ComboFix 13-05-08.02 - Saied 2013-05-09 11:05:52.1.4 - x86 NETWORK
Microsoft Windows 7 Ultimate 6.1.7601.1.1256.981.1033.18.3063.2351 [GMT 4.5:30]
Running from: C:\Users\Saied\Downloads\Programs\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\ProgramData\sysapp
C:\ProgramData\sysapp\Oku - Readme.txt
C:\Windows\7Loader.TAG
C:\Windows\system32\drivers\npf.sys
C:\Windows\system32\URTTemp
C:\Windows\system32\URTTemp\regtlib.exe
((((((((((((((((((((((((( Files Created from 2013-04-09 to 2013-05-09 )))))))))))))))))))))))))))))))
2013-05-09 06:46:21 . 2013-05-09 06:46:35 -------- d-----w- C:\Users\Saied\AppData\Local\temp
2013-05-09 06:46:21 . 2013-05-09 06:46:21 -------- d-----w- C:\Users\Default\AppData\Local\temp
2013-05-07 18:13:04 . 2013-04-10 03:08:44 6906960 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03133C81-5FA7-49FF-9D54-4C5E67238351}\mpengine.dll
2013-05-07 15:43:08 . 2013-04-10 03:08:44 6906960 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-05-07 15:12:10 . 2013-05-07 15:12:10 -------- d-----w- C:\Windows\ERUNT
2013-05-07 15:10:47 . 2013-05-07 15:11:14 -------- d-----w- C:\JRT
2013-05-04 12:05:59 . 2013-05-04 12:05:59 -------- d-----w- C:\Users\Saied\AppData\Roaming\Malwarebytes
2013-05-04 12:05:51 . 2013-05-04 12:05:51 -------- d-----w- C:\ProgramData\Malwarebytes
2013-05-03 14:01:39 . 2013-04-12 13:45:29 1211752 ----a-w- C:\Windows\system32\drivers\ntfs.sys
2013-05-03 10:27:33 . 2013-05-03 13:30:07 -------- d-----w- C:\Users\Saied\AppData\Roaming\GameRanger
2013-04-25 14:41:22 . 2013-05-07 21:20:09 139448 ----a-w- C:\Windows\system32\drivers\PnkBstrK.sys
2013-04-25 14:41:16 . 2013-05-07 21:20:04 282472 ----a-w- C:\Windows\system32\PnkBstrB.exe
2013-04-25 14:41:16 . 2013-05-07 21:18:20 282472 ----a-w- C:\Windows\system32\PnkBstrB.ex0
2013-04-25 14:41:03 . 2013-05-07 21:20:04 282472 ----a-w- C:\Windows\system32\PnkBstrB.xtr
2013-04-25 14:40:56 . 2013-04-25 14:40:56 76888 ----a-w- C:\Windows\system32\PnkBstrA.exe
2013-04-25 14:39:38 . 2013-04-25 14:39:38 -------- d-----w- C:\Users\Saied\AppData\Local\PunkBuster
2013-04-23 16:00:29 . 2013-04-23 16:00:06 706640 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{87EAC7A8-A8D5-43E6-98B2-65BB13714C91}\gapaengine.dll
2013-04-20 01:24:02 . 2013-04-20 01:24:02 47368 ----a-w- C:\Windows\system32\certsentry.dll
2013-04-19 21:23:59 . 2013-04-19 21:24:03 -------- d-----w- C:\Program Files\Nimbuzz
2013-04-17 19:51:32 . 2013-04-17 19:51:32 -------- d-----w- C:\Program Files\Common Files\Skype
2013-04-17 18:45:25 . 2013-05-07 22:57:39 -------- d-----w- C:\Users\Saied\AppData\Roaming\Skype
2013-04-17 18:45:14 . 2013-05-03 11:58:02 -------- d-----r- C:\Program Files\Skype
2013-04-17 18:44:58 . 2013-04-17 19:51:34 -------- d-----w- C:\ProgramData\Skype
2013-04-12 05:49:24 . 2013-03-01 03:09:59 2347008 ----a-w- C:\Windows\system32\win32k.sys
2013-04-12 05:49:23 . 2013-01-24 04:47:07 196328 ----a-w- C:\Windows\system32\drivers\fvevol.sys
2013-04-12 05:49:21 . 2013-03-19 05:04:13 3968856 ----a-w- C:\Windows\system32\ntkrnlpa.exe
2013-04-12 05:49:21 . 2013-03-19 05:04:10 3913560 ----a-w- C:\Windows\system32\ntoskrnl.exe
2013-04-12 05:49:20 . 2013-03-19 04:48:45 38912 ----a-w- C:\Windows\system32\csrsrv.dll
2013-04-12 05:49:20 . 2013-03-19 02:49:16 69632 ----a-w- C:\Windows\system32\smss.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2013-05-02 15:28:50 . 2013-01-23 06:38:13 238872 ------w- C:\Windows\system32\MpSigStub.exe
2013-03-31 12:45:22 . 2013-01-22 04:59:46 444952 ----a-w- C:\Windows\system32\wrap_oal.dll
2013-03-31 12:45:22 . 2013-01-22 04:59:46 109080 ----a-w- C:\Windows\system32\OpenAL32.dll
2013-03-14 11:14:50 . 2013-01-31 12:49:54 73432 ----a-w- C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-03-14 11:14:50 . 2013-01-31 12:49:54 693976 ----a-w- C:\Windows\system32\FlashPlayerApp.exe
2013-02-12 04:48:31 . 2013-03-14 07:34:01 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 . 2013-03-14 07:34:02 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll
2013-02-12 03:32:45 . 2013-03-20 20:08:46 15872 ----a-w- C:\Windows\system32\drivers\usb8023.sys
2013-04-12 19:31:18 . 2013-04-12 19:30:38 263064 ----a-w- C:\Program Files\mozilla firefox\components\browsercomps.dll
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
[7] 2009-07-14 01:26:15 . 338C86357871C167A96AB976519BF59E . 21584 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\atapi.sys
[7] 2009-07-14 01:26:15 . 338C86357871C167A96AB976519BF59E . 21584 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[7] 2009-07-14 01:26:15 . 338C86357871C167A96AB976519BF59E . 21584 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[7] 2009-07-13 23:54:46 . ADD2ADE1C2B285AB8378D2DAAF991481 . 17920 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\asyncmac.sys
[7] 2009-07-13 23:54:46 . ADD2ADE1C2B285AB8378D2DAAF991481 . 17920 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-rasbase-asyncmac_31bf3856ad364e35_6.1.7600.16385_none_242e2506962cd3e0\asyncmac.sys
[7] 2009-07-13 23:45:01 . 505506526A9D467307B3C393DEDAF858 . 6144 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\beep.sys
[7] 2009-07-13 23:45:01 . 505506526A9D467307B3C393DEDAF858 . 6144 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys
[7] 2009-07-14 01:20:36 . ADEF52CA1AEAE82B50DF86B56413107E . 42576 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\drivers\kbdclass.sys
[7] 2009-07-14 01:20:36 . ADEF52CA1AEAE82B50DF86B56413107E . 42576 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_x86_neutral_50ad659974198591\kbdclass.sys
[7] 2009-07-14 01:20:36 . ADEF52CA1AEAE82B50DF86B56413107E . 42576 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.1.7601.17514_none_9955d7c4373b0589\kbdclass.sys
[7] 2012-08-22 17:16:46 . 8C9C922D71F1CD4DEF73F186416B7896 . 712048 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\ndis.sys
[7] 2012-08-22 17:16:46 . 8C9C922D71F1CD4DEF73F186416B7896 . 712048 . . [6.1.7601.17939 (win7sp1_gdr.120822-0331)] . . C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[7] 2012-08-22 17:05:16 . 15B74B6283CEBCCE3054C1001CA01B5E . 712048 . . [6.1.7601.22097 (win7sp1_ldr.120822-0335)] . . C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[7] 2010-11-20 21:29:12 . E7C54812A2AAF43316EB6930C1FFA108 . 712576 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys
[7] 2013-04-12 13:53:03 . A543D7FD38F51123CA6B8B4722E4D322 . 1213288 . . [6.1.7601.22297 (win7sp1_ldr.130412-0013)] . . C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.22297_none_a8ae93919489a2fa\ntfs.sys
[7] 2013-04-12 13:45:29 . 5E43D2B0EE64123D4880DFA6626DEFDE . 1211752 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\ntfs.sys
[7] 2013-04-12 13:45:29 . 5E43D2B0EE64123D4880DFA6626DEFDE . 1211752 . . [6.1.7601.18127 (win7sp1_gdr.130412-0013)] . . C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.18127_none_a870a63a7b333f99\ntfs.sys
[7] 2012-08-31 17:18:09 . 0D87503986BB3DFED58E343FE39DDE13 . 1211760 . . [6.1.7601.17945 (win7sp1_gdr.120831-0331)] . . C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17945_none_a8592bc67b451464\ntfs.sys
[7] 2012-08-31 17:01:43 . E6C295C6F8E639957235FEE1D95077F4 . 1212272 . . [6.1.7601.22104 (win7sp1_ldr.120831-0334)] . . C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.22104_none_a90ce01994435e55\ntfs.sys
[7] 2011-03-11 05:39:00 . 81189C3D7763838E55C397759D49007A . 1211264 . . [6.1.7601.17577 (win7sp1_gdr.110310-1504)] . . C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17577_none_a83ab4fe7b5ba649\ntfs.sys
[7] 2011-03-11 05:28:10 . E2EDE3F02F95B896A1C7C6F0CC0C4083 . 1211264 . . [6.1.7601.21680 (win7sp1_ldr.110310-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.21680_none_a8b27fd79487b0a3\ntfs.sys
[7] 2010-11-20 21:29:12 . 33C3093D09017CFE2E219F2472BFF6EB . 1211264 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17514_none_a87893a87b2db29e\ntfs.sys
[7] 2009-07-13 23:11:12 . F9756A98D69098DCA8945D62858A812C . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\null.sys
[7] 2009-07-13 23:11:12 . F9756A98D69098DCA8945D62858A812C . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-null_31bf3856ad364e35_6.1.7600.16385_none_a93c43a07c50a038\null.sys
[7] 2013-01-04 04:56:23 . 4A95845C5F33A4DDEB6AEF6367FB6520 . 1308504 . . [6.1.7601.22209 (win7sp1_ldr.130103-1434)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[7] 2013-01-03 05:05:20 . 7C0507D2391AF5933600CBCED799F277 . 1293672 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\tcpip.sys
[7] 2013-01-03 05:05:20 . 7C0507D2391AF5933600CBCED799F277 . 1293672 . . [6.1.7601.18042 (win7sp1_gdr.130102-1436)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[7] 2012-10-03 16:58:30 . E23A56F843E2AEBBB209D0ACCA73C640 . 1293680 . . [6.1.7601.17964 (win7sp1_gdr.121003-0333)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
[7] 2012-10-03 16:44:01 . D490DD0A91B4EAC3B4EE08D11EE37C31 . 1308040 . . [6.1.7601.22124 (win7sp1_ldr.121003-0333)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[7] 2012-08-22 17:16:54 . A5EBB8F648000E88B7D9390B514976BF . 1292144 . . [6.1.7601.17939 (win7sp1_gdr.120822-0331)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_b514e56fc4b40532\tcpip.sys
[7] 2012-08-22 17:05:21 . 23790A44D9A6B67F8690C34D4F516446 . 1306992 . . [6.1.7601.22097 (win7sp1_ldr.120822-0335)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_b55b785ade04500f\tcpip.sys
[7] 2012-03-30 10:23:11 . 7FA2E0F8B072BD04B77B421480B6CC22 . 1291632 . . [6.1.7601.17802 (win7sp1_gdr.120329-2050)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_b52e5147c4a202d7\tcpip.sys
[7] 2012-03-30 09:04:23 . 88FCDB9923EFECA207B3CEBD24407126 . 1306480 . . [6.1.7601.21954 (win7sp1_ldr.120329-1906)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_b583df0adde66104\tcpip.sys
[7] 2011-04-25 06:31:09 . 6D4728CFF2724FF3A4654971D61D0F1C . 1301376 . . [6.1.7601.21712 (win7sp1_ldr.110424-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[7] 2011-04-25 04:31:30 . 24326784DF8F3D5F5BBB9F878CE33C14 . 1290624 . . [6.1.7601.17603 (win7sp1_gdr.110424-1504)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[7] 2010-11-20 21:29:20 . 37E8FA3779668837CA9E2C36D2415949 . 1290112 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[7] 2012-07-04 21:17:55 . 28B0CF997DE2852E9D27A36CDD6884C8 . 102912 . . [6.1.7601.22044 (win7sp1_ldr.120704-0720)] . . C:\Windows\winsxs\x86_microsoft-windows-browserservice_31bf3856ad364e35_6.1.7601.22044_none_7b599b801576accc\browser.dll
[7] 2012-07-04 21:14:34 . 3DAA727B5B0A45039B0E1C9A211B8400 . 102912 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\browser.dll
[7] 2012-07-04 21:14:34 . 3DAA727B5B0A45039B0E1C9A211B8400 . 102912 . . [6.1.7601.17887 (win7sp1_gdr.120704-0720)] . . C:\Windows\winsxs\x86_microsoft-windows-browserservice_31bf3856ad364e35_6.1.7601.17887_none_7aa7e7c0fc769589\browser.dll
[7] 2010-11-20 21:29:24 . 6E11F33D14D020F58D5E02E4D67DFA19 . 102400 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-browserservice_31bf3856ad364e35_6.1.7601.17514_none_7af090a4fc408e78\browser.dll
[7] 2012-08-24 16:53:44 . 7ABC23F3D86880AD62ACEDC7479608F8 . 22528 . . [6.1.7601.22099 (win7sp1_ldr.120824-0334)] . . C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_a889f15ed46779fd\lsass.exe
[7] 2012-06-02 04:51:22 . FA7B950E4CA6AA260C4EABA19E03644D . 22528 . . [6.1.7601.22010 (win7sp1_ldr.120601-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_a8d76e24d42eb666\lsass.exe
[7] 2011-11-17 05:29:50 . 81951F51E318AECC2D68559E47485CC4 . 22528 . . [6.1.7601.17725 (win7sp1_gdr.111116-1503)] . . C:\Windows\System32\lsass.exe
[7] 2011-11-17 05:29:50 . 81951F51E318AECC2D68559E47485CC4 . 22528 . . [6.1.7601.17725 (win7sp1_gdr.111116-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[7] 2011-11-17 05:29:50 . 81951F51E318AECC2D68559E47485CC4 . 22528 . . [6.1.7601.17725 (win7sp1_gdr.111116-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_a828bb43bb2beb28\lsass.exe
[7] 2011-11-17 05:29:50 . 81951F51E318AECC2D68559E47485CC4 . 22528 . . [6.1.7601.17725 (win7sp1_gdr.111116-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_a82d8b59bb293454\lsass.exe
[7] 2011-11-17 05:24:04 . FBCB2DFA40862DAA7B1534C9538208A5 . 22528 . . [6.1.7601.21861 (win7sp1_ldr.111116-1505)] . . C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
[7] 2009-07-14 01:14:23 . F42309C4191C506B71DB5D1126D26318 . 22528 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[7] 2009-07-14 01:16:03 . 7CCCFCA7510684768DA22092D1FA4DB2 . 280576 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\netman.dll
