-10-09 21:56:27 41472 ----a-w- c:\windows\system32\pwrshplugin.dll
2009-10-09 21:56:18 1181696 ----a-w- c:\windows\system32\WsmSvc.dll
2009-10-09 21:56:17 214016 ----a-w- c:\windows\system32\WsmWmiPl.dll
2009-10-09 21:56:17 12800 ----a-w- c:\windows\system32\wsmprovhost.exe
2009-10-09 21:56:13 20480 ----a-w- c:\windows\system32\winrshost.exe
2009-10-09 21:56:08 10240 ----a-w- c:\windows\system32\wsmplpxy.dll
2009-10-09 21:56:06 40448 ----a-w- c:\windows\system32\winrs.exe
2009-10-09 21:56:04 241152 ----a-w- c:\windows\system32\winrscmd.dll
2009-10-09 21:56:03 246272 ----a-w- c:\windows\system32\WSManHTTPConfig.exe
2009-10-09 21:56:03 10240 ----a-w- c:\windows\system32\winrssrv.dll
2009-10-09 21:56:01 145408 ----a-w- c:\windows\system32\WsmAuto.dll
2009-10-09 21:55:59 79872 ----a-w- c:\windows\system32\wecutil.exe
2009-10-09 21:55:55 252416 ----a-w- c:\windows\system32\WSManMigrationPlugin.dll
2009-10-09 21:55:53 54272 ----a-w- c:\windows\system32\WsmRes.dll
2009-10-09 21:55:52 146944 ----a-w- c:\windows\system32\wecsvc.dll
2009-10-09 21:55:50 81408 ----a-w- c:\windows\system32\wevtfwd.dll
2009-10-09 21:55:50 56320 ----a-w- c:\windows\system32\wecapi.dll
2009-10-01 01:08:10 3072 ----a-w- c:\windows\system32\drivers\umdf\en-us\wpdmtpdr.dll.mui
2009-10-01 01:02:17 2537472 ----a-w- c:\windows\system32\wpdshext.dll
2009-10-01 01:02:05 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe
2009-10-01 01:02:04 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2009-10-01 01:02:02 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll
2009-10-01 01:02:00 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll
2009-09-18 18:11:18 315448 ----a-w- c:\windows\system32\hcwpnp32.dll
2009-09-10 16:48:01 218624 ----a-w- c:\windows\system32\msv1_0.dll
2009-08-14 13:49:20 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 13:49:18 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 13:49:18 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 13:49:15 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 13:49:14 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 13:49:14 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 13:49:13 10240 ----a-w- c:\windows\system32\finger.exe
2009-08-14 13:48:02 105984 ----a-w- c:\windows\system32\netiohlp.dll
2009-08-01 06:27:37 201184 ----a-w- c:\windows\system32\winrm.vbs
2009-07-11 19:01:42 513536 ----a-w- c:\windows\system32\wlansvc.dll
2009-07-11 19:01:42 302592 ----a-w- c:\windows\system32\wlansec.dll
2009-07-11 19:01:42 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2009-07-11 19:01:41 65024 ----a-w- c:\windows\system32\wlanapi.dll
2009-07-11 17:03:41 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2009-06-15 14:54:00 175104 ----a-w- c:\windows\system32\wdigest.dll
2009-04-11 06:33:19 986600 ----a-w- c:\windows\system32\winload.exe
2009-04-11 06:33:19 926184 ----a-w- c:\windows\system32\winresume.exe
2009-04-11 06:33:03 292840 ----a-w- c:\windows\system32\drivers\volmgrx.sys
2009-04-11 06:33:02 614376 ----a-w- c:\windows\system32\ci.dll
2009-04-11 06:28:28 56320 ----a-w- c:\windows\system32\xmlfilter.dll
2009-04-11 06:27:59 627200 ----a-w- c:\windows\system32\sethc.exe
2009-04-11 06:24:00 4096 ----a-w- c:\windows\system32\drivers\en-us\hdaudbus.sys.mui
2009-04-11 06:23:02 89088 ----a-w- c:\windows\system32\pintlgnt.ime
2009-04-11 06:23:02 125952 ----a-w- c:\windows\system32\tintlgnt.ime
2009-04-11 06:23:02 124928 ----a-w- c:\windows\system32\quick.ime
2009-04-11 06:23:02 124928 ----a-w- c:\windows\system32\qintlgnt.ime
2009-04-11 06:23:02 124928 ----a-w- c:\windows\system32\phon.ime
2009-04-11 06:22:59 413696 ----a-w- c:\windows\system32\imkr80.ime
2009-04-11 06:22:57 883712 ----a-w- c:\windows\system32\IMJP10.IME
2009-04-11 06:22:57 124928 ----a-w- c:\windows\system32\cintlgnt.ime
2009-04-11 06:22:53 124928 ----a-w- c:\windows\system32\chajei.ime
2009-04-11 06:22:48 8192 ----a-w- c:\windows\system32\drivers\en-us\bthport.sys.mui
2009-04-11 06:22:22 7168 ----a-w- c:\windows\system32\f3ahvoas.dll
2009-04-11 05:42:55 93696 ----a-w- c:\windows\system32\drivers\bridge.sys
2009-04-11 05:03:42 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll
2009-04-11 05:03:40 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll
2009-04-11 04:54:59 2048 ----a-w- c:\windows\system32\mferror.dll
2009-04-11 04:46:40 69120 ----a-w- c:\windows\system32\drivers\rassstp.sys
2009-04-11 04:46:32 121344 ----a-w- c:\windows\system32\drivers\ndiswan.sys
2009-04-11 04:46:30 41472 ----a-w- c:\windows\system32\drivers\raspppoe.sys
2009-04-11 04:46:07 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
.
============= FINISH: 18:17:24.97 ===============
 



#5 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 28 January 2014 - 12:27 PM

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 12/11/2007 10:41:26 PM
System Uptime: 1/1/2002 10:27:24 AM (8 hours ago)
.
Motherboard: ASUSTeK Computer INC. |  | Benicia
Processor: Intel® Pentium® Dual  CPU  E2180  @ 2.00GHz | CPU 1 | 2000/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 363 GiB total, 273.768 GiB free.
D: is FIXED (NTFS) - 9 GiB total, 1.289 GiB free.
E: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP1813: 1/1/2002 2:25:49 PM - Scheduled Checkpoint
RP1814: 1/1/2002 5:44:14 PM - Installed HiJackThis
RP1815: 1/1/2002 6:11:06 PM - Removed HiJackThis
.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
2MOONS
7-Zip 9.20
Acrobat.com
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1
Adobe Shockwave Player
aiofw
aioocr
aioprnt
aioscnnr
Amazing Slow Downer (remove only)
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Architectural Home Designer 9
ArcSoft TotalMedia Extreme
AVS Screen Capture version 2.0.1
AVS Update Manager 1.0
AVS Video Editor 6
AVS Video Recorder 2.4
AVS4YOU Software Navigator 1.4
Bonjour
Canon MP160
Cards_Calendar_OrderGift_DoMorePlugout
CCleaner (remove only)
CCScore
center
CyberLink DVD Suite Deluxe
Daniusoft MP3 WAV Converter(Build 2.3.1.0)
Download Updater (AOL LLC)
Doxillion Document Converter
Enhanced Multimedia Keyboard Solution
ESSBrwr
ESSCDBK
ESScore
ESSgui
ESSini
ESSPCD
ESSSONIC
ESSTOOLS
essvatgt
Finale NotePad 2009
Finale Reader 2009
Firebird SQL Server - MAGIX Edition 2.0.0.1 (US)
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
Hardware Diagnostic Tools
Hauppauge HDPVR Scheduler
Hauppauge WinTV IR Blaster
Hauppauge WinTV Scheduler
Help_CTR
helptut
helpug
Hewlett-Packard Active Check
Hewlett-Packard Asset Agent for Health Check
Highlight Viewer (Windows Live Toolbar)
HL-2270DW
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Active Support Library
HP Customer Experience Enhancements
HP Customer Feedback
HP Easy Setup - Frontend
HP On-Screen Cap/Num/Scroll Lock Indicator
HP Photosmart Essential 2.5
HP Picasso Media Center Add-In
HP Total Care Advisor
HP Update
HPPhotoSmartPhotobookWebPack1
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes
Java™ SE Runtime Environment 6 Update 1
kgcbaby
kgcbase
kgchday
kgchlwn
kgcinvt
kgckids
kgcmove
kgcvday
KODAK All-in-One Printer Software
ksdip
LabelPrint
LightScribe System Software  1.10.16.1
LightScribe Template Labeler
MAGIX Music Manager 2006 7.4.0.465 (US)
MAGIX Music Studio 12 deluxe 12.0.2.0 (US)
MAGIX Photo Manager 2007 4.1.1.77 (US)
Malwarebytes Anti-Malware version 1.75.0.1300
Map Button (Windows Live Toolbar)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft IntelliPoint 6.1
Microsoft IntelliType Pro 6.1
Microsoft Money 2004
Microsoft Money 2004 System Pack
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft VC9 runtime libraries
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Microsoft Works 7.0
Microsoft XML Parser
Move Networks Media Player for Internet Explorer
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
muvee autoProducer 6.1
My HP Games
netbrdg
Octoshape add-in for Adobe Flash Player
OfotoXMI
Picasa 3
Power2Go
PowerDirector
PSSWCORE
Python 2.5
Realtek High Definition Audio Driver
Safari
Samsung i-Launcher 1.0.1.28
ScanSoft PDF Professional 4
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition
SFR
SHASTA
skin0001
SKINXSDK
Skype Toolbars
Skype™ 5.10
Smart Menus (Windows Live Toolbar)
SmartMusic 10
Snapfish Picture Mover
Soft Data Fax Modem with SmartCP
Spotify
staticcr
Switch Sound File Converter
TEFView 2.65
tooltips
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Veetle TV 0.9.18
VideoToolkit01
Viewpoint Media Player
VPRINTOL
WeatherBug Gadget
Windows Live Favorites for Windows Live Toolbar
Windows Live installer
Windows Live Sign-in Assistant
Windows Live Toolbar
Windows Live Toolbar Extension (Windows Live Toolbar)
WIRELESS
YouTube Downloader 3.0
.
==== Event Viewer Messages From Past Week ========
.
9/7/2013 6:59:57 AM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
9/6/2013 4:58:51 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.
9/6/2013 4:58:51 PM, Error: Service Control Manager [7000]  - The Google Update Service (gupdate) service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/6/2013 4:58:30 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service gupdate with arguments "/comsvc" in order to run the server: {4EB61BAC-A3B6-4760-9581-655041EF4D69}
9/30/2013 7:26:00 AM, Error: EventLog [6008]  - The previous system shutdown at 7:23:14 AM on 9/30/2013 was unexpected.
9/26/2013 6:26:13 AM, Error: EventLog [6008]  - The previous system shutdown at 6:21:28 AM on 9/26/2013 was unexpected.
9/25/2013 7:44:08 PM, Error: EventLog [6008]  - The previous system shutdown at 7:16:56 PM on 9/25/2013 was unexpected.
9/25/2013 7:05:05 PM, Error: EventLog [6008]  - The previous system shutdown at 7:01:16 PM on 9/25/2013 was unexpected.
9/24/2013 4:59:52 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Apple Mobile Device service to connect.
9/24/2013 4:59:52 PM, Error: Service Control Manager [7000]  - The Apple Mobile Device service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/18/2013 7:40:34 PM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
9/14/2013 12:42:50 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Windows Font Cache Service service to connect.
9/14/2013 12:42:50 PM, Error: Service Control Manager [7000]  - The Windows Font Cache Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/14/2013 12:38:56 PM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
9/14/2013 1:14:14 PM, Error: Microsoft-Windows-DistributedCOM [10016]  - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {A47979D2-C419-11D9-A5B4-001185AD2B89}  to the user Bach\Marla SID (S-1-5-21-3948035090-143806316-1568823660-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
12/8/2013 7:50:54 AM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
12/6/2013 8:28:16 AM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
12/31/2013 7:05:41 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.108 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
12/25/2013 7:05:35 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.115 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
12/24/2013 7:04:55 PM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.111 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
12/22/2013 7:04:53 PM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.114 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
12/18/2013 9:06:53 AM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.165.84.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10201.0   Error code: 0x8024402c   Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
12/15/2013 8:51:18 AM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
12/13/2013 10:23:41 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the iPod Service service to connect.
12/13/2013 10:23:41 PM, Error: Service Control Manager [7000]  - The iPod Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
12/13/2013 10:23:41 PM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service iPod Service with arguments "" in order to run the server: {063D34A4-BF84-4B8D-B699-E8CA06504DDE}
12/11/2013 7:51:04 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.110 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
11/9/2013 4:33:16 AM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.161.1621.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10003.0   Error code: 0x8024402c   Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
11/4/2013 7:29:50 PM, Error: EventLog [6008]  - The previous system shutdown at 7:26:08 PM on 11/4/2013 was unexpected.
11/24/2013 7:39:25 AM, Error: Service Control Manager [7022]  - The Windows Update service hung on starting.
11/24/2013 7:37:41 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
11/24/2013 7:32:45 AM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
11/24/2013 7:19:39 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 10.254.16.94 for the Network Card with network address 00FF5622B69E has been denied by the DHCP server 10.254.47.254 (The DHCP Server sent a DHCPNACK message).
11/24/2013 7:07:22 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 10.254.176.29 for the Network Card with network address 00FF5622B69E has been denied by the DHCP server 10.254.23.254 (The DHCP Server sent a DHCPNACK message).
11/24/2013 7:06:26 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 10.254.48.53 for the Network Card with network address 00FF5622B69E has been denied by the DHCP server 10.254.183.254 (The DHCP Server sent a DHCPNACK message).
11/24/2013 7:04:57 AM, Error: Service Control Manager [7031]  - The Hotspot Shield Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.
11/24/2013 7:04:57 AM, Error: Service Control Manager [7000]  - The Hotspot Shield Service service failed to start due to the following error:  The system cannot find the file specified.
11/24/2013 7:03:59 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 10.254.176.7 for the Network Card with network address 00FF5622B69E has been denied by the DHCP server 10.254.55.254 (The DHCP Server sent a DHCPNACK message).
11/22/2013 6:24:42 PM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.163.246.0   Update Source: Microsoft Update Server   Update Stage: Download   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10100.0   Error code: 0x80240022   Error description: The program can't check for definition updates.
11/22/2013 6:24:41 PM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.163.246.0   Update Source: Microsoft Update Server   Update Stage: Download   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10100.0   Error code: 0x80240022   Error description: The program can't check for definition updates.
11/17/2013 2:52:06 PM, Error: Server [2505]  - The server could not bind to the transport \Device\NetBT_Tcpip_{EFAEC267-CDE2-4A36-9836-50363FE7A492} because another computer on the network has the same name.  The server could not start.
11/13/2013 3:51:42 PM, Error: Service Control Manager [7043]  - The Group Policy Client service did not shut down properly after receiving a preshutdown control.
10/9/2013 7:46:10 AM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.159.1709.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.9901.0   Error code: 0x80244022   Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
10/27/2013 7:45:55 AM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.161.766.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10003.0   Error code: 0x8024402c   Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
10/27/2013 1:02:51 AM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.161.766.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10003.0   Error code: 0x8024402c   Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
10/24/2013 4:27:30 PM, Error: Schannel [36874]  - An SSL connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
10/18/2013 7:02:35 PM, Error: Microsoft Antimalware [2004]  - Microsoft Antimalware has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.   Signatures Attempted: Current   Error Code: 0x80070002   Error description: The system cannot find the file specified.    Signature version: 0.0.0.0;0.0.0.0   Engine version: 0.0.0.0
1/9/2014 7:06:54 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.105 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/7/2014 7:06:21 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.112 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/4/2014 6:42:33 PM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.165.1134.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10201.0   Error code: 0x8024402c   Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
1/26/2014 10:53:07 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
1/26/2014 10:52:30 AM, Error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFD DfsC MpFilter NetBIOS netbt nsiproxy PSched RasAcd rdbss Smb spldr tdx Wanarpv6
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The WebDav Client Redirector Driver service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:  A device attached to the system is not functioning.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The WebClient service depends on the WebDav Client Redirector Driver service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The TCP/IP NetBIOS Helper service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error:  A device attached to the system is not functioning.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:  A device attached to the system is not functioning.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The Network Store Interface Service service depends on the NSI proxy service service which failed to start because of the following error:  A device attached to the system is not functioning.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The Microsoft Network Inspection System service depends on the Microsoft Malware Protection Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The DHCP Client service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error:  A device attached to the system is not functioning.
1/26/2014 10:52:30 AM, Error: Service Control Manager [7001]  - The Computer Browser service depends on the Server service which failed to start because of the following error:  The dependency service or group failed to start.
1/26/2014 10:52:18 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
1/26/2014 10:51:44 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
1/26/2014 10:51:44 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
1/26/2014 10:51:41 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {145B4335-FE2A-4927-A040-7C35AD3180EF}
1/26/2014 10:51:39 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
1/26/2014 10:51:31 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
1/26/2014 10:51:21 AM, Error: EventLog [6008]  - The previous system shutdown at 7:46:56 PM on 1/25/2014 was unexpected.
1/25/2014 6:24:10 PM, Error: iaStor [9]  - The device, \Device\Ide\iaStor0, did not respond within the timeout period.
1/24/2014 9:46:10 PM, Error: Microsoft-Windows-DistributedCOM [10016]  - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {9BA05972-F6A8-11CF-A442-00A0C90A8F39}  to the user Bach\Marla SID (S-1-5-21-3948035090-143806316-1568823660-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
1/24/2014 5:03:44 PM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.106 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/24/2014 5:03:41 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.100 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/21/2014 6:00:24 PM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.107 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/21/2014 6:00:22 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.103 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/16/2014 3:05:41 AM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
1/16/2014 3:05:41 AM, Error: Service Control Manager [7000]  - The Windows Search service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
1/16/2014 3:05:40 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
1/14/2014 5:59:36 PM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.101 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/12/2014 6:05:57 PM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.109 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/11/2014 6:05:55 PM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.113 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/11/2014 6:05:53 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.102 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/1/2002 10:30:49 AM, Error: Microsoft Antimalware [2001]  - Microsoft Antimalware has encountered an error trying to update signatures.   New Signature Version:    Previous Signature Version: 1.165.2625.0   Update Source: Microsoft Update Server   Update Stage: Search   Source Path: http://www.microsoft.com   Signature Type: AntiVirus   Update Type: Full   User: NT AUTHORITY\SYSTEM   Current Engine Version:    Previous Engine Version: 1.1.10201.0   Error code: 0x80072f8f   Error description: A security error occurred
1/1/2002 10:28:42 AM, Error: Microsoft-Windows-Time-Service [34]  - The time service has detected that the system time needs to be  changed by +380984844 seconds. The time service will not change the system time by more than +54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->65.55.56.206:123) is working properly.
1/1/2002 10:06:49 AM, Error: Microsoft-Windows-Time-Service [34]  - The time service has detected that the system time needs to be  changed by +380984843 seconds. The time service will not change the system time by more than +54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->64.4.10.33:123) is working properly.
1/1/2002 10:06:15 AM, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 192.168.1.104 for the Network Card with network address 001E8C2A3FFA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
.
==== End Of File ===========================
 



#6 Broni Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

Broni

    Administrator - Malware Annihilator

  • Administrators
  • 35,547 posts
  • 2,097 topics
    • Time Online: 212d 22h 15m 38s
  • Joined October 04, 2004
  • Age: 60
  • Skin: Smartest wide
  • Local time: 12:53 PM
  • Zodiac:Virgo
  • Gender:Male
  • Location:Daly City, CA
  • OS:Windows 8
  • Country:
Offline

Posted 29 January 2014 - 12:42 AM

Please, observe following rules:

  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

 

==============================
 

 

There is a problem with this website's security certificate

 

Make sure computer date/time is correct.

