Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Returning user needing help with new computer and new problems


  • This topic is locked This topic is locked
16 replies to this topic

#1 TheAtomicToaster

TheAtomicToaster

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 13 May 2012 - 11:21 PM

Hello,

I have gotten help through here before and I now have a laptop running windows 7 premium that is plum full of errors when running webpages. When I tried to sign up for the site through the laptop I couldnt complete registration because the captcha box wasnt showing up on ie, firefox, or chrome. I also couldnt download the latest version of flash as well as many other quirky dead ends. I have used combofix with a previous laptop and had great results through this site. I have downloaded it and backed up everything and I am also wondering if installing my version of Windows 7 Home that I have on my desktop would be a better option than the Windows 7 Premium with the HP software. The laptop I am attempting to fix has also been put through the ringer as far as antivirus and spyware removal. Please help if you can and let me know what information you may need.

Thanks,
ToasT

BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:50 AM

Posted 15 May 2012 - 01:06 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

I am also wondering if installing my version of Windows 7 Home that I have on my desktop would be a better option than the Windows 7 Premium with the HP software.

I do not suggest you go that route.
===

Try Startup Repair as suggested on this Microsoft article.
http://windows.microsoft.com/en-CA/windows7/products/features/startup-repair

===

If no joy :

Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.

If needed.
The scan will also create this Attach.txt log I would also like to see the content.
Please post it in a other post for my review, do not attach the file.

Posted Image

#3 TheAtomicToaster

TheAtomicToaster
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 17 May 2012 - 05:36 PM

here is the log file, thank you for the help
firewall turns itself off also.

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 5/2/2012 8:33:12 PM
System Uptime: 5/17/2012 3:55:46 PM (1 hours ago)
.
Motherboard: Wistron | | 3612
Processor: Pentium® Dual-Core CPU T4300 @ 2.10GHz | CPU | 2100/800mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 286 GiB total, 229.775 GiB free.
D: is FIXED (NTFS) - 12 GiB total, 1.973 GiB free.
E: is CDROM ()
F: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: SRTSPX
Device ID: ROOT\LEGACY_SRTSPX\0000
Manufacturer:
Name: SRTSPX
PNP Device ID: ROOT\LEGACY_SRTSPX\0000
Service: SRTSPX
.
==== System Restore Points ===================
.
RP1: 5/2/2012 8:37:38 PM - Windows Update
RP2: 5/3/2012 6:22:56 AM - Windows Live Essentials
RP3: 5/3/2012 6:24:41 AM - Windows Update
RP4: 5/3/2012 6:26:15 AM - Windows Update
RP5: 5/3/2012 6:27:28 AM - Installed DirectX
RP6: 5/3/2012 6:28:02 AM - Installed DirectX
RP7: 5/3/2012 6:29:42 AM - WLSetup
RP8: 5/3/2012 4:14:53 PM - Windows Update
RP10: 5/3/2012 5:17:25 PM - CA Internet Security Suite
RP12: 5/3/2012 5:48:51 PM - CA Internet Security Suite
RP13: 5/3/2012 8:27:42 PM - Windows Update
RP14: 5/4/2012 5:15:45 AM - Windows Update
RP15: 5/5/2012 6:09:06 AM - Windows Update
RP16: 5/5/2012 7:51:57 AM - Windows Update
RP17: 5/5/2012 8:00:06 AM - Removed Quicken 2011.
RP18: 5/5/2012 8:06:01 AM - Windows Live Essentials
RP19: 5/13/2012 8:06:34 PM - Windows Update
RP20: 5/13/2012 9:08:43 PM - Installed Windows 7 Upgrade Advisor
RP21: 5/13/2012 10:28:52 PM - Language Pack Removal
RP22: 5/13/2012 11:15:11 PM - Windows Update
.
==== Installed Programs ======================
.
.
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com
Activation Assistant for the 2007 Microsoft Office suites
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Reader 9
AnswerWorks 5.0 English Runtime
Atheros Driver Installation Program
CA Backup and Migration
CA Parental Controls
Compatibility Pack for the 2007 Office system
CyberLink DVD Suite
CyberLink YouCam
D3DX10
DNAMigrator
ESU for Microsoft Vista
Google Chrome
HP Active Support Library
HP Customer Experience Enhancements
HP Doc Viewer
HP DVD Play 3.7
HP Help and Support
HP Quick Launch Buttons 6.40 H2
HP Total Care Advisor
HP Total Care Setup
HP Update
HP User Guides 0118
HP Wireless Assistant
HPAsset component for HP Active Support Library
Java™ 6 Update 7
Juno Preloader
LabelPrint
LightScribe System Software 1.14.17.1
Mesh Runtime
Microsoft Live Search Toolbar
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Works
Mozilla Firefox 12.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
muvee Reveal
My HP Games
NetWaiting
NetZero Preloader
Power2Go
PowerDirector
Realtek 8169 8168 8101E 8102E Ethernet Driver
Realtek USB 2.0 Card Reader
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition
SPORE Creature Creator Trial Edition
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Windows 7 Upgrade Advisor
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
.
==== Event Viewer Messages From Past Week ========
.
5/17/2012 4:16:52 PM, Error: cdrom [11] - The driver detected a controller error on \Device\CdRom0.
5/14/2012 9:41:38 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SRTSP SRTSPX
5/14/2012 9:41:30 PM, Error: Service Control Manager [7000] - The Norton Internet Security service failed to start due to the following error: The system cannot find the file specified.
5/14/2012 2:22:22 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
5/14/2012 2:14:19 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
5/14/2012 2:14:11 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {9B1F122C-2982-4E91-AA8B-E071D54F2A4D}
5/14/2012 2:13:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
5/14/2012 2:13:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
5/14/2012 2:13:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
5/14/2012 2:13:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
5/14/2012 2:13:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
5/14/2012 2:13:25 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
5/14/2012 2:13:18 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache KmxAgent KmxCfg KmxFile KmxFilter KmxFw NetBIOS NetBT nsiproxy Psched rdbss spldr SRTSP SRTSPX tdx vwififlt Wanarpv6 WfpLwf ws2ifsl
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The Network Connections service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
5/14/2012 2:13:18 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
5/13/2012 9:52:45 PM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
5/13/2012 9:46:30 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service VSS with arguments "" in order to run the server: {E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
5/13/2012 9:45:09 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache KmxAgent KmxCfg KmxFile KmxFilter KmxFw NetBIOS NetBT nsiproxy Psched rdbss spldr SRTSP SRTSPX tdx vwififlt Wanarpv6 WfpLwf
.
==== End Of File ===========================

#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:50 AM

Posted 18 May 2012 - 12:58 PM

Hi

I have merged your topics.

You have posted the extra.txt can you also post the DDS.txt log also.

===

Disable the CD emulators....

Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
  • The application window will appear
  • Click the Disable button to disable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK
IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.

Do not re-enable these drivers until otherwise instructed. Or when this computer is clean.

HOW TO: Enable the CD Emulators...

To re-enable your Emulation drivers, double click DeFogger to run the tool.
  • The application window will appear
  • Click the Re-enable button to re-enable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK
IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_enable which will appear on your desktop.

Your Emulation drivers are now re-enabled.
===

Please Download
TDSSKiller.zip

>>> Double-click on TDSSKiller.exe to run the application.
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue
    Posted Image
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.
===

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it

  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please post the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.

Note: You may be asked if you want to download Avast Free Antivirus I suggest you deny this download unless you do not have any Antivirus protection on the computer.
===

Please post the logs for my review.

Let me know what problem persists.

#5 TheAtomicToaster

TheAtomicToaster
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 19 May 2012 - 02:01 AM