[7] 2009-07-14 01:16:03 . 7CCCFCA7510684768DA22092D1FA4DB2 . 280576 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-netman_31bf3856ad364e35_6.1.7600.16385_none_0f9371b9b32368a4\netman.dll
[7] 2009-07-14 01:04:30 . 808D8A8B2A3074002852BC856D419576 . 1297408 . . [2001.12.8530.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\comres.dll
[7] 2009-07-14 01:04:30 . 808D8A8B2A3074002852BC856D419576 . 1297408 . . [2001.12.8530.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-com-complus.res_31bf3856ad364e35_6.1.7600.16385_none_2c8730fb47856e94\comres.dll
[7] 2010-11-20 21:29:08 . E585445D5021971FAE10393F0F1C3961 . 585728 . . [7.5.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\qmgr.dll
[7] 2010-11-20 21:29:08 . E585445D5021971FAE10393F0F1C3961 . 585728 . . [7.5.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7601.17514_none_25982ed857b42497\qmgr.dll
[7] 2010-11-20 21:29:12 . 7660F01D3B38ACA1747E397D21D790AF . 376832 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\rpcss.dll
[7] 2010-11-20 21:29:12 . 7660F01D3B38ACA1747E397D21D790AF . 376832 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.1.7601.17514_none_6bd245e79c221747\rpcss.dll
[7] 2009-07-14 01:14:36 . 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 . 259072 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\services.exe
[7] 2009-07-14 01:14:36 . 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 . 259072 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe
[7] 2012-02-11 05:37:49 . 9AEA093B8F9C37CF45538382CABA2475 . 317440 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\spoolsv.exe
[7] 2012-02-11 05:37:49 . 9AEA093B8F9C37CF45538382CABA2475 . 317440 . . [6.1.7601.17777 (win7sp1_gdr.120210-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7601.17777_none_d815322f1ff8cc1a\spoolsv.exe
[7] 2012-02-11 05:21:14 . CAE10A25F936C053E41CBE0FA06FF15D . 317952 . . [6.1.7601.21921 (win7sp1_ldr.120210-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7601.21921_none_d8cedec038f3454c\spoolsv.exe
[7] 2010-11-20 21:29:06 . 866A43013535DC8587C258E43579C764 . 317440 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7601.17514_none_d8530d0d1fcade21\spoolsv.exe
[7] 2010-11-20 21:29:06 . 6D13E1406F50C66E2A95D97F22C47560 . 286720 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\winlogon.exe
[7] 2010-11-20 21:29:06 . 6D13E1406F50C66E2A95D97F22C47560 . 286720 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[7] 2012-06-02 22:19:33 . 2E0B0A051FFAA86E358465BB0880D453 . 53784 . . [7.6.7600.256 (winmain_wtr_wsus3sp2(oobla).120602-1459)] . . C:\Windows\System32\wuauclt.exe
[7] 2012-06-02 22:19:33 . 2E0B0A051FFAA86E358465BB0880D453 . 53784 . . [7.6.7600.256 (winmain_wtr_wsus3sp2(oobla).120602-1459)] . . C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.6.7600.256_none_79d6786e99338140\wuauclt.exe
[7] 2010-11-20 21:29:04 . 75B06ACD9D8DC0FE3603294E1899F496 . 47104 . . [7.5.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.5.7601.17514_none_c315782c0def9f8f\wuauclt.exe
[7] 2010-11-20 21:29:07 . B459575348C20E8121D6039DA063C704 . 74752 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\drivers\tdx.sys
[7] 2010-11-20 21:29:07 . B459575348C20E8121D6039DA063C704 . 74752 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.1.7601.17514_none_ec4532373a57c1c2\tdx.sys
[7] 2010-11-20 21:29:12 . BDAC1AA64495D0F7E1FF810EBBF1F018 . 530432 . . [5.82 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
[7] 2010-11-20 21:29:07 . BDAC1AA64495D0F7E1FF810EBBF1F018 . 530432 . . [5.82 (win7_rtm.090713-1255)] . . C:\Windows\System32\comctl32.dll
[7] 2010-11-20 21:29:07 . BDAC1AA64495D0F7E1FF810EBBF1F018 . 530432 . . [5.82 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-shell-comctl32-v5_31bf3856ad364e35_6.1.7601.17514_none_3ba388ec36399c85\comctl32.dll
[7] 2010-11-20 21:29:06 . 352B3DC62A0D259A82A052238425C872 . 1680896 . . [5.82 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
[7] 2012-06-02 04:52:32 . 063DD65889D21035311463337BD268E7 . 142336 . . [6.1.7601.22010 (win7sp1_ldr.120601-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[7] 2012-06-02 04:36:29 . 96C0E38905CFD788313BE8E11DAE3F2F . 140288 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\cryptsvc.dll
[7] 2012-06-02 04:36:29 . 96C0E38905CFD788313BE8E11DAE3F2F . 140288 . . [6.1.7601.17856 (win7sp1_gdr.120601-1505)] . . C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[7] 2010-11-20 21:29:24 . A585BEBF7D054BD9618EDA0922D5484A . 136192 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[7] 2009-07-14 01:15:19 . F6916EFC29D9953D5D0DF06882AE8E16 . 271360 . . [2001.12.8530.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\es.dll
[7] 2009-07-14 01:15:19 . F6916EFC29D9953D5D0DF06882AE8E16 . 271360 . . [2001.12.8530.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-c..complus-eventsystem_31bf3856ad364e35_6.1.7600.16385_none_0cc3f540b311359a\es.dll
[7] 2010-11-20 21:29:20 . 4A8E2F20809CC161107FAA94F6CF2685 . 118272 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\imm32.dll
[7] 2010-11-20 21:29:20 . 4A8E2F20809CC161107FAA94F6CF2685 . 118272 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.1.7601.17514_none_5e5d8801d8ad160d\imm32.dll
[7] 2013-01-04 04:46:46 . F14125F0B2ACB29963E896E3441DC30C . 868352 . . [6.1.7601.22209 (win7sp1_ldr.130103-1434)] . . C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7601.22209_none_965e9ef5cd9ec94a\kernel32.dll
[7] 2012-11-30 05:01:46 . 6D0D4B00C7CB4FA829F396A83B327894 . 868352 . . [6.1.7601.22177 (win7sp1_ldr.121129-1432)] . . C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7601.22177_none_9610ed07cdd95d0c\kernel32.dll
[7] 2012-11-30 04:47:44 . AE09B85158C66E2C154C5C9B3C0027B3 . 868352 . . [6.1.7601.18015 (win7sp1_gdr.121129-1432)] . . C:\Windows\System32\kernel32.dll
[7] 2012-11-30 04:47:44 . AE09B85158C66E2C154C5C9B3C0027B3 . 868352 . . [6.1.7601.18015 (win7sp1_gdr.121129-1432)] . . C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7601.18015_none_95c62f30b48ce2ee\kernel32.dll
[7] 2012-10-04 16:43:05 . 3ED262888758E350C29E02207AF9AC59 . 868352 . . [6.1.7601.17965 (win7sp1_gdr.121004-0333)] . . C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7601.17965_none_95904772b4b53b61\kernel32.dll