 

p22002970.gif Download RogueKiller for 32bit or Roguekiller for 64bit to your Desktop.

  • Close all the running programs
  • Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator
  • Otherwise just double-click on RogueKiller.exe
  • Pre-scan will start. Let it finish.
  • Click on SCAN button.
  • Wait until the Status box shows Scan Finished
  • Click on Delete.
  • Wait until the Status box shows Deleting Finished.
  • Click on Report and copy/paste the content of the Notepad into your next reply.
  • RKreport.txt could also be found on your desktop.
  • If more than one log is produced post all logs.
  • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

 

p22002970.gif Create new restore point before proceeding with the next step....
How to: http://www.smartestc...nt-all-windows/

Download Malwarebytes Anti-Rootkit (MBAR) from HERE

  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
  • Wait while the system shuts down and the cleanup process is performed.
  • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt


p22003266.jpg  p22003279.jpgp4279089.jpg


#7 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 01:23 AM

Rogue Killer is running but it is taking a very long time.  I will post when completed.



#8 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 02:28 AM

RogueKiller V8.8.4 [Jan 27 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Started in : Normal mode
User : Marla [Admin rights]
Mode : Remove -- Date : 01/02/2002 08:19:55
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> REPLACED (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 1 ¤¤¤
[V2][SUSP PATH] Microsoft Antimalware Scheduled Scan : c:\Program Files\Microsoft Security Client\MpCmdRun.exe - Scan -ScheduleJob -RestrictPrivileges [7][-] -> DELETED

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤
[Inline] EAT @explorer.exe (FwDoNothingOnObject) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)
[Inline] EAT @explorer.exe (FwEnableMemTracing) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)
[Inline] EAT @explorer.exe (FwSetMemLeakPolicy) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1       localhost
::1             localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ SCSI) WDC WD4000AAJS-65YFA0 +++++
--- User ---
[MBR] da7ecb8944be89f7045e11787f51b7c0
[BSP] 309fdfd200901d3359dd1e035123a213 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 371832 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 761513130 | Size: 9719 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_01022002_081955.txt >>
RKreport[0]_S_01022002_075658.txt



#9 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 02:30 AM

RogueKiller V8.8.4 [Jan 27 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Started in : Normal mode
User : Marla [Admin rights]
Mode : Remove -- Date : 01/02/2002 08:19:55
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> REPLACED (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 1 ¤¤¤
[V2][SUSP PATH] Microsoft Antimalware Scheduled Scan : c:\Program Files\Microsoft Security Client\MpCmdRun.exe - Scan -ScheduleJob -RestrictPrivileges [7][-] -> DELETED

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤
[Inline] EAT @explorer.exe (FwDoNothingOnObject) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)
[Inline] EAT @explorer.exe (FwEnableMemTracing) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)
[Inline] EAT @explorer.exe (FwSetMemLeakPolicy) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1       localhost
::1             localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ SCSI) WDC WD4000AAJS-65YFA0 +++++
--- User ---
[MBR] da7ecb8944be89f7045e11787f51b7c0
[BSP] 309fdfd200901d3359dd1e035123a213 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 371832 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 761513130 | Size: 9719 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_01022002_081955.txt >>
RKreport[0]_S_01022002_075658.txt



#10 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 02:33 AM

RogueKiller V8.8.4 [Jan 27 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Started in : Normal mode
User : Marla [Admin rights]
Mode : Scan -- Date : 01/02/2002 07:56:58
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 1 ¤¤¤
[V2][SUSP PATH] Microsoft Antimalware Scheduled Scan : c:\Program Files\Microsoft Security Client\MpCmdRun.exe - Scan -ScheduleJob -RestrictPrivileges [7][-] -> FOUND

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤
[Inline] EAT @explorer.exe (FwDoNothingOnObject) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)
[Inline] EAT @explorer.exe (FwEnableMemTracing) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)
[Inline] EAT @explorer.exe (FwSetMemLeakPolicy) : FirewallAPI.dll -> HOOKED (Unknown @ 0x360AC266)

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1       localhost
::1             localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ SCSI) WDC WD4000AAJS-65YFA0 +++++
--- User ---
[MBR] da7ecb8944be89f7045e11787f51b7c0
[BSP] 309fdfd200901d3359dd1e035123a213 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 371832 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 761513130 | Size: 9719 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_S_01022002_075658.txt >>

 

 



#11 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 02:34 AM

Sorry for the duplicate file.  I think both files are here.



#12 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 03:00 AM

MBAR first run; scan finished no malware found.



#13 Broni Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

Broni

    Administrator - Malware Annihilator

  • Administrators
  • 35,547 posts
  • 2,097 topics
    • Time Online: 212d 22h 15m 38s
  • Joined October 04, 2004
  • Age: 60
  • Skin: Smartest wide
  • Local time: 12:53 PM
  • Zodiac:Virgo
  • Gender:Male
  • Location:Daly City, CA
  • OS:Windows 8
  • Country:
Offline

Posted 29 January 2014 - 03:01 AM

Please download ComboFix from Here, Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

  • Never rename Combofix unless instructed.
  • Close any open browsers.
  • Very Important! Temporarily disable your anti-virus and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
  • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
  • Close any open browsers.
  • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
  • Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
  • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
    If the connection is not there use restore point you created prior to running Combofix.
  • Double click on combofix.exe & follow the prompts.


NOTE1. If Combofix asks you to install Recovery Console, please allow it.
NOTE 2. If Combofix asks you to update the program, always do so.

  • When finished, it will produce a report for you.
  • Please post the "C:\ComboFix.txt"

**Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
**Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
Use AppRemover to uninstall it: http://www.appremover.com/
We can reinstall it when we're done with CF.
**Note 3: If you receive an error Illegal operation attempted on a registery key that has been marked for deletion, restart computer to fix the issue.
**Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.


Make sure, you re-enable your security programs, when you're done with Combofix.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

NOTE.
If, for some reason, Combofix refuses to run, try the following...

Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingc...ad/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingc...ad/rkill/dl/11/

Restart computer in safe mode

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


When the scan is done Notepad will open with rKill.txt log.
NOTE. rKill.txt log will also be present on your desktop.

Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.


p22003266.jpg  p22003279.jpgp4279089.jpg


#14 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 03:36 AM

A heads up:

 

System file is infected

 

C:\windows\system32\userinit.exe

 

Combofix is still trying to find a replacement but so far no success.  

 

Combofix is still running.  Will post results when complete.



#15 Broni Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

Broni

    Administrator - Malware Annihilator

  • Administrators
  • 35,547 posts
  • 2,097 topics
    • Time Online: 212d 22h 15m 38s
  • Joined October 04, 2004
  • Age: 60
  • Skin: Smartest wide
  • Local time: 12:53 PM
  • Zodiac:Virgo
  • Gender:Male
  • Location:Daly City, CA
  • OS:Windows 8
  • Country:
Offline

Posted 29 January 2014 - 03:37 AM

p22003888.gif


p22003266.jpg  p22003279.jpgp4279089.jpg


#16 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 04:05 AM

Broni I think I just heard taps so it is time for me to turn in.  CombofFx is still running so I will let it run overnight and post results tomorrow morning.  That will be about 10 hours from now.  Thanks for your help and I will be in touch tomorrow.



#17 Broni Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

Broni

    Administrator - Malware Annihilator

  • Administrators
  • 35,547 posts
  • 2,097 topics
    • Time Online: 212d 22h 15m 38s
  • Joined October 04, 2004
  • Age: 60
  • Skin: Smartest wide
  • Local time: 12:53 PM
  • Zodiac:Virgo
  • Gender:Male
  • Location:Daly City, CA
  • OS:Windows 8
  • Country:
Offline

Posted 29 January 2014 - 04:07 AM

p22003888.gif


p22003266.jpg  p22003279.jpgp4279089.jpg


#18 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 29 January 2014 - 11:36 AM