ok so heres the DDS.txt


.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 8.0.7600.16385
Run by Terri at 16:25:59 on 2012-05-17
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3999.2523 [GMT -6:00]
.
AV: CA Anti-Virus Plus *Enabled/Updated* {57B5C44D-AAB5-DBC9-741B-542BE5A132EA}
SP: CA Anti-Virus Plus *Enabled/Updated* {ECD425A9-8C8F-D447-4EAB-6F599E267857}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: CA Personal Firewall *Disabled* {6F8E4568-E0DA-DA91-5F44-FD1E1B727591}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\caamsvc.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\isafe.exe
C:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\CA\CA Internet Security Suite\casc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://my.bresnan.net/
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: CA Anti-Phishing Toolbar Helper: {45011cf5-e4a9-4f13-9093-f30a784eb9b2} - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Phishing\x86\toolbar\caIEToolbar.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre1.6.0_07\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
TB: Microsoft Live Search Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
TB: CA Anti-Phishing Toolbar: {0123b506-0ad9-43aa-b0cf-916c122ad4c5} - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Phishing\x86\toolbar\caIEToolbar.dll
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - C:\PROGRA~2\Java\JRE16~1.0_0\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
LSP: C:\Windows\system32\VetRedir.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
TCP: DhcpNameServer = 69.145.248.4 69.146.17.2 69.144.49.29 192.168.1.1
TCP: Interfaces\{60DE4E91-4F6F-464F-B343-34B28C28683C} : DhcpNameServer = 69.145.248.4 69.146.17.2 69.144.49.29 192.168.1.1
TCP: Interfaces\{60DE4E91-4F6F-464F-B343-34B28C28683C}\2456C6B696E6E253434403 : DhcpNameServer = 192.168.2.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify: PFW - UmxWnp.Dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: CA Anti-Phishing Toolbar Helper: {45011CF5-E4A9-4F13-9093-F30A784EB9B2} - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Phishing\x86\toolbar\caIEToolbar.dll
BHO-X64: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_07\bin\ssv.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
TB-X64: Microsoft Live Search Toolbar: {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
TB-X64: CA Anti-Phishing Toolbar: {0123B506-0AD9-43AA-B0CF-916C122AD4C5} - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Phishing\x86\toolbar\caIEToolbar.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Terri\AppData\Roaming\Mozilla\Firefox\Profiles\hltc69dd.default\
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
.
============= SERVICES / DRIVERS ===============
.
R0 KmxAMRT;KmxAMRT;C:\Windows\system32\DRIVERS\KmxAMRT.sys --> C:\Windows\system32\DRIVERS\KmxAMRT.sys [?]
R0 KmxFw;KmxFw;C:\Windows\system32\DRIVERS\kmxfw.sys --> C:\Windows\system32\DRIVERS\kmxfw.sys [?]
R1 KmxAgent;KmxAgent;C:\Windows\system32\DRIVERS\kmxagent.sys --> C:\Windows\system32\DRIVERS\kmxagent.sys [?]
R1 KmxCfg;KmxCfg;C:\Windows\system32\DRIVERS\kmxcfg.sys --> C:\Windows\system32\DRIVERS\kmxcfg.sys [?]
R1 KmxFile;KmxFile;C:\Windows\system32\DRIVERS\KmxFile.sys --> C:\Windows\system32\DRIVERS\KmxFile.sys [?]
R1 KmxFilter;HIPS Core Filter Driver;C:\Windows\system32\DRIVERS\KmxFilter.sys --> C:\Windows\system32\DRIVERS\KmxFilter.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 CAAMSvc;CAAMSvc;C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\CAAMSvc.exe [2012-5-3 291656]
R2 CAISafe;CAISafe;C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\isafe.exe [2012-5-3 312656]
R2 ccSchedulerSVC;CA Common Scheduler Service;C:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe [2012-5-3 286032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 KmxCF;KmxCF;C:\Windows\system32\DRIVERS\KmxCF.sys --> C:\Windows\system32\DRIVERS\KmxCF.sys [?]
R2 KmxSbx;KmxSbx;C:\Windows\system32\DRIVERS\KmxSbx.sys --> C:\Windows\system32\DRIVERS\KmxSbx.sys [?]
R3 CAXHWAZL;CAXHWAZL;C:\Windows\system32\DRIVERS\CAXHWAZL.sys --> C:\Windows\system32\DRIVERS\CAXHWAZL.sys [?]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;C:\Windows\system32\drivers\IntcHdmi.sys --> C:\Windows\system32\drivers\IntcHdmi.sys [?]
S2 Norton Internet Security;Norton Internet Security;"C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe" /s "Norton Internet Security" /m "C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\diMaster.dll" /prefetch:1 --> C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-13 129976]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-5-3 253088]
S4 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-4-20 193840]
S4 Recovery Service for Windows;Recovery Service for Windows;C:\Program Files (x86)\SMINST\BLService.exe [2009-4-20 365952]
S4 UmxEngine;TM Engine;C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe [2011-4-4 920656]
S4 WinSvchostManagerSrv;WinSvchostManagerSrv;C:\Windows\SysWOW64\cfgmig32.exe [2012-5-3 263504]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-05-15 03:45:21 -------- d-----w- C:\Users\Terri\AppData\Roaming\WildTangent
2012-05-14 03:58:53 -------- d-sh--w- C:\$RECYCLE.BIN
2012-05-14 03:46:26 98816 ----a-w- C:\Windows\sed.exe
2012-05-14 03:46:26 518144 ----a-w- C:\Windows\SWREG.exe
2012-05-14 03:46:26 256000 ----a-w- C:\Windows\PEV.exe
2012-05-14 03:46:26 208896 ----a-w- C:\Windows\MBR.exe
2012-05-14 03:25:10 -------- d-----w- C:\Users\Terri\AppData\Local\Google
2012-05-14 03:10:21 -------- d-----w- C:\Users\Terri\AppData\Local\Microsoft Corporation
2012-05-14 03:09:36 -------- d-----w- C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
2012-05-14 02:42:59 19384 ----a-w- C:\Program Files (x86)\Mozilla Firefox\AccessibleMarshal.dll
2012-05-14 02:19:23 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2012-05-14 02:19:22 320512 ----a-w- C:\Windows\System32\d3d10_1core.dll
2012-05-14 02:19:22 218624 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2012-05-14 02:19:22 1837568 ----a-w- C:\Windows\System32\d3d10warp.dll
2012-05-14 02:19:22 1541120 ----a-w- C:\Windows\System32\DWrite.dll
2012-05-14 02:19:22 1170944 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2012-05-14 02:19:22 1074176 ----a-w- C:\Windows\SysWow64\DWrite.dll
2012-05-14 02:19:21 902656 ----a-w- C:\Windows\System32\d2d1.dll
2012-05-14 02:19:21 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2012-05-14 02:19:21 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2012-05-14 02:07:39 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2012-05-05 14:04:58 -------- d-----w- C:\Users\Terri\AppData\Local\{8B618BCE-E013-4BD4-AE4F-24B39812FAB6}
2012-05-05 14:04:44 -------- d-----w- C:\Users\Terri\AppData\Local\{AD138282-4491-43BB-B740-9D54E2D92D3E}
2012-05-05 13:37:27 -------- d-----w- C:\Windows\SysWow64\Wat
2012-05-05 13:37:26 -------- d-----w- C:\Windows\System32\Wat
2012-05-05 13:31:29 367104 ----a-w- C:\Windows\System32\wcncsvc.dll
2012-05-05 13:31:29 276992 ----a-w- C:\Windows\SysWow64\wcncsvc.dll
2012-05-05 13:19:40 311808 ----a-w- C:\Windows\System32\msv1_0.dll
2012-05-05 13:19:40 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2012-05-05 12:19:48 80896 ----a-w- C:\Windows\System32\imagehlp.dll
2012-05-05 12:19:48 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2012-05-05 12:19:48 5120 ----a-w- C:\Windows\System32\wmi.dll
2012-05-05 12:19:48 22896 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2012-05-05 12:19:48 220672 ----a-w- C:\Windows\System32\wintrust.dll
2012-05-05 12:19:48 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
2012-05-05 12:19:48 158720 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2012-05-04 03:03:18 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
2012-05-04 03:03:18 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
2012-05-04 03:03:18 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
2012-05-04 03:03:18 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
2012-05-04 03:03:17 48960 ----a-w- C:\Windows\System32\netfxperf.dll
2012-05-04 03:03:17 444752 ----a-w- C:\Windows\System32\mscoree.dll
2012-05-04 03:03:17 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
2012-05-04 03:03:17 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2012-05-04 03:03:17 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2012-05-04 03:03:17 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
2012-05-04 02:28:45 243712 ----a-w- C:\Windows\System32\drivers\ks.sys
2012-05-04 02:28:45 184832 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2012-05-03 23:56:02 99024 ----a-w- C:\Windows\System32\drivers\KmxFilter.sys
2012-05-03 23:56:02 202320 ----a-w- C:\Windows\System32\drivers\KmxCF.sys
2012-05-03 23:56:02 143824 ----a-w- C:\Windows\System32\drivers\KmxFw.sys
2012-05-03 23:51:11 263504 ----a-w- C:\Windows\SysWow64\cfgmig32.exe
2012-05-03 23:51:11 1422672 ----a-w- C:\Windows\SysWow64\cfgmig32.dll
2012-05-03 23:51:02 95568 ----a-w- C:\Windows\SysWow64\Vetredir.dll
2012-05-03 23:51:02 141136 ----a-w- C:\Windows\System32\Isafeif64.dll
2012-05-03 23:51:02 128336 ----a-w- C:\Windows\SysWow64\Isafeif.dll
2012-05-03 23:51:02 103760 ----a-w- C:\Windows\System32\Vetredir64.dll
2012-05-03 23:50:04 289296 ----a-w- C:\Windows\SysWow64\winsfinst_x64.exe
2012-05-03 23:50:03 2990096 ----a-w- C:\Windows\SysWow64\winsflte.dll
2012-05-03 23:20:57 1422672 ----a-w- C:\Windows\System32\cfgmig32.dll
2012-05-03 23:20:47 257872 ----a-w- C:\Windows\System32\isafprod64.dll
2012-05-03 23:20:47 206160 ----a-w- C:\Windows\SysWow64\Isafprod.dll
2012-05-03 23:18:50 714752 ----a-w- C:\Windows\System32\kerberos.dll
2012-05-03 23:17:52 102400 ----a-w- C:\Windows\System32\drivers\dfsc.sys
2012-05-03 23:16:44 4582912 ----a-w- C:\Program Files\Windows NT\Accessories\wordpad.exe
2012-05-03 23:15:46 340992 ----a-w- C:\Windows\System32\schannel.dll
2012-05-03 23:13:23 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2012-05-03 23:13:16 515584 ----a-w- C:\Windows\System32\timedate.cpl
2012-05-03 23:13:16 478208 ----a-w- C:\Windows\SysWow64\timedate.cpl
2012-05-03 23:13:14 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2012-05-03 23:13:14 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2012-05-03 23:13:12 633856 ----a-w- C:\Windows\System32\comctl32.dll
2012-05-03 23:13:12 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
2012-05-03 23:13:02 612352 ----a-w- C:\Windows\System32\vbscript.dll
2012-05-03 23:13:01 428032 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-05-03 22:34:58 558592 ----a-w- C:\Windows\System32\spoolsv.exe
2012-05-03 22:32:56 516096 ----a-w- C:\Program Files\Windows Mail\wab.exe
2012-05-03 22:31:57 603976 ----a-w- C:\Windows\System32\winload.exe
2012-05-03 22:31:56 640896 ----a-w- C:\Windows\System32\winload.efi
2012-05-03 22:31:56 556928 ----a-w- C:\Windows\System32\winresume.efi
2012-05-03 22:31:56 518160 ----a-w- C:\Windows\System32\winresume.exe
2012-05-03 22:31:56 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2012-05-03 22:31:56 20352 ----a-w- C:\Windows\System32\kdusb.dll
2012-05-03 22:31:56 19328 ----a-w- C:\Windows\System32\kd1394.dll
2012-05-03 22:31:56 17792 ----a-w- C:\Windows\System32\kdcom.dll
2012-05-03 22:30:07 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2012-05-03 22:30:07 366592 ----a-w- C:\Windows\System32\qdvd.dll
2012-05-03 22:30:07 1572864 ----a-w- C:\Windows\System32\quartz.dll
2012-05-03 22:30:07 1328640 ----a-w- C:\Windows\SysWow64\quartz.dll
2012-05-03 22:27:57 552960 ----a-w- C:\Windows\System32\msdri.dll
2012-05-03 22:24:14 -------- d-----w- C:\Program Files (x86)\Common Files\AnswerWorks 5.0
2012-05-03 22:24:12 733184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iKernel.dll
2012-05-03 22:24:12 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\ctor.dll
2012-05-03 22:24:12 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\DotNetInstaller.exe
2012-05-03 22:24:12 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iscript.dll
2012-05-03 22:24:12 180356 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iGdi.dll
2012-05-03 22:24:12 172032 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iuser.dll
2012-05-03 22:24:11 303236 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\setup.dll
2012-05-03 22:22:04 -------- d-----w- C:\Users\Terri\AppData\Roaming\Intuit
2012-05-03 22:21:23 -------- d-----w- C:\ProgramData\Intuit
2012-05-03 22:19:02 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-03 22:19:02 418464 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-05-03 22:18:17 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2012-05-03 22:18:17 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll
2012-05-03 22:17:10 3138048 ----a-w- C:\Windows\System32\mstscax.dll
2012-05-03 22:17:10 2690560 ----a-w- C:\Windows\SysWow64\mstscax.dll
2012-05-03 22:17:10 1097216 ----a-w- C:\Windows\System32\mstsc.exe
2012-05-03 22:17:10 1034240 ----a-w- C:\Windows\SysWow64\mstsc.exe
2012-05-03 22:17:03 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2012-05-03 22:17:03 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2012-05-03 22:17:03 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2012-05-03 22:17:03 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2012-05-03 22:16:58 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2012-05-03 22:16:58 31232 ----a-w- C:\Windows\System32\prevhost.exe
2012-05-03 22:16:55 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2012-05-03 22:16:53 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2012-05-03 22:16:53 634368 ----a-w- C:\Windows\System32\msvcrt.dll
2012-05-03 22:16:52 112000 ----a-w- C:\Windows\System32\consent.exe
2012-05-03 22:16:49 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2012-05-03 22:16:46 723456 ----a-w- C:\Windows\System32\EncDec.dll
2012-05-03 22:16:46 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2012-05-03 22:16:05 8917360 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-05-03 22:15:50 8917360 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8A393D7-C8F0-4E26-B4C5-01B4F2AA72B0}\mpengine.dll
2012-05-03 22:15:24 861184 ----a-w- C:\Windows\System32\oleaut32.dll
2012-05-03 22:15:24 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2012-05-03 22:15:24 331776 ----a-w- C:\Windows\System32\oleacc.dll
2012-05-03 22:15:24 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2012-05-03 22:11:54 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2012-05-03 22:11:54 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2012-05-03 22:11:54 404992 ----a-w- C:\Windows\System32\umpnpmgr.dll
2012-05-03 22:11:54 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2012-05-03 22:11:54 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2012-05-03 22:11:32 9728 ----a-w- C:\Windows\SysWow64\sscore.dll
2012-05-03 22:11:32 236032 ----a-w- C:\Windows\System32\srvsvc.dll
2012-05-03 22:11:01 77312 ----a-w- C:\Windows\System32\packager.dll
2012-05-03 22:11:01 67072 ----a-w- C:\Windows\SysWow64\packager.dll
2012-05-03 22:06:46 -------- d-----w- C:\Users\Terri\AppData\Local\{26E29D10-F367-4E8C-923E-E11B84052362}
2012-05-03 22:04:26 -------- d-----w- C:\Users\Terri\AppData\Local\ElevatedDiagnostics
2012-05-03 12:41:35 -------- d-----w- C:\Users\Terri\AppData\Local\{0D61798F-AA5E-4490-B06F-081D2D5C6683}
2012-05-03 12:41:18 -------- d-----w- C:\Users\Terri\AppData\Roaming\Windows Live Writer
2012-05-03 12:41:18 -------- d-----w- C:\Users\Terri\AppData\Local\Windows Live Writer
2012-05-03 12:36:08 -------- d-----w- C:\Windows\en
2012-05-03 12:33:30 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-05-03 12:32:37 279656 ------w- C:\Windows\System32\MpSigStub.exe
2012-05-03 12:31:20 2080256 ----a-w- C:\Program Files\Windows Mail\msoe.dll
2012-05-03 12:31:20 1619968 ----a-w- C:\Program Files (x86)\Windows Mail\msoe.dll
2012-05-03 12:31:15 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2012-05-03 12:31:15 740864 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2012-05-03 12:30:23 -------- d-----w- C:\Windows\PCHEALTH
2012-05-03 12:28:50 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
2012-05-03 12:28:50 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2012-05-03 12:28:50 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2012-05-03 12:28:50 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2012-05-03 12:27:58 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
2012-05-03 12:27:58 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
2012-05-03 12:27:00 3860992 ----a-w- C:\Windows\System32\UIRibbon.dll
2012-05-03 12:27:00 2983424 ----a-w- C:\Windows\SysWow64\UIRibbon.dll
2012-05-03 12:27:00 1164800 ----a-w- C:\Windows\SysWow64\UIRibbonRes.dll
2012-05-03 12:27:00 1164800 ----a-w- C:\Windows\System32\UIRibbonRes.dll
2012-05-03 12:25:28 206848 ----a-w- C:\Windows\System32\mfps.dll
2012-05-03 12:25:27 257024 ----a-w- C:\Windows\System32\mfreadwrite.dll
2012-05-03 12:25:27 196608 ----a-w- C:\Windows\SysWow64\mfreadwrite.dll
2012-05-03 12:25:26 1888256 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2012-05-03 12:25:26 1619456 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2012-05-03 12:25:25 4068864 ----a-w- C:\Windows\System32\mf.dll
2012-05-03 12:25:25 3181568 ----a-w- C:\Windows\SysWow64\mf.dll
2012-05-03 12:23:17 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\848633491cd29271a\MeshBetaRemover.exe
2012-05-03 12:23:12 89944 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\81581cab1cd292719\DSETUP.dll
2012-05-03 12:23:12 537432 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\81581cab1cd292719\DXSETUP.exe
2012-05-03 12:23:12 1801048 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\81581cab1cd292719\dsetup32.dll
2012-05-03 12:23:08 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7e893d181cd292718\DSETUP.dll
2012-05-03 12:23:08 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7e893d181cd292718\DXSETUP.exe
2012-05-03 12:23:08 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7e893d181cd292718\dsetup32.dll
2012-05-03 12:20:28 -------- d-----w- C:\Users\Terri\AppData\Local\Windows Live
2012-05-03 12:20:26 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2012-05-03 03:52:11 -------- d-----w- C:\Windows\Panther
2012-05-03 03:38:50 -------- d-----w- C:\$WINDOWS.~Q
2012-05-03 03:34:23 -------- d-----w- C:\$INPLACE.~TR
2012-05-03 02:37:35 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2012-05-03 02:37:35 76288 ----a-w- C:\Windows\System32\rdpwsx.dll
2012-05-03 02:37:35 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2012-05-03 02:37:35 139264 ----a-w- C:\Windows\System32\cabview.dll
2012-05-03 02:37:35 132608 ----a-w- C:\Windows\SysWow64\cabview.dll
2012-05-03 02:37:21 826368 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-05-03 02:37:21 204800 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2012-05-03 02:37:21 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-05-03 02:37:20 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-05-03 02:33:09 -------- d-----w- C:\Recovery
2012-05-03 01:57:05 -------- d-----w- C:\Program Files\Synaptics
2012-05-03 01:55:37 -------- d-----w- C:\Program Files\CONEXANT
2012-05-03 01:27:19 -------- d-----w- C:\Program Files (x86)\muvee Technologies
2012-05-03 01:27:13 -------- d-----w- C:\Program Files (x86)\Common Files\muvee Technologies
2012-05-03 01:21:49 82432 ----a-w- C:\Windows\SysWow64\msxml4r.dll
2012-05-03 01:21:49 44544 ----a-w- C:\Windows\SysWow64\msxml4a.dll
2012-05-03 01:21:29 89088 ----a-w- C:\Windows\SysWow64\atl71.dll
2012-05-03 01:21:25 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2012-05-03 01:21:25 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2012-05-03 01:21:25 225280 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-05-03 01:21:25 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2012-05-03 01:21:24 610436 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2012-05-03 01:18:17 68096 ----a-w- C:\Windows\System32\drivers\RTSTOR64.sys
2012-05-03 01:18:17 6416928 ----a-w- C:\Windows\system\DriveIcon.dll
2012-05-03 01:16:10 920088 ----a-w- C:\Windows\SysWow64\igxpun.exe
2012-05-03 01:16:10 -------- d-----w- C:\Windows\SysWow64\x64
2012-05-03 01:16:10 -------- d-----w- C:\Windows\SysWow64\Lang
2012-05-03 01:16:10 -------- d-----w- C:\Intel
2012-05-03 01:15:53 -------- d-----w- C:\Program Files (x86)\NetWaiting
2012-05-03 01:15:00 170496 ----a-w- C:\Windows\System32\drivers\Rtlh64.sys
2012-05-03 01:15:00 -------- d-----w- C:\Program Files (x86)\Realtek
2012-05-03 01:13:24 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2012-05-03 01:12:43 -------- d-----w- C:\Program Files (x86)\Atheros
2012-05-03 01:12:41 -------- d-----w- C:\ProgramData\Atheros
2012-05-03 00:45:09 -------- d-----w- C:\Users\Terri\AppData\Local\Hewlett-Packard
2012-05-03 00:44:28 -------- d-----w- C:\Users\Terri\AppData\Local\VirtualStore
2012-05-03 00:41:36 -------- d-----w- C:\Users\Terri\AppData\Roaming\HP TCS
.
==================== Find3M ====================
.
2012-05-03 23:50:06 2524176 ----a-w- C:\Windows\System32\winsflt.dll
2012-05-03 23:50:06 1744912 ----a-w- C:\Windows\SysWow64\winsflt.dll
2012-05-03 01:22:24 505392 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2012-05-03 01:22:24 353840 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2012-05-03 01:22:24 1053232 ----a-w- C:\Windows\SysWow64\MFC71u.dll
2012-05-03 01:22:23 1066544 ----a-w- C:\Windows\SysWow64\MFC71.dll
2012-04-02 05:34:04 5504880 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-04-02 04:46:44 3958128 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-04-02 04:46:44 3902320 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-04-02 03:01:19 3143680 ----a-w- C:\Windows\System32\win32k.sys
2012-03-30 11:09:53 1895280 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-03-17 07:55:58 75632 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2012-03-09 00:37:20 302448 ----a-w- C:\Windows\WLXPGSS.SCR
2012-02-28 06:35:54 1197568 ----a-w- C:\Windows\System32\wininet.dll
2012-02-28 06:33:03 57856 ----a-w- C:\Windows\System32\licmgr10.dll
2012-02-28 05:40:21 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-02-28 05:38:16 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2012-02-28 05:17:41 482816 ----a-w- C:\Windows\System32\html.iec
2012-02-28 04:35:01 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2012-02-28 04:31:46 386048 ----a-w- C:\Windows\SysWow64\html.iec
2012-02-28 03:57:55 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
.
============= FINISH: 16:27:08.51 ===============


and here is defogger disable

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 00:41 on 19/05/2012 (Terri)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-

and Enable

defogger_enable by jpshortstuff (23.02.10.1)
Log created at 00:47 on 19/05/2012 (Terri)

Parsing file...