[7] 2012-10-04 16:32:16 . 63350392C018D28C87E6FCB638DFCFE8 . 868352 . . [6.1.7601.22125 (win7sp1_ldr.121004-0334)] . . C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7601.22125_none_9644fc0fcdb29ea9\kernel32.dll
[7] 2010-11-20 21:29:19 . 5553784D774CA845380650E010BBDA2C . 857600 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7601.17514_none_95c54f2cb48da1b9\kernel32.dll
[7] 2009-07-14 01:15:36 . 5987EA8A82C53359BCD2C29D6588583E . 22016 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\linkinfo.dll
[7] 2009-07-14 01:15:36 . 5987EA8A82C53359BCD2C29D6588583E . 22016 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-linkinfo_31bf3856ad364e35_6.1.7600.16385_none_383b884006a7a723\linkinfo.dll
[7] 2009-07-14 01:15:36 . 4F154D2C9C6DF951FD6E5AABBAE6B5EE . 26624 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\lpk.dll
[7] 2009-07-14 01:15:36 . 4F154D2C9C6DF951FD6E5AABBAE6B5EE . 26624 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.17514_none_abda8263b8c87657\lpk.dll
[7] 2009-07-14 01:15:36 . 4F154D2C9C6DF951FD6E5AABBAE6B5EE . 26624 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.17537_none_abc7e369b8d5fa3e\lpk.dll
[7] 2009-07-14 01:15:36 . 4F154D2C9C6DF951FD6E5AABBAE6B5EE . 26624 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.18032_none_abc2c1b1b8daa369\lpk.dll
[7] 2009-07-14 01:15:36 . 4F154D2C9C6DF951FD6E5AABBAE6B5EE . 26624 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.21636_none_ac507fead1f480b1\lpk.dll
[7] 2009-07-14 01:15:36 . 4F154D2C9C6DF951FD6E5AABBAE6B5EE . 26624 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.22195_none_ac0e7fd2d22636de\lpk.dll
[7] 2013-05-03 15:19:02 . D017BF8D92938EEB9B3A1D1C53FDA152 . 14323200 . . [10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)] . . C:\Windows\System32\mshtml.dll
[7] 2013-05-03 15:19:02 . D017BF8D92938EEB9B3A1D1C53FDA152 . 14323200 . . [10.00.9200.16540 (win8_gdr.130220-2327)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_10.2.9200.16540_none_35002808da3dc0b6\mshtml.dll
[7] 2013-02-22 04:06:28 . 474D43D76E2A33FEE21C6F4BB7C4A3B7 . 12324864 . . [9.00.8112.20586 (WIN7_IE9_LDR.130221-1819)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.4.8112.20586_none_2c10740f55b992b4\mshtml.dll
[7] 2013-02-22 04:05:50 . 658EBC74BD38D16805648C4775F7FA82 . 12324352 . . [9.00.8112.16476 (WIN7_IE9_GDR.130221-1821)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.4.8112.16476_none_2b91a7303c93d6f9\mshtml.dll
[7] 2013-02-02 04:15:04 . 88C27474E61271B49677F22CEE76FB3E . 12322304 . . [9.00.8112.20580 (WIN7_IE9_LDR.130201-1816)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.4.8112.20580_none_2c0a725355befaaa\mshtml.dll
[7] 2013-02-02 04:09:34 . 263963D93A3CA8F685EFA5966F1E6581 . 12321792 . . [9.00.8112.16470 (WIN7_IE9_GDR.130201-1812)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.4.8112.16470_none_2b8ba5743c993eef\mshtml.dll
[7] 2013-01-23 06:13:25 . 07F649CD36F266BBE33B814FA678AA43 . 12320256 . . [9.00.8112.16457 (WIN7_IE9_GDR.121113-1619)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.4.8112.16457_none_2ba847523c82b86e\mshtml.dll
[7] 2013-01-08 22:23:25 . C97434C851C4821BD92D2831FDF1ECBE . 12321280 . . [9.00.8112.16464 (WIN7_IE9_GDR.130108-1230)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.4.8112.16464_none_2b9a76883c8d885a\mshtml.dll
[7] 2013-01-08 21:17:18 . B6AD225B3BCC07332FBB2C2824315534 . 12322304 . . [9.00.8112.20573 (WIN7_IE9_LDR.130108-1128)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.4.8112.20573_none_2c18431d55b42abe\mshtml.dll
[7] 2011-03-08 23:57:54 . 1C6045D48179D15A843486D12BEC0EAF . 5980672 . . [8.00.7601.17537 (win7sp1_gdr.110106-1655)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.17537_none_2ff224c4f77b108b\mshtml.dll
[7] 2011-03-08 23:57:54 . 1011333570E1CECAE8FAC34C8D9461BC . 5980672 . . [8.00.7601.21636 (win7sp1_ldr.110106-1655)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.21636_none_307ac146109996fe\mshtml.dll
[7] 2010-11-20 21:29:33 . C50799F0D47DFB9774F721521B6C41D5 . 5977600 . . [8.00.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.17514_none_3004c3bef76d8ca4\mshtml.dll
[7] 2011-12-16 08:58:30 . 2F740C4B458331357E825E94AFB0953A . 690688 . . [7.0.7601.21878 (win7sp1_ldr.111215-1535)] . . C:\Windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.1.7601.21878_none_d3a962431672ddd2\msvcrt.dll
[7] 2011-12-16 07:52:58 . 9DC80A8AAAAAC397BDAB3C67165A824E . 690688 . . [7.0.7601.17744 (win7sp1_gdr.111215-1535)] . . C:\Windows\System32\msvcrt.dll
[7] 2011-12-16 07:52:58 . 9DC80A8AAAAAC397BDAB3C67165A824E . 690688 . . [7.0.7601.17744 (win7sp1_gdr.111215-1535)] . . C:\Windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.1.7601.17744_none_d33c3413fd4084d9\msvcrt.dll
[7] 2009-07-14 01:15:50 . E46D48A7FE961401F1CBF85531CDF05D . 690688 . . [7.0.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.1.7600.16385_none_d12b8c440039b31e\msvcrt.dll
[7] 2010-11-20 21:29:12 . 8999B8631C7FD9F7F9EC3CAFD953BA24 . 232448 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\mswsock.dll
[7] 2010-11-20 21:29:12 . 8999B8631C7FD9F7F9EC3CAFD953BA24 . 232448 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7601.17514_none_ba5ac0f18b8dd799\mswsock.dll
[7] 2010-11-20 21:29:12 . C1809B9907ADEDAF16F50C894100883B . 563712 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\netlogon.dll
[7] 2010-11-20 21:29:12 . C1809B9907ADEDAF16F50C894100883B . 563712 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
[7] 2009-07-14 01:16:12 . 08DFDBD2FD4EA951DC46B1C7661ED35A . 145408 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\powrprof.dll
[7] 2009-07-14 01:16:12 . 08DFDBD2FD4EA951DC46B1C7661ED35A . 145408 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.1.7600.16385_none_a2eff4845e2bf4e2\powrprof.dll
[7] 2010-11-20 21:29:07 . 8124944EC89D6A1815E4E53F5B96AAF4 . 175616 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\scecli.dll
[7] 2010-11-20 21:29:07 . 8124944EC89D6A1815E4E53F5B96AAF4 . 175616 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
[7] 2009-07-14 01:10:22 . 40CAEEE0EAF1B8569F7C8DF6420F2CB9 . 2560 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\sfc.dll
[7] 2009-07-14 01:10:22 . 40CAEEE0EAF1B8569F7C8DF6420F2CB9 . 2560 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-sfc_31bf3856ad364e35_6.1.7600.16385_none_a70c196fbd853ae9\sfc.dll