ComboFix 14-01-29.01 - Marla 01/02/2002   9:00.1.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.3071.1849 [GMT -5:00]
Running from: c:\users\Marla\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ArcSoft\TotalMedia Extreme\Codec\checkactivate.dll
c:\program files\ArcSoft\TotalMedia Extreme\Codec\checkcommon.dll
c:\program files\ArcSoft\TotalMedia Extreme\TotalMedia Studio MV\MVCodec\checkcommon.dll
c:\programdata\Microsoft\Windows\DRM\3853.tmp
c:\programdata\Microsoft\Windows\DRM\38C2.tmp
c:\programdata\Microsoft\Windows\DRM\4957.tmp
c:\programdata\Microsoft\Windows\DRM\4997.tmp
c:\programdata\Microsoft\Windows\DRM\EFAF.tmp
c:\programdata\Microsoft\Windows\DRM\F00F.tmp
c:\users\Marla\AppData\Roaming\Microsoft\Windows\Recent\mxfilerelatedcache.mxc2
c:\users\Marla\Documents\~WRL0737.tmp
c:\users\Marla\Favorites\mxfilerelatedcache.mxc2
c:\windows\system32\jucheck.exe
c:\windows\system32\jusched.exe
c:\windows\system32\service
c:\windows\system32\service\01052009_TIS17_SfFniAU.log
c:\windows\system32\service\01062009_TIS17_SfFniAU.log
c:\windows\system32\service\02032009_TIS17_SfFniAU.log
c:\windows\system32\service\03032009_TIS17_SfFniAU.log
c:\windows\system32\service\04032009_TIS17_SfFniAU.log
c:\windows\system32\service\04052009_TIS17_SfFniAU.log
c:\windows\system32\service\04062009_TIS17_SfFniAU.log
c:\windows\system32\service\05012010_TIS17_SfFniAU.log
c:\windows\system32\service\05032009_TIS17_SfFniAU.log
c:\windows\system32\service\05052009_TIS17_SfFniAU.log
c:\windows\system32\service\05122009_TIS17_SfFniAU.log
c:\windows\system32\service\07042009_TIS17_SfFniAU.log
c:\windows\system32\service\07052009_TIS17_SfFniAU.log
c:\windows\system32\service\07062009_TIS17_SfFniAU.log
c:\windows\system32\service\08052009_TIS17_SfFniAU.log
c:\windows\system32\service\08062009_TIS17_SfFniAU.log
c:\windows\system32\service\09012010_TIS17_SfFniAU.log
c:\windows\system32\service\09062009_TIS17_SfFniAU.log
c:\windows\system32\service\09072009_TIS17_SfFniAU.log
c:\windows\system32\service\09122009_TIS17_SfFniAU.log
c:\windows\system32\service\10032009_TIS17_SfFniAU.log
c:\windows\system32\service\10042009_TIS17_SfFniAU.log
c:\windows\system32\service\10052009_TIS17_SfFniAU.log
c:\windows\system32\service\11012010_TIS17_SfFniAU.log
c:\windows\system32\service\11032009_TIS17_SfFniAU.log
c:\windows\system32\service\11052009_TIS17_SfFniAU.log
c:\windows\system32\service\11062009_TIS17_SfFniAU.log
c:\windows\system32\service\12042009_TIS17_SfFniAU.log
c:\windows\system32\service\13022010_TIS17_SfFniAU.log
c:\windows\system32\service\13032009_TIS17_SfFniAU.log
c:\windows\system32\service\13062009_TIS17_SfFniAU.log
c:\windows\system32\service\14022010_TIS17_SfFniAU.log
c:\windows\system32\service\14062009_TIS17_SfFniAU.log
c:\windows\system32\service\15072009_TIS17_SfFniAU.log
c:\windows\system32\service\16062009_TIS17_SfFniAU.log
c:\windows\system32\service\17032009_TIS17_SfFniAU.log
c:\windows\system32\service\17042009_TIS17_SfFniAU.log
c:\windows\system32\service\17052009_TIS17_SfFniAU.log
c:\windows\system32\service\17062009_TIS17_SfFniAU.log
c:\windows\system32\service\18022009_TIS17_SfFniAU.log
c:\windows\system32\service\18042009_TIS17_SfFniAU.log
c:\windows\system32\service\18052009_TIS17_SfFniAU.log
c:\windows\system32\service\18112009_TIS17_SfFniAU.log
c:\windows\system32\service\18122009_TIS17_SfFniAU.log
c:\windows\system32\service\19022009_TIS17_SfFniAU.log
c:\windows\system32\service\19042009_TIS17_SfFniAU.log
c:\windows\system32\service\19062009_TIS17_SfFniAU.log
c:\windows\system32\service\19112009_TIS17_SfFniAU.log
c:\windows\system32\service\20052009_TIS17_SfFniAU.log
c:\windows\system32\service\20112009_TIS17_SfFniAU.log
c:\windows\system32\service\21032009_TIS17_SfFniAU.log
c:\windows\system32\service\21042009_TIS17_SfFniAU.log
c:\windows\system32\service\21052009_TIS17_SfFniAU.log
c:\windows\system32\service\21062009_TIS17_SfFniAU.log
c:\windows\system32\service\22032009_TIS17_SfFniAU.log
c:\windows\system32\service\23032009_TIS17_SfFniAU.log
c:\windows\system32\service\23052009_TIS17_SfFniAU.log
c:\windows\system32\service\24012010_TIS17_SfFniAU.log
c:\windows\system32\service\25012010_TIS17_SfFniAU.log
c:\windows\system32\service\25022009_TIS17_SfFniAU.log
c:\windows\system32\service\25032009_TIS17_SfFniAU.log
c:\windows\system32\service\25042009_TIS17_SfFniAU.log
c:\windows\system32\service\26032009_TIS17_SfFniAU.log
c:\windows\system32\service\27032009_TIS17_SfFniAU.log
c:\windows\system32\service\27042009_TIS17_SfFniAU.log
c:\windows\system32\service\27052009_TIS17_SfFniAU.log
c:\windows\system32\service\27062009_TIS17_SfFniAU.log
c:\windows\system32\service\27082009_TIS17_SfFniAU.log
c:\windows\system32\service\28042009_TIS17_SfFniAU.log
c:\windows\system32\service\28052009_TIS17_SfFniAU.log
c:\windows\system32\service\28122009_TIS17_SfFniAU.log
c:\windows\system32\service\29042009_TIS17_SfFniAU.log
c:\windows\system32\service\29072009_TIS17_SfFniAU.log
c:\windows\system32\service\30032009_TIS17_SfFniAU.log
c:\windows\system32\service\30042009_TIS17_SfFniAU.log
c:\windows\system32\service\30072009_TIS17_SfFniAU.log
c:\windows\system32\service\31032009_TIS17_SfFniAU.log
c:\windows\system32\service\31052009_TIS17_SfFniAU.log
.
c:\windows\system32\userinit.exe . . . is infected!!
.
c:\windows\bfsvc.exe . . . is infected!!
.
c:\windows\explorer.exe . . . is infected!!
.
c:\windows\fveupdate.exe . . . is infected!!
.
c:\windows\system32\msctfime.ime . . . is infected!!
.
c:\windows\system32\asycfilt.dll . . . is infected!!
.
c:\windows\system32\comres.dll . . . is infected!!
.
c:\windows\system32\d3d8.dll . . . is infected!!
.
c:\windows\system32\d3d8thk.dll . . . is infected!!
.
.
(((((((((((((((((((((((((   Files Created from 2001-12-02 to 2002-01-02  )))))))))))))))))))))))))))))))
.
.
2012-12-29 16:40 . 2012-12-29 16:41 -------- d-----w- C:\Brother
2012-04-09 21:14 . 2012-04-11 01:07 -------- d-----w- C:\6a15729d7ab57056c40eb8
2009-11-25 02:38 . 2009-11-25 02:38 -------- d-----w- C:\GAMES
2009-02-20 02:44 . 2009-02-20 02:44 -------- d-----w- C:\PerfLogs
2008-09-05 23:34 . 2009-04-14 01:10 -------- d-----w- C:\a3ed1bcc1e6ff402c4a0974c
2008-07-06 21:33 . 2009-04-14 01:10 -------- d-----w- C:\PSFONTS
2008-02-18 23:18 . 2009-04-14 01:10 -------- d-----w- C:\hold
2008-02-18 21:36 . 2008-02-18 21:36 -------- d-----r- C:\MSOCache
2007-11-27 02:37 . 2009-04-14 01:10 -------- d-----w- C:\Intel
2007-11-27 02:16 . 2009-06-30 14:22 -------- d-----w- C:\hp
2007-11-27 01:59 . 2012-09-18 22:09 -------- d-----w- C:\Boot
2006-11-02 13:02 . 2006-11-02 13:02 -------- d-sh--we C:\Documents and Settings
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-19 07:21 . 2012-09-19 07:21 4096 ----a-w- c:\windows\system32\drivers\en-US\dxgkrnl.sys.mui
2012-07-26 03:26 . 2012-12-13 08:04 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2011-03-03 15:40 . 2011-05-24 02:09 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2011-03-03 15:40 . 2011-05-24 02:09 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2011-03-03 15:40 . 2011-05-24 02:09 542720 ----a-w- c:\windows\apppatch\AcLayers.dll
2011-03-03 15:40 . 2011-05-24 02:09 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll
2009-11-03 21:46 . 2010-07-20 18:00 36864 ----a-w- c:\windows\system32\drivers\en-US\http.sys.mui
2009-10-01 01:08 . 2012-09-19 07:39 3072 ----a-w- c:\windows\system32\drivers\UMDF\en-US\wpdmtpdr.dll.mui
2009-04-11 06:28 . 2012-04-28 22:48 40960 ----a-w- c:\windows\apppatch\apihex86.dll
2009-04-11 06:24 . 2012-04-28 22:48 4096 ----a-w- c:\windows\system32\drivers\en-US\hdaudbus.sys.mui
2009-04-11 06:22 . 2012-04-28 22:48 8192 ----a-w- c:\windows\system32\drivers\en-US\bthport.sys.mui
2008-11-01 03:44 . 2008-12-11 03:19 52736 ----a-w- c:\windows\apppatch\iebrshim.dll
2008-01-19 07:44 . 2008-06-24 13:40 20480 ----a-w- c:\windows\system32\drivers\en-US\mpio.sys.mui
2008-01-19 07:40 . 2008-06-24 13:40 16896 ----a-w- c:\windows\system32\drivers\en-US\E1G60I32.sys.mui
2008-01-19 07:37 . 2008-06-24 13:40 19968 ----a-w- c:\windows\system32\drivers\en-US\e1e6032.sys.mui
2008-01-19 07:36 . 2008-06-24 13:40 32768 ----a-w- c:\windows\system32\drivers\en-US\volsnap.sys.mui
2008-01-19 07:34 . 2008-06-24 13:40 5120 ----a-w- c:\windows\system32\drivers\en-US\tpm.sys.mui
2008-01-19 07:33 . 2008-06-24 13:41 237568 ----a-w- c:\windows\apppatch\AcRedir.dll
2008-01-19 07:30 . 2008-06-24 13:40 5120 ----a-w- c:\windows\system32\drivers\en-US\b57nd60x.sys.mui
2008-01-19 07:30 . 2008-06-24 13:40 6656 ----a-w- c:\windows\system32\drivers\en-US\luafv.sys.mui
2007-09-18 22:41 . 2007-11-27 02:53 81920 ----a-w- c:\windows\help\OEM\scripts\HPPhoneNumbers.exe
2007-06-26 22:14 . 2007-06-26 22:14 29952 ----a-w- c:\windows\help\OEM\scripts\HPScript.exe
2007-06-05 14:12 . 2007-11-27 02:53 53248 ----a-w- c:\windows\help\OEM\scripts\HPASL.exe
2007-04-04 18:42 . 2007-11-27 02:53 24576 ----a-w- c:\windows\help\OEM\scripts\taskMgrPrefs.exe
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\qwavedrv.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 8704 ----a-w- c:\windows\system32\drivers\en-US\pci.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 5120 ----a-w- c:\windows\system32\drivers\en-US\nv4_mini.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\isapnp.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3584 ----a-w- c:\windows\system32\drivers\en-US\scsiport.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3584 ----a-w- c:\windows\system32\drivers\en-US\mssmbios.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\VIAAGP.SYS.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\ULIAGPKX.SYS.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\SISAGP.SYS.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\NV_AGP.SYS.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\AMDAGP.SYS.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\AGP440.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4608 ----a-w- c:\windows\system32\drivers\en-US\wacompen.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\SCR111.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\scmstcs.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\pscr.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\grserial.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3584 ----a-w- c:\windows\system32\drivers\en-US\gpr400.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3584 ----a-w- c:\windows\system32\drivers\en-US\ati2mtag.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\stcusb.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\cxbp0wdm.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\cmbp0wdm.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3584 ----a-w- c:\windows\system32\drivers\en-US\rndismpx.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 9728 ----a-w- c:\windows\system32\drivers\en-US\acpi.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\pnpmem.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 2560 ----a-w- c:\windows\system32\drivers\en-US\wd.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 6144 ----a-w- c:\windows\system32\drivers\en-US\IPMIDrv.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4608 ----a-w- c:\windows\system32\drivers\en-US\pcmcia.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3584 ----a-w- c:\windows\system32\drivers\en-US\pacer.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 5632 ----a-w- c:\windows\system32\drivers\en-US\sermouse.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4608 ----a-w- c:\windows\system32\drivers\en-US\mouclass.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\msdsm.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\mouhid.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 10752 ----a-w- c:\windows\system32\drivers\en-US\i8042prt.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 10240 ----a-w- c:\windows\system32\drivers\en-US\BrSerId.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\modem.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4096 ----a-w- c:\windows\system32\drivers\en-US\ipnat.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\serscan.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 8704 ----a-w- c:\windows\system32\drivers\en-US\afd.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 5632 ----a-w- c:\windows\system32\drivers\en-US\yk60x86.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3584 ----a-w- c:\windows\system32\drivers\en-US\hidbth.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 9728 ----a-w- c:\windows\system32\drivers\en-US\ltmdmnt.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 5120 ----a-w- c:\windows\system32\drivers\en-US\e100b325.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 4608 ----a-w- c:\windows\system32\drivers\en-US\kbdclass.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\kbdhid.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 65536 ----a-w- c:\windows\system32\drivers\en-US\ntfs.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\srv.sys.mui
2006-11-02 12:41 . 2006-11-02 12:41 3072 ----a-w- c:\windows\system32\drivers\en-US\ati2mpad.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 4096 ----a-w- c:\windows\system32\drivers\en-US\ntrigdigi.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 14848 ----a-w- c:\windows\system32\drivers\en-US\viac7.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 14848 ----a-w- c:\windows\system32\drivers\en-US\processr.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 14848 ----a-w- c:\windows\system32\drivers\en-US\intelppm.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 14848 ----a-w- c:\windows\system32\drivers\en-US\crusoe.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 14848 ----a-w- c:\windows\system32\drivers\en-US\amdk8.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 14848 ----a-w- c:\windows\system32\drivers\en-US\amdk7.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 7680 ----a-w- c:\windows\system32\drivers\en-US\battc.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 4096 ----a-w- c:\windows\system32\drivers\en-US\parport.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 3072 ----a-w- c:\windows\system32\drivers\en-US\parvdm.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 10752 ----a-w- c:\windows\system32\drivers\en-US\serial.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 3584 ----a-w- c:\windows\system32\drivers\en-US\RNDISMP.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 12288 ----a-w- c:\windows\system32\drivers\en-US\ohci1394.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 3584 ----a-w- c:\windows\system32\drivers\en-US\umbus.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 3072 ----a-w- c:\windows\system32\drivers\en-US\UAGP35.SYS.mui
2006-11-02 12:40 . 2006-11-02 12:40 3072 ----a-w- c:\windows\system32\drivers\en-US\GAGP30KX.SYS.mui
2006-11-02 12:40 . 2006-11-02 12:40 2560 ----a-w- c:\windows\system32\drivers\en-US\BrParwdm.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 3072 ----a-w- c:\windows\system32\drivers\en-US\Dot4usb.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 2560 ----a-w- c:\windows\system32\drivers\en-US\amdide.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 5120 ----a-w- c:\windows\system32\drivers\en-US\fltmgr.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 5120 ----a-w- c:\windows\system32\drivers\en-US\bthpan.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 5120 ----a-w- c:\windows\system32\drivers\en-US\bcm4sbxp.sys.mui
2006-11-02 12:40 . 2006-11-02 12:40 3072 ----a-w- c:\windows\system32\drivers\en-US\atikmdag.sys.mui
2006-11-02 12:35 . 2006-11-02 12:35 231936 ----a-w- c:\windows\help\Tablet PC\PenTraining.exe
2006-11-02 12:35 . 2006-11-02 12:35 2048 ----a-w- c:\windows\help\Tablet PC\PTRes.dll
2006-11-02 12:35 . 2006-11-02 12:35 2048 ----a-w- c:\windows\help\Tablet PC\TTRes.dll
2006-11-02 12:35 . 2006-11-02 12:35 159232 ----a-w- c:\windows\help\Tablet PC\TouchTraining.exe
2006-11-02 07:11 . 2006-11-02 07:11 2560 ----a-w- c:\windows\apppatch\AcRes.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2009-04-11 . 1F05B78AB91C9075565A9D8A4B880BC4 . 19944 . . [6.0.6002.18005] . . c:\windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[7] 2009-04-11 . 1F05B78AB91C9075565A9D8A4B880BC4 . 19944 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[7] 2008-02-18 . B35CFCEF838382AB6490B321C87EDF17 . 21560 . . [6.0.6000.16632] . . c:\windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[7] 2008-02-18 . B35CFCEF838382AB6490B321C87EDF17 . 21560 . . [6.0.6000.16632] . . c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[7] 2008-02-18 . E03E8C99D15D0381E02743C36AFC7C6F . 21560 . . [6.0.6000.20757] . . c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys
[7] 2008-01-19 . 2D9C903DC76A66813D350A562DE40ED9 . 21560 . . [6.0.6001.18000] . . c:\windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[7] 2008-01-19 . 2D9C903DC76A66813D350A562DE40ED9 . 21560 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[7] 2006-11-02 . 4F4FCB8B6EA06784FB6D475B7EC7300F . 19048 . . [6.0.6000.16386] . . c:\windows\System32\drivers\atapi.sys
[7] 2006-11-02 . 4F4FCB8B6EA06784FB6D475B7EC7300F . 19048 . . [6.0.6000.16386] . . c:\windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
.
[-] 2008-01-19 . 53B202ABEE6455406254444303E87BE1 . 17408 . . [6.0.6001.18000] . . c:\windows\System32\drivers\asyncmac.sys
[-] 2008-01-19 . 53B202ABEE6455406254444303E87BE1 . 17408 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-rasbase-asyncmac_31bf3856ad364e35_6.0.6001.18000_none_2457cee334d93e6f\asyncmac.sys
[-] 2006-11-02 . E86CF7CE67D5DE898F27EF884DC357D8 . 17408 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-rasbase-asyncmac_31bf3856ad364e35_6.0.6000.16386_none_22210ce737ee2d9b\asyncmac.sys
.
[-] 2008-01-19 . 67E506B75BD5326A3EC7B70BD014DFB6 . 6144 . . [6.0.6001.18000] . . c:\windows\System32\drivers\beep.sys
[-] 2008-01-19 . 67E506B75BD5326A3EC7B70BD014DFB6 . 6144 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6001.18000_none_c420a153079d485b\beep.sys
[-] 2006-11-02 . AC3DD1708B22761EBD7CBE14DCC3B5D7 . 6144 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6000.16386_none_c1e9df570ab23787\beep.sys
.
[7] 2008-02-18 . B076B2AB806B3F696DAB21375389101C . 35384 . . [6.0.6000.16386] . . c:\windows\System32\DriverStore\FileRepository\keyboard.inf_a81145df\kbdclass.sys
[7] 2008-02-18 . B076B2AB806B3F696DAB21375389101C . 35384 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.16609_none_957131ccdbca3f9c\kbdclass.sys
[7] 2008-02-18 . C9B0CF786D5F151A43C7BE8E243F2819 . 35384 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.20734_none_95d55d61f504b486\kbdclass.sys
[7] 2008-01-19 . 37605E0A8CF00CBBA538E753E4344C6E . 35384 . . [6.0.6000.16386] . . c:\windows\System32\drivers\kbdclass.sys
[7] 2008-01-19 . 37605E0A8CF00CBBA538E753E4344C6E . 35384 . . [6.0.6000.16386] . . c:\windows\System32\DriverStore\FileRepository\keyboard.inf_da7e599e\kbdclass.sys
[7] 2008-01-19 . 37605E0A8CF00CBBA538E753E4344C6E . 35384 . . [6.0.6000.16386] . . c:\windows\System32\DriverStore\FileRepository\keyboard.inf_f55d5e51\kbdclass.sys
[7] 2008-01-19 . 37605E0A8CF00CBBA538E753E4344C6E . 35384 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6001.18000_none_974e6dd8d8f8ec7e\kbdclass.sys
[7] 2008-01-19 . 37605E0A8CF00CBBA538E753E4344C6E . 35384 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6002.18005_none_9939e6e4d61ab7ca\kbdclass.sys
[7] 2006-11-02 . 1A48765F92BA1A88445FC25C9C9D94FC . 32872 . . [6.0.6000.16386] . . c:\windows\System32\DriverStore\FileRepository\keyboard.inf_93b1c41f\kbdclass.sys
.
[7] 2009-04-11 . 1357274D1883F68300AEADD15D7BBB42 . 527848 . . [6.0.6002.18005] . . c:\windows\System32\drivers\ndis.sys
[7] 2009-04-11 . 1357274D1883F68300AEADD15D7BBB42 . 527848 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[7] 2008-01-19 . 9BDC71790FA08F0A0B5F10462B1BD0B1 . 529464 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
[7] 2006-11-02 . 227C11E1E7CF6EF8AFB2A238D209760C . 500840 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
.
[7] 2013-03-03 . 2C1121F2B87E9A6B12485DF53CD848C7 . 1082232 . . [6.0.6000.16386] . . c:\windows\System32\drivers\ntfs.sys
[7] 2013-03-03 . 2C1121F2B87E9A6B12485DF53CD848C7 . 1082232 . . [6.0.6002.18799] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18799_none_a7ff61ef1a52b1c5\ntfs.sys
[7] 2013-03-03 . ECB54A0E9C40B00CF8FEFE5F455A1EFB . 1083240 . . [6.0.6002.23070] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.23070_none_a895760033686607\ntfs.sys
[7] 2009-04-11 . 6A4A98CEE84CF9E99564510DDA4BAA47 . 1083880 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18005_none_a85ca2c91a0d64df\ntfs.sys
[7] 2008-02-18 . 2620822A21B76375F5FD6E0986407CD1 . 1060920 . . [6.0.6000.16586] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16586_none_a43a6b8d2000830d\ntfs.sys
[7] 2008-02-18 . B5BE45B1F554DF9E1976CBC855365E60 . 1061432 . . [6.0.6000.20709] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20709_none_a51d8a7c38da8c7b\ntfs.sys
[7] 2008-01-19 . B4EFFE29EB4F15538FD8A9681108492D . 1081912 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6001.18000_none_a67129bd1ceb9993\ntfs.sys
[7] 2007-12-16 . F08824715CA6076F5E73E005AB83B9C8 . 1061944 . . [6.0.6000.20740] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.20740_none_a4e9483239031830\ntfs.sys
[7] 2007-12-16 . 37430AA7A66D7A63407ADC2C0D05E9F6 . 1060920 . . [6.0.6000.16615] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16615_none_a4851c9d1fc8a346\ntfs.sys
[7] 2006-11-02 . 3F379380A4A2637F559444E338CF1B51 . 1056360 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6000.16386_none_a43a67c1200088bf\ntfs.sys
.
[-] 2008-01-19 . C5DBBCDA07D780BDA9B685DF333BB41E . 4608 . . [6.0.6001.18000] . . c:\windows\System32\drivers\null.sys
[-] 2008-01-19 . C5DBBCDA07D780BDA9B685DF333BB41E . 4608 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-null_31bf3856ad364e35_6.0.6001.18000_none_a965ed7d1afd0ac7\null.sys
[-] 2006-11-02 . EC5EFB3C60F1B624648344A328BCE596 . 4608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-null_31bf3856ad364e35_6.0.6000.16386_none_a72f2b811e11f9f3\null.sys
.
[7] 2013-07-05 . D18D53974FD715D50FC76F9FFE1C830D . 905664 . . [6.0.6002.18880] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18880_none_b4ae19bc63cd564f\tcpip.sys
[7] 2013-07-05 . 6D0D344F643E28B31262AC2682109A3C . 914880 . . [6.0.6002.23152] . . c:\windows\System32\drivers\tcpip.sys
[7] 2013-07-05 . 6D0D344F643E28B31262AC2682109A3C . 914880 . . [6.0.6002.23152] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23152_none_b55a00e77cd1055d\tcpip.sys
[7] 2013-05-08 . 548E198BAE21EFC21F8B5F0C1728AD27 . 905576 . . [6.0.6002.18835] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18835_none_b4e92aca63a0494d\tcpip.sys
[7] 2013-05-08 . 078218D74C4EFC2CE7E4C6DF22A94F2F . 914792 . . [6.0.6002.23106] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23106_none_b59411ab7ca4df04\tcpip.sys
[7] 2013-01-04 . 3535CD93F944C00F098E73E12EE7FEB6 . 914792 . . [6.0.6002.23013] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23013_none_b5863efb7cafb1c9\tcpip.sys
[7] 2013-01-04 . 74E2D020C47BB2B2FCCBA29A518A7EB4 . 905576 . . [6.0.6002.18764] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18764_none_b4c7b8d663b986a2\tcpip.sys
[7] 2012-03-30 . 27D470DABC77BC60D0A3B0E4DEB6CB91 . 905600 . . [6.0.6002.18604] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18604_none_b50896786388e1d5\tcpip.sys
[7] 2012-03-30 . EE7E10BED85C312C1D5D30C435BDDA9F . 914304 . . [6.0.6002.22828] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22828_none_b58096797cb31c04\tcpip.sys
[7] 2010-06-16 . 6A10AFCE0B38371064BE41C1FBFD3C6B . 912776 . . [6.0.6002.22425] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[7] 2010-06-16 . A474879AFA4A596B3A531F3E69730DBF . 905088 . . [6.0.6002.18272] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[7] 2010-06-16 . 782568AB6A43160A159B6215B70BCCE9 . 898952 . . [6.0.6001.18493] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[7] 2010-06-16 . 6216A954ED7045B62880A92D6C9B9FC7 . 902032 . . [6.0.6001.22713] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[7] 2010-04-05 . CC9993701AC57F995554C696DDA49C12 . 910208 . . [6.0.6002.22377] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22377_none_b5497d157cdc9c9f\tcpip.sys