-=E.O.F=-

here is tdsskiller

00:48:03.0951 0280 TDSS rootkit removing tool 2.7.35.0 May 16 2012 07:37:57
00:48:04.0403 0280 ============================================================
00:48:04.0403 0280 Current date / time: 2012/05/19 00:48:04.0403
00:48:04.0403 0280 SystemInfo:
00:48:04.0403 0280
00:48:04.0403 0280 OS Version: 6.1.7600 ServicePack: 0.0
00:48:04.0403 0280 Product type: Workstation
00:48:04.0403 0280 ComputerName: TERRI-PC
00:48:04.0403 0280 UserName: Terri
00:48:04.0403 0280 Windows directory: C:\Windows
00:48:04.0403 0280 System windows directory: C:\Windows
00:48:04.0403 0280 Running under WOW64
00:48:04.0403 0280 Processor architecture: Intel x64
00:48:04.0403 0280 Number of processors: 2
00:48:04.0403 0280 Page size: 0x1000
00:48:04.0403 0280 Boot type: Normal boot
00:48:04.0403 0280 ============================================================
00:48:05.0620 0280 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x13135, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x7F, Type 'K0', Flags 0x00000040
00:48:05.0620 0280 Drive \Device\Harddisk1\DR5 - Size: 0x7A7D1C00 (1.91 Gb), SectorSize: 0x200, Cylinders: 0xF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:48:05.0636 0280 ============================================================
00:48:05.0636 0280 \Device\Harddisk0\DR0:
00:48:05.0636 0280 MBR partitions:
00:48:05.0636 0280 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x23B9CFC1
00:48:05.0636 0280 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23B9D000, BlocksNum 0x1890000
00:48:05.0636 0280 \Device\Harddisk1\DR5:
00:48:05.0636 0280 MBR partitions:
00:48:05.0636 0280 \Device\Harddisk1\DR5\Partition0: MBR, Type 0xE, StartLBA 0x3F, BlocksNum 0x3D3E4F
00:48:05.0636 0280 ============================================================
00:48:05.0636 0280 C: <-> \Device\Harddisk0\DR0\Partition0
00:48:05.0682 0280 D: <-> \Device\Harddisk0\DR0\Partition1
00:48:05.0682 0280 ============================================================
00:48:05.0682 0280 Initialize success
00:48:05.0682 0280 ============================================================
00:48:29.0706 2284 ============================================================
00:48:29.0706 2284 Scan started
00:48:29.0706 2284 Mode: Manual;
00:48:29.0706 2284 ============================================================
00:48:30.0440 2284 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
00:48:30.0440 2284 1394ohci - ok
00:48:30.0486 2284 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
00:48:30.0486 2284 ACPI - ok
00:48:30.0502 2284 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
00:48:30.0502 2284 AcpiPmi - ok
00:48:30.0798 2284 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:48:30.0798 2284 AdobeFlashPlayerUpdateSvc - ok
00:48:30.0876 2284 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
00:48:30.0892 2284 adp94xx - ok
00:48:30.0939 2284 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
00:48:30.0954 2284 adpahci - ok
00:48:30.0970 2284 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
00:48:30.0970 2284 adpu320 - ok
00:48:31.0017 2284 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
00:48:31.0017 2284 AeLookupSvc - ok
00:48:31.0079 2284 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
00:48:31.0095 2284 AFD - ok
00:48:31.0142 2284 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
00:48:31.0142 2284 agp440 - ok
00:48:31.0173 2284 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
00:48:31.0173 2284 ALG - ok
00:48:31.0188 2284 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
00:48:31.0188 2284 aliide - ok
00:48:31.0188 2284 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
00:48:31.0204 2284 amdide - ok
00:48:31.0220 2284 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
00:48:31.0220 2284 AmdK8 - ok
00:48:31.0235 2284 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
00:48:31.0235 2284 AmdPPM - ok
00:48:31.0266 2284 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
00:48:31.0266 2284 amdsata - ok
00:48:31.0298 2284 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
00:48:31.0313 2284 amdsbs - ok
00:48:31.0329 2284 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
00:48:31.0329 2284 amdxata - ok
00:48:31.0376 2284 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
00:48:31.0391 2284 AppID - ok
00:48:31.0407 2284 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
00:48:31.0407 2284 AppIDSvc - ok
00:48:31.0422 2284 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
00:48:31.0438 2284 Appinfo - ok
00:48:31.0469 2284 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
00:48:31.0469 2284 arc - ok
00:48:31.0485 2284 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
00:48:31.0485 2284 arcsas - ok
00:48:31.0500 2284 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
00:48:31.0500 2284 AsyncMac - ok
00:48:31.0532 2284 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
00:48:31.0532 2284 atapi - ok
00:48:31.0641 2284 athr (8c56e93749ba53a4b645963d3439e01e) C:\Windows\system32\DRIVERS\athrx.sys
00:48:31.0656 2284 athr - ok
00:48:31.0984 2284 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
00:48:32.0000 2284 AudioEndpointBuilder - ok
00:48:32.0015 2284 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
00:48:32.0015 2284 AudioSrv - ok
00:48:32.0046 2284 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
00:48:32.0062 2284 AxInstSV - ok
00:48:32.0171 2284 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
00:48:32.0187 2284 b06bdrv - ok
00:48:32.0218 2284 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
00:48:32.0234 2284 b57nd60a - ok
00:48:32.0296 2284 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
00:48:32.0296 2284 BDESVC - ok
00:48:32.0296 2284 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
00:48:32.0296 2284 Beep - ok
00:48:32.0374 2284 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
00:48:32.0390 2284 BFE - ok
00:48:32.0436 2284 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
00:48:32.0452 2284 BITS - ok
00:48:32.0577 2284 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
00:48:32.0577 2284 blbdrive - ok
00:48:32.0608 2284 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
00:48:32.0624 2284 bowser - ok
00:48:32.0639 2284 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:48:32.0639 2284 BrFiltLo - ok
00:48:32.0655 2284 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:48:32.0655 2284 BrFiltUp - ok
00:48:32.0670 2284 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
00:48:32.0670 2284 BridgeMP - ok
00:48:32.0702 2284 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
00:48:32.0702 2284 Browser - ok
00:48:32.0748 2284 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
00:48:32.0748 2284 Brserid - ok
00:48:32.0764 2284 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
00:48:32.0764 2284 BrSerWdm - ok
00:48:32.0780 2284 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
00:48:32.0780 2284 BrUsbMdm - ok
00:48:32.0780 2284 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
00:48:32.0780 2284 BrUsbSer - ok
00:48:32.0795 2284 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
00:48:32.0795 2284 BTHMODEM - ok
00:48:32.0826 2284 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
00:48:32.0842 2284 bthserv - ok
00:48:33.0045 2284 CAAMSvc (51e0078586bf3ac6813cedacfb220fef) C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\caamsvc.exe
00:48:33.0045 2284 CAAMSvc - ok
00:48:33.0138 2284 CaCCProvSP (b3b8e9ae50343daaf7d4dd9953601e98) C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
00:48:33.0138 2284 CaCCProvSP - ok
00:48:33.0216 2284 CAISafe (e0f7e8b3ec79db2a191b42fcc06f17e6) C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus Plus\isafe.exe
00:48:33.0232 2284 CAISafe - ok
00:48:33.0263 2284 CAXHWAZL (942bd3cb0933febd194b42d4e489c246) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
00:48:33.0263 2284 CAXHWAZL - ok
00:48:33.0310 2284 ccSchedulerSVC (ed1cf50c7c3b1f81e62bf09b420fe5e7) C:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
00:48:33.0310 2284 ccSchedulerSVC - ok
00:48:33.0372 2284 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
00:48:33.0372 2284 cdfs - ok
00:48:33.0404 2284 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
00:48:33.0404 2284 cdrom - ok
00:48:33.0450 2284 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
00:48:33.0450 2284 CertPropSvc - ok
00:48:33.0466 2284 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
00:48:33.0466 2284 circlass - ok
00:48:33.0482 2284 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
00:48:33.0497 2284 CLFS - ok
00:48:33.0622 2284 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:48:33.0622 2284 clr_optimization_v2.0.50727_32 - ok
00:48:33.0747 2284 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:48:33.0762 2284 clr_optimization_v2.0.50727_64 - ok
00:48:33.0965 2284 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:48:33.0965 2284 clr_optimization_v4.0.30319_32 - ok
00:48:34.0137 2284 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:48:34.0137 2284 clr_optimization_v4.0.30319_64 - ok
00:48:34.0184 2284 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
00:48:34.0184 2284 CmBatt - ok
00:48:34.0199 2284 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
00:48:34.0199 2284 cmdide - ok
00:48:34.0262 2284 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
00:48:34.0277 2284 CNG - ok
00:48:34.0308 2284 CnxtHdAudService (09699dc18521bcd82a7b39b187ba4c91) C:\Windows\system32\drivers\CHDRT64.sys
00:48:34.0308 2284 CnxtHdAudService - ok
00:48:34.0480 2284 Com4QLBEx (7795f8cebc284a426b53f541e538695f) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
00:48:34.0496 2284 Com4QLBEx - ok
00:48:34.0542 2284 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
00:48:34.0542 2284 Compbatt - ok
00:48:34.0574 2284 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
00:48:34.0574 2284 CompositeBus - ok
00:48:34.0589 2284 COMSysApp - ok
00:48:34.0605 2284 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
00:48:34.0605 2284 crcdisk - ok
00:48:34.0652 2284 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
00:48:34.0652 2284 CryptSvc - ok
00:48:34.0698 2284 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
00:48:34.0714 2284 DcomLaunch - ok
00:48:34.0761 2284 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
00:48:34.0776 2284 defragsvc - ok
00:48:34.0823 2284 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
00:48:34.0823 2284 DfsC - ok
00:48:34.0870 2284 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
00:48:34.0870 2284 Dhcp - ok
00:48:34.0901 2284 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
00:48:34.0901 2284 discache - ok
00:48:34.0917 2284 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
00:48:34.0917 2284 Disk - ok
00:48:34.0964 2284 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
00:48:34.0964 2284 Dnscache - ok
00:48:35.0010 2284 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
00:48:35.0026 2284 dot3svc - ok
00:48:35.0042 2284 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
00:48:35.0042 2284 DPS - ok
00:48:35.0057 2284 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
00:48:35.0073 2284 drmkaud - ok
00:48:35.0135 2284 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
00:48:35.0151 2284 DXGKrnl - ok
00:48:35.0166 2284 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
00:48:35.0182 2284 EapHost - ok
00:48:35.0322 2284 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
00:48:35.0354 2284 ebdrv - ok
00:48:35.0619 2284 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
00:48:35.0619 2284 EFS - ok
00:48:35.0744 2284 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
00:48:35.0759 2284 ehRecvr - ok
00:48:35.0790 2284 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
00:48:35.0806 2284 ehSched - ok
00:48:35.0946 2284 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
00:48:35.0946 2284 elxstor - ok
00:48:35.0962 2284 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
00:48:35.0962 2284 ErrDev - ok
00:48:36.0040 2284 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
00:48:36.0040 2284 EventSystem - ok
00:48:36.0071 2284 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
00:48:36.0087 2284 exfat - ok
00:48:36.0087 2284 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
00:48:36.0102 2284 fastfat - ok
00:48:36.0165 2284 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
00:48:36.0165 2284 Fax - ok
00:48:36.0196 2284 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
00:48:36.0196 2284 fdc - ok
00:48:36.0212 2284 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
00:48:36.0212 2284 fdPHost - ok
00:48:36.0227 2284 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
00:48:36.0227 2284 FDResPub - ok
00:48:36.0227 2284 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
00:48:36.0243 2284 FileInfo - ok
00:48:36.0243 2284 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
00:48:36.0243 2284 Filetrace - ok
00:48:36.0243 2284 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
00:48:36.0258 2284 flpydisk - ok
00:48:36.0290 2284 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
00:48:36.0290 2284 FltMgr - ok
00:48:36.0352 2284 FontCache (bc00505cfda789ed3be95d2ff38c4875) C:\Windows\system32\FntCache.dll
00:48:36.0368 2284 FontCache - ok
00:48:36.0461 2284 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:48:36.0461 2284 FontCache3.0.0.0 - ok
00:48:36.0555 2284 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
00:48:36.0555 2284 FsDepends - ok
00:48:36.0586 2284 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
00:48:36.0586 2284 Fs_Rec - ok
00:48:36.0633 2284 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
00:48:36.0633 2284 fvevol - ok
00:48:36.0664 2284 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
00:48:36.0664 2284 gagp30kx - ok
00:48:36.0804 2284 GameConsoleService (617dc2877015270914ca3c03873560d5) C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
00:48:36.0820 2284 GameConsoleService - ok
00:48:36.0882 2284 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
00:48:36.0898 2284 gpsvc - ok
00:48:36.0945 2284 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
00:48:36.0945 2284 hcw85cir - ok
00:48:36.0976 2284 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
00:48:36.0976 2284 HDAudBus - ok
00:48:36.0992 2284 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
00:48:36.0992 2284 HidBatt - ok
00:48:37.0007 2284 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
00:48:37.0007 2284 HidBth - ok
00:48:37.0007 2284 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
00:48:37.0023 2284 HidIr - ok
00:48:37.0038 2284 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
00:48:37.0038 2284 hidserv - ok
00:48:37.0070 2284 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
00:48:37.0070 2284 HidUsb - ok
00:48:37.0101 2284 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
00:48:37.0101 2284 hkmsvc - ok
00:48:37.0148 2284 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
00:48:37.0148 2284 HomeGroupListener - ok
00:48:37.0194 2284 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
00:48:37.0194 2284 HomeGroupProvider - ok
00:48:37.0335 2284 HP Health Check Service (a19b0bb5a7eb6df2dd4a0711d36955ee) c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
00:48:37.0335 2284 HP Health Check Service - ok
00:48:37.0397 2284 HpqKbFiltr (0ecc54fd34d6a089c300846b011e81d6) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
00:48:37.0397 2284 HpqKbFiltr - ok
00:48:37.0444 2284 hpqwmiex (1665c7121a026df10c903db9bc5e9d43) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
00:48:37.0444 2284 hpqwmiex - ok
00:48:37.0460 2284 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
00:48:37.0475 2284 HpSAMD - ok
00:48:37.0569 2284 HSF_DPV (dda869537ae9ce501954cb7793134d96) C:\Windows\system32\DRIVERS\CAX_DPV.sys
00:48:37.0584 2284 HSF_DPV - ok
00:48:37.0959 2284 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
00:48:37.0974 2284 HTTP - ok
00:48:37.0974 2284 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
00:48:37.0974 2284 hwpolicy - ok
00:48:37.0990 2284 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
00:48:38.0006 2284 i8042prt - ok
00:48:38.0052 2284 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
00:48:38.0068 2284 iaStorV - ok
00:48:38.0193 2284 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
00:48:38.0193 2284 IDriverT - ok
00:48:38.0333 2284 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:48:38.0349 2284 idsvc - ok
00:48:38.0895 2284 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
00:48:39.0035 2284 igfx - ok
00:48:39.0363 2284 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
00:48:39.0363 2284 iirsp - ok
00:48:39.0456 2284 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
00:48:39.0472 2284 IKEEXT - ok
00:48:39.0534 2284 IntcHdmiAddService (bd37227c07179b1040a8896b9c0c146b) C:\Windows\system32\drivers\IntcHdmi.sys
00:48:39.0534 2284 IntcHdmiAddService - ok
00:48:39.0566 2284 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
00:48:39.0566 2284 intelide - ok
00:48:39.0581 2284 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
00:48:39.0581 2284 intelppm - ok
00:48:39.0628 2284 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
00:48:39.0644 2284 IPBusEnum - ok
00:48:39.0644 2284 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:48:39.0659 2284 IpFilterDriver - ok
00:48:39.0690 2284 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
00:48:39.0690 2284 iphlpsvc - ok
00:48:39.0722 2284 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
00:48:39.0722 2284 IPMIDRV - ok
00:48:39.0722 2284 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
00:48:39.0722 2284 IPNAT - ok
00:48:39.0737 2284 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
00:48:39.0737 2284 IRENUM - ok
00:48:39.0753 2284 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
00:48:39.0753 2284 isapnp - ok
00:48:39.0784 2284 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
00:48:39.0784 2284 iScsiPrt - ok
00:48:39.0800 2284 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
00:48:39.0800 2284 kbdclass - ok
00:48:39.0815 2284 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
00:48:39.0831 2284 kbdhid - ok
00:48:39.0878 2284 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
00:48:39.0878 2284 KeyIso - ok
00:48:39.0924 2284 KmxAgent (7594e8799fa212576c93bfdf54583452) C:\Windows\system32\DRIVERS\kmxagent.sys
00:48:39.0924 2284 KmxAgent - ok
00:48:39.0956 2284 KmxAMRT (e5bb08fcf05ef7333be3b5b35295c4c0) C:\Windows\system32\DRIVERS\KmxAMRT.sys
00:48:39.0956 2284 KmxAMRT - ok
00:48:40.0002 2284 KmxCF (54721e47b8350770332128fcffc7a460) C:\Windows\system32\DRIVERS\KmxCF.sys
00:48:40.0002 2284 KmxCF - ok
00:48:40.0034 2284 KmxCfg (174a70fd5367388f6f378cbc6dd723ee) C:\Windows\system32\DRIVERS\kmxcfg.sys
00:48:40.0049 2284 KmxCfg - ok
00:48:40.0065 2284 KmxFile (dc77781ab8cf3043da60187a1511fef6) C:\Windows\system32\DRIVERS\KmxFile.sys
00:48:40.0065 2284 KmxFile - ok
00:48:40.0127 2284 KmxFilter (87da5afc8950ec34d0cddf3438370727) C:\Windows\system32\DRIVERS\KmxFilter.sys
00:48:40.0127 2284 KmxFilter - ok
00:48:40.0143 2284 KmxFw (15260d1b5bb6ba8e5079e758fce88207) C:\Windows\system32\DRIVERS\kmxfw.sys
00:48:40.0143 2284 KmxFw - ok
00:48:40.0158 2284 KmxSbx (9ea56ddeeb080727ff448a0c6e37de08) C:\Windows\system32\DRIVERS\KmxSbx.sys
00:48:40.0158 2284 KmxSbx - ok
00:48:40.0190 2284 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
00:48:40.0190 2284 KSecDD - ok
00:48:40.0205 2284 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
00:48:40.0221 2284 KSecPkg - ok
00:48:40.0252 2284 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
00:48:40.0268 2284 ksthunk - ok
00:48:40.0314 2284 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
00:48:40.0314 2284 KtmRm - ok
00:48:40.0361 2284 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
00:48:40.0377 2284 LanmanServer - ok
00:48:40.0408 2284 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
00:48:40.0408 2284 LanmanWorkstation - ok
00:48:40.0548 2284 LightScribeService (abf90fc5a127f481219b873c1b8dfc1c) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
00:48:40.0548 2284 LightScribeService - ok
00:48:40.0611 2284 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
00:48:40.0611 2284 lltdio - ok
00:48:40.0658 2284 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
00:48:40.0673 2284 lltdsvc - ok
00:48:40.0673 2284 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
00:48:40.0673 2284 lmhosts - ok
00:48:40.0704 2284 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
00:48:40.0704 2284 LSI_FC - ok
00:48:40.0720 2284 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
00:48:40.0720 2284 LSI_SAS - ok
00:48:40.0736 2284 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:48:40.0736 2284 LSI_SAS2 - ok
00:48:40.0751 2284 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:48:40.0751 2284 LSI_SCSI - ok
00:48:40.0767 2284 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
00:48:40.0782 2284 luafv - ok
00:48:40.0798 2284 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
00:48:40.0798 2284 Mcx2Svc - ok
00:48:40.0814 2284 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
00:48:40.0814 2284 mdmxsdk - ok
00:48:40.0829 2284 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
00:48:40.0829 2284 megasas - ok
00:48:40.0860 2284 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
00:48:40.0860 2284 MegaSR - ok
00:48:40.0876 2284 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:48:40.0876 2284 MMCSS - ok
00:48:40.0892 2284 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
00:48:40.0892 2284 Modem - ok
00:48:40.0907 2284 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
00:48:40.0907 2284 monitor - ok
00:48:40.0923 2284 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
00:48:40.0923 2284 mouclass - ok
00:48:40.0954 2284 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
00:48:40.0954 2284 mouhid - ok
00:48:40.0985 2284 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
00:48:40.0985 2284 mountmgr - ok
00:48:41.0110 2284 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:48:41.0110 2284 MozillaMaintenance - ok
00:48:41.0141 2284 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
00:48:41.0141 2284 mpio - ok
00:48:41.0157 2284 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
00:48:41.0157 2284 mpsdrv - ok
00:48:41.0204 2284 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
00:48:41.0219 2284 MpsSvc - ok
00:48:41.0250 2284 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
00:48:41.0250 2284 MRxDAV - ok
00:48:41.0282 2284 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:48:41.0282 2284 mrxsmb - ok
00:48:41.0313 2284 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:48:41.0313 2284 mrxsmb10 - ok
00:48:41.0344 2284 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:48:41.0344 2284 mrxsmb20 - ok
00:48:41.0375 2284 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
00:48:41.0375 2284 msahci - ok
00:48:41.0406 2284 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
00:48:41.0406 2284 msdsm - ok
00:48:41.0422 2284 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
00:48:41.0438 2284 MSDTC - ok
00:48:41.0453 2284 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
00:48:41.0453 2284 Msfs - ok
00:48:41.0469 2284 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
00:48:41.0469 2284 mshidkmdf - ok
00:48:41.0469 2284 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
00:48:41.0484 2284 msisadrv - ok
00:48:41.0547 2284 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
00:48:41.0547 2284 MSiSCSI - ok
00:48:41.0562 2284 msiserver - ok
00:48:41.0578 2284 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
00:48:41.0594 2284 MSKSSRV - ok
00:48:41.0609 2284 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
00:48:41.0609 2284 MSPCLOCK - ok
00:48:41.0609 2284 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
00:48:41.0625 2284 MSPQM - ok
00:48:41.0656 2284 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
00:48:41.0656 2284 MsRPC - ok
00:48:41.0687 2284 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
00:48:41.0687 2284 mssmbios - ok
00:48:41.0703 2284 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
00:48:41.0703 2284 MSTEE - ok
00:48:41.0703 2284 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
00:48:41.0703 2284 MTConfig - ok
00:48:41.0718 2284 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
00:48:41.0718 2284 Mup - ok
00:48:41.0781 2284 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
00:48:41.0796 2284 napagent - ok
00:48:41.0828 2284 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
00:48:41.0828 2284 NativeWifiP - ok
00:48:41.0874 2284 NAVENG - ok
00:48:41.0874 2284 NAVEX15 - ok
00:48:41.0937 2284 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
00:48:41.0952 2284 NDIS - ok
00:48:41.0968 2284 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
00:48:41.0968 2284 NdisCap - ok
00:48:41.0984 2284 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
00:48:41.0984 2284 NdisTapi - ok
00:48:41.0999 2284 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
00:48:41.0999 2284 Ndisuio - ok
00:48:42.0030 2284 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
00:48:42.0030 2284 NdisWan - ok
00:48:42.0030 2284 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
00:48:42.0046 2284 NDProxy - ok
00:48:42.0062 2284 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
00:48:42.0062 2284 NetBIOS - ok
00:48:42.0077 2284 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
00:48:42.0077 2284 NetBT - ok
00:48:42.0124 2284 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
00:48:42.0124 2284 Netlogon - ok
00:48:42.0186 2284 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
00:48:42.0202 2284 Netman - ok
00:48:42.0249 2284 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
00:48:42.0249 2284 netprofm - ok
00:48:42.0374 2284 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:48:42.0389 2284 NetTcpPortSharing - ok
00:48:42.0420 2284 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
00:48:42.0420 2284 nfrd960 - ok
00:48:42.0483 2284 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
00:48:42.0483 2284 NlaSvc - ok
00:48:42.0561 2284 Norton Internet Security - ok
00:48:42.0576 2284 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
00:48:42.0576 2284 Npfs - ok
00:48:42.0608 2284 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
00:48:42.0608 2284 nsi - ok
00:48:42.0608 2284 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
00:48:42.0608 2284 nsiproxy - ok
00:48:42.0701 2284 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
00:48:42.0732 2284 Ntfs - ok
00:48:43.0076 2284 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
00:48:43.0076 2284 Null - ok
00:48:43.0122 2284 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
00:48:43.0122 2284 nvraid - ok
00:48:43.0154 2284 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
00:48:43.0154 2284 nvstor - ok
00:48:43.0185 2284 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
00:48:43.0185 2284 nv_agp - ok
00:48:43.0325 2284 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
00:48:43.0325 2284 odserv - ok
00:48:43.0372 2284 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
00:48:43.0372 2284 ohci1394 - ok
00:48:43.0419 2284 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:48:43.0419 2284 ose - ok
00:48:43.0466 2284 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:48:43.0481 2284 p2pimsvc - ok
00:48:43.0512 2284 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
00:48:43.0512 2284 p2psvc - ok
00:48:43.0544 2284 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
00:48:43.0544 2284 Parport - ok
00:48:43.0559 2284 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
00:48:43.0559 2284 partmgr - ok
00:48:43.0575 2284 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
00:48:43.0575 2284 PcaSvc - ok
00:48:43.0590 2284 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
00:48:43.0606 2284 pci - ok
00:48:43.0622 2284 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
00:48:43.0622 2284 pciide - ok
00:48:43.0637 2284 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
00:48:43.0653 2284 pcmcia - ok
00:48:43.0653 2284 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
00:48:43.0653 2284 pcw - ok
00:48:43.0684 2284 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
00:48:43.0700 2284 PEAUTH - ok
00:48:43.0871 2284 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
00:48:43.0871 2284 PerfHost - ok
00:48:43.0980 2284 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
00:48:43.0996 2284 pla - ok
00:48:44.0043 2284 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
00:48:44.0043 2284 PlugPlay - ok
00:48:44.0074 2284 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
00:48:44.0074 2284 PNRPAutoReg - ok
00:48:44.0090 2284 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:48:44.0090 2284 PNRPsvc - ok
00:48:44.0152 2284 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
00:48:44.0168 2284 PolicyAgent - ok
00:48:44.0214 2284 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
00:48:44.0214 2284 Power - ok
00:48:44.0324 2284 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
00:48:44.0339 2284 PptpMiniport - ok
00:48:44.0355 2284 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
00:48:44.0370 2284 Processor - ok
00:48:44.0402 2284 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
00:48:44.0417 2284 ProfSvc - ok
00:48:44.0433 2284 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
00:48:44.0448 2284 ProtectedStorage - ok
00:48:44.0480 2284 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
00:48:44.0480 2284 Psched - ok
00:48:44.0573 2284 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
00:48:44.0589 2284 ql2300 - ok
00:48:44.0948 2284 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
00:48:44.0948 2284 ql40xx - ok
00:48:44.0979 2284 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
00:48:44.0994 2284 QWAVE - ok
00:48:45.0010 2284 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
00:48:45.0010 2284 QWAVEdrv - ok
00:48:45.0010 2284 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
00:48:45.0010 2284 RasAcd - ok
00:48:45.0072 2284 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
00:48:45.0072 2284 RasAgileVpn - ok
00:48:45.0104 2284 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
00:48:45.0104 2284 RasAuto - ok
00:48:45.0119 2284 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:48:45.0119 2284 Rasl2tp - ok
00:48:45.0166 2284 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
00:48:45.0166 2284 RasMan - ok
00:48:45.0166 2284 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
00:48:45.0182 2284 RasPppoe - ok
00:48:45.0197 2284 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
00:48:45.0197 2284 RasSstp - ok
00:48:45.0213 2284 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
00:48:45.0228 2284 rdbss - ok
00:48:45.0228 2284 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
00:48:45.0228 2284 rdpbus - ok
00:48:45.0244 2284 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:48:45.0244 2284 RDPCDD - ok
00:48:45.0260 2284 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
00:48:45.0275 2284 RDPENCDD - ok
00:48:45.0275 2284 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
00:48:45.0275 2284 RDPREFMP - ok
00:48:45.0322 2284 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
00:48:45.0322 2284 RDPWD - ok
00:48:45.0369 2284 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
00:48:45.0384 2284 rdyboost - ok
00:48:45.0540 2284 Recovery Service for Windows (0d362785bef9bdf5a6e1f4628d06716d) C:\Program Files (x86)\SMINST\BLService.exe
00:48:45.0540 2284 Recovery Service for Windows - ok
00:48:45.0587 2284 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
00:48:45.0587 2284 RemoteAccess - ok
00:48:45.0634 2284 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
00:48:45.0634 2284 RemoteRegistry - ok
00:48:45.0728 2284 RichVideo (805ae1f90c64758d19aaa001cf8cba12) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
00:48:45.0743 2284 RichVideo - ok
00:48:45.0774 2284 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
00:48:45.0790 2284 RpcEptMapper - ok
00:48:45.0806 2284 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
00:48:45.0806 2284 RpcLocator - ok
00:48:45.0852 2284 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
00:48:45.0852 2284 RpcSs - ok
00:48:45.0993 2284 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
00:48:45.0993 2284 rspndr - ok
00:48:46.0040 2284 RTL8169 (f49d8df8895d809cb0a4deb44113de6f) C:\Windows\system32\DRIVERS\Rtlh64.sys
00:48:46.0055 2284 RTL8169 - ok
00:48:46.0086 2284 RTSTOR (aa3987386cf7d9005c42bc974634bd56) C:\Windows\system32\drivers\RTSTOR64.SYS
00:48:46.0086 2284 RTSTOR - ok
00:48:46.0118 2284 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
00:48:46.0118 2284 SamSs - ok
00:48:46.0133 2284 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
00:48:46.0149 2284 sbp2port - ok
00:48:46.0180 2284 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
00:48:46.0196 2284 SCardSvr - ok
00:48:46.0227 2284 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
00:48:46.0227 2284 scfilter - ok
00:48:46.0320 2284 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
00:48:46.0336 2284 Schedule - ok
00:48:46.0367 2284 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
00:48:46.0367 2284 SCPolicySvc - ok
00:48:46.0414 2284 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
00:48:46.0414 2284 SDRSVC - ok
00:48:46.0539 2284 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
00:48:46.0554 2284 secdrv - ok
00:48:46.0554 2284 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
00:48:46.0570 2284 seclogon - ok
00:48:46.0586 2284 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
00:48:46.0586 2284 SENS - ok
00:48:46.0648 2284 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
00:48:46.0648 2284 SensrSvc - ok
00:48:46.0648 2284 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
00:48:46.0648 2284 Serenum - ok
00:48:46.0664 2284 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
00:48:46.0664 2284 Serial - ok
00:48:46.0679 2284 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
00:48:46.0679 2284 sermouse - ok
00:48:46.0710 2284 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
00:48:46.0710 2284 SessionEnv - ok
00:48:46.0710 2284 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
00:48:46.0710 2284 sffdisk - ok
00:48:46.0726 2284 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
00:48:46.0726 2284 sffp_mmc - ok
00:48:46.0726 2284 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
00:48:46.0726 2284 sffp_sd - ok
00:48:46.0742 2284 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
00:48:46.0742 2284 sfloppy - ok
00:48:46.0788 2284 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
00:48:46.0788 2284 SharedAccess - ok
00:48:46.0820 2284 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
00:48:46.0820 2284 ShellHWDetection - ok
00:48:46.0866 2284 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:48:46.0866 2284 SiSRaid2 - ok
00:48:46.0882 2284 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
00:48:46.0882 2284 SiSRaid4 - ok
00:48:46.0898 2284 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
00:48:46.0898 2284 Smb - ok
00:48:46.0929 2284 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
00:48:46.0929 2284 SNMPTRAP - ok
00:48:46.0929 2284 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
00:48:46.0929 2284 spldr - ok
00:48:46.0991 2284 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
00:48:46.0991 2284 Spooler - ok
00:48:47.0194 2284 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
00:48:47.0241 2284 sppsvc - ok
00:48:47.0490 2284 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
00:48:47.0506 2284 sppuinotify - ok
00:48:47.0584 2284 SRTSP - ok
00:48:47.0600 2284 SRTSPX - ok
00:48:47.0662 2284 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
00:48:47.0662 2284 srv - ok
00:48:47.0709 2284 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
00:48:47.0709 2284 srv2 - ok
00:48:47.0724 2284 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
00:48:47.0724 2284 srvnet - ok
00:48:47.0771 2284 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
00:48:47.0787 2284 SSDPSRV - ok
00:48:47.0802 2284 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
00:48:47.0802 2284 SstpSvc - ok
00:48:47.0834 2284 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
00:48:47.0834 2284 stexstor - ok
00:48:47.0912 2284 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
00:48:47.0912 2284 stisvc - ok
00:48:47.0927 2284 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
00:48:47.0927 2284 swenum - ok
00:48:47.0974 2284 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
00:48:47.0974 2284 swprv - ok
00:48:48.0036 2284 SynTP (e33b57c4aa60288e9971277d88ce9b67) C:\Windows\system32\DRIVERS\SynTP.sys
00:48:48.0036 2284 SynTP - ok
00:48:48.0114 2284 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
00:48:48.0146 2284 SysMain - ok
00:48:48.0411 2284 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
00:48:48.0426 2284 TabletInputService - ok
00:48:48.0442 2284 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
00:48:48.0458 2284 TapiSrv - ok
00:48:48.0473 2284 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
00:48:48.0473 2284 TBS - ok
00:48:48.0707 2284 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
00:48:48.0738 2284 Tcpip - ok
00:48:49.0206 2284 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
00:48:49.0222 2284 TCPIP6 - ok
00:48:49.0565 2284 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
00:48:49.0565 2284 tcpipreg - ok
00:48:49.0596 2284 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
00:48:49.0596 2284 TDPIPE - ok
00:48:49.0628 2284 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
00:48:49.0628 2284 TDTCP - ok
00:48:49.0643 2284 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
00:48:49.0643 2284 tdx - ok
00:48:49.0659 2284 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
00:48:49.0659 2284 TermDD - ok
00:48:49.0706 2284 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
00:48:49.0721 2284 TermService - ok
00:48:49.0721 2284 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
00:48:49.0721 2284 Themes - ok
00:48:49.0768 2284 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:48:49.0768 2284 THREADORDER - ok
00:48:49.0784 2284 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
00:48:49.0784 2284 TrkWks - ok
00:48:49.0846 2284 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
00:48:49.0862 2284 TrustedInstaller - ok
00:48:49.0877 2284 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:48:49.0877 2284 tssecsrv - ok
00:48:49.0924 2284 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
00:48:49.0924 2284 tunnel - ok
00:48:49.0955 2284 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
00:48:49.0955 2284 uagp35 - ok
00:48:49.0986 2284 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
00:48:50.0002 2284 udfs - ok
00:48:50.0033 2284 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
00:48:50.0033 2284 UI0Detect - ok
00:48:50.0049 2284 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
00:48:50.0064 2284 uliagpkx - ok
00:48:50.0064 2284 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
00:48:50.0080 2284 umbus - ok
00:48:50.0096 2284 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
00:48:50.0096 2284 UmPass - ok
00:48:50.0220 2284 UmxEngine (af950f62e5fc72ffdb7363f72600b21c) C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe
00:48:50.0236 2284 UmxEngine - ok
00:48:50.0283 2284 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
00:48:50.0298 2284 upnphost - ok
00:48:50.0330 2284 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
00:48:50.0330 2284 usbccgp - ok
00:48:50.0376 2284 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
00:48:50.0376 2284 usbcir - ok
00:48:50.0408 2284 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
00:48:50.0408 2284 usbehci - ok
00:48:50.0454 2284 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
00:48:50.0454 2284 usbhub - ok
00:48:50.0470 2284 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
00:48:50.0486 2284 usbohci - ok
00:48:50.0501 2284 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
00:48:50.0501 2284 usbprint - ok
00:48:50.0532 2284 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:48:50.0532 2284 USBSTOR - ok
00:48:50.0548 2284 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
00:48:50.0564 2284 usbuhci - ok
00:48:50.0610 2284 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
00:48:50.0610 2284 usbvideo - ok
00:48:50.0642 2284 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
00:48:50.0642 2284 UxSms - ok
00:48:50.0688 2284 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
00:48:50.0688 2284 VaultSvc - ok
00:48:50.0720 2284 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
00:48:50.0735 2284 vdrvroot - ok
00:48:50.0766 2284 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
00:48:50.0782 2284 vds - ok
00:48:50.0813 2284 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
00:48:50.0829 2284 vga - ok
00:48:50.0829 2284 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
00:48:50.0829 2284 VgaSave - ok
00:48:50.0844 2284 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
00:48:50.0860 2284 vhdmp - ok
00:48:50.0860 2284 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
00:48:50.0860 2284 viaide - ok
00:48:50.0876 2284 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
00:48:50.0876 2284 volmgr - ok
00:48:50.0907 2284 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
00:48:50.0907 2284 volmgrx - ok
00:48:50.0922 2284 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
00:48:50.0938 2284 volsnap - ok
00:48:50.0938 2284 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
00:48:50.0954 2284 vsmraid - ok
00:48:51.0032 2284 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
00:48:51.0047 2284 VSS - ok
00:48:51.0390 2284 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
00:48:51.0390 2284 vwifibus - ok
00:48:51.0422 2284 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
00:48:51.0422 2284 vwififlt - ok
00:48:51.0453 2284 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
00:48:51.0468 2284 W32Time - ok
00:48:51.0468 2284 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
00:48:51.0468 2284 WacomPen - ok
00:48:51.0500 2284 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
00:48:51.0500 2284 WANARP - ok
00:48:51.0500 2284 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
00:48:51.0515 2284 Wanarpv6 - ok
00:48:51.0609 2284 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
00:48:51.0624 2284 WatAdminSvc - ok
00:48:51.0718 2284 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
00:48:51.0734 2284 wbengine - ok
00:48:52.0030 2284 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
00:48:52.0030 2284 WbioSrvc - ok
00:48:52.0077 2284 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
00:48:52.0077 2284 wcncsvc - ok
00:48:52.0108 2284 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
00:48:52.0108 2284 WcsPlugInService - ok
00:48:52.0233 2284 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
00:48:52.0233 2284 Wd - ok
00:48:52.0264 2284 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
00:48:52.0280 2284 Wdf01000 - ok
00:48:52.0311 2284 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:48:52.0311 2284 WdiServiceHost - ok
00:48:52.0311 2284 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:48:52.0311 2284 WdiSystemHost - ok
00:48:52.0358 2284 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
00:48:52.0358 2284 WebClient - ok
00:48:52.0404 2284 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
00:48:52.0404 2284 Wecsvc - ok
00:48:52.0436 2284 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
00:48:52.0436 2284 wercplsupport - ok
00:48:52.0467 2284 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
00:48:52.0467 2284 WerSvc - ok
00:48:52.0607 2284 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
00:48:52.0607 2284 WfpLwf - ok
00:48:52.0623 2284 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
00:48:52.0623 2284 WIMMount - ok
00:48:52.0685 2284 winachsf (590812dd01a4fe83c6e92fdb701e59a6) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
00:48:52.0685 2284 winachsf - ok
00:48:52.0779 2284 WinDefend - ok
00:48:52.0794 2284 WinHttpAutoProxySvc - ok
00:48:52.0950 2284 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
00:48:52.0950 2284 Winmgmt - ok
00:48:53.0060 2284 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
00:48:53.0091 2284 WinRM - ok
00:48:53.0387 2284 WinSvchostManagerSrv (468570216ad689fd4af9db4b3d3027c9) C:\Windows\SysWOW64\cfgmig32.exe
00:48:53.0403 2284 WinSvchostManagerSrv - ok
00:48:53.0668 2284 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
00:48:53.0684 2284 Wlansvc - ok
00:48:53.0777 2284 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:48:53.0777 2284 wlcrasvc - ok
00:48:53.0933 2284 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:48:53.0964 2284 wlidsvc - ok
00:48:54.0308 2284 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
00:48:54.0323 2284 WmiAcpi - ok
00:48:54.0464 2284 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
00:48:54.0464 2284 wmiApSrv - ok
00:48:54.0573 2284 WMPNetworkSvc - ok
00:48:54.0588 2284 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
00:48:54.0604 2284 WPCSvc - ok
00:48:54.0604 2284 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
00:48:54.0604 2284 WPDBusEnum - ok
00:48:54.0635 2284 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
00:48:54.0635 2284 ws2ifsl - ok
00:48:54.0682 2284 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
00:48:54.0682 2284 wscsvc - ok
00:48:54.0698 2284 WSearch - ok
00:48:54.0807 2284 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
00:48:54.0822 2284 wuauserv - ok
00:48:55.0181 2284 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
00:48:55.0181 2284 WudfPf - ok
00:48:55.0212 2284 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:48:55.0228 2284 WUDFRd - ok
00:48:55.0259 2284 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
00:48:55.0259 2284 wudfsvc - ok
00:48:55.0290 2284 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
00:48:55.0290 2284 WwanSvc - ok
00:48:55.0322 2284 XAudio (f22e443518bc599d12888daf292a56d8) C:\Windows\system32\DRIVERS\xaudio64.sys
00:48:55.0322 2284 XAudio - ok
00:48:55.0353 2284 XAudioService (963c27034bba4ac52a13f7a3c657c708) C:\Windows\system32\DRIVERS\xaudio64.exe
00:48:55.0353 2284 XAudioService - ok
00:48:55.0400 2284 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
00:48:55.0587 2284 \Device\Harddisk0\DR0 - ok
00:48:55.0602 2284 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk1\DR5
00:49:03.0527 2284 \Device\Harddisk1\DR5 - ok
00:49:03.0527 2284 Boot (0x1200) (011716a14ed7e130a53b7491dcea6923) \Device\Harddisk0\DR0\Partition0
00:49:03.0527 2284 \Device\Harddisk0\DR0\Partition0 - ok
00:49:03.0558 2284 Boot (0x1200) (4df67b752c774bfdd7a131655b89b6ac) \Device\Harddisk0\DR0\Partition1
00:49:03.0558 2284 \Device\Harddisk0\DR0\Partition1 - ok
00:49:03.0558 2284 Boot (0x1200) (b12fa59afe0898463d3e6680751f678e) \Device\Harddisk1\DR5\Partition0
00:49:03.0574 2284 \Device\Harddisk1\DR5\Partition0 - ok
00:49:03.0574 2284 ============================================================
00:49:03.0574 2284 Scan finished
00:49:03.0574 2284 ============================================================
00:49:03.0683 1184 Detected object count: 0
00:49:03.0683 1184 Actual detected object count: 0


and ASWMBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-19 00:51:51
-----------------------------
00:51:51.187 OS Version: Windows x64 6.1.7600
00:51:51.187 Number of processors: 2 586 0x170A
00:51:51.187 ComputerName: TERRI-PC UserName: Terri
00:51:51.982 Initialize success
00:53:38.952 AVAST engine defs: 12051801
00:54:00.699 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
00:54:00.714 Disk 0 Vendor: Hitachi_HTS545032B9A300 PB3OCA0G Size: 305245MB BusType: 11
00:54:00.745 Disk 0 MBR read successfully
00:54:00.745 Disk 0 MBR scan
00:54:00.745 Disk 0 Windows 7 default MBR code
00:54:00.761 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 292665 MB offset 63
00:54:00.792 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 12576 MB offset 599379968
00:54:00.855 Disk 0 scanning C:\Windows\system32\drivers
00:54:09.918 Service scanning
00:54:44.519 Modules scanning
00:54:44.519 Disk 0 trace - called modules:
00:54:44.535
00:54:45.720 AVAST engine scan C:\Windows
00:54:48.653 AVAST engine scan C:\Windows\system32
00:57:12.173 AVAST engine scan C:\Windows\system32\drivers
00:57:29.224 AVAST engine scan C:\Users\Terri
00:57:57.881 Disk 0 MBR has been saved successfully to "C:\Users\Terri\Desktop\MBR.dat"
00:57:57.897 The log file has been saved successfully to "C:\Users\Terri\Desktop\aswMBR.txt"