[7] 2009-07-14 01:14:41 . 54A47F6B5E09A77E61649109C6A08866 . 20992 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\svchost.exe
[7] 2009-07-14 01:14:41 . 54A47F6B5E09A77E61649109C6A08866 . 20992 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[7] 2010-11-20 21:29:07 . 613BF4820361543956909043A265C6AC . 242176 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\tapisrv.dll
[7] 2010-11-20 21:29:07 . 613BF4820361543956909043A265C6AC . 242176 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-tapiservice_31bf3856ad364e35_6.1.7601.17514_none_e54442c74334b18a\tapisrv.dll
[7] 2010-11-20 21:29:20 . F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 . 811520 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\user32.dll
[7] 2010-11-20 21:29:20 . F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 . 811520 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll
[7] 2010-11-20 21:29:06 . 61AC3EFDFACFDD3F0F11DD4FD4044223 . 26624 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\userinit.exe
[7] 2010-11-20 21:29:06 . 61AC3EFDFACFDD3F0F11DD4FD4044223 . 26624 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[7] 2013-05-03 15:19:03 . CFE0CEE587F9CEA4C29DEEC6D85FC91C . 1766912 . . [10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)] . . C:\Windows\System32\wininet.dll
[7] 2013-05-03 15:19:03 . CFE0CEE587F9CEA4C29DEEC6D85FC91C . 1766912 . . [10.00.9200.16540 (win8_gdr.130220-2327)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_10.2.9200.16540_none_23a608ea59e75780\wininet.dll
[7] 2013-02-22 03:38:00 . C5B6468422DB1C8AA36C32CBB0197E5E . 1129472 . . [9.00.8112.16476 (WIN7_IE9_GDR.130221-1821)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.16476_none_1a378811bc3d6dc3\wininet.dll
[7] 2013-02-22 03:35:17 . 490E24D5E427DFA55B1C1182F0DB861C . 1129984 . . [9.00.8112.20586 (WIN7_IE9_LDR.130221-1819)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.20586_none_1ab654f0d563297e\wininet.dll
[7] 2013-02-02 03:36:46 . 1284D72C04B553ED5382EA14303D66DB . 1129472 . . [9.00.8112.20580 (WIN7_IE9_LDR.130201-1816)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.20580_none_1ab05334d5689174\wininet.dll
[7] 2013-02-02 03:30:21 . 03728C624D05C2F157BBD46F6B7F6EA0 . 1129472 . . [9.00.8112.16470 (WIN7_IE9_GDR.130201-1812)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.16470_none_1a318655bc42d5b9\wininet.dll
[7] 2013-01-23 06:13:25 . 7FA3A810F383588D46220967DE8B64FF . 1129472 . . [9.00.8112.16457 (WIN7_IE9_GDR.121113-1619)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.16457_none_1a4e2833bc2c4f38\wininet.dll
[7] 2013-01-08 22:03:20 . B49B56B64F57699A1A663D2CF7D0A56F . 1129472 . . [9.00.8112.16464 (WIN7_IE9_GDR.130108-1230)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.16464_none_1a405769bc371f24\wininet.dll
[7] 2013-01-08 20:41:13 . 16C45E6881449C6330567E51C13920FA . 1129472 . . [9.00.8112.20573 (WIN7_IE9_LDR.130108-1128)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.20573_none_1abe23fed55dc188\wininet.dll
[7] 2010-11-20 21:29:12 . 44214C94911C7CFB1D52CB64D5E8368D . 980992 . . [8.00.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.17514_none_1eaaa4a07717236e\wininet.dll
[7] 2010-11-20 21:29:06 . 7FF15A4F092CD4A96055BA69F903E3E9 . 206848 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ws2_32.dll
[7] 2010-11-20 21:29:06 . 7FF15A4F092CD4A96055BA69F903E3E9 . 206848 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[7] 2009-07-14 01:11:26 . 808AABDF9337312195CAFF76D1804786 . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ws2help.dll
[7] 2009-07-14 01:11:26 . 808AABDF9337312195CAFF76D1804786 . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_045b589158ae90da\ws2help.dll
[7] 2011-02-26 05:19:21 . 0FB9C74046656D1579A64660AD67B746 . 2616320 . . [6.1.7601.21669 (win7sp1_ldr.110225-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[7] 2011-02-25 05:30:54 . 8B88EBBB05A0E56B7DCC708498C02B3E . 2616320 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\explorer.exe
[7] 2011-02-25 05:30:54 . 8B88EBBB05A0E56B7DCC708498C02B3E . 2616320 . . [6.1.7601.17567 (win7sp1_gdr.110224-1502)] . . C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[7] 2010-11-20 21:29:20 . 40D777B7A95E00593EB1568C68514493 . 2616320 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[7] 2009-07-14 01:14:30 . 8A4883F5E7AC37444F23279239553878 . 398336 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\regedit.exe
[7] 2009-07-14 01:14:30 . 8A4883F5E7AC37444F23279239553878 . 398336 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-registry-editor_31bf3856ad364e35_6.1.7600.16385_none_f4050b883d2c3c08\regedit.exe
[7] 2010-11-20 21:29:07 . 928CF7268086631F54C3D8E17238C6DD . 1414144 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ole32.dll
[7] 2010-11-20 21:29:07 . 928CF7268086631F54C3D8E17238C6DD . 1414144 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.1.7601.17514_none_ae2511475093798f\ole32.dll
[7] 2012-11-22 05:36:39 . CA68408922B02E8D955A2967C7CBF8CE . 626688 . . [1.0626.7601.22171 (win7sp1_ldr.121121-1431)] . . C:\Windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.1.7601.22171_none_af477f18d00f9c82\usp10.dll
[7] 2012-11-22 04:45:03 . B7230010D97787AF3D25E4C82F2B06B9 . 626688 . . [1.0626.7601.18009 (win7sp1_gdr.121121-1431)] . . C:\Windows\System32\usp10.dll
[7] 2012-11-22 04:45:03 . B7230010D97787AF3D25E4C82F2B06B9 . 626688 . . [1.0626.7601.18009 (win7sp1_gdr.121121-1431)] . . C:\Windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.1.7601.18009_none_af119411b6b203d9\usp10.dll
[7] 2010-11-20 21:29:19 . 804AAAFEBB3AD5F49334DD906BCB1DE5 . 626176 . . [1.0626.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.1.7601.17514_none_af01e2f9b6be7939\usp10.dll
[7] 2009-07-14 01:15:35 . 9C67F6BBDA3881CFD02095160CF91576 . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ksuser.dll
[7] 2009-07-14 01:15:35 . 9C67F6BBDA3881CFD02095160CF91576 . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-d..tshow-kernelsupport_31bf3856ad364e35_6.1.7601.17514_none_ea090647f58e5d9c\ksuser.dll
[7] 2009-07-14 01:14:16 . 4A3CDCEF8ED41B221F3DBEF5792FB52D . 8704 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ctfmon.exe
[7] 2009-07-14 01:14:16 . 4A3CDCEF8ED41B221F3DBEF5792FB52D . 8704 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_9d06e2f6f1e51f98\ctfmon.exe