[7] 2010-04-05 . A6A02EF5B5E40FBD31A1ADC577DA54BB . 902024 . . [6.0.6001.22665] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys
[7] 2010-02-18 . 93A5655CD9CD2F080EF1CB71A3666215 . 902024 . . [6.0.6001.22636] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[7] 2010-02-18 . 2EAE4500984C2F8DACFB977060300A15 . 898952 . . [6.0.6001.18427] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[7] 2010-02-18 . D9F5DD5BBC8348E8F8220CCBF14C022E . 910216 . . [6.0.6002.22341] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[7] 2010-02-18 . 48CBE6D53632D0067C2D6B20F90D84CA . 904576 . . [6.0.6002.18209] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[-] 2010-02-18 . 4A82FA8F0DF67AA354580C3FAAF8BDE3 . 815104 . . [6.0.6000.17021] . . c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[-] 2010-02-18 . 2C1F7005AA3B62721BFDB307BD5F5010 . 818688 . . [6.0.6000.21226] . . c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[7] 2009-12-08 . 1ACBB7A47E78F4CC82D2EFFB72901528 . 897624 . . [6.0.6001.18377] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[7] 2009-12-08 . 5653230D480A9C54D169E1B080B72CF5 . 900696 . . [6.0.6001.22577] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[7] 2009-12-08 . 46E6685F3E92AEC743773ADD4CD54F57 . 907832 . . [6.0.6002.22283] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[7] 2009-12-08 . DA467E7619AE5F4588E6262C13C8940A . 904776 . . [6.0.6002.18160] . . c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
.
[-] 2008-01-19 . A3629A0C4226F9E9C72FAAEEBC3AD33C . 81920 . . [6.0.6000.16386] . . c:\windows\System32\browser.dll
[-] 2008-01-19 . A3629A0C4226F9E9C72FAAEEBC3AD33C . 81920 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-browserservice_31bf3856ad364e35_6.0.6001.18000_none_78e926b99dfe756d\browser.dll
[-] 2006-11-02 . BEB6470532B7461D7BB426E3FACB424F . 81408 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-browserservice_31bf3856ad364e35_6.0.6000.16386_none_76b264bda1136499\browser.dll
.
[-] 2012-06-01 . 613DEB66A91820F0A41915B40BB8833F . 9728 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22869_none_a882cf8373379c5f\lsass.exe
[-] 2011-11-16 . A3E186B4B935905B829219502557314E . 9728 . . [6.0.6000.16386] . . c:\windows\System32\lsass.exe
[-] 2011-11-16 . A3E186B4B935905B829219502557314E . 9728 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18541_none_a806cc745a10ffad\lsass.exe
[-] 2011-11-16 . A3E186B4B935905B829219502557314E . 9728 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18643_none_a808ceee5a0f2f82\lsass.exe
.
[-] 2008-01-19 . C8052711DAECC48B982434C5116CA401 . 274432 . . [6.0.6000.16386] . . c:\windows\System32\netman.dll
[-] 2008-01-19 . C8052711DAECC48B982434C5116CA401 . 274432 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-netman_31bf3856ad364e35_6.0.6001.18000_none_0fbd1b9651cfd333\netman.dll
[-] 2006-11-02 . 90A4DAE28B94497F83BEA0F2A3B77092 . 273920 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-netman_31bf3856ad364e35_6.0.6000.16386_none_0d86599a54e4c25f\netman.dll
.
[-] 2008-01-19 . 4211249955AF9133E2E357CC92B54DFD . 1291264 . . [2001.12.6930.16386] . . c:\windows\System32\comres.dll
[-] 2008-01-19 . 4211249955AF9133E2E357CC92B54DFD . 1291264 . . [2001.12.6930.16386] . . c:\windows\winsxs\x86_microsoft-windows-com-complus.res_31bf3856ad364e35_6.0.6001.18000_none_2cb0dad7e631d923\comres.dll
[-] 2006-11-02 . 4843A1784BA6434DFF80F841DDC592C6 . 1236992 . . [2001.12.6930.16386] . . c:\windows\winsxs\x86_microsoft-windows-com-complus.res_31bf3856ad364e35_6.0.6000.16386_none_2a7a18dbe946c84f\comres.dll
.
[-] 2009-04-11 . 93952506C6D67330367F7E7934B6A02F . 758784 . . [7.0.6001.18000] . . c:\windows\System32\qmgr.dll
[-] 2009-04-11 . 93952506C6D67330367F7E7934B6A02F . 758784 . . [7.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6002.18005_none_257c3df8f693d6d8\qmgr.dll
[-] 2008-01-19 . 02ED7B4DBC2A3232A389106DA7515C3D . 758272 . . [7.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6001.18000_none_2390c4ecf9720b8c\qmgr.dll
[-] 2007-11-27 . F1148566FA5173A4FD48AF8E8BC09401 . 750080 . . [7.0.6000.20647] . . c:\windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6000.20647_none_220fe38215833e63\qmgr.dll
.
[-] 2009-04-11 . 3B5B4D53FEC14F7476CA29A20CC31AC9 . 550400 . . [6.0.6000.16386] . . c:\windows\System32\rpcss.dll
[-] 2009-04-11 . 3B5B4D53FEC14F7476CA29A20CC31AC9 . 550400 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6002.18005_none_6bb655083b01c988\rpcss.dll
[-] 2009-03-03 . 301AE00E12408650BADDC04DBC832830 . 551424 . . [6.0.6001.18226] . . c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6001.18226_none_69bb41ac3deac876\rpcss.dll
[-] 2009-03-03 . 4DFCBDEF3CCAA98F99038DED78945253 . 551424 . . [6.0.6001.22389] . . c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6001.22389_none_6a06ffcd57365beb\rpcss.dll
[-] 2009-03-03 . 7B981222A257D076885BFFB66F19B7CE . 549888 . . [6.0.6000.16830] . . c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6000.16830_none_67c4315e40d1bb6c\rpcss.dll
.
[-] 2009-04-11 . D4E6D91C1349B7BFB3599A6ADA56851B . 279552 . . [6.0.6000.16386] . . c:\windows\System32\services.exe
[-] 2009-04-11 . D4E6D91C1349B7BFB3599A6ADA56851B . 279552 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe
[-] 2008-01-19 . 2B336AB6286D6C81FA02CBAB914E3C6C . 279040 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[-] 2006-11-02 . 329CF3C97CE4C19375C8ABCABAE258B0 . 279552 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6000.16386_none_cd28fe6bd05df036\services.exe
.
[-] 2010-08-17 . AAE98B295E88D439A6E0F6E8929424FB . 128000 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.22468_none_d882e000d7f61b4c\spoolsv.exe
[-] 2010-08-17 . 8554097E5136C3BF9F69FE578A1B35F4 . 128000 . . [6.0.6000.16386] . . c:\windows\System32\spoolsv.exe
[-] 2010-08-17 . 8554097E5136C3BF9F69FE578A1B35F4 . 128000 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18294_none_d7d4d063bef46cd2\spoolsv.exe
[-] 2010-08-17 . 3665F79026A3F91FBCA63F2C65A09B19 . 126464 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18511_none_d641dcfdc18fec21\spoolsv.exe
.
[-] 2009-04-11 . 898E7C06A350D4A1A64A9EA264D55452 . 314368 . . [6.0.6001.18000] . . c:\windows\System32\winlogon.exe
[-] 2009-04-11 . 898E7C06A350D4A1A64A9EA264D55452 . 314368 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[-] 2008-01-19 . C2610B6BDBEFC053BBDAB4F1B965CB24 . 314880 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
[-] 2006-11-02 . 9F75392B9128A91ABAFB044EA350BAAD . 308224 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
.
[7] 2012-06-02 . 2E0B0A051FFAA86E358465BB0880D453 . 53784 . . [7.6.7600.256] . . c:\windows\System32\wuauclt.exe
[7] 2012-06-02 . 2E0B0A051FFAA86E358465BB0880D453 . 53784 . . [7.6.7600.256] . . c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.6.7600.256_none_79d6786e99338140\wuauclt.exe
[7] 2009-08-07 . 62BB79160F86CD962F312C68C6239BFD . 53472 . . [7.4.7600.226] . . c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.4.7600.226_none_e979223d5b9c821b\wuauclt.exe
[7] 2008-10-16 . E654B78D2F1D791B30D0ED9A8195EC22 . 51224 . . [7.2.6001.788] . . c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.2.6001.788_none_2a6539a96682e474\wuauclt.exe
[7] 2008-02-18 . F3E9065EB617A7E3A832A7976BFA021B . 53080 . . [7.0.6000.381] . . c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6000.381_none_981d19142bc9942c\wuauclt.exe
[-] 2008-01-19 . 8E93CDF0EA8EDBA63F07E2898A9B2147 . 43008 . . [7.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6001.18000_none_a052d92e34802200\wuauclt.exe
[-] 2008-01-19 . 8E93CDF0EA8EDBA63F07E2898A9B2147 . 43008 . . [7.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wuauclt.exe
[-] 2006-11-02 . FF81090B6EF1A42A19DF226632711D25 . 41472 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_6.0.6000.16386_none_acab9aecacae685d\wuauclt.exe
.
[-] 2009-04-11 . 76B06EB8A01FC8624D699E7045303E54 . 72192 . . [6.0.6002.18005] . . c:\windows\System32\drivers\tdx.sys
[-] 2009-04-11 . 76B06EB8A01FC8624D699E7045303E54 . 72192 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6002.18005_none_ec294157d9377403\tdx.sys
[-] 2008-01-19 . D09276B1FAB033CE1D40DCBDF303D10F . 71680 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6001.18000_none_ea3dc84bdc15a8b7\tdx.sys
[-] 2006-11-02 . AB4FDE8AF4A0270A46A001C08CBCE1C2 . 68096 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6000.16386_none_e807064fdf2a97e3\tdx.sys
.
[-] 2013-07-04 . 58035212AB7869A5FC3AF186ACBA8F09 . 532480 . . [5.82] . . c:\windows\System32\comctl32.dll
[-] 2013-07-04 . 58035212AB7869A5FC3AF186ACBA8F09 . 532480 . . [5.82] . . c:\windows\winsxs\x86_microsoft-windows-shell-comctl32-v5_31bf3856ad364e35_6.0.6002.18879_none_3b3ff8f0d54e60f1\comctl32.dll
[-] 2013-07-04 . 9474AD3584430D24DA87517F9DB0CBB2 . 532480 . . [5.82] . . c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18879_none_88f80d1769beeaec\comctl32.dll
[-] 2013-07-04 . 059F04344FD96993C4F207BB4E281DF3 . 532480 . . [5.82] . . c:\windows\winsxs\x86_microsoft-windows-shell-comctl32-v5_31bf3856ad364e35_6.0.6002.23151_none_3bd70d4bee632e8a\comctl32.dll
.
[-] 2013-10-03 . 165E9D93A84A7F55EBEEB1B554110680 . 135168 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23235_none_78542a95b127239a\cryptsvc.dll
[-] 2013-07-08 . 684C130BBC6DB681BAD4920A4C944AA5 . 133120 . . [6.0.6000.16386] . . c:\windows\System32\cryptsvc.dll
[-] 2013-07-08 . 684C130BBC6DB681BAD4920A4C944AA5 . 133120 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18881_none_7790a11898357c99\cryptsvc.dll
[-] 2013-07-08 . 828805E2E7F529B24849AD52740288DA . 135168 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23154_none_783d888db13844fe\cryptsvc.dll
.
[-] 2009-04-11 . 67058C46504BC12D821F38CF99B7B28F . 268800 . . [2001.12.6932.18005] . . c:\windows\System32\es.dll
[-] 2009-04-11 . 67058C46504BC12D821F38CF99B7B28F . 268800 . . [2001.12.6932.18005] . . c:\windows\winsxs\x86_microsoft-windows-c..complus-eventsystem_31bf3856ad364e35_6.0.6002.18005_none_0ed918294edf6b75\es.dll
[-] 2008-04-19 . 131B7E46A7ACD49CB56BB03917A76DE3 . 268800 . . [2001.12.6930.20818] . . c:\windows\winsxs\x86_microsoft-windows-c..complus-eventsystem_31bf3856ad364e35_6.0.6000.20818_none_0b8e318c6db592d2\es.dll
[-] 2008-04-19 . 7B4971C3D43525175A4EA0D143E0412E . 268800 . . [2001.12.6930.16677] . . c:\windows\winsxs\x86_microsoft-windows-c..complus-eventsystem_31bf3856ad364e35_6.0.6000.16677_none_0ac2b30954c98430\es.dll
.
[-] 2009-04-11 . C8BDCECEE082B54F0BAC838BF0A34597 . 114688 . . [6.0.6002.18005] . . c:\windows\System32\imm32.dll
[-] 2009-04-11 . C8BDCECEE082B54F0BAC838BF0A34597 . 114688 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6002.18005_none_5e419722778cc84e\imm32.dll
[-] 2008-01-19 . EC17194A193CD8E90D27CFB93DFA9A2E . 114688 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6001.18000_none_5c561e167a6afd02\imm32.dll
[-] 2006-11-02 . EE12864398F1C3BF5BEE91F6AF9842E1 . 115200 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6000.16386_none_5a1f5c1a7d7fec2e\imm32.dll
.
[-] 2012-09-28 . DC3105CC925A0D47F61B54E66AB730FC . 892928 . . [6.0.6001.18000] . . c:\windows\System32\kernel32.dll
[-] 2012-09-28 . DC3105CC925A0D47F61B54E66AB730FC . 892928 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.18704_none_95a86b4d536e26b4\kernel32.dll
[-] 2012-09-28 . A9204E65A74AF0E801EA46F5A92C87A2 . 893440 . . [6.0.6002.22942] . . c:\windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.22942_none_9604c9ba6cae00bb\kernel32.dll
[-] 2011-04-12 . 574B473FACAA0E91702B86578440B525 . 892416 . . [6.0.6002.18449] . . c:\windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.18449_none_9582275d538a1db6\kernel32.dll
.
[-] 2006-11-02 . 24F90AEFEBE601D427CB4511E74CDCB6 . 22016 . . [6.0.6000.16386] . . c:\windows\System32\linkinfo.dll
[-] 2006-11-02 . 24F90AEFEBE601D427CB4511E74CDCB6 . 22016 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-linkinfo_31bf3856ad364e35_6.0.6000.16386_none_362e7020a86900de\linkinfo.dll
.
[-] 2013-06-04 . 14940757518AA48B73992F19820D1799 . 23552 . . [6.0.6002.23132] . . c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.23132_none_ac24a6e570e0e9d1\lpk.dll
[-] 2012-12-16 . 883A634FF496FE2D22BA3D441EED0ED0 . 23552 . . [6.0.6002.23004] . . c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.23004_none_ac47155770c6cb85\lpk.dll
[-] 2011-02-16 . 08F5BC2DC64C4D97931A28058F238D80 . 23552 . . [6.0.6002.22589] . . c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22589_none_abf5b7af710301e2\lpk.dll
[-] 2011-02-16 . 0F1AF051D2B58411341B70360852AA36 . 23552 . . [6.0.6001.22854] . . c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22854_none_aa2ab41973c8da38\lpk.dll
.
[-] 2013-11-14 . 845028B4ED05A9DF76A03897E5C98FF5 . 12345344 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20637_none_d3bb1e0d792e121a\mshtml.dll
[-] 2013-11-14 . C89906FA43A58FD4CFC7EA06D885A597 . 12344320 . . [9.00.8112.16421] . . c:\windows\System32\mshtml.dll
[-] 2013-11-14 . C89906FA43A58FD4CFC7EA06D885A597 . 12344320 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16526_none_d33b50e460093d08\mshtml.dll
[-] 2013-10-13 . AC986A1AD35CDBF07B0E5D1AC9D527B5 . 12344832 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16520_none_d3354f28600ea4fe\mshtml.dll
.
[-] 2011-12-14 . 17AF64D727545F2804F6E6D998327E3F . 680448 . . [7.0.6002.18551] . . c:\windows\System32\msvcrt.dll
[-] 2011-12-14 . 17AF64D727545F2804F6E6D998327E3F . 680448 . . [7.0.6002.18551] . . c:\windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.0.6002.18551_none_d306a7e69c340115\msvcrt.dll
[-] 2011-12-14 . A807F65718C263442F0C3613F9BFD267 . 680448 . . [7.0.6002.22755] . . c:\windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.0.6002.22755_none_d39447bfb54e0362\msvcrt.dll
[-] 2009-04-11 . F5E991236960137B1F5449C5E5DF4656 . 679936 . . [7.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.0.6002.18005_none_d340af2c9c07e8f9\msvcrt.dll
.
[-] 2009-04-11 . 8617350C9B590B63E620881092751BCB . 223232 . . [6.0.6000.16386] . . c:\windows\System32\mswsock.dll
[-] 2009-04-11 . 8617350C9B590B63E620881092751BCB . 223232 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6002.18005_none_ba3ed0122a6d89da\mswsock.dll
[-] 2008-01-19 . 89FD0595EEA4E505CABEFCF7008F2612 . 223232 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6001.18000_none_b85357062d4bbe8e\mswsock.dll
[-] 2006-11-02 . 54E9576169A248AD62A1EB9773225826 . 227328 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6000.16386_none_b61c950a3060adba\mswsock.dll
.
[-] 2009-04-11 . 95DAECF0FB120A7B5DA679CC54E37DDE . 592896 . . [6.0.6001.18000] . . c:\windows\System32\netlogon.dll
[-] 2009-04-11 . 95DAECF0FB120A7B5DA679CC54E37DDE . 592896 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[-] 2008-01-19 . A8EFC0B6E75B789F7FD3BA5025D4E37F . 592384 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
[-] 2006-11-02 . 889A2C9F2AACCD8F64EF50AC0B3D553B . 559616 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
.
[-] 2009-04-11 . 9A7F4B2EDACD11444D048AA19CBB26AF . 98816 . . [6.0.6001.18000] . . c:\windows\System32\powrprof.dll
[-] 2009-04-11 . 9A7F4B2EDACD11444D048AA19CBB26AF . 98816 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.0.6002.18005_none_a505176cf9fa2abd\powrprof.dll
[-] 2008-01-19 . 51832219A52C3535BF4771C375E63F9B . 97280 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.0.6001.18000_none_a3199e60fcd85f71\powrprof.dll
[-] 2006-11-02 . 3CDEC51291F735C5C276B957239017A3 . 96768 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.0.6000.16386_none_a0e2dc64ffed4e9d\powrprof.dll
.
[-] 2009-04-11 . 8FC182167381E9915651267044105EE1 . 177152 . . [6.0.6000.16386] . . c:\windows\System32\scecli.dll
[-] 2009-04-11 . 8FC182167381E9915651267044105EE1 . 177152 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
[-] 2008-01-19 . 28B84EB538F7E8A0FE8B9299D591E0B9 . 177152 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[-] 2006-11-02 . 80E2839D05CA5970A86D7BE2A08BFF61 . 176640 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
.
[-] 2006-11-02 . F4E1AA5D59C849A4AB47E895DC76B9C8 . 4608 . . [6.0.6000.16386] . . c:\windows\System32\sfc.dll
[-] 2006-11-02 . F4E1AA5D59C849A4AB47E895DC76B9C8 . 4608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-sfc_31bf3856ad364e35_6.0.6000.16386_none_a4ff01505f4694a4\sfc.dll
[-] 2006-11-02 . F4E1AA5D59C849A4AB47E895DC76B9C8 . 4608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-sfc_31bf3856ad364e35_6.0.6001.18000_none_a735c34c5c31a578\sfc.dll
.
[-] 2008-01-19 . 3794B461C45882E06856F282EEF025AF . 21504 . . [6.0.6000.16386] . . c:\windows\System32\svchost.exe
[-] 2008-01-19 . 3794B461C45882E06856F282EEF025AF . 21504 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
[-] 2006-11-02 . 10DA15933D582D2FEDCF705EFE394B09 . 22016 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
.
[-] 2009-04-11 . D7673E4B38CE21EE54C59EEEB65E2483 . 242688 . . [6.0.6000.16386] . . c:\windows\System32\tapisrv.dll
[-] 2009-04-11 . D7673E4B38CE21EE54C59EEEB65E2483 . 242688 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-tapiservice_31bf3856ad364e35_6.0.6002.18005_none_e52851e7e21463cb\tapisrv.dll
[-] 2008-01-19 . 680916BB09EE0F3A6ACA7C274B0D633F . 242688 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-tapiservice_31bf3856ad364e35_6.0.6001.18000_none_e33cd8dbe4f2987f\tapisrv.dll
[-] 2006-11-02 . EF3DD33C740FC2F82E7E4622F1C49289 . 242688 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-tapiservice_31bf3856ad364e35_6.0.6000.16386_none_e10616dfe80787ab\tapisrv.dll
.
[-] 2009-04-11 . 75510147B94598407666F4802797C75A . 627712 . . [6.0.6001.18000] . . c:\windows\System32\user32.dll
[-] 2009-04-11 . 75510147B94598407666F4802797C75A . 627712 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll
[-] 2008-01-19 . B974D9F06DC7D1908E825DC201681269 . 627200 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll
[-] 2007-11-27 . 9D9F061EDA75425FC67F0365E3467C86 . 633856 . . [6.0.6000.20537] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6000.20537_none_cbc258dc896598f1\user32.dll
.
[-] 2008-01-19 . 0E135526E9785D085BCD9AEDE6FBCBF9 . 25088 . . [6.0.6000.16386] . . c:\windows\System32\userinit.exe
[-] 2008-01-19 . 0E135526E9785D085BCD9AEDE6FBCBF9 . 25088 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[-] 2006-11-02 . 22027835939F86C3E47AD8E3FBDE3D11 . 24576 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe
.
[-] 2013-11-14 . 4CC9DF09C3D915BA0A101A11DB684F26 . 1129472 . . [9.00.8112.16421] . . c:\windows\System32\wininet.dll
[-] 2013-11-14 . 4CC9DF09C3D915BA0A101A11DB684F26 . 1129472 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.1.8112.16526_none_c1e131c5dfb2d3d2\wininet.dll
[-] 2013-11-14 . 1C0B5D8A0A0F4614F032751E418E87E1 . 1130496 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.1.8112.20637_none_c260feeef8d7a8e4\wininet.dll
[-] 2013-10-13 . C36E38AD3C7FAFF0E30C4CBCB28CE7FB . 1129472 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.1.8112.16520_none_c1db3009dfb83bc8\wininet.dll
.
[-] 2008-01-19 . B304D47D5744BA20FCB99FB8B2C07B0B . 179200 . . [6.0.6000.16386] . . c:\windows\System32\ws2_32.dll
[-] 2008-01-19 . B304D47D5744BA20FCB99FB8B2C07B0B . 179200 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
[-] 2006-11-02 . D99A071C1018BB3D4ABAAD4B62048AC2 . 178688 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll
.
[-] 2006-11-02 . 17C0671BF57057108A6D949510EE42C8 . 4608 . . [6.0.6000.16386] . . c:\windows\System32\ws2help.dll
[-] 2006-11-02 . 17C0671BF57057108A6D949510EE42C8 . 4608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.0.6000.16386_none_024e4071fa6fea95\ws2help.dll
.
[-] 2009-04-11 . D07D4C3038F3578FFCE1C0237F2A1253 . 2926592 . . [6.0.6000.16386] . . c:\windows\explorer.exe
[-] 2009-04-11 . D07D4C3038F3578FFCE1C0237F2A1253 . 2926592 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[-] 2008-10-30 . 50BA5850147410CDE89C523AD3BC606E . 2927616 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[-] 2008-10-29 . 4F554999D7D5F05DAAEBBA7B5BA1089D . 2927104 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
.
[-] 2008-01-19 . 467A3B03E924B7B7EDD16D34740574B0 . 134656 . . [6.0.6000.16386] . . c:\windows\regedit.exe
[-] 2008-01-19 . 467A3B03E924B7B7EDD16D34740574B0 . 134656 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-registry-editor_31bf3856ad364e35_6.0.6001.18000_none_f42eb564dbd8a697\regedit.exe
[-] 2006-11-02 . F13123E76FDA33E55F11E0EB832E832A . 134656 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-registry-editor_31bf3856ad364e35_6.0.6000.16386_none_f1f7f368deed95c3\regedit.exe
.
[-] 2010-06-28 . 7C6F74A11FCF5745B36CB8085B7DE3FB . 1316864 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.22433_none_ae70528d08aae434\ole32.dll
[-] 2010-06-28 . 9586E7CB2255A8B097A7E4538202585E . 1316864 . . [6.0.6000.16386] . . c:\windows\System32\ole32.dll
[-] 2010-06-28 . 9586E7CB2255A8B097A7E4538202585E . 1316864 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18277_none_adbf7553efaa1c63\ole32.dll
[-] 2010-06-28 . 64A319477AF21806B8A17E8A3A3FF8BC . 1315840 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.22720_none_ac91afb30b7f271a\ole32.dll
.
[-] 2010-04-16 . E609A492AD596187CEA24E8418FF082F . 502784 . . [1.0626.6002.22384] . . c:\windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.0.6002.22384_none_af1813076efd8bc3\usp10.dll
[-] 2010-04-16 . 80FFF14F1757B9AF8BE9D314FC1AE88B . 502272 . . [1.0626.6002.18244] . . c:\windows\System32\usp10.dll
[-] 2010-04-16 . 80FFF14F1757B9AF8BE9D314FC1AE88B . 502272 . . [1.0626.6002.18244] . . c:\windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.0.6002.18244_none_aeb9b5ec55bf7c35\usp10.dll
[-] 2010-04-16 . 8CB1162DD3586683D71BCB303C1FF54F . 502272 . . [1.0626.6001.22672] . . c:\windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.0.6001.22672_none_ad3a707771d0e800\usp10.dll
.
[-] 2006-11-02 . 919CC2A0476D5A6A4C935D4B88E29912 . 4608 . . [6.0.6000.16386] . . c:\windows\System32\ksuser.dll
[-] 2006-11-02 . 919CC2A0476D5A6A4C935D4B88E29912 . 4608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-d..tshow-kernelsupport_31bf3856ad364e35_6.0.6000.16386_none_e5cada609a6133bd\ksuser.dll
[-] 2006-11-02 . 919CC2A0476D5A6A4C935D4B88E29912 . 4608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-d..tshow-kernelsupport_31bf3856ad364e35_6.0.6001.18000_none_e8019c5c974c4491\ksuser.dll
.
[-] 2006-11-02 . 22BFD03DF51065A9ED8D17F8FB72296B . 8704 . . [6.0.6000.16386] . . c:\windows\System32\ctfmon.exe
[-] 2006-11-02 . 22BFD03DF51065A9ED8D17F8FB72296B . 8704 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.0.6000.16386_none_9af9cad793a67953\ctfmon.exe
.
[-] 2009-07-10 . 1E3FDB80E40A3CE645F229DFBDFB7694 . 247808 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6001.18287_none_cce0e39c1d282219\shsvcs.dll
[-] 2009-07-10 . 94285A002D2826D2FD1C0806455136E9 . 245760 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6000.16883_none_caf6a3ce20052bcc\shsvcs.dll
[-] 2009-07-10 . 6898575E052CE7CB1CB87622EF187CDA . 245760 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6000.21081_none_cb7e18273924cc2a\shsvcs.dll
[-] 2009-07-10 . 6669714ACE90E9BB4E8C1D550C67B160 . 247808 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.0.6001.22467_none_cd80222536358728\shsvcs.dll
.
[-] 2006-11-02 . 2EC53B5A351C4D443896DBAD117F7E82 . 4608 . . [6.0.6000.16386] . . c:\windows\System32\msimg32.dll
[-] 2006-11-02 . 2EC53B5A351C4D443896DBAD117F7E82 . 4608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-gdi-painting_31bf3856ad364e35_6.0.6000.16386_none_7535161f1f2100ed\msimg32.dll
.
[-] 2006-11-02 . 7F15B4953378C8B5161D65C26D5FED4D . 11776 . . [6.0.6000.16386] . . c:\windows\System32\cngaudit.dll
[-] 2006-11-02 . 7F15B4953378C8B5161D65C26D5FED4D . 11776 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
.
[-] 2008-01-19 . 101BA3EA053480BB5D957EF37C06B5ED . 96768 . . [6.0.6000.16386] . . c:\windows\System32\wininit.exe
[-] 2008-01-19 . 101BA3EA053480BB5D957EF37C06B5ED . 96768 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe
[-] 2006-11-02 . D4385B03E8CCCEE6F0EE249F827C1F3E . 95744 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6000.16386_none_2ebbf6d3076595ce\wininit.exe
.
[-] 2009-04-11 . 9E6894EA18DAFF37B63E1005F83AE4AB . 107008 . . [6.0.6000.16386] . . c:\windows\System32\regsvc.dll
[-] 2009-04-11 . 9E6894EA18DAFF37B63E1005F83AE4AB . 107008 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-remoteregistry-service_31bf3856ad364e35_6.0.6002.18005_none_8b517ec580991c4d\regsvc.dll
[-] 2008-01-19 . CC4E32400F3C7253400CF8F3F3A0B676 . 106496 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-remoteregistry-service_31bf3856ad364e35_6.0.6001.18000_none_896605b983775101\regsvc.dll
[-] 2006-11-02 . 9A043808667C8C1893DA7275AF373F0E . 105984 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-remoteregistry-service_31bf3856ad364e35_6.0.6000.16386_none_872f43bd868c402d\regsvc.dll
.
[-] 2010-11-06 . 7B587B8A6D4A99F79D2902D0385F29BD . 603648 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.0.6001.18551_none_2ecc18bd972a0f87\schedsvc.dll
[-] 2010-11-05 . 4B71C228530440F853F9C30E308F00E9 . 604672 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.0.6001.22791_none_2f2a77beb0681c3c\schedsvc.dll
[-] 2010-11-05 . 38AE0400578FD396628F21A571473A3B . 602112 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.0.6002.22519_none_316f6d3cad4659b7\schedsvc.dll
[-] 2010-11-04 . 1A58069DB21D05EB2AB58EE5753EBE8D . 601600 . . [6.0.6001.18000] . . c:\windows\System32\schedsvc.dll
.
[-] 2008-01-19 . 03D50B37234967433A5EA5BA72BC0B62 . 155648 . . [6.0.6000.16386] . . c:\windows\System32\ssdpsrv.dll
[-] 2008-01-19 . 03D50B37234967433A5EA5BA72BC0B62 . 155648 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-upnpssdp_31bf3856ad364e35_6.0.6001.18000_none_7fc972ebd13849b5\ssdpsrv.dll
[-] 2006-11-02 . 8D3E4BAFF8B3997138C38EB1B600519A . 155136 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-upnpssdp_31bf3856ad364e35_6.0.6000.16386_none_7d92b0efd44d38e1\ssdpsrv.dll
.
[-] 2009-04-11 . BB95DA09BEF6E7A131BFF3BA5032090D . 449024 . . [6.0.6001.18000] . . c:\windows\System32\termsrv.dll
[-] 2009-04-11 . BB95DA09BEF6E7A131BFF3BA5032090D . 449024 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_908abad45165e2ae\termsrv.dll
[-] 2008-01-19 . D605031E225AACCBCEB5B76A4F1603A6 . 448512 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6001.18000_none_8e9f41c854441762\termsrv.dll
[-] 2006-11-02 . FAD71C1E8E4047B154E899AE31EB8CAA . 427520 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6000.16386_none_8c687fcc5759068e\termsrv.dll
.
[-] 2008-01-19 . A952D0DED445F26AEFCF593A935AB300 . 289792 . . [6.0.6000.16386] . . c:\windows\System32\hnetcfg.dll
[-] 2008-01-19 . A952D0DED445F26AEFCF593A935AB300 . 289792 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-i..ectionsharingconfig_31bf3856ad364e35_6.0.6001.18000_none_b03645b494998691\hnetcfg.dll
[-] 2006-11-02 . 312BA286EB3BE9EAE82DA427ED2C0284 . 291840 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-i..ectionsharingconfig_31bf3856ad364e35_6.0.6000.16386_none_adff83b897ae75bd\hnetcfg.dll
.
[7] 2008-01-19 . 13F9E33747E6B41A3FF305C37DB0D360 . 56376 . . [6.0.6001.18000] . . c:\windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[7] 2008-01-19 . 13F9E33747E6B41A3FF305C37DB0D360 . 56376 . . [6.0.6001.18000] . . c:\windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[7] 2008-01-19 . 13F9E33747E6B41A3FF305C37DB0D360 . 56376 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[7] 2008-01-19 . 13F9E33747E6B41A3FF305C37DB0D360 . 56376 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[7] 2006-11-02 . EF23439CDD587F64C2C1B8825CEAD7D8 . 53864 . . [6.0.6000.16386] . . c:\windows\System32\drivers\AGP440.sys
[7] 2006-11-02 . EF23439CDD587F64C2C1B8825CEAD7D8 . 53864 . . [6.0.6000.16386] . . c:\windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
.
[-] 2008-01-19 . 7A5F8218325F00396DAEA2F985FA0ECB . 18944 . . [6.0.6001.18000] . . c:\windows\System32\ias.dll
[-] 2008-01-19 . 7A5F8218325F00396DAEA2F985FA0ECB . 18944 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-n..ion_service_runtime_31bf3856ad364e35_6.0.6001.18000_none_f900daa442864318\ias.dll
[-] 2008-01-19 . 7A5F8218325F00396DAEA2F985FA0ECB . 18944 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-n..ion_service_runtime_31bf3856ad364e35_6.0.6002.18005_none_faec53b03fa80e64\ias.dll
[-] 2006-11-02 . D7657856319941907BBDC2A11713CFD7 . 17408 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-n..ion_service_runtime_31bf3856ad364e35_6.0.6000.16386_none_f6ca18a8459b3244\ias.dll
.
[-] 2010-08-31 16:49 . 5E9F187AC6BADB58C21C4E3A18DD1F62 . 954288 . . [4.1.6151] . . c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.0.6002.22478_none_f53f7ef86c05abb0\mfc40u.dll
[-] 2010-08-31 15:46 . 2A64FE405579BB073FBABD68AF1468E7 . 954288 . . [4.1.6140] . . c:\windows\System32\mfc40u.dll
[-] 2010-08-31 15:46 . 2A64FE405579BB073FBABD68AF1468E7 . 954288 . . [4.1.6151] . . c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.0.6002.18305_none_f4fe90c352b1fc4a\mfc40u.dll
[-] 2010-08-31 15:41 . 13D0F7769927B74782CB59D8CCEF9E10 . 954288 . . [4.1.6151] . . c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.0.6001.18523_none_f3007c89559daf33\mfc40u.dll
.
[7] 2013-07-08 . 61E5B6E75A5E53D1052A6D18BF67B59A . 3603904 . . [6.0.6002.18881] . . c:\windows\System32\ntkrnlpa.exe
[7] 2013-07-08 . 61E5B6E75A5E53D1052A6D18BF67B59A . 3603904 . . [6.0.6002.18881] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18881_none_6dc16954b1894118\ntkrnlpa.exe
[7] 2013-07-08 . CE2466933B82987F7079E8B45FDD5F02 . 3606976 . . [6.0.6002.23154] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23154_none_6e6e50c9ca8c097d\ntkrnlpa.exe
[7] 2013-05-02 . 676E135282E6A9AED75C7C488CA02DE8 . 3603832 . . [6.0.6002.18832] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18832_none_6df8793ab15fceba\ntkrnlpa.exe
[7] 2013-05-02 . B21C0CF6F41692CBBBD529A6F62BCD5D . 3606392 . . [6.0.6002.23103] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23103_none_6ea3601bca646471\ntkrnlpa.exe
[7] 2013-03-11 . 21870BAB9C9B802AC641DD644708BDE4 . 3603816 . . [6.0.6002.18805] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18805_none_6e1be9dcb144c6ec\ntkrnlpa.exe
[7] 2013-03-11 . A3D98D9C23850B1EF966E005E7845397 . 3606904 . . [6.0.6002.23076] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23076_none_6e5aaf9fca9a76e6\ntkrnlpa.exe
[7] 2013-01-22 . 490BDB5E56352494E699FBA870045EC7 . 3604328 . . [6.0.6002.23025] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23025_none_6e8fbef1ca72d1da\ntkrnlpa.exe
[7] 2013-01-05 . E185428925DBC53CE59B2A5CBA64B837 . 3602808 . . [6.0.6002.18765] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18765_none_6ddb086eb175716b\ntkrnlpa.exe
[7] 2012-08-29 . 0802CFF50B3020D49884195DC065CF20 . 3604352 . . [6.0.6002.22920] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22920_none_6e8ae55dca771fe5\ntkrnlpa.exe
[7] 2012-08-29 . 244C631BE2F7F36EAD9DDAEED95AA298 . 3602816 . . [6.0.6002.18686] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18686_none_6dc666fab184c57d\ntkrnlpa.exe
[7] 2012-04-03 . CAD95AFB7FDDCC490681555C570FBB7D . 3602816 . . [6.0.6002.18607] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18607_none_6e1de6a4b142ff4c\ntkrnlpa.exe
[7] 2012-04-03 . BEF3218359377715B1D85D7DF823E123 . 3604352 . . [6.0.6002.22831] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22831_none_6e8113d5ca7e5806\ntkrnlpa.exe
[7] 2012-03-06 . 67FB74F129CD6EB6A299B232B09F2FD8 . 3602816 . . [6.0.6002.18595] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18595_none_6dba94deb18dcaf0\ntkrnlpa.exe
[7] 2012-03-06 . 67C80F4BEF37E4F40AC38BBE6BCC6198 . 3603840 . . [6.0.6002.22811] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22811_none_6e96b3adca6e2024\ntkrnlpa.exe
[7] 2010-10-15 . 950C425C9E1FA4DDEC8A6B7915E3D892 . 3600272 . . [6.0.6001.18538] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18538_none_6c17fdaab43422b6\ntkrnlpa.exe
[7] 2010-10-15 . C391DF1007E54B1FE06A4EF02DB6FA61 . 3602320 . . [6.0.6002.18327] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18327_none_6e08411ab1533fb9\ntkrnlpa.exe
[7] 2010-10-15 . 3BEF21D45A74AD2C6EAD894BA6C6A502 . 3602832 . . [6.0.6001.22777] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22777_none_6c755c61cd731614\ntkrnlpa.exe
[7] 2010-10-15 . FEB9209E1D2B97DB4AE8FBF1DB0F54B6 . 3603856 . . [6.0.6002.22505] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22505_none_6ea57f0fca62721a\ntkrnlpa.exe
[7] 2010-06-08 . 3FAFA4C0567D205F56C15D8B9D469F9D . 3601792 . . [6.0.6002.22420] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22420_none_6e8adbdfca772e22\ntkrnlpa.exe
[7] 2010-06-08 . E3A2697835A14C75B233606357AB46DD . 3600768 . . [6.0.6002.18267] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18267_none_6ddcff84b173b256\ntkrnlpa.exe
[7] 2010-06-08 . 4F332C0A64F4209EB322DB35310BA879 . 3598216 . . [6.0.6001.18488] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18488_none_6be1ec28b45cb144\ntkrnlpa.exe
[7] 2010-06-08 . 560C7E5036D6D0F9CC4AED5DE885DB8A . 3600784 . . [6.0.6001.22707] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22707_none_6cc10bd5cd3a527d\ntkrnlpa.exe
[7] 2010-02-18 . AF2FC3FE3AD6860A808B237171BA6EED . 3600776 . . [6.0.6001.22636] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22636_none_6c9f99e1cd538fd2\ntkrnlpa.exe
[7] 2010-02-18 . D8077969EE22B889B793D076FDCA7066 . 3502480 . . [6.0.6000.17021] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.17021_none_6a356140b70bfd67\ntkrnlpa.exe
[7] 2010-02-18 . C2334AE54E10BCA2631660F649010B03 . 3598216 . . [6.0.6001.18427] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18427_none_6c21cb66b42cf047\ntkrnlpa.exe
[7] 2010-02-18 . 642161C66547496ACCD2794AB6B4284F . 3504008 . . [6.0.6000.21226] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21226_none_6ac40163d025190b\ntkrnlpa.exe
[7] 2010-02-18 . 1FED62B16D372E169CF355B2F3210A65 . 3601800 . . [6.0.6002.22341] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22341_none_6e763a6bca868234\ntkrnlpa.exe
[7] 2010-02-18 . 8BBC454D2F91D92E3E73DB5B5A0D8D8E . 3600776 . . [6.0.6002.18209] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18209_none_6e1fdfa0b1413d5e\ntkrnlpa.exe
[7] 2009-12-08 . D2859DAE5F6730DF5BF1C25CFC376797 . 3503704 . . [6.0.6000.21175] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntkrnlpa.exe
[7] 2009-12-08 . 84D47D16C6E7FB61D3A2F7738838A57B . 3502168 . . [6.0.6000.16973] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntkrnlpa.exe
[7] 2009-12-08 . C89111B0489D5CF7B14CBDB5D225A88F . 3597912 . . [6.0.6001.18377] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntkrnlpa.exe
[7] 2009-12-08 . 4A65C0C8743AD660A9DE8C2B68218FC7 . 3600472 . . [6.0.6001.22577] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntkrnlpa.exe
[7] 2009-12-08 . C481B4F271D3D234B93E19F5531D1D55 . 3601464 . . [6.0.6002.22283] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntkrnlpa.exe
[7] 2009-12-08 . 735CDD610B7A0E7B5C6A153DD45ECE32 . 3600456 . . [6.0.6002.18160] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntkrnlpa.exe
[7] 2009-08-05 . 2E6E7BA5C8764F80ADA7D4C98E8B5D4A . 3599960 . . [6.0.6001.22489] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntkrnlpa.exe
[7] 2009-08-05 . FF493ACD34EE896B8D114918439FAF10 . 3502152 . . [6.0.6000.16901] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntkrnlpa.exe
[7] 2009-08-05 . FBA1B3594C1F691F1FA917ADE45D1DB5 . 3597896 . . [6.0.6001.18304] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntkrnlpa.exe
[7] 2009-08-05 . 5FBCBEBDC19FB9A3F9C102D30FCD1E9E . 3599928 . . [6.0.6002.22191] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntkrnlpa.exe
[7] 2009-08-05 . 6AD406205B25DC4EFBBCB044744248AD . 3503688 . . [6.0.6000.21101] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntkrnlpa.exe
[7] 2009-08-04 . 0517782FC7FEDBEBFAD15566E75B732F . 3600456 . . [6.0.6002.18082] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntkrnlpa.exe
[7] 2009-04-11 . 1260BEACF2F023807A1087BBB0E15BBD . 3601896 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntkrnlpa.exe
[7] 2009-03-03 . FEB3FB3309EBA85917BDE7F4FD019C9D . 3599328 . . [6.0.6001.18226] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntkrnlpa.exe
[7] 2009-03-03 . 641C0F376136E5B6F389016EC48374D2 . 3600880 . . [6.0.6001.22389] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntkrnlpa.exe
[7] 2009-03-03 . 06BCF21AAA1890328D1F58F0ACBE668D . 3503584 . . [6.0.6000.16830] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntkrnlpa.exe
[7] 2009-03-03 . 191C702B48681FB2BA5A96F416207ACF . 3505120 . . [6.0.6000.21023] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntkrnlpa.exe
[7] 2008-09-18 . 3EB08788832D9048C617559CEFD208CF . 3601464 . . [6.0.6001.18145] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18145_none_6c0a2548b43efe06\ntkrnlpa.exe
[7] 2008-09-18 . DC870DCAA25E5CC1C8A50FAC19CCED45 . 3601976 . . [6.0.6001.22269] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22269_none_6c822363cd693b0e\ntkrnlpa.exe
[7] 2008-09-18 . E67F6247029F6311E643532D2CFFE667 . 3505208 . . [6.0.6000.16754] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16754_none_6a18166cb7216faf\ntkrnlpa.exe
[7] 2008-09-18 . 084A3A26A3D1A75D0705D963C0289DD5 . 3506744 . . [6.0.6000.20921] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20921_none_6abf2403d0296cc8\ntkrnlpa.exe
[7] 2008-04-26 . 6BB1994F5B62FEF6268F1EBB4014E293 . 3600952 . . [6.0.6001.18063] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntkrnlpa.exe
[7] 2008-04-26 . 68EEF02A8846442FE98AD0E0517EE6BC . 3601464 . . [6.0.6001.22167] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntkrnlpa.exe
[7] 2008-02-18 . A676D072FF3967821EC292F5C885A32D . 3504824 . . [6.0.6000.16551] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16551_none_6a1511c2b724295c\ntkrnlpa.exe
[7] 2008-02-18 . 99AC9F5573F9376970A82D77731BE62A . 3504824 . . [6.0.6000.20670] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20670_none_6a880e6bd052e7b1\ntkrnlpa.exe
[7] 2008-02-18 . 0BE027340C32D14ABECDA068E45E532A . 3504696 . . [6.0.6000.16584] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16584_none_69f7a2dcb739c934\ntkrnlpa.exe
[7] 2008-02-18 . 4821AB9F49B32CC17887AE861895826E . 3505720 . . [6.0.6000.20707] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20707_none_6adac1cbd013d2a2\ntkrnlpa.exe
[7] 2008-02-18 . 7B3DE8F172BD5BA3842237088595E0DD . 3504824 . . [6.0.6000.16575] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16575_none_6a037312b730c69a\ntkrnlpa.exe
[7] 2008-02-18 . 0BDCA5C80ED74AD207EEC0535D2AF508 . 3505848 . . [6.0.6000.20697] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20697_none_6a797099d05cd0f4\ntkrnlpa.exe
[7] 2008-01-19 . FE51E8DBBEF2D01EF886499FECBF2D78 . 3600440 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntkrnlpa.exe
[7] 2007-11-27 . A59C7EA8F866BA9EBE06CB57F01FA5E1 . 3504824 . . [6.0.6000.20629] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20629_none_6ac720a1d022400b\ntkrnlpa.exe
[7] 2007-11-27 . B0315AAB99CA2CF6576E68465B3AC554 . 3504824 . . [6.0.6000.16514] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16514_none_6a435250b701059d\ntkrnlpa.exe
[7] 2007-11-27 . A8147A1CC43F032CC3344F3E5CECC3C3 . 3504312 . . [6.0.6000.20591] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20591_none_6a736cf7d0623bc3\ntkrnlpa.exe
[7] 2006-11-02 . CADAA2FCB7F3D18BE056A34D84EE2CA1 . 3502184 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16386_none_69f99fa4b7380194\ntkrnlpa.exe
.
[-] 2008-01-19 . 68308183F4AE0BE7BF8ECD07CB297999 . 259072 . . [6.0.6000.16386] . . c:\windows\System32\upnphost.dll
[-] 2008-01-19 . 68308183F4AE0BE7BF8ECD07CB297999 . 259072 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-upnpdevicehost_31bf3856ad364e35_6.0.6001.18000_none_c1e834753483fdcf\upnphost.dll
[-] 2006-11-02 . 8EB871A3DEB6B3D5A85EB6DDFC390B59 . 259072 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-upnpdevicehost_31bf3856ad364e35_6.0.6000.16386_none_bfb172793798ecfb\upnphost.dll
.
[-] 2009-04-11 . 84B8827562B005C118CADBA0F25DB2C6 . 444416 . . [6.0.6000.16386] . . c:\windows\System32\dsound.dll
[-] 2009-04-11 . 84B8827562B005C118CADBA0F25DB2C6 . 444416 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-audio-dsound_31bf3856ad364e35_6.0.6002.18005_none_5a8737643f04aa4c\dsound.dll
[-] 2008-01-19 . 8A7B8DA5CA558D2DE47086BB23556543 . 444416 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-audio-dsound_31bf3856ad364e35_6.0.6001.18000_none_589bbe5841e2df00\dsound.dll
[-] 2006-11-02 . 68AC082734363E6BA813E7EAA353DB13 . 445440 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-audio-dsound_31bf3856ad364e35_6.0.6000.16386_none_5664fc5c44f7ce2c\dsound.dll
.
[-] 2009-04-11 . 8AAEEE8E59A70F37579993D118A34EE0 . 1788416 . . [6.0.6002.18005] . . c:\windows\System32\d3d9.dll
[-] 2009-04-11 . 8AAEEE8E59A70F37579993D118A34EE0 . 1788416 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-directx-direct3d9_31bf3856ad364e35_6.0.6002.18005_none_c438e5b15de80145\d3d9.dll
[-] 2008-01-19 . FAB8F08EC64A54917C07BDB6DC811C95 . 1788928 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-directx-direct3d9_31bf3856ad364e35_6.0.6001.18000_none_c24d6ca560c635f9\d3d9.dll
[-] 2006-11-02 . E72A22DCF0733AC06695ACD2268F6EB3 . 1788416 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-directx-direct3d9_31bf3856ad364e35_6.0.6000.16386_none_c016aaa963db2525\d3d9.dll
.
[-] 2008-01-19 . FA2A3AFADC4FB47DBC234A4E57F92CDB . 522752 . . [6.0.6000.16386] . . c:\windows\System32\ddraw.dll
[-] 2008-01-19 . FA2A3AFADC4FB47DBC234A4E57F92CDB . 522752 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-directx-directdraw_31bf3856ad364e35_6.0.6001.18000_none_0505a2ecc0013ebd\ddraw.dll
[-] 2006-11-02 . 29EF7A2EE634DD701571E781DE5E7E91 . 528384 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-directx-directdraw_31bf3856ad364e35_6.0.6000.16386_none_02cee0f0c3162de9\ddraw.dll
.
[-] 2009-04-11 06:28 . A944A73CEC5921B871542FE5CC5E03E4 . 88576 . . [6.0.6002.18005] . . c:\windows\System32\olepro32.dll
[-] 2009-04-11 06:28 . A944A73CEC5921B871542FE5CC5E03E4 . 88576 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.0.6002.18005_none_3bff339efed611ca\olepro32.dll
[-] 2008-01-19 07:36 . AE70AE6F0760793D4893C3735EEC7292 . 88576 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.0.6001.18000_none_3a13ba9301b4467e\olepro32.dll
[-] 2006-11-02 09:46 . DF54915B3DD106854F18C678BEB2977D . 88576 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.0.6000.16386_none_37dcf89704c935aa\olepro32.dll
.
[-] 2006-11-02 . BA7C3E9DD6B1A632124C8659E8014028 . 39424 . . [6.0.6000.16386] . . c:\windows\System32\perfctrs.dll
[-] 2006-11-02 . BA7C3E9DD6B1A632124C8659E8014028 . 39424 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-p..ormancebasecounters_31bf3856ad364e35_6.0.6000.16386_none_2f3c7bc7602ec1c4\perfctrs.dll
[-] 2006-11-02 . BA7C3E9DD6B1A632124C8659E8014028 . 39424 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-p..ormancebasecounters_31bf3856ad364e35_6.0.6001.18000_none_31733dc35d19d298\perfctrs.dll
[-] 2006-11-02 . BA7C3E9DD6B1A632124C8659E8014028 . 39424 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-p..ormancebasecounters_31bf3856ad364e35_6.0.6002.18005_none_335eb6cf5a3b9de4\perfctrs.dll
.
[-] 2009-04-11 . 69827805A221C21450BA22F4326A2EE3 . 20480 . . [6.0.6002.18005] . . c:\windows\System32\version.dll
[-] 2009-04-11 . 69827805A221C21450BA22F4326A2EE3 . 20480 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-version_31bf3856ad364e35_6.0.6002.18005_none_16e9c83b4e078740\version.dll
[-] 2008-01-19 . 187D588F7A1A45DE48B8540401A90850 . 20480 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-version_31bf3856ad364e35_6.0.6001.18000_none_14fe4f2f50e5bbf4\version.dll
[-] 2006-11-02 . D8C819157EBA10401FD25FB48184EF24 . 20480 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-version_31bf3856ad364e35_6.0.6000.16386_none_12c78d3353faab20\version.dll
.
[7] 2013-11-14 . FA58195587EC371699D9641C3E275856 . 757488 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20637_none_592e67cb04ca5ed2\iexplore.exe
[7] 2013-11-14 . 43E6F2A7FB182F2D7CB0CE5B8F1005CF . 757488 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16526_none_58ae9aa1eba589c0\iexplore.exe
[7] 2013-10-13 . 06085B62BC7E0C8E2605CEA38774D956 . 757488 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16520_none_58a898e5ebaaf1b6\iexplore.exe
[7] 2013-10-13 . 2D64E29ADB5DEB40446796A9C42417E3 . 757488 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20631_none_5928660f04cfc6c8\iexplore.exe
[7] 2013-09-22 . F87E95A127E83277B9AE500D7A18C998 . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20625_none_5937372304c41033\iexplore.exe
[7] 2013-09-22 . 45BDA923BE52906D1460BCB13AC2AB7A . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16514_none_58b769f9eb9f3b21\iexplore.exe
[7] 2013-07-31 . AA9CBDCD4675A48755DDA3A73BE3E283 . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16506_none_58c43a79eb9551de\iexplore.exe
[7] 2013-07-31 . 10C1F2EC48D524AE10229AACD37B172A . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20617_none_594407a304ba26f0\iexplore.exe
[7] 2013-07-25 . 139C8953AC56A9E559C7DEF07BC45ED7 . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20613_none_5940067b04bdc194\iexplore.exe
[7] 2013-07-25 . 57EC630DBD5F0713E77CB3540AB80A8E . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16502_none_58c03951eb98ec82\iexplore.exe
[7] 2013-05-29 . 33E62E4EFC2ACA8EC63A8926F26D3889 . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20606_none_594dd74504b2f1a8\iexplore.exe
[7] 2013-05-29 . EE12BA876C4190532A4085994BA9B616 . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16496_none_5862e947ebde5030\iexplore.exe
[7] 2013-05-16 . 67EE46FD4D3B56531C5DD1BDC149275A . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16490_none_585ce78bebe3b826\iexplore.exe
[7] 2013-05-16 . A8732CEDB2C0EE7AFC08F867A47BB3EC . 757400 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20600_none_5947d58904b8599e\iexplore.exe
[7] 2013-04-04 . 3F00BE80B9CEA20B7FE7363D15EDDB94 . 757360 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16483_none_586ab855ebd8e83a\iexplore.exe
[7] 2013-04-04 . C036AB1ED8BAC04FE4A349BA263077BB . 757360 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20593_none_58e9853504fea3f5\iexplore.exe
[7] 2013-02-22 . 4145E2B5663F6FACC08EFDB17B658BB2 . 757360 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20586_none_58f755ff04f3d409\iexplore.exe
[7] 2013-02-22 . 32732CEDE2A1106B736EF3D84054EE04 . 757376 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16476_none_5878891febce184e\iexplore.exe
[7] 2013-02-02 . DDE5A0DFAF7C6370FB36402D7A746ED3 . 757296 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16470_none_58728763ebd38044\iexplore.exe
[7] 2013-02-02 . A285E1965C115031DA02B777EE9D7689 . 757280 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20580_none_58f1544304f93bff\iexplore.exe
[7] 2013-01-08 . 698EB1E5F8C66344D97C00B5699E871D . 757280 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16464_none_58815877ebc7c9af\iexplore.exe
[7] 2013-01-08 . F05982E56ABD835AA8DF260EEC873E5B . 757280 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20573_none_58ff250d04ee6c13\iexplore.exe
[7] 2012-11-14 . 0D286C0FE561D1A7EB30E83A0FF305B2 . 757296 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16457_none_588f2941ebbcf9c3\iexplore.exe
[7] 2012-11-14 . F691418EE9A6344AEB5C1B0518FBF8AE . 757280 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20565_none_590bf58d04e482d0\iexplore.exe
[7] 2012-10-08 . 270A1342BD5AF95CA25A586B4C2F1522 . 748704 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16455_none_588d28adebbec715\iexplore.exe
[7] 2012-10-08 . CECB15F834FC2B4B150449717ADE18DD . 748704 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20562_none_5908f4af04e736cb\iexplore.exe
[7] 2012-09-19 . 93569D46D79F9756ED077156496AFE23 . 748664 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16448_none_589af977ebb3f729\iexplore.exe
[7] 2012-08-24 . 62188720CE27B982B4285C03163C9FB3 . 748680 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.20557_none_5918c60d04da998d\iexplore.exe
[7] 2012-08-24 . 22CC6CDBA678790046693654C3B212E4 . 748680 . . [9.00.8112.16421] . . c:\windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.1.8112.16450_none_5888273bebc34862\iexplore.exe
[7] 2012-06-28 . CE4945834BFE91AF301FA829E3E8A7AA . 638048 . . [8.00.6001.23385] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23385_none_128320664925e45b\iexplore.exe
[7] 2012-06-28 . 7BC18656CCDD305665D3D7FAA283744A . 638048 . . [8.00.6001.19298] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19298_none_11f1b48d300dac87\iexplore.exe
[7] 2011-05-28 . 7EE10C5413AD7ED1AF9E8FAE1B58FC3E . 638232 . . [8.00.6001.23181] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23181_none_127f1b72492984b1\iexplore.exe
[7] 2011-05-28 . ED65737D70FDEAC29F738E77D2496EE5 . 638232 . . [8.00.6001.19088] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19088_none_11fc80ad30059648\iexplore.exe
[7] 2011-02-22 . 9CE5543464432CA73134F170FA2BF823 . 638232 . . [8.00.6001.23143] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23143_none_12ac5bb64907479b\iexplore.exe
[7] 2011-02-22 . C1D36A2CBE0CEC4DF593DB1288CF586E . 638232 . . [8.00.6001.19048] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19048_none_1227c05d2fe52684\iexplore.exe
[7] 2010-12-18 . 7852371DA9EFBC17B645558E23780EAC . 638232 . . [8.00.6001.23111] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23111_none_12cacae648f0c11a\iexplore.exe
[7] 2010-12-18 . B988D7F127B94BD5BF8356FE81B985C4 . 638232 . . [8.00.6001.19019] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19019_none_1249306b2fcbec08\iexplore.exe
[7] 2010-11-02 . 92A17B0A89D14815AACC62CD190B6CE3 . 638232 . . [8.00.6001.23091] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23091_none_127449a04931a37b\iexplore.exe
[7] 2010-11-02 . 5AB037B17F8A87D052F5A88E0D29A3C8 . 638232 . . [8.00.6001.18999] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18999_none_11f2d8e9300c984e\iexplore.exe
[7] 2010-09-08 . 4A719476A6393B1DCACFEB4F3AC6599C . 638232 . . [8.00.6001.23067] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23067_none_129abb204913e7b2\iexplore.exe
[7] 2010-09-08 . D5A730DFDEAE005373E62BC2A866E3BB . 638232 . . [8.00.6001.18975] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18975_none_120477992ffffb10\iexplore.exe
[7] 2010-06-26 . F05B3A2C6CB319DD1377AD566CF5ECE5 . 638232 . . [8.00.6001.23040] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23040_none_12a958f24909fe6f\iexplore.exe
[7] 2010-06-26 . 7420BE0E7D3D1320054F7ACA0594953D . 638232 . . [8.00.6001.18943] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18943_none_1222e6c92fe9748f\iexplore.exe
[7] 2010-05-04 . 48A6109E8DF0365195298CC527B7426A . 638232 . . [8.00.6001.23019] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23019_none_12d2cb5048e98eab\iexplore.exe
[7] 2010-05-04 . 5C9B1062EA7A44E8F6BFDE994B68C7AA . 638232 . . [8.00.6001.18928] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18928_none_123d88132fd4bb60\iexplore.exe
[7] 2010-02-23 . 25DB705A7DC85C208B3CF2D20F118AA7 . 638232 . . [8.00.6001.22995] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22995_none_127872a6492dd595\iexplore.exe
[7] 2010-02-23 . 9F52FBE99C749E3F32C75124F09F1B03 . 638232 . . [8.00.6001.18904] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18904_none_124f26c32fc81e22\iexplore.exe
[7] 2010-01-02 . 3D8DA00B028DEA9517066F1CECBFC4A2 . 638216 . . [8.00.6001.22973] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22973_none_128c11ea491f6b05\iexplore.exe
[7] 2010-01-02 . 88BD42DAE7CFFEB256CA7145A15E4843 . 638216 . . [8.00.6001.18882] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18882_none_11f6a4e9300acdd5\iexplore.exe
[7] 2009-11-21 . E7F8DF50E483D165BB01F367D3519AA7 . 638232 . . [8.00.6001.22956] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22956_none_12a4b2a0490c7f28\iexplore.exe
[7] 2009-11-21 . 1B6362BB14FCEB9E76BCF9A953B04788 . 638232 . . [8.00.6001.18865] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18865_none_120f459f2ff7e1f8\iexplore.exe
[7] 2009-08-27 . 7DD482E4A2E3CBB0A72F718C342F5B75 . 638216 . . [8.00.6001.22918] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22918_none_12d1f2e448ea4212\iexplore.exe
[7] 2009-08-27 . 2E48756F12C21F46895036AC089AAD97 . 638232 . . [8.00.6001.18828] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18828_none_123d862d2fd4be39\iexplore.exe
[7] 2009-07-22 . 4B5AEA50CE77FBA4C2D169622DC9B489 . 638232 . . [8.00.6001.22903] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22903_none_12d7c15e48e6a76e\iexplore.exe
[7] 2009-07-21 . C33BD196A0301F9B23D9A003D30ED8B0 . 638216 . . [8.00.6001.18813] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18813_none_124354a72fd12395\iexplore.exe
[7] 2009-04-24 . 1F44940EF1D07D0BDAF80E55853DFBD0 . 634648 . . [7.00.6000.16851] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16851_none_2d46b5dd1cff8f32\iexplore.exe
[7] 2009-04-24 . F294D8EEB05C835EC44A12CE0A1DFE7A . 634632 . . [7.00.6001.18248] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18248_none_2f3ec6751a17b593\iexplore.exe
[7] 2009-04-24 . D5271AC4A06AD9D1E2EA0151B79B2657 . 634648 . . [7.00.6000.21046] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21046_none_2ddffc283610c500\iexplore.exe
[7] 2009-04-24 . D6157423C117F24D24695866A1D0A93F . 634648 . . [7.00.6001.22418] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22418_none_2fe8d4ea331cfeb1\iexplore.exe
[7] 2009-04-11 . 2C5168C856455CC43C4B4E1CC1920001 . 636080 . . [7.00.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6002.18005_none_314d791517204c15\iexplore.exe
[7] 2009-03-08 . B60DDDD2D63CE41CB8C487FCFBB6419E . 638816 . . [8.00.6001.18702] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18702_none_124d22632fc9f126\iexplore.exe
[7] 2009-03-03 . 9E6C1527D9A2C64BFD780AA23075380F . 636072 . . [7.00.6001.18226] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18226_none_2f5265b91a094b03\iexplore.exe
[7] 2009-03-03 . 8BA2B7A05F88BE0D45237A0994AD8366 . 636072 . . [7.00.6001.22389] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22389_none_2f9e23da3354de78\iexplore.exe
[7] 2009-03-03 . EA4BE33726155F89D89A3FE7142878E0 . 636072 . . [7.00.6000.16830] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16830_none_2d5b556b1cf03df9\iexplore.exe
[7] 2009-03-03 . 1DD66A2851DACDEC32EAE8F9A8865ABD . 636072 . . [7.00.6000.21023] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21023_none_2df29b2236034119\iexplore.exe
[7] 2009-01-15 . F0B1CA517977BA2FF6DA33F1B966C488 . 634024 . . [7.00.6000.20996] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20996_none_2daa146a36391d73\iexplore.exe
[7] 2009-01-15 . 0844F5B9CB3BB85A917D347EF1565B6C . 634024 . . [7.00.6000.16809] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16809_none_2d84c7c91ccfce35\iexplore.exe
[7] 2008-10-16 . D762642A109433EEDCD332B0A9511137 . 634024 . . [7.00.6000.16764] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16764_none_2d3ee4e91d04fa01\iexplore.exe
[7] 2008-10-16 . 4CBA2F58668F2D5F3259CBE73E227F25 . 634024 . . [7.00.6000.20937] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20937_none_2debf43c36078f24\iexplore.exe
[7] 2008-10-02 . 19403B64906C9EAC627E3C10847B0FDA . 633632 . . [7.00.6000.16757] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16757_none_2d4cb5b31cfa2a15\iexplore.exe
[7] 2008-10-02 . 6655B851D9EEF7C83395EE52D551B448 . 633632 . . [7.00.6000.20927] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20927_none_2df6c42835ff7333\iexplore.exe
[-] 2008-06-27 . 157F8DE991396C536820D7FA5C8DCF7D . 625664 . . [7.00.6000.16711] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16711_none_2d71f3a71cdf2247\iexplore.exe
[-] 2008-06-27 . 4DBD95312B1C96C5285D38F1D748CD4D . 625664 . . [7.00.6000.20868] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20868_none_2dcc82dc361eff27\iexplore.exe
[-] 2008-04-25 . 07ED775D6DB4BFA96D7CFB09EB228418 . 625664 . . [7.00.6000.16681] . . c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16681_none_2d26424d1d17e8b7\iexplore.exe
.
[7] 2013-07-08 . CB284FC56D12BF5D2503CB75B03FD40A . 3551680 . . [6.0.6002.18881] . . c:\windows\System32\ntoskrnl.exe
[7] 2013-07-08 . CB284FC56D12BF5D2503CB75B03FD40A . 3551680 . . [6.0.6002.18881] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18881_none_6dc16954b1894118\ntoskrnl.exe
[7] 2013-07-08 . 32CB862046CF345C61121C93161BBE31 . 3555264 . . [6.0.6002.23154] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23154_none_6e6e50c9ca8c097d\ntoskrnl.exe
[7] 2013-05-02 . 8FD2F8EC87F45A3546B7A801F3D7DB35 . 3551096 . . [6.0.6002.18832] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18832_none_6df8793ab15fceba\ntoskrnl.exe
[7] 2013-05-02 . 2529332F2EFFC918724862C84C929AAA . 3555192 . . [6.0.6002.23103] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23103_none_6ea3601bca646471\ntoskrnl.exe
[7] 2013-03-11 . E31AE50AFB2A4AE804D016E02EE6BE10 . 3551080 . . [6.0.6002.18805] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18805_none_6e1be9dcb144c6ec\ntoskrnl.exe
[7] 2013-03-11 . E631B32BB66CD39392DA929BD77FFEBA . 3555192 . . [6.0.6002.23076] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23076_none_6e5aaf9fca9a76e6\ntoskrnl.exe
[7] 2013-01-22 . 7677206104D24CC75A7D4DA5926D749A . 3553128 . . [6.0.6002.23025] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.23025_none_6e8fbef1ca72d1da\ntoskrnl.exe
[7] 2013-01-05 . 691F1612558BF6B27F952C4B1073B0D1 . 3550072 . . [6.0.6002.18765] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18765_none_6ddb086eb175716b\ntoskrnl.exe
[7] 2012-08-29 . 4E7F06BA9E352E072AE0EDF3DB7B7462 . 3553152 . . [6.0.6002.22920] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22920_none_6e8ae55dca771fe5\ntoskrnl.exe
[7] 2012-08-29 . 0895557E35AE46729FFEFCB3906EBC69 . 3550080 . . [6.0.6002.18686] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18686_none_6dc666fab184c57d\ntoskrnl.exe
[7] 2012-04-03 . B9907DD4BE7B1B39573BF66554AB224E . 3552640 . . [6.0.6002.22831] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22831_none_6e8113d5ca7e5806\ntoskrnl.exe
[7] 2012-04-03 . BA4C485548914034B471EB6FC2B50082 . 3550080 . . [6.0.6002.18607] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18607_none_6e1de6a4b142ff4c\ntoskrnl.exe
[7] 2012-03-06 . D960F9E1FCA0C86387E806D9AED319FB . 3550080 . . [6.0.6002.18595] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18595_none_6dba94deb18dcaf0\ntoskrnl.exe
[7] 2012-03-06 . FEA4425645424D66DCCC6CD3F417A40D . 3552640 . . [6.0.6002.22811] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22811_none_6e96b3adca6e2024\ntoskrnl.exe
[7] 2010-10-15 . A573338BDCED710795C618EA5FCF48D5 . 3548048 . . [6.0.6001.18538] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18538_none_6c17fdaab43422b6\ntoskrnl.exe
[7] 2010-10-15 . 8B5EEAA99965E26C3FBB9FAC8BD3B6A1 . 3552144 . . [6.0.6002.22505] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22505_none_6ea57f0fca62721a\ntoskrnl.exe
[7] 2010-10-15 . F276ABE13DD0BA1024A42A443E47A4A2 . 3550608 . . [6.0.6001.22777] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22777_none_6c755c61cd731614\ntoskrnl.exe
[7] 2010-10-15 . 1ACD7FC485D0E0FF9097E08900D834CC . 3550096 . . [6.0.6002.18327] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18327_none_6e08411ab1533fb9\ntoskrnl.exe
[7] 2010-06-08 . C5AB434D0C8FA38EAD136FB29E2504B7 . 3550600 . . [6.0.6002.22420] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22420_none_6e8adbdfca772e22\ntoskrnl.exe
[7] 2010-06-08 . F2BEE482023F146CF85EBB15B9E1CD35 . 3548040 . . [6.0.6002.18267] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18267_none_6ddcff84b173b256\ntoskrnl.exe
[7] 2010-06-08 . D5FA5D17F03E6D39E1A12431DD6F2A39 . 3545992 . . [6.0.6001.18488] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18488_none_6be1ec28b45cb144\ntoskrnl.exe
[7] 2010-06-08 . 47DB9968B8CF2031C46007F42CCE2437 . 3548552 . . [6.0.6001.22707] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22707_none_6cc10bd5cd3a527d\ntoskrnl.exe
[7] 2010-02-18 . C5759C9345A06EE52C7F5ECCF685CA6D . 3548560 . . [6.0.6001.22636] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22636_none_6c9f99e1cd538fd2\ntoskrnl.exe
[7] 2010-02-18 . DC44BF78DEB87B7737D0D29B5B8EDAE3 . 3468168 . . [6.0.6000.17021] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.17021_none_6a356140b70bfd67\ntoskrnl.exe
[7] 2010-02-18 . 6025E5530E2C43E1983CC8B840DF2108 . 3545992 . . [6.0.6001.18427] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18427_none_6c21cb66b42cf047\ntoskrnl.exe
[7] 2010-02-18 . F8BEC470EAA8621751F739585C5871CD . 3470216 . . [6.0.6000.21226] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21226_none_6ac40163d025190b\ntoskrnl.exe
[7] 2010-02-18 . 31289DD6914686D088582EED4B43F826 . 3550088 . . [6.0.6002.22341] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22341_none_6e763a6bca868234\ntoskrnl.exe
[7] 2010-02-18 . A5D0B405442724448D23D61821BEA92A . 3548040 . . [6.0.6002.18209] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18209_none_6e1fdfa0b1413d5e\ntoskrnl.exe
[7] 2009-12-08 . 2972EEF8E834883EEC7C1995639341EF . 3469912 . . [6.0.6000.21175] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntoskrnl.exe
[7] 2009-12-08 . CD2EEBFA39E742C8C066CCE09382A19B . 3467848 . . [6.0.6000.16973] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntoskrnl.exe
[7] 2009-12-08 . 20D040ECE9A8F578D1D938256F34B663 . 3546200 . . [6.0.6001.18377] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntoskrnl.exe
[7] 2009-12-08 . D32E95B17477E183F6019A99BE799BA9 . 3548760 . . [6.0.6001.22577] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntoskrnl.exe
[7] 2009-12-08 . FB82B0147B7D93379B68F8A6A5828C70 . 3550264 . . [6.0.6002.22283] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntoskrnl.exe
[7] 2009-12-08 . 664CA09C523FAB9D01BE6C4028C1B58B . 3548216 . . [6.0.6002.18160] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntoskrnl.exe
[7] 2009-08-05 . 3EEEDCCFB587BCB0E2DE075332498C11 . 3547736 . . [6.0.6001.22489] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntoskrnl.exe
[7] 2009-08-05 . 4765C66A89E7151626FF3545B01D2601 . 3467864 . . [6.0.6000.16901] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntoskrnl.exe
[7] 2009-08-05 . 5302026B0FADB0819009798D3F6BCD77 . 3546184 . . [6.0.6001.18304] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntoskrnl.exe
[7] 2009-08-05 . 09C5FB44F152EFF551A112C931DDE640 . 3548216 . . [6.0.6002.22191] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntoskrnl.exe
[7] 2009-08-05 . D8DCA438CE571DB20BD8C4915CAC0760 . 3469896 . . [6.0.6000.21101] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntoskrnl.exe
[7] 2009-08-04 . 575DD16BF4C21C2F7E2BBE203AC1E957 . 3548216 . . [6.0.6002.18082] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntoskrnl.exe
[7] 2009-04-11 . 6798DBF3F25721637AEF5B6C69911C9C . 3549672 . . [6.0.6002.18005] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntoskrnl.exe
[7] 2009-03-03 . 393BB8FE05D66ABA7B091E6032179272 . 3547632 . . [6.0.6001.18226] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntoskrnl.exe
[7] 2009-03-03 . DFF34C5D66AB4BF1EED47BF19D1267BB . 3548656 . . [6.0.6001.22389] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntoskrnl.exe
[7] 2009-03-03 . 3910FE042C707E6BACD0FEC5AB9ECDE6 . 3469280 . . [6.0.6000.16830] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntoskrnl.exe
[7] 2009-03-03 . 808C86316AED98716C5F305A6265F393 . 3471328 . . [6.0.6000.21023] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntoskrnl.exe
[7] 2008-09-18 . 1FD3E8BFFD38F9B145E4B2B238B692F7 . 3549240 . . [6.0.6001.18145] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18145_none_6c0a2548b43efe06\ntoskrnl.exe
[7] 2008-09-18 . DEA801F2D9FD1DB35ED6B9BC4A6657F1 . 3549752 . . [6.0.6001.22269] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22269_none_6c822363cd693b0e\ntoskrnl.exe
[7] 2008-09-18 . 03279407E78F76BA1131DAB35A5E55C0 . 3470904 . . [6.0.6000.16754] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16754_none_6a18166cb7216faf\ntoskrnl.exe
[7] 2008-09-18 . 1E09CE4D9BB7B6521FB023CAE2E55F63 . 3472952 . . [6.0.6000.20921] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20921_none_6abf2403d0296cc8\ntoskrnl.exe
[7] 2008-04-26 . C9CD31B3CBA8134F2B47FB5E78376ACC . 3549240 . . [6.0.6001.18063] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntoskrnl.exe
[7] 2008-04-26 . 22D444D3D88A4C299894B3638A114BF7 . 3549240 . . [6.0.6001.22167] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntoskrnl.exe
[7] 2008-02-18 . 0E8F7801D17C7437CEE216099B975163 . 3471032 . . [6.0.6000.16551] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16551_none_6a1511c2b724295c\ntoskrnl.exe
[7] 2008-02-18 . 9E6991F557248A5E6E742D1081583969 . 3471544 . . [6.0.6000.20670] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20670_none_6a880e6bd052e7b1\ntoskrnl.exe
[7] 2008-02-18 . A0BF353A68B434F2BBFF238FEEB51486 . 3470392 . . [6.0.6000.16584] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16584_none_69f7a2dcb739c934\ntoskrnl.exe
[7] 2008-02-18 . B23072AE0FD60A2BE57FD48F81DDB5BB . 3471928 . . [6.0.6000.20707] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20707_none_6adac1cbd013d2a2\ntoskrnl.exe
[7] 2008-02-18 . 2D202D94C6D0EC6B1483D2D47016FA0A . 3470520 . . [6.0.6000.16575] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16575_none_6a037312b730c69a\ntoskrnl.exe
[7] 2008-02-18 . 2DF67260DD3167402ABC14DC11112686 . 3472056 . . [6.0.6000.20697] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20697_none_6a797099d05cd0f4\ntoskrnl.exe
[7] 2008-01-19 . 6700F35EBA206E5C89AC27C9A124DC01 . 3548728 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntoskrnl.exe
[7] 2007-11-27 . 99B743BE7149970EB8D9C48FB0A41BF7 . 3470520 . . [6.0.6000.20629] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20629_none_6ac720a1d022400b\ntoskrnl.exe
[7] 2007-11-27 . 4F2488EC5D0EBFE868F47681BCF315D3 . 3470008 . . [6.0.6000.16514] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16514_none_6a435250b701059d\ntoskrnl.exe
[7] 2007-11-27 . F28BD6C5F56EF09744D11482A8B7C34B . 3470008 . . [6.0.6000.20591] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20591_none_6a736cf7d0623bc3\ntoskrnl.exe
[7] 2006-11-02 . 883D5B644BFA3DC7298D4731B13AF499 . 3467880 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16386_none_69f99fa4b7380194\ntoskrnl.exe
.
[-] 2009-04-11 . 96EA68B9EB310A69C25EBB0282B2B9DE . 282624 . . [6.0.6001.18000] . . c:\windows\System32\w32time.dll
[-] 2009-04-11 . 96EA68B9EB310A69C25EBB0282B2B9DE . 282624 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-time-service_31bf3856ad364e35_6.0.6002.18005_none_8a92dcbb6a6c707b\w32time.dll
[-] 2008-01-19 . 1CF9206966A8458CDA9A8B20DF8AB7D3 . 282624 . . [6.0.6001.18000] . . c:\windows\winsxs\x86_microsoft-windows-time-service_31bf3856ad364e35_6.0.6001.18000_none_88a763af6d4aa52f\w32time.dll
[-] 2006-11-02 . 62B0D0F6F5580D9D0DFA5E0B466FF2ED . 270848 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-time-service_31bf3856ad364e35_6.0.6000.16386_none_8670a1b3705f945b\w32time.dll
.
[-] 2009-04-11 . 5DE7D67E49B88F5F07F3E53C4B92A352 . 453120 . . [6.0.6000.16386] . . c:\windows\System32\wiaservc.dll
[-] 2009-04-11 . 5DE7D67E49B88F5F07F3E53C4B92A352 . 453120 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..sition-coreservices_31bf3856ad364e35_6.0.6002.18005_none_347fb41db0752753\wiaservc.dll
[-] 2008-01-19 . 7DD08A597BC56051F320DA0BAF69E389 . 452608 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..sition-coreservices_31bf3856ad364e35_6.0.6001.18000_none_32943b11b3535c07\wiaservc.dll
[-] 2006-11-02 . A941E099EF46E3CC12F898CBE1C39910 . 451584 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-w..sition-coreservices_31bf3856ad364e35_6.0.6000.16386_none_305d7915b6684b33\wiaservc.dll
.
[-] 2009-04-11 . 83199EF88D691E730B80666E29F90D58 . 17408 . . [6.0.6000.16386] . . c:\windows\System32\midimap.dll
[-] 2009-04-11 . 83199EF88D691E730B80666E29F90D58 . 17408 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.0.6002.18005_none_8ee941100db1acf2\midimap.dll
[-] 2008-01-19 . D7F1F6C72276A15579D5761098018891 . 17408 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.0.6001.18000_none_8cfdc804108fe1a6\midimap.dll
[-] 2006-11-02 . 848E745A842F903FD521DB585AB00D97 . 17408 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.0.6000.16386_none_8ac7060813a4d0d2\midimap.dll
.
[-] 2006-11-02 . A7D525E5C0D91C8C1D84C6BCD25AD77D . 10240 . . [6.0.6000.16386] . . c:\windows\System32\rasadhlp.dll
[-] 2006-11-02 . A7D525E5C0D91C8C1D84C6BCD25AD77D . 10240 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-rasautodial_31bf3856ad364e35_6.0.6000.16386_none_0da33cba68680e8f\rasadhlp.dll
[-] 2006-11-02 . A7D525E5C0D91C8C1D84C6BCD25AD77D . 10240 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-rasautodial_31bf3856ad364e35_6.0.6001.18000_none_0fd9feb665531f63\rasadhlp.dll
.
[-] 2008-01-19 . 22CFAEB9172F5F198048401485CD0571 . 9216 . . [6.0.6000.16386] . . c:\windows\System32\WSHTCPIP.DLL
[-] 2008-01-19 . 22CFAEB9172F5F198048401485CD0571 . 9216 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-winsock-helper-tcpip_31bf3856ad364e35_6.0.6001.18000_none_cbb305c23187855a\WSHTCPIP.DLL
[-] 2006-11-02 . CE0D320700CCF7C78AEF9ED84332CC53 . 11264 . . [6.0.6000.16386] . . c:\windows\winsxs\x86_microsoft-windows-winsock-helper-tcpip_31bf3856ad364e35_6.0.6000.16386_none_c97c43c6349c7486\WSHTCPIP.DLL
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-12-17 39408]
"Spotify Web Helper"="c:\users\Marla\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2014-01-13 1171968]
"Spotify"="c:\users\Marla\AppData\Roaming\Spotify\Spotify.exe" [2014-01-13 6118400]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2007-04-18 65536]
"KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
"OsdMaestro"="c:\program files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [2007-02-15 118784]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-15 4874240]
"SunJavaUpdateReg"="c:\windows\system32\jureg.exe" [2007-04-07 54936]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2006-11-22 813912]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2007-02-05 849280]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2007-03-26 210472]
"PDF4 Registry Controller"="c:\program files\ScanSoft\PDF Professional 4.0\RegistryController.exe" [2007-08-20 46368]
"ScanSoft PDF Professional 4-reminder"="c:\program files\ScanSoft\PDF Professional 4.0\Ereg\Ereg.exe" [2006-11-16 35368]
"EKIJ5000StatusMonitor"="c:\windows\system32\spool\DRIVERS\W32X86\3\EKIJ5000MUI.exe" [2007-11-13 1052672]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-03-25 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-03-25 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-03-25 133656]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2008-06-02 178712]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 948440]
"BrStsMon00"="c:\program files\Browny02\Brother\BrStMonW.exe" [2010-06-10 2621440]
.
c:\users\Marla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Snapfish Media Detector.lnk - c:\program files\Snapfish Picture Mover\SnapfishMediaDetector.exe [2007-5-7 1273856]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="c:\windows\explorer.exe,"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPAdvisor]
2007-10-04 02:02 1783136 ----a-w- c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
S2 ACEDRV08;ACEDRV08;c:\windows\system32\drivers\ACEDRV08.sys [2008-02-19 108768]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - TRUESIGHT
*Deregistered* - TrueSight
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ    FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2002-01-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-21 15:54]
.
2008-02-19 c:\windows\Tasks\Check Updates for Windows Live Toolbar.job
- c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 16:20]
.
2002-01-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-14 22:06]
.
2014-01-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-14 22:06]
.
.
------- Supplementary Scan -------
.