Thank you again

#6 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:50 AM

Posted 19 May 2012 - 08:37 AM

Enable the CD Emulators...

Run ComboFix and post the log for my review.

Also this log.

Third party programs if not up to date can be an open door for an infection

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

#7 TheAtomicToaster

TheAtomicToaster
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 19 May 2012 - 04:17 PM

ok here is Combofix


ComboFix 12-05-19.02 - Terri 05/19/2012 15:00:07.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3999.2970 [GMT -6:00]
Running from: c:\users\Terri\Downloads\ComboFix.exe
AV: CA Anti-Virus Plus *Disabled/Updated* {57B5C44D-AAB5-DBC9-741B-542BE5A132EA}
FW: CA Personal Firewall *Disabled* {6F8E4568-E0DA-DA91-5F44-FD1E1B727591}
SP: CA Anti-Virus Plus *Disabled/Updated* {ECD425A9-8C8F-D447-4EAB-6F599E267857}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((( Files Created from 2012-04-19 to 2012-05-19 )))))))))))))))))))))))))))))))
.
.
2012-05-19 21:09 . 2012-05-19 21:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-14 03:09 . 2012-05-14 03:09 -------- d-----w- c:\program files (x86)\Microsoft Windows 7 Upgrade Advisor
2012-05-14 02:43 . 2012-05-14 02:43 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-05-14 02:19 . 2012-03-03 05:40 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2012-05-14 02:19 . 2012-03-03 06:29 1541120 ----a-w- c:\windows\system32\DWrite.dll
2012-05-14 02:19 . 2012-03-03 06:29 320512 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-05-14 02:19 . 2012-03-03 06:29 1837568 ----a-w- c:\windows\system32\d3d10warp.dll
2012-05-14 02:19 . 2012-03-03 05:40 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2012-05-14 02:19 . 2012-03-03 05:40 1170944 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2012-05-14 02:19 . 2012-03-03 05:40 218624 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2012-05-14 02:19 . 2012-03-03 06:29 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2012-05-14 02:19 . 2012-03-03 06:29 902656 ----a-w- c:\windows\system32\d2d1.dll
2012-05-14 02:19 . 2012-03-03 05:40 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2012-05-14 02:07 . 2012-05-14 02:07 -------- d-----w- c:\program files (x86)\MSXML 4.0
2012-05-05 13:37 . 2012-05-05 13:37 -------- d-----w- c:\windows\SysWow64\Wat
2012-05-05 13:37 . 2012-05-05 13:37 -------- d-----w- c:\windows\system32\Wat
2012-05-05 13:31 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2012-05-05 13:31 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2012-05-05 13:19 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2012-05-05 13:19 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2012-05-05 12:19 . 2012-03-01 06:54 22896 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-05-05 12:19 . 2012-03-01 06:45 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-05-05 12:19 . 2012-03-01 06:40 80896 ----a-w- c:\windows\system32\imagehlp.dll
2012-05-05 12:19 . 2012-03-01 06:35 5120 ----a-w- c:\windows\system32\wmi.dll
2012-05-05 12:19 . 2012-03-01 05:49 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-05-05 12:19 . 2012-03-01 05:45 158720 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-05-05 12:19 . 2012-03-01 05:40 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-05-04 03:03 . 2009-11-25 18:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2012-05-04 03:03 . 2009-11-25 18:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2012-05-04 03:03 . 2009-11-25 18:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2012-05-04 03:03 . 2009-11-25 18:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2012-05-04 03:03 . 2009-11-25 18:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2012-05-04 03:03 . 2009-11-25 18:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2012-05-04 03:03 . 2009-11-25 18:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2012-05-04 03:03 . 2009-11-25 18:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2012-05-04 03:03 . 2009-11-25 18:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2012-05-04 03:03 . 2009-11-25 18:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2012-05-04 02:44 . 2012-05-04 02:44 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2012-05-04 02:28 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2012-05-04 02:28 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2012-05-03 23:56 . 2012-05-03 23:55 99024 ----a-w- c:\windows\system32\drivers\KmxFilter.sys
2012-05-03 23:56 . 2012-05-03 23:55 202320 ----a-w- c:\windows\system32\drivers\KmxCF.sys
2012-05-03 23:56 . 2012-05-03 23:55 143824 ----a-w- c:\windows\system32\drivers\KmxFw.sys
2012-05-03 23:51 . 2011-07-02 05:30 1422672 ----a-w- c:\windows\SysWow64\cfgmig32.dll
2012-05-03 23:51 . 2011-07-02 05:30 263504 ----a-w- c:\windows\SysWow64\cfgmig32.exe
2012-05-03 23:51 . 2011-05-30 08:12 95568 ----a-w- c:\windows\SysWow64\Vetredir.dll
2012-05-03 23:51 . 2011-05-30 08:12 103760 ----a-w- c:\windows\system32\Vetredir64.dll
2012-05-03 23:51 . 2011-05-30 08:12 141136 ----a-w- c:\windows\system32\Isafeif64.dll
2012-05-03 23:51 . 2011-05-30 08:12 128336 ----a-w- c:\windows\SysWow64\Isafeif.dll
2012-05-03 23:50 . 2011-06-29 20:23 289296 ----a-w- c:\windows\SysWow64\winsfinst_x64.exe
2012-05-03 23:50 . 2011-06-29 19:53 2990096 ----a-w- c:\windows\SysWow64\winsflte.dll
2012-05-03 23:20 . 2011-07-02 05:30 1422672 ----a-w- c:\windows\system32\cfgmig32.dll
2012-05-03 23:20 . 2011-05-30 08:12 257872 ----a-w- c:\windows\system32\isafprod64.dll
2012-05-03 23:20 . 2011-05-30 08:12 206160 ----a-w- c:\windows\SysWow64\Isafprod.dll
2012-05-03 23:18 . 2010-12-18 06:11 714752 ----a-w- c:\windows\system32\kerberos.dll
2012-05-03 23:17 . 2011-04-27 02:57 102400 ----a-w- c:\windows\system32\drivers\dfsc.sys
2012-05-03 23:16 . 2010-06-29 05:35 4582912 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe
2012-05-03 23:15 . 2011-11-17 07:10 340992 ----a-w- c:\windows\system32\schannel.dll
2012-05-03 23:13 . 2011-10-26 05:19 43520 ----a-w- c:\windows\system32\csrsrv.dll
2012-05-03 23:13 . 2012-01-03 06:24 515584 ----a-w- c:\windows\system32\timedate.cpl
2012-05-03 23:13 . 2012-01-03 05:44 478208 ----a-w- c:\windows\SysWow64\timedate.cpl
2012-05-03 23:13 . 2011-02-24 06:30 476160 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2012-05-03 23:13 . 2011-02-24 05:32 288256 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2012-05-03 23:13 . 2010-08-21 06:31 633856 ----a-w- c:\windows\system32\comctl32.dll
2012-05-03 23:13 . 2010-08-21 05:33 530432 ----a-w- c:\windows\SysWow64\comctl32.dll
2012-05-03 23:13 . 2011-02-18 06:37 612352 ----a-w- c:\windows\system32\vbscript.dll
2012-05-03 23:13 . 2011-02-18 05:36 428032 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-05-03 22:34 . 2010-08-21 06:29 558592 ----a-w- c:\windows\system32\spoolsv.exe
2012-05-03 22:32 . 2010-10-12 05:05 35328 ----a-w- c:\program files\Windows Mail\wabfind.dll
2012-05-03 22:31 . 2011-02-05 12:39 603976 ----a-w- c:\windows\system32\winload.exe
2012-05-03 22:31 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2012-05-03 22:31 . 2011-02-05 12:41 556928 ----a-w- c:\windows\system32\winresume.efi
2012-05-03 22:31 . 2011-02-05 12:41 640896 ----a-w- c:\windows\system32\winload.efi
2012-05-03 22:31 . 2011-02-05 12:41 20352 ----a-w- c:\windows\system32\kdusb.dll
2012-05-03 22:31 . 2011-02-05 12:41 19328 ----a-w- c:\windows\system32\kd1394.dll
2012-05-03 22:31 . 2011-02-05 12:41 17792 ----a-w- c:\windows\system32\kdcom.dll
2012-05-03 22:31 . 2011-02-05 12:39 518160 ----a-w- c:\windows\system32\winresume.exe
2012-05-03 22:30 . 2011-10-26 05:22 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-05-03 22:30 . 2011-10-26 05:22 1572864 ----a-w- c:\windows\system32\quartz.dll
2012-05-03 22:30 . 2011-10-26 04:28 1328640 ----a-w- c:\windows\SysWow64\quartz.dll
2012-05-03 22:30 . 2011-10-26 04:28 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-05-03 22:27 . 2010-08-04 07:07 552960 ----a-w- c:\windows\system32\msdri.dll
2012-05-03 22:24 . 2012-05-03 22:24 -------- d-----w- c:\program files (x86)\Common Files\AnswerWorks 5.0
2012-05-03 22:24 . 2012-05-03 22:24 180356 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iGdi.dll
2012-05-03 22:24 . 2004-04-19 05:42 733184 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iKernel.dll
2012-05-03 22:24 . 2004-04-19 05:40 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\ctor.dll
2012-05-03 22:24 . 2004-04-19 05:39 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iscript.dll
2012-05-03 22:24 . 2004-04-19 05:39 172032 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iuser.dll
2012-05-03 22:24 . 2004-04-19 05:39 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\DotNetInstaller.exe
2012-05-03 22:24 . 2012-05-03 22:24 303236 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\setup.dll
2012-05-03 22:21 . 2012-05-03 22:21 -------- d-----w- c:\programdata\Intuit
2012-05-03 22:19 . 2012-05-03 22:19 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-03 22:19 . 2012-05-03 22:19 418464 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-05-03 22:18 . 2012-05-03 22:18 -------- d-----w- c:\windows\system32\Macromed
2012-05-03 22:18 . 2011-08-15 05:08 6144 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2012-05-03 22:18 . 2011-08-15 04:25 6144 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
2012-05-03 22:17 . 2010-12-18 06:12 3138048 ----a-w- c:\windows\system32\mstscax.dll
2012-05-03 22:17 . 2010-12-18 06:08 1097216 ----a-w- c:\windows\system32\mstsc.exe
2012-05-03 22:17 . 2010-12-18 05:30 2690560 ----a-w- c:\windows\SysWow64\mstscax.dll
2012-05-03 22:17 . 2010-12-18 05:26 1034240 ----a-w- c:\windows\SysWow64\mstsc.exe
2012-05-03 22:17 . 2010-09-01 05:14 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2012-05-03 22:17 . 2010-09-01 05:12 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2012-05-03 22:17 . 2010-09-01 04:26 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2012-05-03 22:17 . 2010-09-01 04:23 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2012-05-03 22:16 . 2011-02-18 06:33 31232 ----a-w- c:\windows\system32\prevhost.exe
2012-05-03 22:16 . 2011-02-18 05:33 31232 ----a-w- c:\windows\SysWow64\prevhost.exe
2012-05-03 22:16 . 2011-02-12 06:14 267776 ----a-w- c:\windows\system32\FXSCOVER.exe
2012-05-03 22:16 . 2011-12-16 08:42 634368 ----a-w- c:\windows\system32\msvcrt.dll
2012-05-03 22:16 . 2011-12-16 07:59 690688 ----a-w- c:\windows\SysWow64\msvcrt.dll
2012-05-03 22:16 . 2010-10-16 05:23 112000 ----a-w- c:\windows\system32\consent.exe
2012-05-03 22:16 . 2011-02-23 05:15 90624 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-05-03 22:16 . 2011-10-15 06:25 723456 ----a-w- c:\windows\system32\EncDec.dll
2012-05-03 22:16 . 2011-10-15 05:48 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2012-05-03 22:15 . 2012-04-18 09:03 8917360 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F8A393D7-C8F0-4E26-B4C5-01B4F2AA72B0}\mpengine.dll
2012-05-03 22:15 . 2011-08-27 05:40 861184 ----a-w- c:\windows\system32\oleaut32.dll
2012-05-03 22:15 . 2011-08-27 05:40 331776 ----a-w- c:\windows\system32\oleacc.dll
2012-05-03 22:15 . 2011-08-27 04:43 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2012-05-03 22:15 . 2011-08-27 04:43 233472 ----a-w- c:\windows\SysWow64\oleacc.dll
2012-05-03 22:11 . 2011-05-24 11:21 404992 ----a-w- c:\windows\system32\umpnpmgr.dll
2012-05-03 22:11 . 2011-05-24 10:34 64512 ----a-w- c:\windows\SysWow64\devobj.dll
2012-05-03 22:11 . 2011-05-24 10:34 44544 ----a-w- c:\windows\SysWow64\devrtl.dll
2012-05-03 22:11 . 2011-05-24 10:34 145920 ----a-w- c:\windows\SysWow64\cfgmgr32.dll
2012-05-03 22:11 . 2011-05-24 10:32 252928 ----a-w- c:\windows\SysWow64\drvinst.exe
2012-05-03 22:11 . 2010-08-27 06:14 236032 ----a-w- c:\windows\system32\srvsvc.dll
2012-05-03 22:11 . 2010-08-27 05:46 9728 ----a-w- c:\windows\SysWow64\sscore.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-03 12:29 . 2011-03-29 00:36 19352 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-05-03 01:22 . 2009-04-21 00:38 505392 ----a-w- c:\windows\SysWow64\msvcp71.dll
2012-05-03 01:22 . 2009-04-21 00:38 353840 ----a-w- c:\windows\SysWow64\msvcr71.dll
2012-05-03 01:22 . 2009-04-21 00:38 1053232 ----a-w- c:\windows\SysWow64\MFC71u.dll
2012-05-03 01:22 . 2009-04-21 00:38 1066544 ----a-w- c:\windows\SysWow64\MFC71.dll
2012-03-09 00:37 . 2012-03-09 00:37 302448 ----a-w- c:\windows\WLXPGSS.SCR
.
.
((((((((((((((((((((((((((((( SnapShot@2012-05-14_03.52.47 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-05-14 02:18 . 2011-03-11 05:37 74240 c:\windows\SysWOW64\fsutil.exe
+ 2012-05-19 06:38 . 2012-05-19 06:38 50124 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
+ 2012-05-03 12:19 . 2012-05-19 20:56 27150 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-05-19 20:56 32054 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2012-05-14 02:18 . 2011-03-11 06:15 96768 c:\windows\system32\fsutil.exe
- 2009-07-14 05:30 . 2012-05-05 13:36 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2009-07-14 05:30 . 2012-05-14 19:54 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2012-05-14 02:18 . 2011-03-11 04:31 91136 c:\windows\system32\DriverStore\FileRepository\usbstor.inf_amd64_neutral_dd8b7470ecdd8b8b\USBSTOR.SYS
+ 2012-05-14 02:18 . 2011-03-25 03:22 30720 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbuhci.sys
+ 2012-05-14 02:18 . 2011-03-25 03:22 25600 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbohci.sys
+ 2012-05-14 02:18 . 2011-03-25 03:22 52224 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbehci.sys
+ 2012-05-14 02:18 . 2011-03-25 03:23 98816 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_d378b476be3d939d\usbccgp.sys
+ 2012-05-14 02:18 . 2011-04-28 03:58 80384 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\BTHUSB.SYS
+ 2009-07-14 00:06 . 2009-07-14 00:06 41984 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\bthenum.sys
+ 2012-05-14 02:18 . 2011-03-11 06:22 27008 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_66a166f5508d8f1c\amdxata.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 30720 c:\windows\system32\drivers\usbuhci.sys
+ 2012-05-14 02:18 . 2011-03-25 03:22 30720 c:\windows\system32\drivers\usbuhci.sys
+ 2012-05-14 02:18 . 2011-03-11 04:31 91136 c:\windows\system32\drivers\USBSTOR.SYS
+ 2012-05-14 02:18 . 2011-03-25 03:22 25600 c:\windows\system32\drivers\usbohci.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 25600 c:\windows\system32\drivers\usbohci.sys
+ 2012-05-14 02:18 . 2011-03-25 03:22 52224 c:\windows\system32\drivers\usbehci.sys
+ 2012-05-14 02:18 . 2011-03-25 03:23 98816 c:\windows\system32\drivers\usbccgp.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 98816 c:\windows\system32\drivers\usbccgp.sys
+ 2012-05-14 02:18 . 2012-03-17 07:55 75632 c:\windows\system32\drivers\partmgr.sys
+ 2012-05-14 02:18 . 2011-03-11 06:22 27008 c:\windows\system32\drivers\amdxata.sys
- 2012-05-03 01:58 . 2012-05-14 03:12 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2012-05-03 01:58 . 2012-05-14 19:57 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2012-05-03 01:58 . 2012-05-14 03:12 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2012-05-03 01:58 . 2012-05-14 19:57 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-05-14 03:12 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-05-14 19:57 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-05-03 02:35 . 2012-05-19 20:55 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2012-05-03 02:35 . 2012-05-05 13:42 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:46 . 2012-05-15 03:48 78432 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
- 2012-05-03 02:35 . 2012-05-05 13:42 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2012-05-03 02:35 . 2012-05-19 20:55 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2012-05-03 02:35 . 2012-05-19 20:55 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2012-05-03 02:35 . 2012-05-05 13:42 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-05-03 02:39 . 2012-05-19 20:55 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2012-05-03 02:39 . 2012-05-14 03:41 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2012-05-03 02:39 . 2012-05-19 20:55 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2012-05-03 02:39 . 2012-05-14 03:41 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-11-22 05:57 . 2011-11-22 05:57 68880 c:\windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
+ 2011-12-15 20:01 . 2011-12-15 20:01 68880 c:\windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 57616 c:\windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 57616 c:\windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 11120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 11120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 62880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Windows.ApplicationServer.Applications\v4.0_4.0.0.0__31bf3856ad364e35\Microsoft.Windows.ApplicationServer.Applications.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 62880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Windows.ApplicationServer.Applications\v4.0_4.0.0.0__31bf3856ad364e35\Microsoft.Windows.ApplicationServer.Applications.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2012-05-05 13:14 . 2012-05-05 13:14 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 94552 c:\windows\Microsoft.NET\assembly\GAC_64\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 94552 c:\windows\Microsoft.NET\assembly\GAC_64\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 91488 c:\windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 91488 c:\windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2012-05-05 13:36 . 2012-05-05 13:36 49936 c:\windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe
+ 2012-05-14 05:18 . 2012-05-14 05:18 49936 c:\windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe
+ 2009-04-21 00:34 . 2012-05-14 05:29 35088 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\oisicon.exe
- 2009-04-21 00:34 . 2012-05-05 13:23 35088 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\oisicon.exe
+ 2009-04-21 00:34 . 2012-05-14 05:29 18704 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-04-21 00:34 . 2012-05-05 13:23 18704 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\mspicons.exe
+ 2009-04-21 00:34 . 2012-05-14 05:29 20240 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\cagicon.exe
- 2009-04-21 00:34 . 2012-05-05 13:23 20240 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\cagicon.exe
- 2012-05-05 13:36 . 2012-05-05 13:36 35600 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2012-05-14 05:29 . 2012-05-14 05:29 35600 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2012-05-04 02:37 . 2012-05-14 05:16 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
- 2012-05-04 02:37 . 2012-05-04 02:37 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2012-05-14 05:29 . 2012-05-14 05:29 10752 c:\windows\assembly\NativeImages_v4.0.30319_64\dfsvc\5ea625ce2d6c08687f70cb81a003a28b\dfsvc.ni.exe
+ 2012-05-14 05:29 . 2012-05-14 05:29 58368 c:\windows\assembly\NativeImages_v4.0.30319_64\Accessibility\061cbee19075e086d675a9e1f65725d7\Accessibility.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 96768 c:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationProvider\05787d96761cf20b76b927ace10ef1d3\UIAutomationProvider.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 71680 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Applicat#\9b418f37f4594806e1f4b0ed6d083a95\System.Web.ApplicationServices.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 82432 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\d09c237ee72af3935f1a01388ef8e315\System.ServiceModel.Channels.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 78848 c:\windows\assembly\NativeImages_v4.0.30319_32\System.AddIn.Contra#\59be5fb54e018032511415f0b0523ee3\System.AddIn.Contract.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 11776 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualC\46f273930666397a8cb538ffe9190eef\Microsoft.VisualC.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 44544 c:\windows\assembly\NativeImages_v4.0.30319_32\Accessibility\62c1a496dff99a6e5f5e4278d31ca4c1\Accessibility.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 61952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCFFRast#\cc29df25d166ceed89d259b00e2bba9e\PresentationCFFRasterizer.ni.dll
+ 2012-05-14 19:58 . 2012-05-14 19:58 32256 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualC\e0e2b0cdfa700bc21e09ddac3a9b46cc\Microsoft.VisualC.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 78848 c:\windows\assembly\NativeImages_v2.0.50727_64\Accessibility\0bc383bf9841cca7654fe938399b3a07\Accessibility.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\68b5806af0df6ce86027bacb7dc37233\UIAutomationProvider.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\99bb6d93ce5daed24761530fa32ed5f4\System.AddIn.Contract.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\8ac4be1ad8f1aae0c23366c9ce0724e0\PresentationCFFRasterizer.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\b69ac98f94e80b659eac618c6142ea9b\Microsoft.VisualC.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\34f340b0c113f7216a55dd7c82a69cc2\Accessibility.ni.dll
+ 2012-05-03 02:43 . 2012-05-19 20:56 4368 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1166908676-2555393917-1790539782-1000_UserData.bin
+ 2012-05-14 02:18 . 2011-03-25 03:22 7936 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbd.sys
+ 2012-05-14 02:18 . 2011-03-25 03:22 7936 c:\windows\system32\drivers\usbd.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 7936 c:\windows\system32\drivers\usbd.sys
+ 2012-05-19 20:54 . 2012-05-19 20:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-05-14 03:45 . 2012-05-14 03:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-05-19 20:54 . 2012-05-19 20:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-05-14 03:45 . 2012-05-14 03:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-05-19 21:06 . 2012-05-19 21:06 9728 c:\windows\assembly\NativeImages_v4.0.30319_32\dfsvc\fd866b4158c3bd2a26c875f2896c5573\dfsvc.ni.exe
+ 2012-05-03 22:52 . 2012-05-15 05:58 106666 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
- 2009-07-14 02:36 . 2012-05-05 13:14 624178 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-05-19 06:47 624178 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-05-19 06:47 106522 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-05-05 13:14 106522 c:\windows\system32\perfc009.dat
+ 2009-07-14 04:45 . 2012-05-14 19:57 350128 c:\windows\system32\FNTCACHE.DAT
- 2009-07-14 04:45 . 2012-05-05 13:40 350128 c:\windows\system32\FNTCACHE.DAT
+ 2009-07-14 05:30 . 2012-05-14 19:54 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2012-05-05 13:36 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2012-05-14 19:54 143360 c:\windows\system32\DriverStore\infstor.dat
- 2009-07-14 05:30 . 2012-05-05 13:36 143360 c:\windows\system32\DriverStore\infstor.dat
+ 2012-05-14 02:18 . 2011-03-25 03:23 324608 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbport.sys
+ 2012-05-14 02:18 . 2011-03-25 03:23 343040 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_36529aeb1510bb0c\usbhub.sys
+ 2012-05-14 02:18 . 2011-03-25 03:23 343040 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_d378b476be3d939d\usbhub.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 166272 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvstor.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 148352 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_38e464dbe521cc7f\nvraid.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 410496 c:\windows\system32\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0033117673c16921\iaStorV.sys
+ 2009-07-14 00:06 . 2009-07-14 01:39 229376 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\fsquirt.exe
+ 2012-05-14 02:18 . 2011-04-28 03:58 552448 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_6c7b4ac630551f33\bthport.sys
+ 2012-05-14 02:18 . 2011-03-11 06:22 107904 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_66a166f5508d8f1c\amdsata.sys
+ 2009-07-14 05:31 . 2012-05-14 19:54 399360 c:\windows\system32\DriverStore\drvindex.dat
- 2009-07-14 05:31 . 2012-05-05 13:36 399360 c:\windows\system32\DriverStore\drvindex.dat
+ 2012-05-14 02:18 . 2011-03-25 03:23 324608 c:\windows\system32\drivers\usbport.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 324608 c:\windows\system32\drivers\usbport.sys
+ 2012-05-14 02:18 . 2011-03-25 03:23 343040 c:\windows\system32\drivers\usbhub.sys
- 2009-07-14 00:07 . 2009-07-14 00:07 343040 c:\windows\system32\drivers\usbhub.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 187264 c:\windows\system32\drivers\storport.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 166272 c:\windows\system32\drivers\nvstor.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 148352 c:\windows\system32\drivers\nvraid.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 410496 c:\windows\system32\drivers\iaStorV.sys
+ 2012-05-14 02:18 . 2011-03-11 06:22 107904 c:\windows\system32\drivers\amdsata.sys
- 2009-07-14 05:01 . 2012-05-14 03:43 313912 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-05-19 07:01 313912 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-12-15 20:01 . 2011-12-15 20:01 226600 c:\windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationHost_v0400.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 156440 c:\windows\Microsoft.NET\Framework64\v4.0.30319\System.AddIn.dll
+ 2011-12-15 20:01 . 2011-12-15 20:01 598784 c:\windows\Microsoft.NET\Framework64\v4.0.30319\SOS.dll
- 2011-11-22 05:57 . 2011-11-22 05:57 598784 c:\windows\Microsoft.NET\Framework64\v4.0.30319\SOS.dll
+ 2012-05-14 02:19 . 2012-04-06 00:45 172128 c:\windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationHostDLL.dll
+ 2012-05-14 02:19 . 2012-01-04 02:48 486144 c:\windows\Microsoft.NET\Framework64\v2.0.50727\SOS.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 182056 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationHost_v0400.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 156440 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.AddIn.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 518400 c:\windows\Microsoft.NET\Framework\v4.0.30319\SOS.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 518400 c:\windows\Microsoft.NET\Framework\v4.0.30319\SOS.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 957200 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscordbi.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 957200 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscordbi.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 386824 c:\windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 131168 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 389888 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 364816 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 996112 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 236880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 236880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 156440 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 288616 c:\windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 288616 c:\windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 335712 c:\windows\Microsoft.NET\assembly\GAC_64\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 335712 c:\windows\Microsoft.NET\assembly\GAC_64\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 125440 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 125440 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 237424 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 237424 c:\windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 187776 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 187776 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2009-04-21 00:34 . 2012-05-14 05:29 888080 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-04-21 00:34 . 2012-05-05 13:23 888080 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
+ 2009-04-21 00:34 . 2012-05-14 05:29 922384 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\pptico.exe
- 2009-04-21 00:34 . 2012-05-05 13:23 922384 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\pptico.exe
- 2009-04-21 00:34 . 2012-05-05 13:23 217864 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe
+ 2009-04-21 00:34 . 2012-05-14 05:29 217864 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe
+ 2009-04-21 00:34 . 2012-05-14 05:29 184080 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe
- 2009-04-21 00:34 . 2012-05-05 13:23 184080 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe
+ 2010-03-18 19:16 . 2010-03-18 19:16 181096 c:\windows\Installer\$PatchCache$\Managed\DFC90B5F2B0FFA63D84FD16F6BF37C4B\4.0.30319\PresentationHostDLL_X86.dll
+ 2010-03-18 20:27 . 2010-03-18 20:27 225640 c:\windows\Installer\$PatchCache$\Managed\DFC90B5F2B0FFA63D84FD16F6BF37C4B\4.0.30319\PresentationHostDLL_AMD64.dll
+ 2011-09-16 02:41 . 2011-09-16 02:41 408936 c:\windows\Installer\$PatchCache$\Managed\00002119F20000000000000000F01FEC\12.0.6612\WINWORD.EXE
+ 2012-05-14 05:29 . 2012-05-14 05:29 432128 c:\windows\assembly\NativeImages_v4.0.30319_64\SMSvcHost\11fc863fa4f5092fca4f2ce25a9ac361\SMSvcHost.ni.exe
+ 2012-05-14 05:29 . 2012-05-14 05:29 279552 c:\windows\assembly\NativeImages_v4.0.30319_64\CustomMarshalers\0e81a3996f7cbff23fc01bea4185a918\CustomMarshalers.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 196096 c:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\0a80fd3af7e48eb9cc9099fee5814dff\UIAutomationTypes.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 393216 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\4837a5c6204d53e7aa4f7dd94b98207c\System.Xml.Linq.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 189440 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Inpu#\c477bbff1e4662263255a1bf17bd9c2a\System.Windows.Input.Manipulations.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 649728 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\67a386434938003bceb0752e979dabb3\System.Transactions.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 221696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\d96e221bdd83feea8740868125d7bf65\System.ServiceProcess.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 369664 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\dc86fe1c7a6e3a7ce9e9c1f13d9b1e8e\System.ServiceModel.Routing.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 736768 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Security\5a3beae8b211b91bfc620c029cf4c2d4\System.Security.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 311296 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\5a4d233916a69d48fa12a9f7f103d893\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 762880 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\65f0d70169a0e73b45307dddbd86f92b\System.Runtime.Remoting.ni.dll
+ 2012-05-14 05:23 . 2012-05-14 05:23 145408 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\7b7719d46a4da2e91e8c501347e48ab9\System.Numerics.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 657408 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Net\dd25ddcfa0417d40e3f1385e30abcd6f\System.Net.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 626176 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Messaging\60f64e6d09e2c943944eded90b0514ad\System.Messaging.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 395264 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Management.I#\08397796343d5730a29f42e61c7f6ee7\System.Management.Instrumentation.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 413696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.IO.Log\ff1250d2409bd16283c423650d6fd3f6\System.IO.Log.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 229888 c:\windows\assembly\NativeImages_v4.0.30319_32\System.IdentityMode#\e60675d3ba7fa94924489dc8466ebff5\System.IdentityModel.Selectors.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 236032 c:\windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\bb40644f323a93fa9bc09be350918ef3\System.EnterpriseServices.Wrapper.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 787456 c:\windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\bb40644f323a93fa9bc09be350918ef3\System.EnterpriseServices.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 377856 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Dynamic\a9b1e597aaa263dea2cf8754440bd271\System.Dynamic.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 470528 c:\windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\e41e86da56bb60523251e0e08210a77b\System.DirectoryServices.Protocols.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 913920 c:\windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\94d45f7f28d81304d7fa83bcea849141\System.DirectoryServices.AccountManagement.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 112640 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Device\4c50d8a951546d6dffdc8bcb23f47a7b\System.Device.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 134656 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.DataSet#\7803f4398a527a87d5cace8023e93e8b\System.Data.DataSetExtensions.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 982528 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\623d2a0f11dd82bb9bc13d1cb981b239\System.Configuration.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 148480 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuratio#\977c7c2badf6a9059ba8371a0f645fc8\System.Configuration.Install.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 693760 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\877ef74350e6d374ca8f80b489a8cc8e\System.ComponentModel.Composition.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 194048 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\4330e93f9d0ef85f1a972e11c2ac5156\System.ComponentModel.DataAnnotations.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 624128 c:\windows\assembly\NativeImages_v4.0.30319_32\System.AddIn\0c67d9fc14856eb7d8b4e405aef79960\System.AddIn.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 411136 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.D#\2b046f2d5f056b906d7b25b75ca23575\System.Activities.DurableInstancing.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 317952 c:\windows\assembly\NativeImages_v4.0.30319_32\SMSvcHost\4847f66153121ec4ed532909f7c152be\SMSvcHost.ni.exe
+ 2012-05-19 21:06 . 2012-05-19 21:06 143360 c:\windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\bb97517e4ca64e02282fca24612ce8ad\SMDiagnostics.ni.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 309760 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\ef6e3eb351fe12a5766be7c956c35d95\PresentationFramework.Classic.ni.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 387072 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\e49a124fdad0f1db135f03a49f18fb48\PresentationFramework.Royale.ni.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 595968 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\a5fa2a1cfc6e9fdc39d9a8f2baa57bc9\PresentationFramework.Aero.ni.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 755712 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\141f0a8fbfb83604fa3dd43dbe8fa0f4\PresentationFramework.Luna.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 303104 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\71a317e85628917b1e67260adf87386b\Microsoft.VisualBasic.Compatibility.Data.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 418816 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Transacti#\01c5ff7a1ea0463414736df5d449e0a9\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 194048 c:\windows\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\f11d5fea7ded12068e8cdb8b2f1bdbd9\CustomMarshalers.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 253952 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationTypes\f0e602dd94327e6eea126e72cb24c4a3\UIAutomationTypes.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 120832 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\ef1cc397129c81ecb60431633b7d6f94\UIAutomationProvider.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 261120 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.RegularE#\9a541383d78143dc386512b092cb58a9\System.Web.RegularExpressions.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 921600 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Transactions\348482b8eb60eb9595a313ed706fa074\System.Transactions.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 295424 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\d97a2e8d3ec212c982cd2923d5ca28a2\System.ServiceProcess.ni.dll
+ 2012-05-14 19:59 . 2012-05-14 19:59 928768 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Security\3fbac653667adb06ac98561f57049751\System.Security.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 396288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\3805923cd6a0d7c9c4c872c1ede4619d\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 446464 c:\windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\b48bd4bfbc25e5fb2b6bbc0627bb7aad\System.EnterpriseServices.Wrapper.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 288768 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Drawing.Desi#\a99929dc0a4fc6ac6081fc08e00ab34f\System.Drawing.Design.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 649728 c:\windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\3d2da45f50b57ab5871ff32fa9a0fa71\System.DirectoryServices.Protocols.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 192000 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Configuratio#\58d7e28f550aa89ebc5046b960525b46\System.Configuration.Install.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 890880 c:\windows\assembly\NativeImages_v2.0.50727_64\System.AddIn\eb850c90fad10f90fa495be2efa5d8ec\System.AddIn.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 156672 c:\windows\assembly\NativeImages_v2.0.50727_64\System.AddIn.Contra#\236fe667af3ca016ae66a5b08fb94bd8\System.AddIn.Contract.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 279040 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\dc82ea5f368056cb5340c270bb75becb\PresentationFramework.Classic.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 620544 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\76933856fb4dd9f9cf17136aac2ca38c\PresentationFramework.Luna.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 463360 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\5a95213214431ffa96c6e4dbfa36345e\PresentationFramework.Aero.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 317440 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\57138d0d992b152869c9bb250e9d3735\PresentationFramework.Royale.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 185344 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\5e398c245811fe932ce6bcf68664e307\UIAutomationTypes.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 401408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\496033ebd93c3381e4ba09486bf23cc3\System.Xml.Linq.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\e6a25bb61babf2ad6d6fa3256a2ea41a\System.Web.RegularExpressions.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\dd6c826f6b01cd426a0b0f296e483947\System.Web.Abstractions.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\61fbbd8bc7d76972115b292b132ff2d1\System.Transactions.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\c06efd2e3e05e4e3231904d543240c20\System.ServiceProcess.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 680960 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\61af058c2bc079f28397a29ed145fbc7\System.Security.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 310784 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\35fcbda2532ece23d09a044aa2ef62a4\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 593408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Messaging\817e1d01a48cec4f9ef66528d479f18b\System.Messaging.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\f93d41cf41160cc660aea5eb8be181d6\System.IdentityModel.Selectors.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\558fa6c6131f14af258f94291a5d19d6\System.EnterpriseServices.Wrapper.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 628224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\558fa6c6131f14af258f94291a5d19d6\System.EnterpriseServices.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\3cf93ee533ca0e7e02c7ca3fff5a4bb2\System.Drawing.Design.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\77fb2ee5038b95bb20353a305918df9e\System.DirectoryServices.Protocols.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 946176 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\4c7d1e5492f79ac7217577e45a06f559\System.Data.Services.Client.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 356864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\35dfab6426c2a64cae53944e19623dca\System.Data.Services.Design.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\f96bc91c85c7aafc6cc0f04742359564\System.Configuration.Install.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 634368 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\db477bc003958f524c72bc30040f0899\System.AddIn.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\26a852935ab27c328a148effb43a76bf\SMDiagnostics.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fcdfda3443709bbe8d0a44cf2e0e1660\PresentationFramework.Classic.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc626095c194be137bceb219934b06a7\PresentationFramework.Aero.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d85fc1508cff1e635f87b4afb4f4cc9a\PresentationFramework.Luna.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\056f7ed4e914569f97b47631c0ade534\PresentationFramework.Royale.ni.dll
+ 2012-05-19 21:04 . 2012-05-19 21:04 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\1d948af5bf966ad1277936a6e30f91e3\ComSvcConfig.ni.exe
+ 2012-05-19 21:04 . 2012-05-19 21:04 621568 c:\windows\assembly\NativeImages_v2.0.50727_32\BDATunePIA\7ac2fa31914eca722b63ebd994550211\BDATunePIA.ni.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
- 2009-07-14 00:35 . 2009-06-10 21:14 532480 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 532480 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2012-05-14 02:19 . 2012-04-06 00:45 357376 c:\windows\assembly\GAC_64\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2009-07-14 01:01 . 2009-06-10 20:30 357376 c:\windows\assembly\GAC_64\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 368640 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2009-07-14 00:35 . 2009-06-10 21:14 368640 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2012-05-14 02:18 . 2012-04-02 04:46 3902320 c:\windows\SysWOW64\ntoskrnl.exe
- 2012-05-05 12:35 . 2012-03-06 05:59 3902320 c:\windows\SysWOW64\ntoskrnl.exe
- 2012-05-05 12:35 . 2012-03-06 05:59 3958128 c:\windows\SysWOW64\ntkrnlpa.exe
+ 2012-05-14 02:18 . 2012-04-02 04:46 3958128 c:\windows\SysWOW64\ntkrnlpa.exe
+ 2012-05-14 02:18 . 2011-03-11 05:39 1686016 c:\windows\SysWOW64\esent.dll
+ 2012-05-14 02:18 . 2012-04-02 03:01 3143680 c:\windows\system32\win32k.sys
- 2009-07-14 00:03 . 2009-07-14 01:41 1402880 c:\windows\system32\spool\drivers\x64\3\JNWDRV.dll
+ 2012-05-14 02:18 . 2012-04-02 05:24 1402880 c:\windows\system32\spool\drivers\x64\3\JNWDRV.dll
- 2012-05-05 12:35 . 2012-03-06 06:43 5504880 c:\windows\system32\ntoskrnl.exe
+ 2012-05-14 02:18 . 2012-04-02 05:34 5504880 c:\windows\system32\ntoskrnl.exe
+ 2012-05-14 02:18 . 2011-03-11 06:18 2566144 c:\windows\system32\esent.dll
+ 2012-05-14 02:18 . 2012-03-30 11:09 1895280 c:\windows\system32\drivers\tcpip.sys
+ 2012-05-14 02:18 . 2011-03-11 06:23 1657216 c:\windows\system32\drivers\ntfs.sys
- 2009-07-14 04:45 . 2012-05-14 03:11 3834178 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 04:45 . 2012-05-14 19:59 3834178 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2012-01-19 19:08 . 2012-01-19 19:08 1369872 c:\windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WindowsBase.dll
+ 2012-01-19 19:08 . 2012-01-19 19:08 6429992 c:\windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationFramework.dll
+ 2012-01-19 19:52 . 2012-01-19 19:52 3825952 c:\windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationCore.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 5029160 c:\windows\Microsoft.NET\Framework64\v4.0.30319\System.Windows.Forms.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 3512072 c:\windows\Microsoft.NET\Framework64\v4.0.30319\System.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 3512072 c:\windows\Microsoft.NET\Framework64\v4.0.30319\System.dll
+ 2011-12-15 20:01 . 2011-12-15 20:01 4970768 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorlib.dll
- 2011-11-22 05:57 . 2011-11-22 05:57 4970768 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorlib.dll
+ 2011-12-15 20:01 . 2011-12-15 20:01 1455376 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscordbi.dll
- 2011-11-22 05:57 . 2011-11-22 05:57 1455376 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscordbi.dll
- 2011-11-22 05:57 . 2011-11-22 05:57 1515792 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscordacwks.dll
+ 2011-12-15 20:01 . 2011-12-15 20:01 1515792 c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscordacwks.dll
+ 2011-12-15 20:01 . 2011-12-15 20:01 1512712 c:\windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
- 2011-11-22 05:57 . 2011-11-22 05:57 9793280 c:\windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
+ 2011-12-15 20:01 . 2011-12-15 20:01 9793280 c:\windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
+ 2012-05-14 02:19 . 2012-04-06 00:45 2255952 c:\windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
+ 2012-05-14 02:19 . 2012-03-21 22:28 5025792 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Windows.Forms.dll
- 2012-05-03 22:21 . 2011-03-29 22:26 5025792 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Windows.Forms.dll
- 2012-05-03 22:32 . 2011-10-31 23:16 3182592 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.dll
+ 2012-05-14 02:19 . 2012-01-04 02:48 3182592 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.dll
+ 2012-05-14 02:19 . 2012-01-04 02:48 4567040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorlib.dll
- 2012-05-03 23:18 . 2011-07-08 22:32 4567040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorlib.dll
+ 2012-05-14 02:19 . 2012-01-04 02:48 1577744 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
+ 2012-05-14 02:19 . 2012-01-04 02:48 1765136 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscordacwks.dll
+ 2012-01-19 19:08 . 2012-01-19 19:08 1369872 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WindowsBase.dll
+ 2012-01-19 19:08 . 2012-01-19 19:08 6429992 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationFramework.dll
+ 2012-01-19 19:08 . 2012-01-19 19:08 3790112 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationCore.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 5029160 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Windows.Forms.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 3512072 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 3512072 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 5201168 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorlib.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 5201168 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorlib.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 1143568 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscordacwks.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 1143568 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscordacwks.dll
+ 2011-12-15 19:08 . 2011-12-15 19:08 6727424 c:\windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
- 2011-11-22 04:31 . 2011-11-22 04:31 6727424 c:\windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 1737296 c:\windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
+ 2012-05-14 02:19 . 2012-03-21 22:29 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
- 2012-05-03 22:21 . 2011-03-29 22:31 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2012-05-03 22:32 . 2011-10-31 23:17 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 5917456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
- 2012-05-03 23:18 . 2011-07-08 22:35 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 1369872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 3512072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 3512072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 5029160 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 6097256 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 6097256 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 1354584 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 1354584 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 6429992 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 3116376 c:\windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 3116376 c:\windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 3825952 c:\windows\Microsoft.NET\assembly\GAC_64\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 4970768 c:\windows\Microsoft.NET\assembly\GAC_64\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 4970768 c:\windows\Microsoft.NET\assembly\GAC_64\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 3563408 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 3563408 c:\windows\Microsoft.NET\assembly\GAC_64\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 2975064 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 2975064 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 3790112 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 5201168 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 5201168 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
- 2012-05-05 13:14 . 2012-05-05 13:14 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2012-05-14 05:26 . 2012-05-14 05:26 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2012-04-05 04:38 . 2012-04-05 04:38 2831360 c:\windows\Installer\478c60.msp
+ 2012-04-29 03:44 . 2012-04-29 03:44 9101824 c:\windows\Installer\478c57.msp
+ 2012-04-29 03:44 . 2012-04-29 03:44 9586176 c:\windows\Installer\478c45.msp
+ 2012-04-05 04:38 . 2012-04-05 04:38 3620864 c:\windows\Installer\478beb.msp
+ 2012-03-15 08:24 . 2012-03-15 08:24 1795584 c:\windows\Installer\478be2.msp
+ 2012-04-29 03:43 . 2012-04-29 03:43 8459264 c:\windows\Installer\478bc0.msp
+ 2012-02-17 14:45 . 2012-02-17 14:45 2299392 c:\windows\Installer\478bb7.msp
- 2009-04-21 00:34 . 2012-05-05 13:23 1172240 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe
+ 2009-04-21 00:34 . 2012-05-14 05:29 1172240 c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe
+ 2012-05-14 05:29 . 2012-05-14 05:29 2009600 c:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.CSharp\1ff62486cdefbfc2dab41b686a9aa4e2\Microsoft.CSharp.ni.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 3858432 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\568a3f5fb8fba4184c0d60bfb40a205c\WindowsBase.ni.dll
+ 2012-05-14 05:23 . 2012-05-14 05:23 9091584 c:\windows\assembly\NativeImages_v4.0.30319_32\System\6f9f0467e8b2dd3f69b015c8e30ac945\System.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 5617664 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d1f299160424bad90fe9f658661389e2\System.Xml.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1782272 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\d234eceae699d070b5a5712ce776c01f\System.Xaml.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 4545024 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Form#\dbf1ad6d474e9a53467a625d583df2ec\System.Windows.Forms.DataVisualization.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 1885696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\b37cc0aa41e7feaba9f290da4da91d71\System.Web.Services.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 2012160 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Speech\f368c85283c4e6c9650dd1c8d369dcc5\System.Speech.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 1140736 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\ec057796972ce41b751eaa3a8306fbcb\System.ServiceModel.Discovery.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 1393152 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\5055b60e339143bbace5871f5fe4b114\System.ServiceModel.Activities.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 2647040 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\8a9fac9cb825b5d2db0bdb867fff940e\System.Runtime.Serialization.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1021952 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\79ac99fe5274fb82ffcff2c15f71854c\System.Runtime.DurableInstancing.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 1060864 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Printing\2a5d3d1de001807ca96c5853e8243df6\System.Printing.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 1218560 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Management\0c2b0d52156447592f33edf4116b7e7d\System.Management.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 1072640 c:\windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\bd28f26b18b8ffeee1a0fbaa98f5810e\System.IdentityModel.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 1653248 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\ee7975d7a04786153df726008c62d44b\System.Drawing.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1172992 c:\windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\0fe1e56d17858b6156a3a46330f75f27\System.DirectoryServices.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1879040 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\fdbf117eb502bcf7ea9b4f5af98889ee\System.Deployment.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 6815232 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data\99d0f7ba920eea1117e45dcd9fec0eb5\System.Data.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 2550272 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.SqlXml\fdb98c6d783fe167c1dc0022f27b7cd6\System.Data.SqlXml.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 1343488 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Service#\b894a1df3e6d58ada8f1aa303465ca23\System.Data.Services.Client.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 2517504 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Linq\82c0c56ff8259e1440cfd0d5727a26d8\System.Data.Linq.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 7069184 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Core\ed91b57205429a23bb91f4499059a459\System.Core.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 4129280 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities\51025a1c89f6fd752a5396a059d608b2\System.Activities.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 3757568 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.P#\b1ce26c14c922bdc5d45b0ab6b48e111\System.Activities.Presentation.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 1546752 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.C#\66893548d2b2cad29cabf3b3578f356f\System.Activities.Core.Presentation.ni.dll
+ 2012-05-19 21:07 . 2012-05-19 21:07 2906624 c:\windows\assembly\NativeImages_v4.0.30319_32\ReachFramework\0b61a086e3bec9ddde1a1a4722a9142d\ReachFramework.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1640448 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationUI\6059daaa173546e091cb234a96132408\PresentationUI.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1838080 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\75684af3794c47e8262049062eb0c8e8\Microsoft.VisualBasic.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1139200 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\4ad379c4a003563baf0913d6c9dadce8\Microsoft.VisualBasic.Compatibility.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1172480 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\42a7f127f3fda82fb12c6a6e144d08c1\Microsoft.VisualBasic.Activities.Compiler.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 1085952 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Transacti#\9a37f4e64ce5b856ac3892fef064c7de\Microsoft.Transactions.Bridge.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 2452480 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.JScript\cfcc92c125ddfaabad24abe61cfc0471\Microsoft.JScript.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 1616896 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.CSharp\9912b6d76c1017b5af6ef24730f550ca\Microsoft.CSharp.ni.dll
+ 2012-05-14 19:59 . 2012-05-14 19:59 4927488 c:\windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\7cdb4f5d0ff25c672e52a333ee394bb8\WindowsBase.ni.dll
+ 2012-05-14 19:59 . 2012-05-14 19:59 6948864 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 2707456 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Workflow.Run#\47b1ab994a04ce5c86ebce127aee0cdc\System.Workflow.Runtime.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 5955072 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Workflow.Com#\e7e0ad2f3ed3c7203c24c77d98c1670a\System.Workflow.ComponentModel.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 3895296 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Workflow.Act#\0d68477ba04942bd85c218cfd5e12cff\System.Workflow.Activities.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 2291712 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Services\fedfcde924e0675f0d54fdc9c99a384c\System.Web.Services.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 1022976 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\17bf0932e5c6cb8ba59046456f13328d\System.Runtime.Remoting.ni.dll
+ 2012-05-14 20:01 . 2012-05-14 20:01 1453568 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Printing\60dee738fe21bb0e9f09fb5a0a66f0e8\System.Printing.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 1081344 c:\windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\b48bd4bfbc25e5fb2b6bbc0627bb7aad\System.EnterpriseServices.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 2311168 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\532c0144e9fb0ed6359b347bcf23273b\System.Drawing.ni.dll
+ 2012-05-14 20:01 . 2012-05-14 20:01 1640448 c:\windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\09fa848feffe98e25571f12ba6533b71\System.DirectoryServices.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 2444288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Deployment\3d26045e8d750ce8a49a459ef9b62eb8\System.Deployment.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 8692736 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data\d223792883556acb200a74d695a1c2c5\System.Data.ni.dll
+ 2012-05-14 19:59 . 2012-05-14 19:59 3461632 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.SqlXml\e2bf05478288e42b7d5b3953303b43ea\System.Data.SqlXml.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 1506816 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.OracleC#\a3f0cb65205bc8101de152a3049efa53\System.Data.OracleClient.ni.dll
+ 2012-05-14 19:59 . 2012-05-14 19:59 1308160 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\dcadcfb938ccdd3f70859fdcdd329ec5\System.Configuration.ni.dll
+ 2012-05-14 20:01 . 2012-05-14 20:01 3101696 c:\windows\assembly\NativeImages_v2.0.50727_64\ReachFramework\8ffee14a3b38799d0707712d4ba2d0e7\ReachFramework.ni.dll
+ 2012-05-14 20:01 . 2012-05-14 20:01 2109952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationUI\f66de669bd9d7fc342118ae8858a0117\PresentationUI.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 3325952 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 7952384 c:\windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 5453312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 1914880 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\5200c29898fe3425993ac296aa658b46\System.Workflow.Runtime.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\88042529c71aa32d415a0fe094dbb459\System.Workflow.ComponentModel.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 2994688 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\f0760070fd89f22de038782bfd91f260\System.Workflow.Activities.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\d22418c5321007d35bb4fd24b45b1193\System.Web.Services.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 2403840 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\ddf88eb64893c9142ea5e0d645916e07\System.Web.Extensions.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 1705984 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\b744ac6047519b7b186db4d77a78ca0c\System.ServiceModel.Web.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 2347008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\3848d7865bda88a9e94e03480b5ada2f\System.Runtime.Serialization.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\fe45d275c0294f519c0967de19ee0aac\System.Printing.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 1072128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\f77eb3dd20db5f2277636d4e700a2a2a\System.IdentityModel.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 1586688 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\bbf2cf8dd0409f1ccc989406e2942dac\System.Drawing.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 1117184 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\027d378a0f7111c18fb687d2948088a9\System.DirectoryServices.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 1806848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\de5fff0e6854fd1e93f0a6807f46e284\System.Deployment.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 6618624 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\294d439cfe959b5528ca81d37d3d502f\System.Data.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 2508288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\e8dd334aba14a540d9ac95e372564310\System.Data.SqlXml.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\e05825b235c398d3148bbac51abab75d\System.Data.OracleClient.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 2516992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\98bbe3c24de8dfbbfa6faa685fac7632\System.Data.Linq.ni.dll
+ 2012-05-19 21:06 . 2012-05-19 21:06 9921024 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\e7f8e31dd8f015e08388619be47e632c\System.Data.Entity.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\c366ebd7f33816762268154efc68176d\System.Core.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 2147328 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\937353a3b00a4f47d3c9f022d008936c\ReachFramework.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 1658368 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\8d025cd9dffe9c948a98203bf6a7f322\PresentationUI.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 1092608 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\7f5335e134e48d154c8cc8aa5d1d9cce\Microsoft.Transactions.Bridge.ni.dll
- 2012-05-03 23:12 . 2010-03-02 23:24 1249280 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 1249280 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2012-05-03 22:32 . 2011-10-31 23:17 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2012-05-14 02:19 . 2012-03-21 22:29 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2012-05-03 22:21 . 2011-03-29 22:31 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 5279744 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
- 2012-05-03 23:12 . 2010-03-02 23:24 5279744 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2012-05-14 02:19 . 2012-04-06 00:45 2255952 c:\windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
+ 2012-05-14 02:19 . 2012-04-06 00:45 3997696 c:\windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-03 23:18 . 2011-07-08 22:32 4567040 c:\windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-05-14 02:19 . 2012-01-04 02:48 4567040 c:\windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 1737296 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
+ 2012-05-14 02:19 . 2012-04-06 00:49 4214784 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-03 23:12 . 2010-03-02 23:24 4214784 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-03 23:18 . 2011-07-08 22:35 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-05-14 02:19 . 2012-01-04 02:51 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2009-07-14 02:34 . 2012-05-14 02:08 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2009-07-14 02:34 . 2012-05-19 21:08 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2012-05-14 02:19 . 2012-01-04 02:48 10005264 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
+ 2012-01-19 20:20 . 2012-01-19 20:20 11997696 c:\windows\Installer\478c33.msp
+ 2011-12-15 20:54 . 2011-12-15 20:54 39732736 c:\windows\Installer\478c26.msp
+ 2012-05-14 05:16 . 2012-05-14 05:16 20343808 c:\windows\Installer\478ba7.msp
+ 2011-09-16 02:42 . 2011-09-16 02:42 18115432 c:\windows\Installer\$PatchCache$\Managed\00002119F20000000000000000F01FEC\12.0.6612\WWLIB.DLL
+ 2012-05-14 05:23 . 2012-05-14 05:23 11880448 c:\windows\assembly\NativeImages_v4.0.30319_64\System\935aea6e7eae16674abdd96a68ec97af\System.ni.dll
+ 2012-05-14 05:29 . 2012-05-14 05:29 10440192 c:\windows\assembly\NativeImages_v4.0.30319_64\System.Core\b64f213e823a591607c45fac4997801e\System.Core.ni.dll
+ 2012-05-14 05:23 . 2012-05-14 05:23 19353600 c:\windows\assembly\NativeImages_v4.0.30319_64\mscorlib\6087fce8f76d9af69af496cb10b7d1ee\mscorlib.ni.dll
+ 2012-05-14 05:24 . 2012-05-14 05:24 13138432 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\57a4cb79e5e78482ed20705145cdece9\System.Windows.Forms.ni.dll
+ 2012-05-19 21:09 . 2012-05-19 21:09 18058752 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\cfece6f67593b4d8bb58d23b7fdcc470\System.ServiceModel.ni.dll
+ 2012-05-19 21:08 . 2012-05-19 21:08 13345792 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Entity\7aa839fb16503243d6ae454ab334bcf4\System.Data.Entity.ni.dll
+ 2012-05-14 05:28 . 2012-05-14 05:28 18000896 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7e2238b8fa0f33ae39b63de73d5024a0\PresentationFramework.ni.dll
+ 2012-05-14 05:27 . 2012-05-14 05:27 11451904 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\e5b4cfcb67e63b4fc7119c4ac1072603\PresentationCore.ni.dll
+ 2012-05-14 05:23 . 2012-05-14 05:23 14412800 c:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3953b1d8b9b57e4957bff8f58145384e\mscorlib.ni.dll
+ 2012-05-14 19:59 . 2012-05-14 19:59 10605056 c:\windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 17382912 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\9e615199d107a0a6bce7b7a9abc9b0e6\System.Windows.Forms.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 15252992 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web\63a0ca35d91a4b72d32557dd109effda\System.Web.ni.dll
+ 2012-05-14 20:02 . 2012-05-14 20:02 13609472 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Design\0ea4f2c505fa09c409997221b9551c37\System.Design.ni.dll
+ 2012-05-14 20:01 . 2012-05-14 20:01 19173376 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\52d8b5acd06ad5e97e910b216d297fd2\PresentationFramework.ni.dll
+ 2012-05-14 20:00 . 2012-05-14 20:00 16517120 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3b7ce3ed3cbbaa85258e792608c2a3a7\PresentationCore.ni.dll
+ 2012-05-14 19:58 . 2012-05-14 19:58 15568896 c:\windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 12433920 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9e953ea4e76b62ab1c4a1874abae2961\System.Windows.Forms.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 11824128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\fe88a64f62eb6afc6dfc945fc335b92b\System.Web.ni.dll
+ 2012-05-19 21:05 . 2012-05-19 21:05 17400320 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\7900b4e8c860d8b4a3c1f98047c3c1a3\System.ServiceModel.ni.dll
+ 2012-05-14 20:05 . 2012-05-14 20:05 10578432 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\a814746f4e6e2d84c1bef28586161121\System.Design.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 14325760 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\64e140108933b8090472da1a76b78c20\PresentationFramework.ni.dll
+ 2012-05-14 20:04 . 2012-05-14 20:04 12218880 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\b6370d1903505abc171c968e357fe1bf\PresentationCore.ni.dll
+ 2012-05-14 20:03 . 2012-05-14 20:03 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\PFW]
2011-02-24 20:33 79368 ----a-w- c:\windows\System32\UmxWNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 Norton Internet Security;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-04-21 129976]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-03 253088]
R4 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R4 Recovery Service for Windows;Recovery Service for Windows;c:\program files (x86)\SMINST\BLService.exe [2008-10-06 365952]
R4 UmxEngine;TM Engine;c:\program files\CA\SharedComponents\TMEngine\UmxEngine.exe [2011-04-04 920656]
R4 WinSvchostManagerSrv;WinSvchostManagerSrv;c:\windows\SysWOW64\cfgmig32.exe [2011-07-02 263504]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 KmxAMRT;KmxAMRT;c:\windows\system32\DRIVERS\KmxAMRT.sys [x]
S0 KmxFw;KmxFw;c:\windows\System32\DRIVERS\kmxfw.sys [x]
S1 KmxAgent;KmxAgent;c:\windows\system32\DRIVERS\kmxagent.sys [x]
S1 KmxCfg;KmxCfg;c:\windows\system32\DRIVERS\kmxcfg.sys [x]
S1 KmxFile;KmxFile;c:\windows\system32\DRIVERS\KmxFile.sys [x]
S1 KmxFilter;HIPS Core Filter Driver;c:\windows\system32\DRIVERS\KmxFilter.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 CAAMSvc;CAAMSvc;c:\program files\CA\CA Internet Security Suite\CA Anti-Virus Plus\caamsvc.exe [2012-05-03 291656]
S2 ccSchedulerSVC;CA Common Scheduler Service;c:\program files\CA\CA Internet Security Suite\ccschedulersvc.exe [2011-07-02 286032]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 KmxCF;KmxCF;c:\windows\system32\DRIVERS\KmxCF.sys [x]
S2 KmxSbx;KmxSbx;c:\windows\system32\DRIVERS\KmxSbx.sys [x]
S3 CAXHWAZL;CAXHWAZL;c:\windows\system32\DRIVERS\CAXHWAZL.sys [x]
S3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-05-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-03 22:19]
.
2012-05-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1166908676-2555393917-1790539782-1000Core.job
- c:\users\Terri\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-14 03:25]
.
2012-05-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1166908676-2555393917-1790539782-1000UA.job
- c:\users\Terri\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-14 03:25]
.
2012-05-03 c:\windows\Tasks\HPCeeScheduleForTerri.job
- c:\program files (x86)\hewlett-packard\sdp\ceement\HPCEE.exe [2009-04-20 18:34]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cctray"="c:\program files\CA\CA Internet Security Suite\casc.exe" [2011-07-02 2658128]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\UmxSbxExA64.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://my.bresnan.net/
mLocal Page = c:\windows\SysWOW64\blank.htm
LSP: c:\windows\system32\VetRedir.dll
TCP: DhcpNameServer = 69.145.248.4 69.146.17.2 69.144.49.29 192.168.1.1
FF - ProfilePath - c:\users\Terri\AppData\Roaming\Mozilla\Firefox\Profiles\hltc69dd.default\
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Norton Internet Security]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files (x86)\Norton Internet Security\Engine\16.0.0.125\diMaster.dll\" /prefetch:1"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1166908676-2555393917-1790539782-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-1166908676-2555393917-1790539782-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_233_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_233_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-05-19 15:12:46
ComboFix-quarantined-files.txt 2012-05-19 21:12
ComboFix2.txt 2012-05-14 03:55
.
Pre-Run: 242,221,797,376 bytes free
Post-Run: 242,126,585,856 bytes free
.
- - End Of File - - 1E1BF1B1AFD73F26395214DE67A0C480


And Checkup


Results of screen317's Security Check version 0.99.32
Windows 7 x64 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Java™ 6 Update 7
Java version out of date!
Adobe Reader 9 Adobe Reader out of date!
Mozilla Firefox (12.0.)
````````````````````````````````
Process Check:
objlist.exe by Laurent

CA CA Internet Security Suite CA Anti-Virus Plus caamsvc.exe
CA CA Internet Security Suite CA Anti-Virus Plus isafe.exe
``````````End of Log````````````

#8 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:50 AM

Posted 20 May 2012 - 07:10 AM

The ComboFix log is clean.

Secure your system by updating 3rd party programs.

Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.

Check your present version and update as recommended.
https://www.java.com/en/download/installed.jsp

If present remove the old version(s) of Java using the Add/Remove Programs applet.


Java™ 6 Update 7


===

Get the latest version of the Adobe Reader.
http://get.adobe.com/reader/
Before your download I suggest you unckeck the box on the top right "Include in your download" this is not required. While the installation is in progress you can also deny the installation of any other programs that may be suggested.

When installed remove your old version of the Reader using the Add/Remove Programs applet if present.

Please let me know what issues persists.

#9 TheAtomicToaster

TheAtomicToaster
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 20 May 2012 - 09:50 PM

ok ive done everything you said and one thing that is still persisting is that when i go to youtube all the videos are black and none will play. Vimeo displays the video but you cant play it.

#10 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:50 AM

Posted 21 May 2012 - 07:29 AM

I searched Google for this string youtube all the videos are black
I found many links but very few solutions.

This one may be the issue if you used AdBlock.


I had the same problem and hedonistbot was correct disabling AdBlock fixed the problem, however you DO NOT need to completely disable AdBlock just disable the Ad blocking for youtube videos (marked as beta) and it will all start working again.


You may be able to find a solution searching Google as I did.
===

Time for some housekeeping

The following will implement some cleanup procedures as well as reset System Restore points:

Click Start > Run and copy/paste the following bold text into the Run box and click OK:

ComboFix /Uninstall
===

Delete the other tools we used.

#11 TheAtomicToaster

TheAtomicToaster
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 22 May 2012 - 12:53 PM

I checked into the youtube black videos and I also noticed that other websites seem to have java problems. I have tried uninstalling and reinstalling java but nothing is working. When i check if its installed through the Java website, the animation just loads.

#12 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:50 AM

Posted 22 May 2012 - 01:10 PM

Please run this security check again, post the log for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

#13 TheAtomicToaster

TheAtomicToaster
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 22 May 2012 - 07:01 PM

ok here is the security check. One thing I was wondering about is the CA antivirus program. Im not a big fan of random antivirus programs and I tried to uninstall CA but it wouldnt let me. Said something about missing text or file. Do you think CA is ok to keep? I run only windows antivirus with a few other supplements on my desktop and Ive been trouble free for over 5 years without some crazy Norton nazi program taking over everything. Thank you again for all the help and Im sorry this issue is so persistent.


Results of screen317's Security Check version 0.99.32
Windows 7 x64 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

JavaFX 2.1.0
Java™ 7 Update 4
Adobe Reader X (10.1.3)
Mozilla Firefox (12.0.)
````````````````````````````````
Process Check:
objlist.exe by Laurent

CA CA Internet Security Suite CA Anti-Virus Plus caamsvc.exe
CA CA Internet Security Suite CA Anti-Virus Plus isafe.exe
Terri Desktop anti malware SecurityCheck.exe
``````````End of Log````````````

#14 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:50 AM

Posted 23 May 2012 - 09:17 AM

Run this uninstaller to remove CA completely.

Download Revo Uninstaller

http://majorgeeks.com/Revo_Uninstaller_d5706.html

Revo Uninstaller helps you to remove any unwanted application installed on your computer.
===

Before you do I suggest you download on of these free Virus protection software.
When CA is remove you can then installed the downloaded program of your choice.

Free programs

It is really dangerous to go online without an antivirus. Without one, you are extremely likely to get infected and the consequences could be even worse next time. All of the following are excellent free versions of commercial antiviruses. Be sure to only install one.
AVG.
avast!.
AVAST will install the Google Chrome if not already installed. If you do not want to keep it just remove it using the Add/Remove Programs list.
AntiVir

If you install AVG it will install Chrome unless you deny it.

===

When all is well:

Time for some housekeeping

The following will implement some cleanup procedures as well as reset System Restore points:

Click Start > Run and copy/paste the following bold text into the Run box and click OK:

ComboFix /Uninstall
===

Delete the other tools we used.

#15 TheAtomicToaster

TheAtomicToaster
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 23 May 2012 - 12:17 PM

REJOICE! we have conquered the beast! So i tried running Revo and it wasn't showing CA in the uninstall list. So I searched online for a CA Security 2010 uninstaller and found a program through CA that uninstalls all components of CA. Immediately after restarting all Java features were back, youtube and all. Thank you very much for all the help, I greatly appreciate you taking the time to help me with all of this.
Brad




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users