[7] 2010-11-20 21:29:12 . 414DA952A35BF5D50192E28263B40577 . 328192 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\shsvcs.dll
[7] 2010-11-20 21:29:12 . 414DA952A35BF5D50192E28263B40577 . 328192 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-shsvcs_31bf3856ad364e35_6.1.7601.17514_none_cf37c7157b2fafed\shsvcs.dll
[7] 2009-07-14 01:15:44 . 18AB2E5A40064ED5F7791AC5946A90F3 . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\msimg32.dll
[7] 2009-07-14 01:15:44 . 18AB2E5A40064ED5F7791AC5946A90F3 . 4608 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-gdi-painting_31bf3856ad364e35_6.1.7600.16385_none_77422e3e7d5fa732\msimg32.dll
[7] 2009-07-14 01:15:06 . 50BA656134F78AF64E4DD3C8B6FEFD7E . 12288 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\cngaudit.dll
[7] 2009-07-14 01:15:06 . 50BA656134F78AF64E4DD3C8B6FEFD7E . 12288 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[7] 2009-07-14 01:14:45 . B5C5DCAD3899512020D135600129D665 . 96256 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\wininit.exe
[7] 2009-07-14 01:14:45 . B5C5DCAD3899512020D135600129D665 . 96256 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
[7] 2009-07-14 01:16:13 . CB9A8683F4EF2BF99E123D79950D7935 . 112640 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\regsvc.dll
[7] 2009-07-14 01:16:13 . CB9A8683F4EF2BF99E123D79950D7935 . 112640 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-remoteregistry-service_31bf3856ad364e35_6.1.7600.16385_none_893c5bdce4cae672\regsvc.dll
[7] 2010-11-20 21:29:21 . A04BB13F8A72F8B6E8B4071723E4E336 . 750592 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\schedsvc.dll
[7] 2010-11-20 21:29:21 . A04BB13F8A72F8B6E8B4071723E4E336 . 750592 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-taskscheduler-service_31bf3856ad364e35_6.1.7601.17514_none_3108887cf54491c3\schedsvc.dll
[7] 2009-07-14 01:16:15 . D887C9FD02AC9FA880F6E5027A43E118 . 162816 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ssdpsrv.dll
[7] 2009-07-14 01:16:15 . D887C9FD02AC9FA880F6E5027A43E118 . 162816 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-upnpssdp_31bf3856ad364e35_6.1.7600.16385_none_7f9fc90f328bdf26\ssdpsrv.dll
[7] 2010-11-20 21:29:19 . 382C804C92811BE57829D8E550A900E2 . 521216 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\termsrv.dll
[7] 2010-11-20 21:29:19 . 382C804C92811BE57829D8E550A900E2 . 521216 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.1.7601.17514_none_90a6abb3b286306d\termsrv.dll
[7] 2009-07-14 01:15:24 . 6383C60EC0133B14F5705F96369421B2 . 288256 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\hnetcfg.dll
[7] 2009-07-14 01:15:24 . 6383C60EC0133B14F5705F96369421B2 . 288256 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-i..ectionsharingconfig_31bf3856ad364e35_6.1.7600.16385_none_b00c9bd7f5ed1c02\hnetcfg.dll
[7] 2009-07-14 01:14:53 . A45D184DF6A8803DA13A0B329517A64A . 149504 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\appmgmts.dll
[7] 2009-07-14 01:14:53 . A45D184DF6A8803DA13A0B329517A64A . 149504 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-g..oftwareinstallation_31bf3856ad364e35_6.1.7600.16385_none_81a53e87bd5d36aa\appmgmts.dll
[7] 2009-07-14 01:26:15 . 507812C3054C21CEF746B6EE3D04DD6E . 53312 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\drivers\AGP440.sys
[7] 2009-07-14 01:26:15 . 507812C3054C21CEF746B6EE3D04DD6E . 53312 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[7] 2009-07-14 01:26:15 . 507812C3054C21CEF746B6EE3D04DD6E . 53312 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
[7] 2009-07-14 01:15:26 . A1E91B5B5273573FC132B683E550B5E6 . 19456 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ias.dll
[7] 2009-07-14 01:15:26 . A1E91B5B5273573FC132B683E550B5E6 . 19456 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-n..ion_service_runtime_31bf3856ad364e35_6.1.7601.17514_none_fb08448fa0c85c23\ias.dll
[7] 2010-11-20 21:29:19 . AB9EB3745B03AE67AB241A82338DEA7B . 954288 . . [4.1.6140] . . C:\Windows\System32\mfc40u.dll
[7] 2010-11-20 21:29:19 . AB9EB3745B03AE67AB241A82338DEA7B . 954288 . . [4.1.6151] . . C:\Windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.1.7601.17514_none_f51a7bf0b3d25294\mfc40u.dll
[7] 2013-03-19 05:04:13 . 88355CFE81D381F93C74716DAA803587 . 3968856 . . [6.1.7601.18113 (win7sp1_gdr.130318-1533)] . . C:\Windows\System32\ntkrnlpa.exe
[7] 2013-03-19 05:04:13 . 88355CFE81D381F93C74716DAA803587 . 3968856 . . [6.1.7601.18113 (win7sp1_gdr.130318-1533)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.18113_none_6e36ace212663721\ntkrnlpa.exe
[7] 2013-03-19 04:41:10 . 3DFCBEEE97DF8BBAA749CAACFC9C43E1 . 3972440 . . [6.1.7601.22280 (win7sp1_ldr.130318-1534)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.22280_none_6e71995b2bbf4e7d\ntkrnlpa.exe
[7] 2013-01-05 05:00:15 . 660100CB90F344040EF57F52FC0681C3 . 3967848 . . [6.1.7601.18044 (win7sp1_gdr.130104-1431)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.18044_none_6e173b82127da724\ntkrnlpa.exe
[7] 2013-01-05 04:49:01 . 8E43161944CE6E3A1F2B2618B992A8CE . 3971928 . . [6.1.7601.22210 (win7sp1_ldr.130104-1432)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.22210_none_6ebd48cf2b868ae6\ntkrnlpa.exe
[7] 2012-08-30 17:12:02 . 7E1EC00B7D0D33A67DFC563574EEFF93 . 3968880 . . [6.1.7601.17944 (win7sp1_gdr.120830-0333)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17944_none_6e176360127d73e2\ntkrnlpa.exe
[7] 2012-08-30 17:06:08 . 770FEEA2823E463D68E170D7EA6FAEBA . 3972464 . . [6.1.7601.22103 (win7sp1_ldr.120830-0335)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.22103_none_6ecb17b32b7bbdd3\ntkrnlpa.exe
[7] 2012-03-31 04:39:37 . 8F6D5704D7522AAB8B4B82C0D35D9184 . 3968368 . . [6.1.7601.17803 (win7sp1_gdr.120330-1504)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17803_none_6e41a0e0125deda0\ntkrnlpa.exe
[7] 2012-03-31 04:37:34 . 93358348D0B79812CAAA83A1377E4449 . 3971952 . . [6.1.7601.21955 (win7sp1_ldr.120330-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.21955_none_6e972ea32ba24bcd\ntkrnlpa.exe
[7] 2012-03-06 05:59:47 . 43711ABF8AE553A7B5FFFF61E60C419D . 3968368 . . [6.1.7601.17790 (win7sp1_gdr.120305-1505)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17790_none_6ddd4ed012a99fed\ntkrnlpa.exe