uInternet Settings,ProxyOverride = *.local
IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Add to Windows &Live Favorites - http://favorites.liv...m/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Open with ScanSoft PDF Converter 4.2 - c:\program files\ScanSoft\PDF Professional 4.0\cnvres_eng.dll /100
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-HP Health Check Scheduler - [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Kodak EasyShare software.lnk - c:\program files\Kodak\Kodak EasyShare software\bin\EasyShare.exe -hx
SafeBoot-WudfPf
SafeBoot-WudfRd
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2002-01-02 10:59
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ... 
.
 [0] 0x08558BD8
.
scanning hidden autostart entries ...
.
scanning hidden files ... 
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2002-01-02  11:48:54
ComboFix-quarantined-files.txt  2002-01-02 16:48
.
Pre-Run: 295,866,228,736 bytes free
Post-Run: 295,898,329,088 bytes free
.
- - End Of File - - FACF9DE22801235515A4DF2AF723477C
03BA8F890B47C0BE359A4D5A636D214D
 



#19 Broni Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

Broni

    Administrator - Malware Annihilator

  • Administrators
  • 35,547 posts
  • 2,097 topics
    • Time Online: 212d 22h 15m 38s
  • Joined October 04, 2004
  • Age: 60
  • Skin: Smartest wide
  • Local time: 12:53 PM
  • Zodiac:Virgo
  • Gender:Male
  • Location:Daly City, CA
  • OS:Windows 8
  • Country:
Offline

Posted 30 January 2014 - 12:55 AM

That doesn't look good with all those infected system files indicated by Combofix.

We need to double check those findings.

 

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please copy and paste it to your reply.


p22003266.jpg  p22003279.jpgp4279089.jpg


#20 zap Re: [RESOLVED] cannot get to google.com; hosts file corrupt?

zap

    Member

  • Topic Starter
  • Members
  • 1,216 posts
  • 41 topics
    • Time Online: 3d 10h 1m 54s
  • Joined March 02, 2011
  • Skin: IP.Board
  • Local time: 03:53 PM
  • Zodiac:Leo
  • OS:Windows 7
  • Country:
Offline

Posted 30 January 2014 - 01:03 AM

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-01-2014 01
Ran by Marla at 2002-01-03 06:54:59
Running from C:\Users\Marla\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Microsoft Security Essentials (Disabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Disabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (Version:  - Microsoft)
2MOONS (Version: 1.00.0000 - Acclaim)
7-Zip 9.20 (Version:  - )
Acrobat.com (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe AIR (Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader 9.1 (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Shockwave Player (Version: 11 - Adobe Systems, Inc.)
aiofw (Version: 2.00.0000.0000 - Eastman Kodak Company) Hidden
aioocr (Version: 1.00.0000 - kodak) Hidden
aioprnt (Version: 2.00.0000.0000 - Eastman Kodak Company) Hidden
aioscnnr (Version: 2.00.0000.0000 - Eastman Kodak Company) Hidden
Amazing Slow Downer (remove only) (Version:  - )
Apple Application Support (Version: 2.1.7 - Apple Inc.)
Apple Mobile Device Support (Version: 5.1.1.4 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
Architectural Home Designer 9 (Version: 9.4.1.6 - Chief Architect)
ArcSoft TotalMedia Extreme (Version: 2.0.45.12 - ArcSoft)
AVS Screen Capture version 2.0.1 (Version:  - Online Media Technologies Ltd.)
AVS Update Manager 1.0 (Version:  - Online Media Technologies Ltd.)
AVS Video Editor 6 (Version:  - Online Media Technologies Ltd.)
AVS Video Recorder 2.4 (Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (Version:  - Online Media Technologies Ltd.)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Canon MP160 (Version:  - )
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000 - Hewlett-Packard) Hidden
CCleaner (remove only) (Version:  - Piriform)
CCScore (Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
center (Version: 2.00.0000.0000 - Eastman Kodak Company) Hidden
CyberLink DVD Suite Deluxe (Version: 5.5.1019 - CyberLink Corp.)
Daniusoft MP3 WAV Converter(Build 2.3.1.0) (Version:  - Daniusoft Software)
Download Updater (AOL LLC) (Version:  - )
Doxillion Document Converter (Version:  - NCH Software)
Enhanced Multimedia Keyboard Solution (Version:  - Hewlett-Packard)
ESSBrwr (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSCDBK (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESScore (Version: 6.04.0000.0003 - EASTMAN KODAK Company) Hidden
ESSgui (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSini (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSPCD (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
ESSSONIC (Version: 6.4.0000.0001 - EASTMAN KODAK Company) Hidden
ESSTOOLS (Version: 5.00.0000.0004 - EASTMAN KODAK Company) Hidden
essvatgt (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
Finale NotePad 2009 (Version: 14.0.r1.0 - MakeMusic)
Finale Reader 2009 (Version: 14.0.r1.0 - MakeMusic)
Firebird SQL Server - MAGIX Edition 2.0.0.1 (US) (Version: 2.0.0.1 - MAGIX AG)
Google Earth (Version: 4.2.205.5730 - Google)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
Hardware Diagnostic Tools (Version: 5.00.4589.14 - PC-Doctor, Inc.)
Hauppauge HDPVR Scheduler (Version:  - Hauppauge Computer Works)
Hauppauge WinTV IR Blaster (Version: 7.4.28315 - Hauppauge Computer Works, Inc.)
Hauppauge WinTV Scheduler (Version:  - )
Help_CTR (Version: 2.00.0000.000 - Eastman Kodak Company) Hidden
helptut (Version: 2.00.0000.0000 - kodak) Hidden
helpug (Version: 1.00.1000.0000 - kodak) Hidden
Hewlett-Packard Active Check (Version: 1.1.11.0 - Hewlett-Packard) Hidden
Hewlett-Packard Asset Agent for Health Check (Version: 2.0.62.5 - HP) Hidden
Highlight Viewer (Windows Live Toolbar) (Version: 03.01.0146 - Microsoft Corporation) Hidden
HL-2270DW (Version: 1.0.7.0 - Brother Industries, Ltd.)
HP Active Support Library (Version: 2.3.0.2 - Hewlett-Packard)
HP Customer Experience Enhancements (Version: 5.4.0.2360 - Hewlett-Packard)
HP Customer Feedback (Version: 1.0.0 - Hewlett-Packard) Hidden
HP Easy Setup - Frontend (Version: 5.4.0.2430 - Hewlett-Packard)
HP On-Screen Cap/Num/Scroll Lock Indicator (Version:  - Hewlett-Packard)
HP Photosmart Essential 2.5 (Version: 1.02.0000 - Hewlett-Packard) Hidden
HP Photosmart Essential 2.5 (Version: 2.5 - HP)
HP Picasso Media Center Add-In (Version: 1.0.0 - HP) Hidden
HP Total Care Advisor (Version: 1.4.20.2435 - Hewlett-Packard)
HP Update (Version: 5.003.001.001 - Hewlett-Packard)
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000 - Hewlett-Packard) Hidden
Intel® Graphics Media Accelerator Driver (Version:  - )
Intel® Matrix Storage Manager (Version:  - )
iTunes (Version: 10.6.1.7 - Apple Inc.)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10 - Sun Microsystems, Inc.)
kgcbaby (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcbase (Version: 5.03.0000.0004 - EASTMAN KODAK Company) Hidden
kgchday (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgchlwn (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcinvt (Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgckids (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcmove (Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgcvday (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
KODAK All-in-One Printer Software (Version:  - Eastman Kodak Company)
ksdip (Version: 2.00.0000.0000 - Eastman Kodak Company) Hidden
LabelPrint (Version: 2.2.2209 - CyberLink Corp.)
LightScribe System Software  1.10.16.1 (Version: 1.10.16.1 - http://www.lightscribe.com)
LightScribe Template Labeler (Version: 1.10.13.1 - LightScribe)
MAGIX Music Manager 2006 7.4.0.465 (US) (Version: 7.4.0.465 - MAGIX AG)
MAGIX Music Studio 12 deluxe 12.0.2.0 (US) (Version: 12.0.2.0 - MAGIX AG)
MAGIX Photo Manager 2007 4.1.1.77 (US) (Version: 4.1.1.77 - MAGIX AG)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
Map Button (Windows Live Toolbar) (Version: 03.01.0146 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 6.1 (Version: 6.10.156.0 - Microsoft)
Microsoft IntelliType Pro 6.1 (Version: 6.10.156.0 - Microsoft)
Microsoft Money 2004 (Version: 12.0.50 - Microsoft)
Microsoft Money 2004 System Pack (Version: 12.0.80 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft VC9 runtime libraries (Version: 1.0.0 - AOL LLC) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Works (Version: 9.7.0621 - Microsoft Corporation)
Microsoft Works 7.0 (Version: 07.02.0808 - Microsoft Corporation)
Microsoft XML Parser (Version: 8.0.7820.0 - Microsoft Corporation) Hidden
Move Networks Media Player for Internet Explorer (HKCU Version:  - )
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
muvee autoProducer 6.1 (Version: 6.10.050 - muvee Technologies)
My HP Games (Version: HPCMPQ1902 - WildTangent)
netbrdg (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
Octoshape add-in for Adobe Flash Player (HKCU Version:  - )
OfotoXMI (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
Picasa 3 (Version: 3.9 - Google, Inc.)
Power2Go (Version: 5.6.3417 - CyberLink Corp.)
PowerDirector (Version: 6.5.2209 - CyberLink Corp.)
PowerDirector (Version: 6.5.2209 - CyberLink Corp.) Hidden
PSSWCORE (Version: 2.02.0000 - Hewlett-Packard) Hidden
Python 2.5 (Version: 2.5.150 - Martin v. Löwis)
Realtek High Definition Audio Driver (Version: 6.0.1.5548 - Realtek Semiconductor Corp.)
Safari (Version: 3.525.13.0 - Apple Inc.)
Samsung i-Launcher 1.0.1.28 (Version: 1.0.1.28 - Samsung Electronics Co., Ltd.)
ScanSoft PDF Professional 4 (Version: 4.02.0000 - Nuance Communications, Inc)
SFR (Version: 6.04.0000.0001 - Eastman Kodak Company) Hidden
SHASTA (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
skin0001 (Version: 6.04.0000.0004 - EASTMAN KODAK Company) Hidden
SKINXSDK (Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
Skype Toolbars (Version: 5.0.4137 - Skype Technologies S.A.)
Skype™ 5.10 (Version: 5.10.116 - Skype Technologies S.A.)
Smart Menus (Windows Live Toolbar) (Version: 03.01.0146 - Microsoft Corporation) Hidden
SmartMusic 10 (Version: 10.2.0 - MakeMusic)
Snapfish Picture Mover (Version: 1.9.0.16 - HP Snapfish)
Soft Data Fax Modem with SmartCP (Version: 7.74.00 - Conexant Systems)
Spotify (HKCU Version: 0.9.7.16.g4b197456 - Spotify AB)
staticcr (Version: 6.04.0000.0005 - EASTMAN KODAK Company) Hidden
Switch Sound File Converter (Version:  - NCH Software)
TEFView 2.65 (Version:  - TablEdit)
tooltips (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
Update for 2007 Microsoft Office System (KB967642) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (Version:  - Microsoft)
Veetle TV 0.9.18 (Version: 0.9.18 - Veetle, Inc)
VideoToolkit01 (Version: 100.0.128.000 - Hewlett-Packard) Hidden
Viewpoint Media Player (Version:  - )
VPRINTOL (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
WeatherBug Gadget (Version: 1.0.0.6 - AWS Convergence Technologies) Hidden
Windows Live Favorites for Windows Live Toolbar (Version: 03.01.0146 - Microsoft Corporation)
Windows Live installer (Version: 12.0.1471.1025 - Microsoft Corporation)
Windows Live Sign-in Assistant (Version: 5.000.818.6 - Microsoft Corporation)
Windows Live Toolbar (Version: 03.01.0146 - Microsoft Corporation)
Windows Live Toolbar (Version: 03.01.0146 - Microsoft Corporation) Hidden
Windows Live Toolbar Extension (Windows Live Toolbar) (Version: 03.01.0146 - Microsoft Corporation) Hidden
WIRELESS (Version: 6.04.0000.0001 - EASTMAN KODAK Company) Hidden
YouTube Downloader 3.0 (Version:  - BienneSoft)

==================== Restore Points  =========================

03-01-2002 11:21:16 Scheduled Checkpoint

==================== Hosts content: ==========================

2006-11-02 05:23 - 2002-01-02 10:59 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0835E51D-D830-4D9B-80A3-5C711CE909C4} - System32\Tasks\NCH Swift Sound\switchShakeIcon => C:\Program Files\NCH Swift Sound\Switch\Switch.exe
Task: {1A675464-8599-44AD-A498-686BC0836215} - System32\Tasks\PC-Doctor\Scheduled Maintanence => C:\Program Files\PC-Doctor 5 for Windows\RunProfiler.exe [2007-06-25] (PC-Doctor, Inc.)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {1FB2B630-E6DC-442F-9C5C-DC1623B2A075} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-14] (Google Inc.)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-19] (Microsoft Corporation)
Task: {5CD84F6B-2E5E-4F45-AA8F-75A0FE2CD636} - System32\Tasks\JavaUpdateMarla => C:\Windows\system32\jusched.exe
Task: {8728094B-FC1A-4CC4-B3A7-B8B4B963A9D1} - System32\Tasks\JavaUpdateAdministrator => C:\Windows\system32\jusched.exe
Task: {8CEE1EAA-D390-4923-853A-86A2D95764C0} - System32\Tasks\NCH Swift Sound\switchDowngrade => C:\Program Files\NCH Swift Sound\Switch\switch.exe
Task: {94634D9C-A726-4778-8643-9D078873595A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {962ED74E-5E52-49F6-933C-A98B74D79974} - System32\Tasks\{A6A86031-606A-4007-9D13-E859A8AB7D53} => C:\Program Files\Skype\\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.)
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries
Task: {B754F11D-746C-4EDE-ABEF-9D9A717AD9A1} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {B985C68C-EC50-4E9E-BA00-ADF4ABF758DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-14] (Google Inc.)
Task: {BCED409D-3AF1-4948-B054-0543D35069E6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: {ED18207C-1853-438E-B76D-EE6DAB06280F} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check Updates for Windows Live Toolbar.job => C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2006-11-02 05:25 - 2006-11-02 04:46 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:9A2B2B2D

==================== Safe Mode (whitelisted) ===================

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (01/03/2002 06:52:52 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -1032

Error: (01/03/2002 06:52:52 AM) (Source: ESENT) (User: )
Description: Catalog Database (1456) Catalog Database: Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (01/03/2002 06:52:52 AM) (Source: ESENT) (User: )
Description: Catalog Database (1456) Catalog Database: An attempt to create the file "C:\Windows\system32\CatRoot2\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

Error: (01/03/2002 06:52:42 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -1032

Error: (01/03/2002 06:52:42 AM) (Source: ESENT) (User: )
Description: Catalog Database (1456) Catalog Database: Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (01/03/2002 06:52:42 AM) (Source: ESENT) (User: )
Description: Catalog Database (1456) Catalog Database: An attempt to create the file "C:\Windows\system32\CatRoot2\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

Error: (01/03/2002 06:21:42 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -1032

Error: (01/03/2002 06:21:42 AM) (Source: ESENT) (User: )
Description: Catalog Database (1456) Catalog Database: Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

Error: (01/03/2002 06:21:42 AM) (Source: ESENT) (User: )
Description: Catalog Database (1456) Catalog Database: An attempt to create the file "C:\Windows\system32\CatRoot2\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ".  The create file operation will fail with error -1032 (0xfffffbf8).

Error: (01/03/2002 06:21:32 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: -1032

System errors:
=============
Error: (01/03/2002 05:47:29 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{EFAEC267-CDE2-4A36-9836-50363FE7A492}.
The backup browser is stopping.

Error: (01/03/2002 05:45:14 AM) (Source: W32Time) (User: )
Description: The time service has detected that the system time needs to be  changed by +380984841 seconds. The time service will not change the system time by more than +54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->65.55.56.206:123) is working properly.

Error: (01/03/2002 05:44:39 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted during detection because a critical control file could not be opened.

Error: (01/03/2002 05:44:34 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted during detection because a critical control file could not be opened.

Error: (01/03/2002 05:43:37 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were deleted because the shadow copy storage could not grow in time.  Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.

Error: (01/02/2002 01:48:21 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

 New Signature Version:

 Previous Signature Version: 1.165.2625.0

 Update Source: %NT AUTHORITY59

 Update Stage: 4.4.0304.00

 Source Path: 4.4.0304.01

 Signature Type: %NT AUTHORITY602

 Update Type: %NT AUTHORITY604

 User: NT AUTHORITY\SYSTEM

 Current Engine Version: %NT AUTHORITY605

 Previous Engine Version: %NT AUTHORITY606

 Error code: %NT AUTHORITY607

 Error description: %NT AUTHORITY608

Error: (01/02/2002 10:59:49 AM) (Source: Service Control Manager) (User: )
Description: PEVSystemStart

Error: (01/02/2002 09:48:43 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

 New Signature Version:

 Previous Signature Version: 1.165.2625.0

 Update Source: %NT AUTHORITY59

 Update Stage: 4.4.0304.00

 Source Path: 4.4.0304.01

 Signature Type: %NT AUTHORITY602

 Update Type: %NT AUTHORITY604

 User: NT AUTHORITY\SYSTEM

 Current Engine Version: %NT AUTHORITY605

 Previous Engine Version: %NT AUTHORITY606

 Error code: %NT AUTHORITY607

 Error description: %NT AUTHORITY608

Error: (01/02/2002 09:08:03 AM) (Source: Service Control Manager) (User: )
Description: PEVSystemStart

Error: (01/02/2002 09:00:02 AM) (Source: Service Control Manager) (User: )
Description: PEVSystemStart

Microsoft Office Sessions:
=========================
Error: (03/27/2009 06:23:30 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 4 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/27/2009 06:23:18 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 323 seconds with 300 seconds of active time.  This session ended with a crash.

Error: (03/23/2009 08:21:41 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 2471 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (03/22/2009 05:47:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 5 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/22/2009 05:46:57 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 15035 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (03/21/2009 00:32:24 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 17 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/19/2009 00:25:31 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 25 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/19/2009 00:24:58 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 453 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/19/2009 00:17:17 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 2795 seconds with 180 seconds of active time.  This session ended with a crash.

Error: (03/16/2009 09:51:19 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 18 seconds with 0 seconds of active time.  This session ended with a crash.

CodeIntegrity Errors:
===================================
  Date: 2002-01-03 06:54:17.364
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-03 06:54:16.849
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-03 06:54:16.334
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-03 06:54:15.819
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-03 06:54:15.305
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-03 06:54:14.790
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-03 06:54:14.275
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-03 06:54:13.729
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-02 11:06:24.003
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2002-01-02 11:06:23.473
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Percentage of memory in use: 30%
Total physical RAM: 3070.58 MB
Available physical RAM: 2119.05 MB
Total Pagefile: 6351.43 MB
Available Pagefile: 5573.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1906.63 MB

==================== Drives ================================

Drive c: (HP) (Fixed) (Total:363.12 GB) (Free:275.62 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (FACTORY_IMAGE) (Fixed) (Total:9.49 GB) (Free:1.29 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 373 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=363 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9 GB) - (Type=07 NTFS)

==================== End Of Log ============================






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users