[7] 2012-03-06 05:41:34 . 07B026E7A2C873D09F0073141EE2099E . 3972464 . . [6.1.7601.21936 (win7sp1_ldr.120305-1505)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.21936_none_6eadcec52b912d42\ntkrnlpa.exe
[7] 2010-11-20 21:29:06 . 144BD78C6103C8616DE047B3532142DB . 3966848 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17514_none_6e37cb8c12652b73\ntkrnlpa.exe
[7] 2009-07-14 01:16:17 . 833FBB672460EFCE8011D262175FAD33 . 266752 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\upnphost.dll
[7] 2009-07-14 01:16:17 . 833FBB672460EFCE8011D262175FAD33 . 266752 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-upnpdevicehost_31bf3856ad364e35_6.1.7600.16385_none_c1be8a9895d79340\upnphost.dll
[7] 2009-07-14 01:15:13 . 0E85C11F8850D524B02181C6E02BA9AE . 453632 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\dsound.dll
[7] 2009-07-14 01:15:13 . 0E85C11F8850D524B02181C6E02BA9AE . 453632 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-audio-dsound_31bf3856ad364e35_6.1.7600.16385_none_5872147ba3367471\dsound.dll
[7] 2010-11-20 21:29:19 . 6EF5F3F18413C367195F06E503AB86A6 . 1828352 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\System32\d3d9.dll
[7] 2010-11-20 21:29:19 . 6EF5F3F18413C367195F06E503AB86A6 . 1828352 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-directx-direct3d9_31bf3856ad364e35_6.1.7601.17514_none_c454d690bf084f04\d3d9.dll
[7] 2009-07-14 01:15:10 . 198552AEFECA69D646867EC8D792DE95 . 531968 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\ddraw.dll
[7] 2009-07-14 01:15:10 . 198552AEFECA69D646867EC8D792DE95 . 531968 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-directx-directdraw_31bf3856ad364e35_6.1.7600.16385_none_04dbf9102154d42e\ddraw.dll
[7] 2010-11-20 21:29:10 . 703FFD301AB900B047337C5D40FD6F96 . 90112 . . [6.1.7601.17514] . . C:\Windows\System32\olepro32.dll
[7] 2010-11-20 21:29:10 . 703FFD301AB900B047337C5D40FD6F96 . 90112 . . [6.1.7601.17514] . . C:\Windows\winsxs\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.1.7601.17514_none_3c1b247e5ff65f89\olepro32.dll
[7] 2009-07-14 01:16:12 . EDD2AD141DEBD425D74A52A4D7BE6AC4 . 39424 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\perfctrs.dll
[7] 2009-07-14 01:16:12 . EDD2AD141DEBD425D74A52A4D7BE6AC4 . 39424 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-p..ormancebasecounters_31bf3856ad364e35_6.1.7600.16385_none_314993e6be6d6809\perfctrs.dll
[7] 2009-07-14 01:16:17 . 702254574E7E52052DE39408457B7149 . 21504 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\version.dll
[7] 2009-07-14 01:16:17 . 702254574E7E52052DE39408457B7149 . 21504 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-version_31bf3856ad364e35_6.1.7600.16385_none_14d4a552b2395165\version.dll
[7] 2013-05-03 15:19:03 . E4F6125ED5185F8FA37CC4F449B85526 . 770608 . . [10.00.9200.16537 (win8_gdr.130218-1602)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_10.2.9200.16540_none_ba7371c665da0d6e\iexplore.exe
[7] 2013-02-22 04:10:31 . 4145E2B5663F6FACC08EFDB17B658BB2 . 757360 . . [9.00.8112.20586 (WIN7_IE9_LDR.130221-1819)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20586_none_b183bdcce155df6c\iexplore.exe
[7] 2013-02-22 04:10:00 . 32732CEDE2A1106B736EF3D84054EE04 . 757376 . . [9.00.8112.16476 (WIN7_IE9_GDR.130221-1821)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16476_none_b104f0edc83023b1\iexplore.exe
[7] 2013-02-02 04:19:04 . DDE5A0DFAF7C6370FB36402D7A746ED3 . 757296 . . [9.00.8112.16470 (WIN7_IE9_GDR.130201-1812)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16470_none_b0feef31c8358ba7\iexplore.exe
[7] 2013-02-02 04:19:03 . A285E1965C115031DA02B777EE9D7689 . 757280 . . [9.00.8112.20580 (WIN7_IE9_LDR.130201-1816)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20580_none_b17dbc10e15b4762\iexplore.exe
[7] 2013-01-23 06:13:25 . B201AF83DF2E85323E29EB83E4046810 . 757280 . . [9.00.8112.16457 (WIN7_IE9_GDR.121113-1619)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16457_none_b11b910fc81f0526\iexplore.exe
[7] 2013-01-08 22:42:06 . 698EB1E5F8C66344D97C00B5699E871D . 757280 . . [9.00.8112.16464 (WIN7_IE9_GDR.130108-1230)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16464_none_b10dc045c829d512\iexplore.exe
[7] 2013-01-08 21:32:42 . F05982E56ABD835AA8DF260EEC873E5B . 757280 . . [9.00.8112.20573 (WIN7_IE9_LDR.130108-1128)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20573_none_b18b8cdae1507776\iexplore.exe
[7] 2010-11-20 21:29:33 . C613E69C3B191BB02C7A191741A1D024 . 673040 . . [8.00.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_8.0.7601.17514_none_b5780d7c8309d95c\iexplore.exe
[7] 2013-03-19 05:04:10 . 2DFAB8C3C394E95D262E1325BDA5DFE4 . 3913560 . . [6.1.7601.18113 (win7sp1_gdr.130318-1533)] . . C:\Windows\System32\ntoskrnl.exe
[7] 2013-03-19 05:04:10 . 2DFAB8C3C394E95D262E1325BDA5DFE4 . 3913560 . . [6.1.7601.18113 (win7sp1_gdr.130318-1533)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.18113_none_6e36ace212663721\ntoskrnl.exe
[7] 2013-03-19 04:41:07 . 80A652978002318C9723D43CFA618816 . 3916632 . . [6.1.7601.22280 (win7sp1_ldr.130318-1534)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.22280_none_6e71995b2bbf4e7d\ntoskrnl.exe
[7] 2013-01-05 05:00:11 . 82FF919E9236B0137B5C7455B0E1418A . 3913064 . . [6.1.7601.18044 (win7sp1_gdr.130104-1431)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.18044_none_6e173b82127da724\ntoskrnl.exe
[7] 2013-01-05 04:49:01 . 2E083C7D9CA98B63FA8F8062874E9327 . 3916648 . . [6.1.7601.22210 (win7sp1_ldr.130104-1432)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.22210_none_6ebd48cf2b868ae6\ntoskrnl.exe
[7] 2012-08-30 17:12:02 . 948F0B444CB6CC35FE5F9DE52420CB95 . 3914096 . . [6.1.7601.17944 (win7sp1_gdr.120830-0333)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17944_none_6e176360127d73e2\ntoskrnl.exe
[7] 2012-08-30 17:06:07 . 5355A85D26EECFA3A68B1F55B0C59A20 . 3917168 . . [6.1.7601.22103 (win7sp1_ldr.120830-0335)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.22103_none_6ecb17b32b7bbdd3\ntoskrnl.exe
[7] 2012-03-31 04:39:37 . 28F44480E411C3DDF04B63F6560E6EF4 . 3913072 . . [6.1.7601.17803 (win7sp1_gdr.120330-1504)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17803_none_6e41a0e0125deda0\ntoskrnl.exe
[7] 2012-03-31 04:37:33 . 2E02A17E8965AD671E4987E503AD38B1 . 3916656 . . [6.1.7601.21955 (win7sp1_ldr.120330-1503)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.21955_none_6e972ea32ba24bcd\ntoskrnl.exe
[7] 2012-03-06 05:59:41 . 53B4BDEA12A032EEC71E60B6BFF42F37 . 3913072 . . [6.1.7601.17790 (win7sp1_gdr.120305-1505)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17790_none_6ddd4ed012a99fed\ntoskrnl.exe
[7] 2012-03-06 05:41:34 . 57B7DE30C4E65AD19CA13AC3065EE60B . 3916656 . . [6.1.7601.21936 (win7sp1_ldr.120305-1505)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.21936_none_6eadcec52b912d42\ntoskrnl.exe
[7] 2010-11-20 21:29:06 . 2088D9994332583EDB3C561DE31EA5AD . 3911040 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.17514_none_6e37cb8c12652b73\ntoskrnl.exe
[7] 2009-07-14 01:16:17 . 55187FD710E27D5095D10A472C8BAF1C . 288768 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\w32time.dll
[7] 2009-07-14 01:16:17 . 55187FD710E27D5095D10A472C8BAF1C . 288768 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-time-service_31bf3856ad364e35_6.1.7600.16385_none_887db9d2ce9e3aa0\w32time.dll
[7] 2010-11-20 21:29:41 . E1FB3706030FB4578A0D72C2FC3689E4 . 463360 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\wiaservc.dll
[7] 2010-11-20 21:29:41 . E1FB3706030FB4578A0D72C2FC3689E4 . 463360 . . [6.1.7601.17514 (win7sp1_rtm.101119-1850)] . . C:\Windows\winsxs\x86_microsoft-windows-w..sition-coreservices_31bf3856ad364e35_6.1.7601.17514_none_349ba4fd11957512\wiaservc.dll
[7] 2009-07-14 01:15:40 . 5A12C364AD1D4FCC0AD0E56DBBC34462 . 16896 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\midimap.dll
[7] 2009-07-14 01:15:40 . 5A12C364AD1D4FCC0AD0E56DBBC34462 . 16896 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.1.7600.16385_none_8cd41e2771e37717\midimap.dll
[7] 2009-07-14 01:16:12 . ED6EE83D61EBC683C2CD8E899EA6FEBE . 11776 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\rasadhlp.dll
[7] 2009-07-14 01:16:12 . ED6EE83D61EBC683C2CD8E899EA6FEBE . 11776 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-rasautodial_31bf3856ad364e35_6.1.7600.16385_none_0fb054d9c6a6b4d4\rasadhlp.dll
[7] 2009-07-14 01:16:20 . EE5C8E27C37B79CB54A2FCEEED2DC262 . 9216 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\System32\WSHTCPIP.DLL
[7] 2009-07-14 01:16:20 . EE5C8E27C37B79CB54A2FCEEED2DC262 . 9216 . . [6.1.7600.16385 (win7_rtm.090713-1255)] . . C:\Windows\winsxs\x86_microsoft-windows-winsock-helper-tcpip_31bf3856ad364e35_6.1.7600.16385_none_cb895be592db1acb\WSHTCPIP.DLL
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 14:50:32 21864 ----a-w- C:\Program Files\Internet Download Manager\IDMShellExt.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Nimbuzz"="C:\Program Files\Nimbuzz\Nimbuzz.exe" [2013-04-06 10:01:12 12784640]
"Messenger (Yahoo!)"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [2012-02-22 17:19:58 6591800]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2009-04-23 13:51:38 691656]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2013-02-28 14:20:02 18642024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2009-12-23 10:41:52 1594664]
"Broadcom Wireless Manager UI"="C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe" [2010-02-02 10:43:08 5249024]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-06-01 18:14:48 98304]
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-06-08 07:19:26 284696]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe" [2013-01-27 07:41:06 947152]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [2010-07-04 19:51:26 17408]
"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 11:24:26 91520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
"NCInstallQueue"="netman.dll" [2009-07-14 01:16:03 280576]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 795936]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\Windows\System32\guard32.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
R1 CFRMD;CFRMD;C:\Windows\system32\DRIVERS\CFRMD.sys
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\system32\DRIVERS\cmdguard.sys
R1 LUMDriver;LUMDriver;C:\Windows\system32\drivers\LUMDriver.sys
R1 wseak;wseak;C:\Windows\system32\drivers\wseak.sys
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe
R2 BBDemon;Backbone Service;C:\Program Files\Dassault Systemes\B20\intel_a\code\bin\CATSysDemon.exe
R2 CLPSLauncher;COMODO LPS Launcher;C:\Program Files\Common Files\COMODO\launcher_service.exe
R2 DragonUpdater;COMODO Dragon Update Service;C:\Program Files\Comodo\Dragon\dragon_updater.exe
R2 Elite Antikeylogger monitoring service;Elite Antikeylogger monitoring service;C:\Program Files\Widestep Software\Elite Antikeylogger\wseaksrv.exe
R2 GeekBuddyRSP;GeekBuddyRSP Service;C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
R2 IDMWFP;IDMWFP;C:\Windows\system32\DRIVERS\idmwfp.sys
R2 PanService;PandoraService;C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
R2 SkypeUpdate;Skype Updater;C:\Program Files\Skype\Updater\Updater.exe
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files\TuneUpPortable\App\TuneUp\TuneUpUtilitiesService32.exe
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
R3 btusbflt;Bluetooth USB Filter;C:\Windows\system32\drivers\btusbflt.sys
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys
R3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys
R3 Impcd;Impcd;C:\Windows\system32\DRIVERS\Impcd.sys
R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt86win7.sys
R3 Synth3dVsc;Synth3dVsc;C:\Windows\system32\drivers\synth3dvsc.sys
R3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\system32\drivers\terminpt.sys
R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys
R3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys
R3 tsusbhub;tsusbhub;C:\Windows\system32\drivers\tsusbhub.sys
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files\TuneUpPortable\App\TuneUp\TuneUpUtilitiesDriver32.sys
R3 VGPU;VGPU;C:\Windows\system32\drivers\rdvgkmd.sys
R3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe
R3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam.sys
S0 sptd;sptd;C:\Windows\System32\Drivers\sptd.sys
S1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\system32\DRIVERS\cmdhlp.sys
S3 BcmVWL;Broadcom Virtual Wireless;C:\Windows\system32\DRIVERS\bcmvwl32.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
GPSvcGroup REG_MULTI_SZ GPSvc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache