c:\\WINDOWS\tsnp2uvc.exe Trojan.Backdoor

[windygirl]

Hi, I am having an issue with Malwarebytes that I'm hoping someone can help me with: I am running WIndows XP Mediacenter Edition version 5.1 service pack 3. I have Malwarebytes version 1.70.0.1100. What is happening is that I have the Malwarebytes pop-up window in a perpetual loop stating "Malwarebyte Anti-Malware has blocked and quarantined a threat: c:\\WINDOWS\tsnp2uvc.exe Trojan.Backdoor" over and over again. It won't stop. I cleared the quarantine only to have it fill up with the exact same message hundreds of times. I am currently running the Malwarebytes scan to see if it will remove it but it hasn't worked as of yet. Any help anyone can provide will be appreciated. Thank you!

[Psychotic]

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

• First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
• Perform everything in the correct order. Sometimes one step requires the previous one.
• If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
• Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
• Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
• If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
• Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
• My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 
 
 
Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)

• Run FRST.
• Don´t change one of the checkboxes and hit Scan.
• Logfiles are created on your desktop.
• Poste the FRST.txt and (after the first scan only!) the Addition.txt.
  

 

 

 

Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop

• Execute TDSSKiller.exe by doubleclicking on it.
• Press Start Scan
  
• If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
  
• Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt
  

Please post the contents of that log in your next reply.

[windygirl]

Hi Marius, I ran Malwarebytes scanner and the notifications stopped...should I still go ahead with your instructions?

[Psychotic]

If you want to ensure nothing more is present, yes.

[windygirl]

doing scans now

[windygirl]

This is the FRST.TXT file

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-12-2013
Ran by Nzinga (administrator) on NZINGA1 on 15-12-2013 15:44:06
Running from C:\Documents and Settings\Nzinga\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchService.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
(Sonic Solutions) C:\WINDOWS\system32\dla\tfswctrl.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
() C:\Program Files\Sony\SonicStage\SSAAD.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\type32.exe
(SigmaTel, Inc.) C:\WINDOWS\stsystra.exe
() C:\WINDOWS\vsnpstd.exe
(Sonix) C:\WINDOWS\vsnp2uvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
(Apple Computer, Inc.) C:\Program Files\QuickTime\qttask.exe
(Apple Computer, Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(SEIKO EPSON CORPORATION) C:\WINDOWS\system32\spool\drivers\w32x86\3\E_TATIHVA.EXE
(PKWARE, Inc.) C:\Program Files\PKWARE\PKZIPM\11.20.0008\PKTray.exe
(Dropbox, Inc.) C:\Documents and Settings\Nzinga\Application Data\Dropbox\bin\Dropbox.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehrecvr.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehSched.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\EpsonCustomerParticipation\EPCP.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Microsoft Corporation) C:\WINDOWS\ehome\mcrdsvc.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehmsas.exe
(Apple Computer, Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\Messenger\Ymsgr_tray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ehTray] - C:\WINDOWS\ehome\ehtray.exe [64512 2005-08-05] (Microsoft Corporation)
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [intelMeM] - C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe [221184 2003-09-03] (Intel Corporation)
HKLM\...\Run: [dla] - C:\WINDOWS\system32\dla\tfswctrl.exe [127035 2004-12-06] (Sonic Solutions)
HKLM\...\Run: [iSUSPM Startup] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [iSUSScheduler] - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-07-27] (InstallShield Software Corporation)
HKLM\...\Run: [ssAAD.exe] - C:\Program Files\Sony\SonicStage\SSAAD.exe [81920 2006-01-07] ()
HKLM\...\Run: [type32] - C:\Program Files\Microsoft IntelliType Pro\type32.exe [196608 2005-03-15] (Microsoft Corporation)
HKLM\...\Run: [sigmatelSysTrayApp] - C:\WINDOWS\stsystra.exe [339968 2005-03-22] (SigmaTel, Inc.)
HKLM\...\Run: [snpstd] - C:\WINDOWS\vsnpstd.exe [286720 2004-06-10] ()
HKLM\...\Run: [snp2uvc] - C:\WINDOWS\vsnp2uvc.exe [569344 2007-07-11] (Sonix)
HKLM\...\Run: [EEventManager] - C:\Program Files\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [FUFAXRCV] - C:\Program Files\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-08] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [FUFAXSTM] - C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-08] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [LTCM Client] - C:\Program Files\LTCM Client\ltcmClient.exe [1596096 2009-08-05] (Leader Technologies Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 7.0] - C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe [483328 2008-04-23] (Adobe Systems Inc.)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\qttask.exe [282624 2006-09-01] (Apple Computer, Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [229952 2006-09-12] (Apple Computer, Inc.)
Winlogon\Notify\LMIinit: C:\Windows\system32\LMIinit.dll (LogMeIn, Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKCU\...\Run: [DellSupport] - C:\Program Files\Dell Support\DSAgnt.exe [332800 2005-05-15] (Gteko Ltd.)
HKCU\...\Run: [Messenger (Yahoo!)] - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [4351216 2009-05-26] (Yahoo! Inc.)
HKCU\...\Run: [sUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE [5717272 2013-11-12] (SUPERAntiSpyware)
HKCU\...\Run: [EPLTarget\P0000000000000000] - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_TATIHVA.EXE [220800 2013-01-23] (SEIKO EPSON CORPORATION)
HKCU\...\Run: [DW7] - "C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe"
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\Administrator\...\Run: [DellSupport] - C:\Program Files\Dell Support\DSAgnt.exe [ 2005-05-15] (Gteko Ltd.)
HKU\Default User\...\Run: [DellSupport] - C:\Program Files\Dell Support\DSAgnt.exe [ 2005-05-15] (Gteko Ltd.)
HKU\LogMeInRemoteUser\...\Run: [DellSupport] - C:\Program Files\Dell Support\DSAgnt.exe [ 2005-05-15] (Gteko Ltd.)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-100000000002}\SC_Acrobat.exe ()
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SecureZIP Attachments Status.lnk
ShortcutTarget: SecureZIP Attachments Status.lnk -> C:\Program Files\PKWARE\PKZIPM\11.20.0008\PKTray.exe (PKWARE, Inc.)
Startup: C:\Documents and Settings\Nzinga\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Documents and Settings\Nzinga\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Documents and Settings\Nzinga\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

ProxyServer: 0.0.0.0:80
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {c591090f-599d-4169-a768-1ee6160e7dca} URL = http://search.freecause.com/search?ourmark=4&fr=freecause&ei=utf-8&type=63263&p={searchTerms}
SearchScopes: HKCU - {5FAC4B23-7BFE-4D62-BF50-324909DA3C79} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
BHO: No Name - {02478D38-C3F9-4EFB-9B51-7695ECA05670} -  No File
BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -  No File
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} -  No File
Toolbar: HKCU - No Name - {EF99BD32-C1FB-11D2-892F-0090271D4F88} -  No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [113024 2011-09-04] (SuperAdBlocker.com)
Tcpip\Parameters: [DhcpNameServer] 192.168.11.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Nzinga\Application Data\Mozilla\Firefox\Profiles\msnjx4x8.default
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo


FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.1 - C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @wacom.com/wacom-plugin,version=1.1.0.10 - C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.0.0.1 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 - C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Extension: Bitdefender QuickScan - C:\Documents and Settings\Nzinga\Application Data\Mozilla\Firefox\Profiles\msnjx4x8.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
FF Extension: Evernote Web Clipper - C:\Documents and Settings\Nzinga\Application Data\Mozilla\Firefox\Profiles\msnjx4x8.default\Extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

Chrome:
=======
CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Yahoo! activeX Plug-in Bridge) - C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
CHR Plugin: (PalmSource Package Installer) - C:\Palm\PACKAG~1\NPInstal.dll No File
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (WacomTabletPlugin) - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
CHR Plugin: ( Wacom Dynamic Link Library) - C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.70.11) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\Documents and Settings\Nzinga\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Documents and Settings\Nzinga\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Documents and Settings\Nzinga\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Documents and Settings\Nzinga\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Documents and Settings\Nzinga\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Documents and Settings\Nzinga\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

========================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [116608 2012-09-13] (SUPERAntiSpyware.com)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 EpsonCustomerParticipation; C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [521600 2011-06-09] (SEIKO EPSON CORPORATION)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184 2012-12-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [682344 2012-12-14] (Malwarebytes Corporation)
R2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
S3 NetMDSB; C:\Program Files\Sony\MD Simple Burner\NetMDSB.exe [782336 2004-06-08] (Sony Corporation)
S3 NetSvc; C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe [147456 2004-11-19] (Intel® Corporation)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69718 2005-11-24] (Sony Corporation)
S3 SSScsiSV; C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe [69632 2006-01-06] (Sony Corporation)

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R2 drvnddm; C:\Windows\System32\drivers\drvnddm.sys [40480 2004-11-23] (Sonic Solutions)
S3 hitmanpro36; C:\WINDOWS\system32\drivers\hitmanpro36.sys [27424 2012-07-23] ()
S2 HPFECP15; C:\Windows\System32\drivers\HPFECP15.SYS [52800 1998-09-04] ()
R3 IntelC51; C:\Windows\System32\DRIVERS\IntelC51.sys [1233525 2004-03-06] (Intel Corporation)
R3 IntelC52; C:\Windows\System32\DRIVERS\IntelC52.sys [647929 2004-03-06] (Intel Corporation)
R3 IntelC53; C:\Windows\System32\DRIVERS\IntelC53.sys [61157 2004-06-16] (Intel Corporation)
R2 MASPINT; C:\Windows\System32\Drivers\MASPINT.sys [8096 2000-03-29] (MicroStaff Co.,Ltd.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [21104 2012-12-14] (Malwarebytes Corporation)
R3 mohfilt; C:\Windows\System32\DRIVERS\mohfilt.sys [37048 2004-03-06] (Intel Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PalmUSBD; C:\Windows\System32\drivers\PalmUSBD.sys [16640 2007-12-04] (PalmSource, Inc.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-09-04] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-09-04] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SbcpHid; C:\WINDOWS\system32\Drivers\SbcpHid.sys [22400 2001-08-23] ()
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [9611520 2007-08-22] ()
S3 snpstd; C:\Windows\System32\DRIVERS\snpstd.sys [345728 2004-10-15] ()
S3 sonypvs1; C:\Windows\System32\DRIVERS\sonypvs1.sys [102220 2002-10-15] (Sony Corporation)
R1 sscdbhk5; C:\Windows\System32\drivers\sscdbhk5.sys [5627 2004-07-14] (Sonic Solutions)
R1 ssrtln; C:\Windows\System32\drivers\ssrtln.sys [23545 2004-07-14] (Sonic Solutions)
R3 STHDA; C:\Windows\System32\drivers\sthda.sys [1047816 2005-11-16] (SigmaTel, Inc.)
R2 tfsnboio; C:\Windows\System32\dla\tfsnboio.sys [25883 2004-12-06] (Sonic Solutions)
R2 tfsncofs; C:\Windows\System32\dla\tfsncofs.sys [34843 2004-12-06] (Sonic Solutions)
R2 tfsndrct; C:\Windows\System32\dla\tfsndrct.sys [4123 2004-12-06] (Sonic Solutions)
R2 tfsndres; C:\Windows\System32\dla\tfsndres.sys [2239 2004-12-06] (Sonic Solutions)
R2 tfsnifs; C:\Windows\System32\dla\tfsnifs.sys [86586 2004-12-06] (Sonic Solutions)
R2 tfsnopio; C:\Windows\System32\dla\tfsnopio.sys [15227 2004-12-06] (Sonic Solutions)
R2 tfsnpool; C:\Windows\System32\dla\tfsnpool.sys [6363 2004-12-06] (Sonic Solutions)
R2 tfsnudf; C:\Windows\System32\dla\tfsnudf.sys [98714 2004-12-06] (Sonic Solutions)
R2 tfsnudfa; C:\Windows\System32\dla\tfsnudfa.sys [100603 2004-12-06] (Sonic Solutions)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [x]
S3 bvrp_pci; No ImagePath
S3 catchme; \??\C:\DOCUME~1\Nzinga\LOCALS~1\Temp\catchme.sys [x]
S2 LMIInfo; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [x]
S4 LMIRfsClientNP; No ImagePath
S3 motccgp; system32\DRIVERS\motccgp.sys [x]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [x]
S3 motmodem; system32\DRIVERS\motmodem.sys [x]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [x]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [x]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [x]
S1 SABKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SABKUTIL.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 wanatw; system32\DRIVERS\wanatw4.sys [x]

==================== NetSvcs (Whitelisted) ===================

NETSVC: MHN -> C:\Windows\System32\mhn.dll (Microsoft Corporation)

==================== One Month Created Files and Folders ========

2013-12-15 15:44 - 2013-12-15 15:44 - 00022197 _____ C:\Documents and Settings\Nzinga\Desktop\FRST.txt
2013-12-15 15:43 - 2013-12-15 15:43 - 01060903 _____ (Farbar) C:\Documents and Settings\Nzinga\Desktop\FRST.exe
2013-12-15 15:43 - 2013-12-15 15:43 - 00000000 ____D C:\FRST
2013-12-11 03:18 - 2013-12-11 03:18 - 00016987 _____ C:\WINDOWS\KB2904266.log
2013-12-11 03:18 - 2013-12-11 03:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-11 03:18 - 2013-12-11 03:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-11 03:07 - 2013-12-11 03:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-11 03:07 - 2013-12-11 03:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-11 03:07 - 2013-12-11 03:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-10 16:45 - 2013-12-11 03:18 - 00027337 _____ C:\WINDOWS\KB2898715.log
2013-12-10 16:44 - 2013-12-11 03:08 - 00026148 _____ C:\WINDOWS\KB2893294.log
2013-12-10 16:44 - 2013-12-11 03:07 - 00026561 _____ C:\WINDOWS\KB2893984.log
2013-12-10 16:44 - 2013-12-11 03:07 - 00025268 _____ C:\WINDOWS\KB2892075.log
2013-12-10 16:43 - 2013-12-11 03:05 - 00116436 _____ C:\WINDOWS\KB2898785-IE7.log
2013-12-05 06:05 - 2013-12-05 06:05 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\YTD Video Downloader
2013-11-15 21:09 - 2013-11-17 09:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-15 08:07 - 2013-11-18 13:11 - 00013646 _____ C:\Documents and Settings\Nzinga\Desktop\Room and Furniture Dimensions.xlsx

==================== One Month Modified Files and Folders =======

2013-12-15 15:44 - 2013-12-15 15:44 - 00022197 _____ C:\Documents and Settings\Nzinga\Desktop\FRST.txt
2013-12-15 15:43 - 2013-12-15 15:43 - 01060903 _____ (Farbar) C:\Documents and Settings\Nzinga\Desktop\FRST.exe
2013-12-15 15:43 - 2013-12-15 15:43 - 00000000 ____D C:\FRST
2013-12-15 15:42 - 2013-01-08 19:39 - 00000830 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-15 15:23 - 2013-02-13 10:32 - 00000886 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-15 15:10 - 2012-10-09 06:11 - 00000512 ____C C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c260bc1d-0917-496a-a6b6-069a411912a8.job
2013-12-15 09:57 - 2010-09-11 03:36 - 00000000 ____D C:\Documents and Settings\Nzinga\Application Data\Dropbox
2013-12-15 03:04 - 2004-08-19 16:05 - 01290735 ____C C:\WINDOWS\WindowsUpdate.log
2013-12-15 02:13 - 2010-09-11 03:38 - 00000000 ___RD C:\Documents and Settings\Nzinga\My Documents\My Dropbox
2013-12-15 01:59 - 2012-10-09 06:10 - 00000512 ____C C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a5d2a694-12bb-4850-87cb-f080803d1d2b.job
2013-12-15 00:23 - 2013-02-13 10:32 - 00000882 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-14 22:26 - 2012-09-24 21:24 - 00000406 ____C C:\WINDOWS\Tasks\ReclaimerUpdateXML_Nzinga.job
2013-12-14 20:26 - 2012-09-24 21:24 - 00000410 ____C C:\WINDOWS\Tasks\ReclaimerUpdateFiles_Nzinga.job
2013-12-14 18:45 - 2004-08-19 16:02 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2013-12-14 18:22 - 2012-01-20 17:49 - 00000000 ____D C:\Documents and Settings\Nzinga\Application Data\Skype
2013-12-14 15:11 - 2004-08-19 16:13 - 00032614 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-13 10:25 - 2004-08-19 16:00 - 00002103 ____C C:\WINDOWS\wiadebug.log
2013-12-13 09:46 - 2004-08-19 16:02 - 00000000 ____D C:\WINDOWS\Registration
2013-12-13 09:44 - 2012-09-24 21:24 - 00000416 ____C C:\WINDOWS\Tasks\RNUpgradeHelperLogonPrompt_Nzinga.job
2013-12-13 09:44 - 2004-08-19 16:13 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2013-12-13 09:44 - 2004-08-19 16:00 - 00000050 ____C C:\WINDOWS\wiaservc.log
2013-12-13 09:44 - 2004-08-19 15:50 - 00002206 ____C C:\WINDOWS\system32\wpa.dbl
2013-12-13 00:19 - 2005-11-21 20:25 - 00000278 __SHC C:\Documents and Settings\Nzinga\ntuser.ini
2013-12-12 11:54 - 2005-11-26 03:02 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB898458$
2013-12-11 15:40 - 2007-04-09 14:24 - 00000284 ____C C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2013-12-11 10:42 - 2013-01-08 19:39 - 00692616 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-11 10:42 - 2013-01-08 19:39 - 00071048 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-11 03:38 - 2004-08-19 15:57 - 00719304 ____C C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-11 03:19 - 2013-10-31 21:30 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Microsoft Help
2013-12-11 03:18 - 2013-12-11 03:18 - 00016987 _____ C:\WINDOWS\KB2904266.log
2013-12-11 03:18 - 2013-12-11 03:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-11 03:18 - 2013-12-11 03:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-11 03:18 - 2013-12-10 16:45 - 00027337 _____ C:\WINDOWS\KB2898715.log
2013-12-11 03:18 - 2011-09-22 08:18 - 00117473 ____C C:\WINDOWS\netfxocm.log
2013-12-11 03:18 - 2011-09-22 08:18 - 00075274 ____C C:\WINDOWS\plusoc.log
2013-12-11 03:18 - 2011-09-22 08:18 - 00073800 ____C C:\WINDOWS\updspapi.log
2013-12-11 03:18 - 2011-09-22 08:18 - 00057861 ____C C:\WINDOWS\MedCtrOC.log
2013-12-11 03:18 - 2011-09-22 08:18 - 00037063 ____C C:\WINDOWS\ocmsn.log
2013-12-11 03:18 - 2011-09-22 08:18 - 00036679 ____C C:\WINDOWS\ehOCGen.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00718753 ____C C:\WINDOWS\iis6.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00666681 ____C C:\WINDOWS\FaxSetup.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00322108 ____C C:\WINDOWS\ocgen.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00306444 ____C C:\WINDOWS\tsoc.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00222718 ____C C:\WINDOWS\comsetup.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00203000 ____C C:\WINDOWS\msmqinst.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00135246 ____C C:\WINDOWS\ntdtcsetup.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00033588 ____C C:\WINDOWS\tabletoc.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00033542 ____C C:\WINDOWS\msgsocm.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00001393 _____ C:\WINDOWS\imsins.log
2013-12-11 03:18 - 2011-09-22 08:17 - 00001393 _____ C:\WINDOWS\imsins.BAK
2013-12-11 03:18 - 2007-02-17 03:02 - 01016422 ____C C:\WINDOWS\system32\TZLog.log
2013-12-11 03:15 - 2013-11-06 03:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-11 03:08 - 2013-12-10 16:44 - 00026148 _____ C:\WINDOWS\KB2893294.log
2013-12-11 03:08 - 2005-11-26 03:30 - 88123800 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-11 03:07 - 2013-12-11 03:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-11 03:07 - 2013-12-11 03:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-11 03:07 - 2013-12-11 03:07 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 03:07 - 2013-12-10 16:44 - 00026561 _____ C:\WINDOWS\KB2893984.log
2013-12-11 03:07 - 2013-12-10 16:44 - 00025268 _____ C:\WINDOWS\KB2892075.log
2013-12-11 03:05 - 2013-12-10 16:43 - 00116436 _____ C:\WINDOWS\KB2898785-IE7.log
2013-12-11 03:04 - 2007-02-17 03:01 - 00000000 ____D C:\WINDOWS\ie7updates
2013-12-05 06:07 - 2012-09-21 17:44 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\YTD Video Downloader
2013-12-05 06:05 - 2013-12-05 06:05 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\YTD Video Downloader
2013-12-05 06:05 - 2013-11-06 23:36 - 00000721 _____ C:\Documents and Settings\All Users\Desktop\YTD Video Downloader.lnk
2013-12-04 23:22 - 2013-02-13 10:35 - 00001813 _____ C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2013-11-26 00:54 - 2012-01-20 17:48 - 00002265 ____C C:\Documents and Settings\All Users\Desktop\Skype.lnk
2013-11-20 08:45 - 2012-10-10 06:46 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-18 13:11 - 2013-11-15 08:07 - 00013646 _____ C:\Documents and Settings\Nzinga\Desktop\Room and Furniture Dimensions.xlsx
2013-11-17 11:09 - 2005-11-21 21:47 - 00000000 ____D C:\Documents and Settings\Nzinga\Local Settings\Application Data\Adobe
2013-11-17 09:43 - 2013-11-15 21:09 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 12:39 - 2012-07-09 07:58 - 00000000 ____D C:\Documents and Settings\Nzinga\Application Data\vlc
2013-11-16 09:17 - 2005-11-21 20:25 - 00000000 ____D C:\Documents and Settings\Nzinga

Files to move or delete:
====================
C:\Documents and Settings\Nzinga\GCK.exe
C:\Documents and Settings\Nzinga\IMInstaller.exe
C:\Documents and Settings\Nzinga\NDKF.exe
C:\Documents and Settings\Nzinga\WFInstaller.exe


Some content of TEMP:
====================
C:\Documents and Settings\Nzinga\Local Settings\temp\ose00000.exe
C:\Documents and Settings\Nzinga\Local Settings\temp\The_Weather_Channel_Application.exe
C:\Documents and Settings\Nzinga\Local Settings\temp\USBDeview.exe
C:\Documents and Settings\Nzinga\Local Settings\temp\vlc-2.0.8-win32.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================

[windygirl]

This is the FRST Addition log

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 15-12-2013
Ran by Nzinga at 2013-12-15 15:45:30
Running from C:\Documents and Settings\Nzinga\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================


==================== Installed Programs ======================

7-Zip 4.65
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212)
Adobe Acrobat 7.0 Professional - English, Français, Deutsch (Version: 7.1.0)
Adobe Acrobat 7.1.0 Professional - English, Français, Deutsch (Version: 7.1.0)
Adobe AIR (Version: 2.6.0.19140)
Adobe Bridge 1.0 (Version: 001.000.000)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe Illustrator CS2 (Version: 12.000.000)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Reader XI (Version: 11.0.00)
Adobe Stock Photos 1.0 (Version: 001.000.000)
Adobe SVG Viewer 3.0 (Version:  3.0)
AOLIcon (Version: 1.00.0000)
Apple Software Update (Version: 1.1.0.3)
Audacity 1.2.6
Avery Wizard 4.0 (Version: 4.0.4)
Bamboo (Version: 5.2.5-3)
Bamboo Dock (Version: 4.0)
Bamboo Dock (Version: 4.0.0)
BitPim 0.9.14 (Version: 0.9.14)
CCleaner (Version: 3.06)
CompanionLink (Version: 4.00.4020)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Critical Update for Windows Media Player 11 (KB959772)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Picture Studio v3.0 (Version: 3.0.0)
Dell Support 3.1 (Version: 5.1.760)
Dell System Restore (Version: 2.00.0000)
Digital Content Portal (Version: 1.00.0000)
Documents To Go (Version: 8.002.173)
Dropbox (HKCU Version: 2.0.22)
EducateU (Version: 1.00.0000)
EndNote 8.0.1 (Version: 8.0.0.754)
Epson Connect
Epson Customer Participation (Version: 1.0.0.0)
Epson Download Navigator (Version: 1.0.1)
Epson Event Manager (Version: 2.50.0001)
Epson FAX Utility (Version: 1.20.00)
Epson PC-FAX Driver
EPSON Scan
EPSON WorkForce 645 Series Printer Uninstall
ESET Online Scanner v3
FaxTalk Communicator 4.5
FileMaker Pro 5.0
FreeRIP v3.2 (Version: 3.2)
GemMaster Mystic
Get High Speed Internet! (Version: 1.00.0000)
Google Chrome (Version: 31.0.1650.63)
Google Update Helper (Version: 1.3.22.3)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HP DeskJet 895C Series (Remove only)
Image Transfer
ImageMixer for Sony
ImageMixer VCD2 for FinePix
Intel® 537EP V9x DF PCI Modem
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4299)
Intel® PRO Network Connections Drivers
Intel® PROSet for Wired Connections (Version: 9.20.0000)
Internet Explorer Default Page (Version: 1.00.03)
iPod for Windows 2005-10-12 (Version: 4.3.0)
ISI ResearchSoft - Export Helper
iTunes (Version: 7.0.0.70)
K-Lite Codec Pack 2.70 Basic (Version: 2.70)
Learn2 Player (Uninstall Only)
LTCM Client
Macromedia Flash Player (Version: 7.0.19.0)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MD Simple Burner 2.0.04
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.0 Security Update (KB2742607)
Microsoft .NET Framework 1.0 Security Update (KB2833951)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft IntelliType Pro 5.3 (Version: 5.30.606.0)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Plus! Digital Media Edition (Version: 1.1.0.2423)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft WinUsb 1.0
MicroStaff WINASPI
Modem Event Monitor
Modem Helper (Version: 2.40)
Modem On Hold (Version: 1.12)
MotoHelper MergeModules (Version: 1.2.0)
Mozilla (1.7.8)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 25.0.1)
Mozilla Thunderbird (1.5) (Version: 1.5 (en-US))
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyVideoDaily 2 (Version: 0.003)
MyWay Search Assistant (Version: 1.0.1)
OpenMG Limited Patch 4.4-06-13-19-01
OpenMG Secure Module 4.4.00 (Version: 4.4.00.11241)
OpenOffice.org Installer 1.0 (Version: 1.0.9221)
Otto
Palm HotSync® Mail 4.0
Picasa 3 (Version: 3.9)
QuickTime (Version: 7.1.3.100)
RAW FILE CONVERTER LE
ScanToWeb
SeaMonkey (1.1.17)
SecureZIP for Windows 11.20.0008 (Version: 11.20.0008)
SigmaTel Audio (Version: 5.10.4600.0)
Skype Click to Call (Version: 5.8.8855)
Skype™ 5.10 (Version: 5.10.116)
Sonic DLA (Version: 4.95)
Sonic Encoders (Version: 1.00)
Sonic MyDVD LE (Version: 6.1.1)
Sonic RecordNow Audio (Version: 2.0.0)
Sonic RecordNow Copy (Version: 2.0.0)
Sonic RecordNow Data (Version: 2.0.0)
Sonic Update Manager (Version: 3.0.0)
SonicStage 3.4 (Version: 3.4)
Sony USB Driver
Sound Forge 4.5c Build-281
SUPERAntiSpyware (Version: 4.40.1002)
Treodesktop 2.13
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 7 (KB980182) (Version: 1)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB2863058) (Version: 1)
Update for Windows XP (KB2904266) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
USB PC Camera (SN9C102) (Version: 4.10.0.0)
USB Video Device (Version: 5.8.29000.202)
VLC media player 2.0.8 (Version: 2.0.8)
WebFldrs XP (Version: 9.50.7523)
WebTablet FB Plugin (Version: 2.0.0.1)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.5.0540.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB895198
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)
WinZip (Version:  9.0 SR-1 (6224))
WordPerfect Office 12 (Version: 12.01)
Yahoo! Messenger
YTD Toolbar v6.2 (Version: 6.2)
YTD Video Downloader 4.7.1 (Version: 4.7.1)

==================== Restore Points  =========================

25-10-2013 13:52:18 System Checkpoint
27-10-2013 17:22:48 System Checkpoint
29-10-2013 00:20:39 System Checkpoint
01-11-2013 02:28:25 Installed Microsoft Office Enterprise 2007
04-11-2013 04:30:17 System Checkpoint
06-11-2013 04:12:09 System Checkpoint
06-11-2013 08:01:06 Software Distribution Service 3.0
07-11-2013 08:01:37 Software Distribution Service 3.0
08-11-2013 08:00:47 Software Distribution Service 3.0
09-11-2013 08:00:48 Software Distribution Service 3.0
10-11-2013 08:00:44 Software Distribution Service 3.0
11-11-2013 08:00:46 Software Distribution Service 3.0
12-11-2013 08:00:48 Software Distribution Service 3.0
13-11-2013 08:00:47 Software Distribution Service 3.0
14-11-2013 08:01:33 Software Distribution Service 3.0
15-11-2013 08:00:45 Software Distribution Service 3.0
16-11-2013 08:00:38 Software Distribution Service 3.0
17-11-2013 14:40:33 Software Distribution Service 3.0
18-11-2013 08:00:43 Software Distribution Service 3.0
19-11-2013 08:00:46 Software Distribution Service 3.0
20-11-2013 13:48:55 Software Distribution Service 3.0
21-11-2013 08:00:44 Software Distribution Service 3.0
22-11-2013 08:00:41 Software Distribution Service 3.0
23-11-2013 08:00:19 Software Distribution Service 3.0
24-11-2013 08:00:19 Software Distribution Service 3.0
25-11-2013 08:00:49 Software Distribution Service 3.0
26-11-2013 08:00:48 Software Distribution Service 3.0
27-11-2013 08:00:47 Software Distribution Service 3.0
28-11-2013 08:00:19 Software Distribution Service 3.0
29-11-2013 08:00:19 Software Distribution Service 3.0
30-11-2013 08:00:19 Software Distribution Service 3.0
01-12-2013 08:00:19 Software Distribution Service 3.0
02-12-2013 08:00:19 Software Distribution Service 3.0
03-12-2013 08:00:17 Software Distribution Service 3.0
04-12-2013 08:00:18 Software Distribution Service 3.0
05-12-2013 08:00:43 Software Distribution Service 3.0
06-12-2013 08:00:39 Software Distribution Service 3.0
07-12-2013 08:00:38 Software Distribution Service 3.0
08-12-2013 08:00:35 Software Distribution Service 3.0
09-12-2013 08:00:45 Software Distribution Service 3.0
10-12-2013 08:00:47 Software Distribution Service 3.0
11-12-2013 08:01:43 Software Distribution Service 3.0
12-12-2013 08:00:49 Software Distribution Service 3.0
12-12-2013 10:57:49 Software Distribution Service 3.0
12-12-2013 11:02:45 Software Distribution Service 3.0
13-12-2013 05:20:11 Software Distribution Service 3.0
14-12-2013 08:00:47 Software Distribution Service 3.0
15-12-2013 08:00:42 Software Distribution Service 3.0

==================== Hosts content: ==========================

2004-08-19 15:49 - 2012-10-06 09:52 - 00000027 ___AC C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\ReclaimerUpdateFiles_Nzinga.job => C:\Documents and Settings\Nzinga\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe
Task: C:\WINDOWS\Tasks\ReclaimerUpdateXML_Nzinga.job => C:\Documents and Settings\Nzinga\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe
Task: C:\WINDOWS\Tasks\RNUpgradeHelperLogonPrompt_Nzinga.job => C:\Documents and Settings\Nzinga\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a5d2a694-12bb-4850-87cb-f080803d1d2b.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task c260bc1d-0917-496a-a6b6-069a411912a8.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (whitelisted) =============

2012-09-15 18:04 - 2011-07-05 17:01 - 00962936 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
1998-09-04 02:34 - 1998-09-04 02:34 - 00048292 _____ () C:\WINDOWS\system32\HPFlpm15.dll
1998-09-04 02:33 - 1998-09-04 02:33 - 00072368 _____ () C:\WINDOWS\system32\HPFCOM15.DLL
1998-09-04 02:34 - 1998-09-04 02:34 - 00033384 _____ () C:\WINDOWS\system32\HPFIOP15.DLL
1998-09-04 02:34 - 1998-09-04 02:34 - 00138428 _____ () C:\WINDOWS\system32\HPFMLC15.dll
1998-09-04 02:34 - 1998-09-04 02:34 - 00057240 _____ () C:\WINDOWS\system32\HPFMEM15.dll
2006-06-20 10:40 - 2002-07-04 08:38 - 00053248 _____ () C:\Program Files\ArcSoft\Software Suite\PhotoImpression 5\share\pihook.dll
2013-06-13 09:09 - 2006-01-12 20:20 - 00019968 _____ () C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.DEU
2013-06-13 09:09 - 2006-01-12 20:13 - 00019968 _____ () C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.FRA
2013-03-13 15:48 - 2013-03-13 15:48 - 24978944 _____ () C:\Documents and Settings\Nzinga\Application Data\Dropbox\bin\libcef.dll
2004-08-19 15:49 - 2011-02-04 16:48 - 00291840 _____ () C:\WINDOWS\system32\sbe.dll
2004-08-19 15:49 - 2013-01-02 01:49 - 01292288 _____ () C:\WINDOWS\system32\quartz.dll
2004-08-19 15:49 - 2008-04-13 19:11 - 00059904 _____ () C:\WINDOWS\system32\devenum.dll
2004-08-19 15:49 - 2008-04-13 19:11 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2008-10-22 14:05 - 2009-05-26 20:06 - 00913408 _____ () C:\Program Files\Yahoo!\Messenger\yui.dll
2013-11-15 21:09 - 2013-11-15 21:09 - 03363952 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2013-12-11 10:42 - 2013-12-11 10:42 - 16242056 _____ () C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Program Files\PlusDME_Full.exe:SummaryInformation
AlternateDataStreams: C:\Program Files\PlusDME_Full.exe:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/15/2013 03:01:50 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 - Update '{C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0}' could not be installed. Error code 1603. Additional information is available in the log file C:\WINDOWS\TEMP\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log.

Error: (12/15/2013 03:01:48 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 -- Error 1706.No valid source could be found for product Microsoft .NET Framework 1.1.  The Windows installer cannot continue.

Error: (12/14/2013 03:01:53 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 - Update '{C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0}' could not be installed. Error code 1603. Additional information is available in the log file C:\WINDOWS\TEMP\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log.

Error: (12/14/2013 03:01:51 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 -- Error 1706.No valid source could be found for product Microsoft .NET Framework 1.1.  The Windows installer cannot continue.

Error: (12/13/2013 00:21:01 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 - Update '{C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0}' could not be installed. Error code 1603. Additional information is available in the log file C:\WINDOWS\TEMP\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log.

Error: (12/13/2013 00:20:59 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 -- Error 1706.No valid source could be found for product Microsoft .NET Framework 1.1.  The Windows installer cannot continue.

Error: (12/12/2013 06:03:14 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 - Update '{C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0}' could not be installed. Error code 1603. Additional information is available in the log file C:\WINDOWS\TEMP\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log.

Error: (12/12/2013 06:03:12 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 1.1 -- Error 1706.No valid source could be found for product Microsoft .NET Framework 1.1.  The Windows installer cannot continue.

Error: (12/12/2013 05:58:55 AM) (Source: MsiInstaller) (User: NZINGA1)
Description: Product: Microsoft .NET Framework 1.1 - Update '{C0F0DCDC-99EA-4405-BDAE-CACABD3D2DF0}' could not be installed. Error code 1603. Additional information is available in the log file C:\DOCUME~1\Nzinga\LOCALS~1\Temp\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log.

Error: (12/12/2013 05:58:52 AM) (Source: MsiInstaller) (User: NZINGA1)
Description: Product: Microsoft .NET Framework 1.1 -- Error 1706.No valid source could be found for product Microsoft .NET Framework 1.1.  The Windows installer cannot continue.


System errors:
=============
Error: (12/15/2013 03:04:28 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2833941).

Error: (12/14/2013 03:03:43 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2833941).

Error: (12/13/2013 09:46:11 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {7F6316B4-4D69-4765-B0A3-B2598F2FA80A} did not register with DCOM within the required timeout.

Error: (12/13/2013 09:44:20 AM) (Source: Service Control Manager) (User: )
Description: The LogMeIn Kernel Information Provider service failed to start due to the following error:
%%3

Error: (12/13/2013 00:21:01 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2833941).

Error: (12/12/2013 11:55:42 AM) (Source: Service Control Manager) (User: )
Description: The LogMeIn Kernel Information Provider service failed to start due to the following error:
%%3

Error: (12/12/2013 10:27:25 AM) (Source: Service Control Manager) (User: )
Description: The LogMeIn Kernel Information Provider service failed to start due to the following error:
%%3

Error: (12/12/2013 06:03:14 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2833941).

Error: (12/12/2013 06:00:17 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2833941).

Error: (12/12/2013 03:03:33 AM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2833941).


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 55%
Total physical RAM: 3318.07 MB
Available physical RAM: 1461.24 MB
Total Pagefile: 3912.22 MB
Available Pagefile: 2343.39 MB
Total Virtual: 2047.88 MB
Available Virtual: 1951.64 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:69.82 GB) (Free:22.79 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (MS_OFFICE_2007) (CDROM) (Total:0.55 GB) (Free:0 GB) CDFS
Drive f: (Elements) (Fixed) (Total:1863.01 GB) (Free:1402.94 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 75 GB) (Disk ID: EB275B50)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=70 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=5 GB) - (Type=DB)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 0017BE67)
Partition 1: (Not Active) - (Size=-198627557376) - (Type=07 NTFS)

==================== End Of Log ============================

[windygirl]

This is the TDSS Killer Log

 

16:03:00.0296 0x17d4  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
16:03:07.0702 0x17d4  ============================================================
16:03:07.0702 0x17d4  Current date / time: 2013/12/15 16:03:07.0702
16:03:07.0702 0x17d4  SystemInfo:
16:03:07.0702 0x17d4  
16:03:07.0702 0x17d4  OS Version: 5.1.2600 ServicePack: 3.0
16:03:07.0702 0x17d4  Product type: Workstation
16:03:07.0702 0x17d4  ComputerName: NZINGA1
16:03:07.0702 0x17d4  UserName: Nzinga
16:03:07.0702 0x17d4  Windows directory: C:\WINDOWS
16:03:07.0702 0x17d4  System windows directory: C:\WINDOWS
16:03:07.0702 0x17d4  Processor architecture: Intel x86
16:03:07.0702 0x17d4  Number of processors: 2
16:03:07.0702 0x17d4  Page size: 0x1000
16:03:07.0702 0x17d4  Boot type: Normal boot
16:03:07.0702 0x17d4  ============================================================
16:03:10.0483 0x17d4  KLMD registered as C:\WINDOWS\system32\drivers\55463748.sys
16:03:10.0811 0x17d4  System UUID: {05F101A5-8440-8944-2FB6-B4874DE430A2}
16:03:11.0968 0x17d4  Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
16:03:12.0061 0x17d4  Drive \Device\Harddisk1\DR4 - Size: 0x1D1C0F00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:03:12.0186 0x17d4  ============================================================
16:03:12.0186 0x17d4  \Device\Harddisk0\DR0:
16:03:12.0202 0x17d4  MBR partitions:
16:03:12.0202 0x17d4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x8BA231A
16:03:12.0202 0x17d4  \Device\Harddisk1\DR4:
16:03:12.0202 0x17d4  MBR partitions:
16:03:12.0202 0x17d4  \Device\Harddisk1\DR4\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
16:03:12.0202 0x17d4  ============================================================
16:03:12.0405 0x17d4  C: <-> \Device\Harddisk0\DR0\Partition1
16:03:12.0468 0x17d4  F: <-> \Device\Harddisk1\DR4\Partition1
16:03:12.0468 0x17d4  ============================================================
16:03:12.0468 0x17d4  Initialize success
16:03:12.0468 0x17d4  ============================================================
16:03:14.0686 0x0b60  ============================================================
16:03:14.0686 0x0b60  Scan started
16:03:14.0686 0x0b60  Mode: Manual;
16:03:14.0686 0x0b60  ============================================================
16:03:14.0686 0x0b60  KSN ping started
16:03:17.0686 0x0b60  KSN ping finished: true
16:03:18.0671 0x0b60  ================ Scan system memory ========================
16:03:18.0671 0x0b60  System memory - ok
16:03:18.0671 0x0b60  ================ Scan services =============================
16:03:18.0749 0x0b60  [ 01E81C84AD1D0ACC61CF3CFD06632210, 1140756BA2F28CA8DFCFF8FD223654E6A78BA1B770A169CC557ECE0E01381B17 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
16:03:18.0749 0x0b60  !SASCORE - ok
16:03:19.0061 0x0b60  [ B33CF4DE909A5B30F526D82053A63C8E, ABF5BB962C038E545C18B96E686E072D780C907096C7BB341297AF31D3703ABD ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
16:03:19.0140 0x0b60  ABBYY.Licensing.FineReader.Sprint.9.0 - ok
16:03:19.0249 0x0b60  Abiosdsk - ok
16:03:19.0280 0x0b60  [ 6ABB91494FE6C59089B9336452AB2EA3, FA28396820E44F991891042E051A4414485B54D456F252E03E3FFE1B4B4CF843 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
16:03:19.0296 0x0b60  abp480n5 - ok
16:03:19.0327 0x0b60  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:03:19.0343 0x0b60  ACPI - ok
16:03:19.0358 0x0b60  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
16:03:19.0358 0x0b60  ACPIEC - ok
16:03:19.0390 0x0b60  [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
16:03:19.0390 0x0b60  Adobe LM Service - ok
16:03:19.0436 0x0b60  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:03:19.0452 0x0b60  AdobeFlashPlayerUpdateSvc - ok
16:03:19.0468 0x0b60  [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
16:03:19.0468 0x0b60  adpu160m - ok
16:03:19.0515 0x0b60  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
16:03:19.0515 0x0b60  aec - ok
16:03:19.0546 0x0b60  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
16:03:19.0546 0x0b60  AFD - ok
16:03:19.0593 0x0b60  [ 08FD04AA961BDC77FB983F328334E3D7, A784EC8A9EDB579262366B5A9AB177DB7BEC0A421BDE85431D0AD4959D5AF5E7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
16:03:19.0593 0x0b60  agp440 - ok
16:03:19.0608 0x0b60  [ 03A7E0922ACFE1B07D5DB2EEB0773063, 93EEA872A5642C95FF19C81F8EFFB9B52742A14DBF138784F0F713AD18C413ED ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
16:03:19.0608 0x0b60  agpCPQ - ok
16:03:19.0624 0x0b60  [ C23EA9B5F46C7F7910DB3EAB648FF013, 92C84E9AF278A3B55D56C4F8E6C10E3EF1F7B336A44A018AED6DC51A46671F0B ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
16:03:19.0624 0x0b60  Aha154x - ok
16:03:19.0640 0x0b60  [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
16:03:19.0640 0x0b60  aic78u2 - ok
16:03:19.0655 0x0b60  [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
16:03:19.0655 0x0b60  aic78xx - ok
16:03:19.0686 0x0b60  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
16:03:19.0686 0x0b60  Alerter - ok
16:03:19.0702 0x0b60  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
16:03:19.0702 0x0b60  ALG - ok
16:03:19.0733 0x0b60  [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
16:03:19.0733 0x0b60  AliIde - ok
16:03:19.0749 0x0b60  [ CB08AED0DE2DD889A8A820CD8082D83C, B1A9D493390AEDF6EFF8BCAA3B33EC31758452AB497C34C0728CDDA1D8DCBF2A ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
16:03:19.0749 0x0b60  alim1541 - ok
16:03:19.0765 0x0b60  [ 95B4FB835E28AA1336CEEB07FD5B9398, 36CD3B14EF78B01FB653B78187FAA63C4DD5F4137AC3B91D81256A350EEDCBC1 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
16:03:19.0765 0x0b60  amdagp - ok
16:03:19.0780 0x0b60  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6, 9B179F0B6A559639D3AE3975CEBF2718294BE5743517BEE06586F0D258164C81 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
16:03:19.0780 0x0b60  amsint - ok
16:03:19.0827 0x0b60  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
16:03:19.0843 0x0b60  AppMgmt - ok
16:03:19.0858 0x0b60  [ 62D318E9A0C8FC9B780008E724283707, 1A69806AB2BDECCEB5EB23A80700B3F98983D5D67F78839CBF269087FA460757 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
16:03:19.0858 0x0b60  asc - ok
16:03:19.0874 0x0b60  [ 69EB0CC7714B32896CCBFD5EDCBEA447, 1CB506B5F71F84EFD26961010681D0A79AA7B266573378E3D2755125DF5D6BB6 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
16:03:19.0874 0x0b60  asc3350p - ok
16:03:19.0890 0x0b60  [ 5D8DE112AA0254B907861E9E9C31D597, 557C93E82A71131D226267151C84B197503831A16263DDFE040E996B605CA9E8 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
16:03:19.0890 0x0b60  asc3550 - ok
16:03:19.0999 0x0b60  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:03:20.0046 0x0b60  aspnet_state - ok
16:03:20.0093 0x0b60  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:03:20.0093 0x0b60  AsyncMac - ok
16:03:20.0108 0x0b60  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
16:03:20.0108 0x0b60  atapi - ok
16:03:20.0124 0x0b60  Atdisk - ok
16:03:20.0171 0x0b60  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:03:20.0171 0x0b60  Atmarpc - ok
16:03:20.0218 0x0b60  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
16:03:20.0218 0x0b60  AudioSrv - ok
16:03:20.0233 0x0b60  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
16:03:20.0233 0x0b60  audstub - ok
16:03:20.0249 0x0b60  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:03:20.0265 0x0b60  Beep - ok
16:03:20.0311 0x0b60  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
16:03:20.0327 0x0b60  BITS - ok
16:03:20.0374 0x0b60  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
16:03:20.0374 0x0b60  Browser - ok
16:03:20.0374 0x0b60  BTCFilterService - ok
16:03:20.0374 0x0b60  bvrp_pci - ok
16:03:20.0624 0x0b60  catchme - ok
16:03:20.0640 0x0b60  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
16:03:20.0640 0x0b60  cbidf - ok
16:03:20.0640 0x0b60  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
16:03:20.0640 0x0b60  cbidf2k - ok
16:03:20.0655 0x0b60  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:03:20.0655 0x0b60  CCDECODE - ok
16:03:20.0686 0x0b60  [ F3EC03299634490E97BBCE94CD2954C7, CDC85ADA27E0D501581CE6F28D7E1941E90411FA8E8F2C43A68BAA8CB78E85DD ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
16:03:20.0686 0x0b60  cd20xrnt - ok
16:03:20.0702 0x0b60  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
16:03:20.0702 0x0b60  Cdaudio - ok
16:03:20.0749 0x0b60  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
16:03:20.0749 0x0b60  Cdfs - ok
16:03:20.0765 0x0b60  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:03:20.0765 0x0b60  Cdrom - ok
16:03:20.0765 0x0b60  Changer - ok
16:03:20.0811 0x0b60  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
16:03:20.0827 0x0b60  CiSvc - ok
16:03:20.0827 0x0b60  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
16:03:20.0843 0x0b60  ClipSrv - ok
16:03:20.0890 0x0b60  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:03:20.0936 0x0b60  clr_optimization_v2.0.50727_32 - ok
16:03:21.0233 0x0b60  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:03:21.0249 0x0b60  clr_optimization_v4.0.30319_32 - ok
16:03:21.0265 0x0b60  [ E5DCB56C533014ECBC556A8357C929D5, B2915C0C07EDBA59C5D02680804C4C2DE099D73DE0D0DD0CDA748F34F11057E0 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
16:03:21.0265 0x0b60  CmdIde - ok
16:03:21.0280 0x0b60  COMSysApp - ok
16:03:21.0296 0x0b60  [ 3EE529119EED34CD212A215E8C40D4B6, A6B71F3D4EE7358CA85F010E6271A6B72226D25DF30ED331DA830639ED3E9903 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
16:03:21.0296 0x0b60  Cpqarray - ok
16:03:21.0343 0x0b60  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
16:03:21.0343 0x0b60  CryptSvc - ok
16:03:21.0374 0x0b60  [ E550E7418984B65A78299D248F0A7F36, 52F6BD1027E91F9A90AFAB82C7F2A0314B7E55262F5293D5F9F8F12135EDD88C ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
16:03:21.0374 0x0b60  dac2w2k - ok
16:03:21.0390 0x0b60  [ 683789CAA3864EB46125AE86FF677D34, B725D026E069AD253192E21245260CBA44EF3C72781616A2CAD0BF0E2D86D510 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
16:03:21.0390 0x0b60  dac960nt - ok
16:03:21.0436 0x0b60  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:03:21.0452 0x0b60  DcomLaunch - ok
16:03:21.0499 0x0b60  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
16:03:21.0515 0x0b60  Dhcp - ok
16:03:21.0561 0x0b60  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
16:03:21.0561 0x0b60  Disk - ok
16:03:21.0577 0x0b60  dmadmin - ok
16:03:21.0640 0x0b60  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
16:03:21.0671 0x0b60  dmboot - ok
16:03:21.0686 0x0b60  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
16:03:21.0702 0x0b60  dmio - ok
16:03:21.0733 0x0b60  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
16:03:21.0733 0x0b60  dmload - ok
16:03:21.0765 0x0b60  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
16:03:21.0765 0x0b60  dmserver - ok
16:03:21.0780 0x0b60  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
16:03:21.0780 0x0b60  DMusic - ok
16:03:21.0811 0x0b60  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:03:21.0811 0x0b60  Dnscache - ok
16:03:21.0858 0x0b60  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:03:21.0858 0x0b60  Dot3svc - ok
16:03:21.0890 0x0b60  [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
16:03:21.0890 0x0b60  dpti2o - ok
16:03:21.0905 0x0b60  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
16:03:21.0905 0x0b60  drmkaud - ok
16:03:21.0952 0x0b60  [ E814854E6B246CCF498874839AB64D77, D7BD17AD9709DA8305FF58710EE5EAA14BA5857F4B64C1CBDD21751625BFF2A3 ] drvmcdb         C:\WINDOWS\system32\drivers\drvmcdb.sys
16:03:21.0952 0x0b60  drvmcdb - ok
16:03:21.0968 0x0b60  [ EE83A4EBAE70BC93CF14879D062F548B, CCA423C19BC8A6807EE29DA7FA9F545FDF2D0AAA8D4556E13B864ED6F6683827 ] drvnddm         C:\WINDOWS\system32\drivers\drvnddm.sys
16:03:21.0968 0x0b60  drvnddm - ok
16:03:21.0983 0x0b60  [ 95974E66D3DE4951D29E28E8BC0B644C, 5737A2FB4D95AAB61A50E25CC570D78FC91C1A7B02754211B1B57DC4209A7D58 ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
16:03:21.0999 0x0b60  E100B - ok
16:03:22.0015 0x0b60  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
16:03:22.0015 0x0b60  EapHost - ok
16:03:22.0077 0x0b60  [ 5D1347AA5AE6E2F77D7F4F8372D95AC9, F3CA10753B7D76C87A71A0FEDB5EACE77E2E10E8DD44BEE7C66BCE17BD3EFD71 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
16:03:22.0077 0x0b60  ehRecvr - ok
16:03:22.0108 0x0b60  [ A53243709439AC2A4C216B817F8D7411, AF4624EEA9B165DE873B7D104D1EA3BE9A14BBC5B4CABE26544F90B78689EEF9 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
16:03:22.0108 0x0b60  ehSched - ok
16:03:22.0249 0x0b60  [ B78436CA173FF723A1EACE5CD4900375, 6B80EAD3111FB0A48AFF35C07F0FF7BEDDF1E34200EFC599B8E92CEE4B372736 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
16:03:22.0265 0x0b60  EpsonCustomerParticipation - ok
16:03:22.0311 0x0b60  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
16:03:22.0327 0x0b60  ERSvc - ok
16:03:22.0358 0x0b60  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
16:03:22.0374 0x0b60  Eventlog - ok
16:03:22.0421 0x0b60  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
16:03:22.0436 0x0b60  EventSystem - ok
16:03:22.0483 0x0b60  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
16:03:22.0499 0x0b60  Fastfat - ok
16:03:22.0530 0x0b60  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:03:22.0530 0x0b60  FastUserSwitchingCompatibility - ok
16:03:22.0593 0x0b60  [ E97D6A8684466DF94FF3BC24FB787A07, 89E5A6889E3C5AB9AD3E80FFC16DD608278F3ADC282048B40B60196336A5CBEB ] Fax             C:\WINDOWS\system32\fxssvc.exe
16:03:22.0593 0x0b60  Fax - ok
16:03:22.0624 0x0b60  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
16:03:22.0624 0x0b60  Fdc - ok
16:03:22.0640 0x0b60  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
16:03:22.0640 0x0b60  Fips - ok
16:03:22.0655 0x0b60  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:03:22.0655 0x0b60  Flpydisk - ok
16:03:22.0702 0x0b60  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
16:03:22.0718 0x0b60  FltMgr - ok
16:03:22.0811 0x0b60  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:03:22.0811 0x0b60  FontCache3.0.0.0 - ok
16:03:22.0827 0x0b60  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:03:22.0827 0x0b60  Fs_Rec - ok
16:03:22.0858 0x0b60  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:03:22.0858 0x0b60  Ftdisk - ok
16:03:22.0905 0x0b60  [ 8C18F85EDD5D47F34068F3EFD5689FA9, 4453C9C180D016A4E961C897CD1C51319945E2046407785434EE763738B90D86 ] GEARAspiWDM     C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
16:03:22.0905 0x0b60  GEARAspiWDM - ok
16:03:22.0952 0x0b60  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:03:22.0952 0x0b60  Gpc - ok
16:03:23.0030 0x0b60  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
16:03:23.0030 0x0b60  gupdate - ok
16:03:23.0030 0x0b60  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
16:03:23.0046 0x0b60  gupdatem - ok
16:03:23.0077 0x0b60  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:03:23.0093 0x0b60  gusvc - ok
16:03:23.0108 0x0b60  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:03:23.0124 0x0b60  HDAudBus - ok
16:03:23.0186 0x0b60  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:03:23.0186 0x0b60  helpsvc - ok
16:03:23.0233 0x0b60  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
16:03:23.0233 0x0b60  HidServ - ok
16:03:23.0280 0x0b60  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:03:23.0280 0x0b60  HidUsb - ok
16:03:23.0296 0x0b60  [ 47EECE68857817F39C8C6F33A7E5E76C, 240EF7ACBBC1E7DF78D5C029C5C73AAE02286EABA87A5E6FF7D2C5A25F3C93FD ] hitmanpro36     C:\WINDOWS\system32\drivers\hitmanpro36.sys
16:03:23.0296 0x0b60  hitmanpro36 - ok
16:03:23.0390 0x0b60  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
16:03:23.0390 0x0b60  hkmsvc - ok
16:03:23.0436 0x0b60  [ 8B84068E337A7D9DC4365C8F14A2E20C, D8FE50E57AA92465CB7E51D1509EAE2FB4A02B28E023D4C4E120D106501852AD ] HPFECP15        C:\WINDOWS\System32\drivers\HPFECP15.SYS
16:03:23.0436 0x0b60  HPFECP15 - ok
16:03:23.0468 0x0b60  [ B028377DEA0546A5FCFBA928A8AEFAE0, FD7B34A6036AD443014B16394A5F051A298CEE4276D50525FB9F15A0D2684C8B ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
16:03:23.0468 0x0b60  hpn - ok
16:03:23.0515 0x0b60  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
16:03:23.0515 0x0b60  HTTP - ok
16:03:23.0546 0x0b60  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
16:03:23.0546 0x0b60  HTTPFilter - ok
16:03:23.0561 0x0b60  [ 9368670BD426EBEA5E8B18A62416EC28, 0ED865F8FB79F0B6309521925280E8640DB5CA6F75377434830536899734B6EE ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
16:03:23.0561 0x0b60  i2omgmt - ok
16:03:23.0577 0x0b60  [ F10863BF1CCC290BABD1A09188AE49E0, BC038EAE6C8A76D56A5AD27035DC0369D6E766711E9FAA7467144370851F1615 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
16:03:23.0593 0x0b60  i2omp - ok
16:03:23.0608 0x0b60  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:03:23.0608 0x0b60  i8042prt - ok
16:03:23.0655 0x0b60  [ 0294A30B302CA71A2C26E582DDA93486, FD7F3233F387A6CA0EF3719BEC354B679CF786112B05168E02AE0A0916010271 ] ialm            C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
16:03:23.0686 0x0b60  ialm - ok
16:03:23.0765 0x0b60  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:03:23.0765 0x0b60  IDriverT - ok
16:03:23.0858 0x0b60  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:03:23.0905 0x0b60  idsvc - ok
16:03:23.0936 0x0b60  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
16:03:23.0936 0x0b60  Imapi - ok
16:03:23.0999 0x0b60  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
16:03:23.0999 0x0b60  ImapiService - ok
16:03:24.0015 0x0b60  [ 4A40E045FAEE58631FD8D91AFC620719, 7A2FD81BD483821B3DA01B1CD7215423EDD719CBE3862C0342FF7D21A17AF437 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
16:03:24.0015 0x0b60  ini910u - ok
16:03:24.0108 0x0b60  [ 7509C548400F4C9E0211E3F6E66ABBE6, 10884F759DE3EE38F93EF74202B0DBDA3CC5D5E7532E361DC33385D4CC18B659 ] IntelC51        C:\WINDOWS\system32\DRIVERS\IntelC51.sys
16:03:24.0218 0x0b60  IntelC51 - ok
16:03:24.0296 0x0b60  [ 9584FFDD41D37F2C239681D0DAC2513E, AB48DA5AA95C2D1F6C06EEF6635CC7DBCA64F90A5219E0A1501D46D5CD2944FA ] IntelC52        C:\WINDOWS\system32\DRIVERS\IntelC52.sys
16:03:24.0327 0x0b60  IntelC52 - ok
16:03:24.0358 0x0b60  [ CF0B937710CEC6EF39416EDECD803CBB, 45929596C8E8D47809065F3B690E26E93B66206390447292801CF2985C05289D ] IntelC53        C:\WINDOWS\system32\DRIVERS\IntelC53.sys
16:03:24.0358 0x0b60  IntelC53 - ok
16:03:24.0390 0x0b60  [ B5466A9250342A7AA0CD1FBA13420678, 87E735C4E8924A883AB692D387A83BCBFAE6E165688336AE7AB488F7CA8D339E ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
16:03:24.0390 0x0b60  IntelIde - ok
16:03:24.0436 0x0b60  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:03:24.0436 0x0b60  intelppm - ok
16:03:24.0452 0x0b60  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
16:03:24.0452 0x0b60  Ip6Fw - ok
16:03:24.0499 0x0b60  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:03:24.0499 0x0b60  IpFilterDriver - ok
16:03:24.0546 0x0b60  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:03:24.0546 0x0b60  IpInIp - ok
16:03:24.0577 0x0b60  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:03:24.0577 0x0b60  IpNat - ok
16:03:24.0702 0x0b60  [ 929D6D4E7B1F8A6EEC96E620D121E1E5, F23757597B672AA47DB6B3C96C0F5CB32D154E5CC784615006BBB687B150EF94 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:03:24.0718 0x0b60  iPod Service - ok
16:03:24.0749 0x0b60  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:03:24.0749 0x0b60  IPSec - ok
16:03:24.0780 0x0b60  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
16:03:24.0780 0x0b60  IRENUM - ok
16:03:24.0827 0x0b60  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:03:24.0827 0x0b60  isapnp - ok
16:03:24.0843 0x0b60  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:03:24.0858 0x0b60  Kbdclass - ok
16:03:24.0858 0x0b60  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:03:24.0858 0x0b60  kbdhid - ok
16:03:24.0890 0x0b60  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
16:03:24.0905 0x0b60  kmixer - ok
16:03:24.0952 0x0b60  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
16:03:24.0952 0x0b60  KSecDD - ok
16:03:24.0999 0x0b60  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
16:03:24.0999 0x0b60  lanmanserver - ok
16:03:25.0061 0x0b60  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:03:25.0077 0x0b60  lanmanworkstation - ok
16:03:25.0077 0x0b60  lbrtfdc - ok
16:03:25.0155 0x0b60  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
16:03:25.0155 0x0b60  LmHosts - ok
16:03:25.0155 0x0b60  LMIInfo - ok
16:03:25.0218 0x0b60  [ 4477689E2D8AE6B78BA34C9AF4CC1ED1, 0BC8AF546901E6C20611C5250BD65ACD0C4A8613BD8F8835F0D4680B5777F051 ] lmimirr         C:\WINDOWS\system32\DRIVERS\lmimirr.sys
16:03:25.0218 0x0b60  lmimirr - ok
16:03:25.0233 0x0b60  LMIRfsClientNP - ok
16:03:25.0249 0x0b60  [ 622704763DA924C1565344E8C7D6CA4D, 7E14D139E5ABF392FF77A57373C7A163E171E5F79FE7BE204B3747197E5697BB ] LMIRfsDriver    C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
16:03:25.0265 0x0b60  LMIRfsDriver - ok
16:03:25.0296 0x0b60  [ A2AE666CEE860BABE7FA6F1662B71737, 149F52A9510A645A4B3C2981CAD0CB20C6CF82982BE5E7A1180E18C6AB647901 ] MASPINT         C:\WINDOWS\system32\drivers\MASPINT.sys
16:03:25.0296 0x0b60  MASPINT - ok
16:03:25.0343 0x0b60  [ 629CABB0421668C9D3D402A3C3D77E14, 967DB88807D389A6993224B4B625D40F1EC17F5EE21E38DA6771D97E53E694EA ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
16:03:25.0343 0x0b60  MBAMProtector - ok
16:03:25.0421 0x0b60  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF, 807934D61E9A6C8302C934DCC3901A80A7068C9BC8EB4FAE24A32D97CB1DF963 ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:03:25.0436 0x0b60  MBAMScheduler - ok
16:03:25.0483 0x0b60  [ 916B8954AC3E06DC9E898AFFB41F3FB6, 8AD3D605F1681D743C7ACDB7CA4A1299F86B96959A7609A803A5823B30A21E82 ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:03:25.0515 0x0b60  MBAMService - ok
16:03:25.0577 0x0b60  [ DF0A511F38F16016BF658FCA0090CB87, 6D2F6360A4E1D369607F2F394B4A8C6EE8EEE9FA46A67394769E9C0044529B6C ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe
16:03:25.0577 0x0b60  McrdSvc - ok
16:03:25.0624 0x0b60  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
16:03:25.0624 0x0b60  Messenger - ok
16:03:25.0655 0x0b60  [ B7521F69C0A9B29D356157229376FB21, A77C89BDC181038DD0F9A8AC0F7164B10EF9C54B0C57D8BAB8BC27932EBF890B ] MHN             C:\WINDOWS\System32\mhn.dll
16:03:25.0655 0x0b60  MHN - ok
16:03:25.0686 0x0b60  [ 7F2F1D2815A6449D346FCCCBC569FBD6, 1C5A321CE95CE4D9AA2CB5A00E9B7E711521A6BBB25D36F7F49A397C361585C6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
16:03:25.0686 0x0b60  MHNDRV - ok
16:03:25.0702 0x0b60  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
16:03:25.0718 0x0b60  mnmdd - ok
16:03:25.0765 0x0b60  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
16:03:25.0765 0x0b60  mnmsrvc - ok
16:03:25.0811 0x0b60  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
16:03:25.0811 0x0b60  Modem - ok
16:03:25.0827 0x0b60  [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
16:03:25.0827 0x0b60  MODEMCSA - ok
16:03:25.0843 0x0b60  [ 59B8B11FF70728EEC60E72131C58B716, EB001E1FC17D57AE2A9D4CC7B6C45DC5C6869D3602C1B86F5D4940B11AAECA0A ] mohfilt         C:\WINDOWS\system32\DRIVERS\mohfilt.sys
16:03:25.0858 0x0b60  mohfilt - ok
16:03:25.0858 0x0b60  motccgp - ok
16:03:25.0858 0x0b60  motccgpfl - ok
16:03:25.0874 0x0b60  motmodem - ok
16:03:25.0890 0x0b60  MotoSwitchService - ok
16:03:25.0890 0x0b60  Motousbnet - ok
16:03:25.0905 0x0b60  motusbdevice - ok
16:03:25.0936 0x0b60  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:03:25.0936 0x0b60  Mouclass - ok
16:03:25.0968 0x0b60  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:03:25.0968 0x0b60  mouhid - ok
16:03:25.0999 0x0b60  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
16:03:25.0999 0x0b60  MountMgr - ok
16:03:26.0046 0x0b60  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:03:26.0061 0x0b60  MozillaMaintenance - ok
16:03:26.0093 0x0b60  [ 3F4BB95E5A44F3BE34824E8E7CAF0737, 9A4F9E63AA55B779AF3563C66C8E40D9C42FF3BB5F533F70905ADC7A44EA7DAD ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
16:03:26.0093 0x0b60  mraid35x - ok
16:03:26.0124 0x0b60  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:03:26.0140 0x0b60  MRxDAV - ok
16:03:26.0202 0x0b60  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:03:26.0218 0x0b60  MRxSmb - ok
16:03:26.0265 0x0b60  [ B490BD0678CB6A4890A86020ED106C75, 7EB16824974F197A7181DDFEC1BD86A220FB6D2AD0217E2D1D1A6101931CCB5C ] MSCSPTISRV      C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
16:03:26.0265 0x0b60  MSCSPTISRV - ok
16:03:26.0311 0x0b60  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
16:03:26.0311 0x0b60  MSDTC - ok
16:03:26.0343 0x0b60  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
16:03:26.0343 0x0b60  Msfs - ok
16:03:26.0358 0x0b60  MSIServer - ok
16:03:26.0374 0x0b60  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:03:26.0374 0x0b60  MSKSSRV - ok
16:03:26.0390 0x0b60  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:03:26.0390 0x0b60  MSPCLOCK - ok
16:03:26.0436 0x0b60  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
16:03:26.0436 0x0b60  MSPQM - ok
16:03:26.0468 0x0b60  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:03:26.0483 0x0b60  mssmbios - ok
16:03:26.0499 0x0b60  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
16:03:26.0499 0x0b60  MSTEE - ok
16:03:26.0515 0x0b60  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
16:03:26.0530 0x0b60  Mup - ok
16:03:26.0546 0x0b60  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:03:26.0561 0x0b60  NABTSFEC - ok
16:03:26.0624 0x0b60  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
16:03:26.0624 0x0b60  napagent - ok
16:03:26.0671 0x0b60  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
16:03:26.0671 0x0b60  NDIS - ok
16:03:26.0702 0x0b60  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:03:26.0702 0x0b60  NdisIP - ok
16:03:26.0733 0x0b60  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:03:26.0733 0x0b60  NdisTapi - ok
16:03:26.0749 0x0b60  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:03:26.0749 0x0b60  Ndisuio - ok
16:03:26.0765 0x0b60  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:03:26.0780 0x0b60  NdisWan - ok
16:03:26.0796 0x0b60  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
16:03:26.0796 0x0b60  NDProxy - ok
16:03:26.0827 0x0b60  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
16:03:26.0827 0x0b60  NetBIOS - ok
16:03:26.0858 0x0b60  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
16:03:26.0874 0x0b60  NetBT - ok
16:03:26.0936 0x0b60  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
16:03:26.0952 0x0b60  NetDDE - ok
16:03:26.0968 0x0b60  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
16:03:26.0968 0x0b60  NetDDEdsdm - ok
16:03:27.0030 0x0b60  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
16:03:27.0030 0x0b60  Netlogon - ok
16:03:27.0061 0x0b60  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
16:03:27.0077 0x0b60  Netman - ok
16:03:27.0186 0x0b60  [ 465EBAB4E0AD6F5A9CAC539648D974E9, 18626F11424DF9315ECC1A7B9A0983340BDEC9ABA9184F97E36C3947AB7F45AE ] NetMDSB         C:\Program Files\Sony\MD Simple Burner\NetMDSB.exe
16:03:27.0233 0x0b60  NetMDSB - ok
16:03:27.0327 0x0b60  [ 9DA26B773BD04B867A8E9F427CD048FC, A8D8D92720EA31685864B834FC67CD6225D0B65DF40DCDD6A80E6D0DF677C855 ] NetSvc          C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
16:03:27.0343 0x0b60  NetSvc - ok
16:03:27.0390 0x0b60  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:03:27.0405 0x0b60  NetTcpPortSharing - ok
16:03:27.0452 0x0b60  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
16:03:27.0468 0x0b60  Nla - ok
16:03:27.0515 0x0b60  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
16:03:27.0530 0x0b60  Npfs - ok
16:03:27.0577 0x0b60  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
16:03:27.0608 0x0b60  Ntfs - ok
16:03:27.0624 0x0b60  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
16:03:27.0624 0x0b60  NtLmSsp - ok
16:03:27.0702 0x0b60  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
16:03:27.0718 0x0b60  NtmsSvc - ok
16:03:27.0749 0x0b60  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
16:03:27.0749 0x0b60  Null - ok
16:03:27.0858 0x0b60  [ 2B298519EDBFCF451D43E0F1E8F1006D, 67F3F2001F4C8DABD253D60AB3222793635532DC51AD977954286F8A246F5592 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:03:27.0952 0x0b60  nv - ok
16:03:27.0999 0x0b60  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:03:27.0999 0x0b60  NwlnkFlt - ok
16:03:28.0015 0x0b60  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:03:28.0015 0x0b60  NwlnkFwd - ok
16:03:28.0171 0x0b60  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:03:28.0186 0x0b60  odserv - ok
16:03:28.0265 0x0b60  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:03:28.0265 0x0b60  ose - ok
16:03:28.0296 0x0b60  [ DCACC2FC7DC0A3D7A60BEB81FA233822, 98866D1B93A5EAF2A7B008EACDB56A7CD3E06830F53A86330D5A0319AF8FF938 ] PACSPTISVR      C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
16:03:28.0311 0x0b60  PACSPTISVR - ok
16:03:28.0327 0x0b60  [ DC450992EBA6F914080C1F7FBEEED72C, A7B9CB59E10EB7C973E53BB70A8FE2CDD25FCC3CC499A0D311449F861223A447 ] PalmUSBD        C:\WINDOWS\system32\drivers\PalmUSBD.sys
16:03:28.0327 0x0b60  PalmUSBD - ok
16:03:28.0374 0x0b60  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
16:03:28.0374 0x0b60  Parport - ok
16:03:28.0405 0x0b60  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
16:03:28.0405 0x0b60  PartMgr - ok
16:03:28.0421 0x0b60  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
16:03:28.0421 0x0b60  ParVdm - ok
16:03:28.0436 0x0b60  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
16:03:28.0452 0x0b60  PCI - ok
16:03:28.0452 0x0b60  PCIDump - ok
16:03:28.0468 0x0b60  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
16:03:28.0468 0x0b60  PCIIde - ok
16:03:28.0499 0x0b60  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
16:03:28.0499 0x0b60  Pcmcia - ok
16:03:28.0515 0x0b60  PDCOMP - ok
16:03:28.0515 0x0b60  PDFRAME - ok
16:03:28.0515 0x0b60  PDRELI - ok
16:03:28.0530 0x0b60  PDRFRAME - ok
16:03:28.0546 0x0b60  [ 6C14B9C19BA84F73D3A86DBA11133101, 2CFB7E027E43C1B3890985DFD7987B23E4E3CC003E3FD2583E4A8AC1F8A13B26 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
16:03:28.0546 0x0b60  perc2 - ok
16:03:28.0561 0x0b60  [ F50F7C27F131AFE7BEBA13E14A3B9416, C0498EA65B908C07A734324ED70DB27F434FAAA815DD02F1BC429A3AB6C663D5 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
16:03:28.0561 0x0b60  perc2hib - ok
16:03:28.0608 0x0b60  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
16:03:28.0608 0x0b60  PlugPlay - ok
16:03:28.0624 0x0b60  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
16:03:28.0624 0x0b60  PolicyAgent - ok
16:03:28.0640 0x0b60  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:03:28.0655 0x0b60  PptpMiniport - ok
16:03:28.0655 0x0b60  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:03:28.0655 0x0b60  ProtectedStorage - ok
16:03:28.0686 0x0b60  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
16:03:28.0686 0x0b60  PSched - ok
16:03:28.0702 0x0b60  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:03:28.0702 0x0b60  Ptilink - ok
16:03:28.0718 0x0b60  [ 86724469CD077901706854974CD13C3E, 23C6B45928E43AC2893033DFC4265C2C87B3D185CB20553B9EAB818A46FB8C18 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:03:28.0718 0x0b60  PxHelp20 - ok
16:03:28.0749 0x0b60  [ 0A63FB54039EB5662433CABA3B26DBA7, A1FB923EB2D08D89D24E8AD7042BBED7CB1DBDA9A5B77BDD188E9913BADAB0EF ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
16:03:28.0749 0x0b60  ql1080 - ok
16:03:28.0765 0x0b60  [ 6503449E1D43A0FF0201AD5CB1B8C706, F1EFC2DE5998615CB182D7984366631FE956AE1ECA9AC777F26FCA2E6F2E05A6 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
16:03:28.0765 0x0b60  Ql10wnt - ok
16:03:28.0780 0x0b60  [ 156ED0EF20C15114CA097A34A30D8A01, 7490B90D4C88B7A9BADB9473D4033535F054C797ABF6D542CB859DA5C9B2586A ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
16:03:28.0796 0x0b60  ql12160 - ok
16:03:28.0811 0x0b60  [ 70F016BEBDE6D29E864C1230A07CC5E6, 895BC2C888F6566086FC1399F499A401D447E57333BC9F9C6DBAFE0F117603D6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
16:03:28.0811 0x0b60  ql1240 - ok
16:03:28.0827 0x0b60  [ 907F0AEEA6BC451011611E732BD31FCF, F9E7023BD1042963110D0A613054D094437868B20779F23C316A38E4781A6152 ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
16:03:28.0827 0x0b60  ql1280 - ok
16:03:28.0843 0x0b60  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:03:28.0843 0x0b60  RasAcd - ok
16:03:28.0890 0x0b60  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
16:03:28.0890 0x0b60  RasAuto - ok
16:03:28.0921 0x0b60  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:03:28.0921 0x0b60  Rasl2tp - ok
16:03:28.0968 0x0b60  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
16:03:28.0983 0x0b60  RasMan - ok
16:03:28.0999 0x0b60  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:03:28.0999 0x0b60  RasPppoe - ok
16:03:29.0015 0x0b60  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
16:03:29.0015 0x0b60  Raspti - ok
16:03:29.0046 0x0b60  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:03:29.0046 0x0b60  Rdbss - ok
16:03:29.0077 0x0b60  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:03:29.0077 0x0b60  RDPCDD - ok
16:03:29.0108 0x0b60  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:03:29.0108 0x0b60  rdpdr - ok
16:03:29.0140 0x0b60  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
16:03:29.0155 0x0b60  RDPWD - ok
16:03:29.0202 0x0b60  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
16:03:29.0218 0x0b60  RDSessMgr - ok
16:03:29.0265 0x0b60  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
16:03:29.0280 0x0b60  redbook - ok
16:03:29.0311 0x0b60  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
16:03:29.0327 0x0b60  RemoteAccess - ok
16:03:29.0343 0x0b60  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
16:03:29.0343 0x0b60  RemoteRegistry - ok
16:03:29.0358 0x0b60  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
16:03:29.0358 0x0b60  RpcLocator - ok
16:03:29.0405 0x0b60  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll
16:03:29.0421 0x0b60  RpcSs - ok
16:03:29.0452 0x0b60  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
16:03:29.0468 0x0b60  RSVP - ok
16:03:29.0499 0x0b60  SABKUTIL - ok
16:03:29.0515 0x0b60  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
16:03:29.0515 0x0b60  SamSs - ok
16:03:29.0530 0x0b60  [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:03:29.0546 0x0b60  SASDIFSV - ok
16:03:29.0561 0x0b60  [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:03:29.0561 0x0b60  SASKUTIL - ok
16:03:29.0593 0x0b60  [ 2F0D9848B2EB1FA97D089BB3521D5377, EC10E8AEA102F1278510DF12BDF21DD730C1A0184155CCE07168D5EB442FFF26 ] SbcpHid         C:\WINDOWS\system32\Drivers\SbcpHid.sys
16:03:29.0593 0x0b60  SbcpHid - ok
16:03:29.0640 0x0b60  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
16:03:29.0640 0x0b60  SCardSvr - ok
16:03:29.0686 0x0b60  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
16:03:29.0702 0x0b60  Schedule - ok
16:03:29.0765 0x0b60  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:03:29.0765 0x0b60  Secdrv - ok
16:03:29.0780 0x0b60  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
16:03:29.0780 0x0b60  seclogon - ok
16:03:29.0796 0x0b60  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
16:03:29.0796 0x0b60  SENS - ok
16:03:29.0827 0x0b60  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
16:03:29.0827 0x0b60  serenum - ok
16:03:29.0858 0x0b60  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
16:03:29.0858 0x0b60  Serial - ok
16:03:29.0905 0x0b60  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
16:03:29.0905 0x0b60  Sfloppy - ok
16:03:29.0952 0x0b60  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
16:03:29.0952 0x0b60  SharedAccess - ok
16:03:29.0999 0x0b60  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:03:29.0999 0x0b60  ShellHWDetection - ok
16:03:29.0999 0x0b60  Simbad - ok
16:03:30.0061 0x0b60  [ 6B33D0EBD30DB32E27D1D78FE946A754, CDA3D082D370B079C06D943DA124D76BAF0C5DB264FB0C893148EF6322D2FABE ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
16:03:30.0061 0x0b60  sisagp - ok
16:03:30.0124 0x0b60  [ A37740568718F245E818D0C5575B9AA9, 36E94C60CA4E082DD73018CCE73E12E081C8F1A8367152F5CD97652138A47534 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
16:03:30.0140 0x0b60  SkypeUpdate - ok
16:03:30.0155 0x0b60  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:03:30.0155 0x0b60  SLIP - ok
16:03:30.0483 0x0b60  [ F8E7411B26530E34D1DDC82F8A6B741A, 2C9FC0B8607AB0E73EB78A4CC218C448BFFB2B8B23E4AC4EB4A8E82A2A33D469 ] SNP2UVC         C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
16:03:30.0796 0x0b60  SNP2UVC - ok
16:03:30.0858 0x0b60  [ 06527D4B5D04B6A856939169BEBF48BC, 6C2B8DEBA6113573081A16B4B2B2A0D907FC4C81EA57351835B481F206F9F763 ] snpstd          C:\WINDOWS\system32\DRIVERS\snpstd.sys
16:03:30.0874 0x0b60  snpstd - ok
16:03:30.0905 0x0b60  [ DFADFC2C86662F40759BF02ADD27D569, 81BCBA6DE9CF540C66B4226BD5D46084295F41822BC1A7EB938277737F46CC76 ] sonypvs1        C:\WINDOWS\system32\DRIVERS\sonypvs1.sys
16:03:30.0905 0x0b60  sonypvs1 - ok
16:03:30.0921 0x0b60  [ 83C0F71F86D3BDAF915685F3D568B20E, 10B24723914A5A9E27A592FD58DAE2207B6E49F13A17CD2B1477C51D2D609D2E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
16:03:30.0921 0x0b60  Sparrow - ok
16:03:30.0968 0x0b60  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
16:03:30.0983 0x0b60  splitter - ok
16:03:31.0015 0x0b60  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
16:03:31.0015 0x0b60  Spooler - ok
16:03:31.0046 0x0b60  [ 1B7447278005E38E464B34A7E841D628, CBEF504A8F499753E45FFC34DB25BB7AFCF3F5447A834289626BCFBB2AE4978F ] SPTISRV         C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
16:03:31.0046 0x0b60  SPTISRV - ok
16:03:31.0061 0x0b60  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
16:03:31.0061 0x0b60  sr - ok
16:03:31.0108 0x0b60  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
16:03:31.0124 0x0b60  srservice - ok
16:03:31.0155 0x0b60  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
16:03:31.0171 0x0b60  Srv - ok
16:03:31.0202 0x0b60  [ D7968049BE0ADBB6A57CEE3960320911, 6FB6D7BE384324211DAEDCCD80BA983E32183D08DF6C5B5B5453773DCC0F4D5B ] sscdbhk5        C:\WINDOWS\system32\drivers\sscdbhk5.sys
16:03:31.0202 0x0b60  sscdbhk5 - ok
16:03:31.0233 0x0b60  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
16:03:31.0233 0x0b60  SSDPSRV - ok
16:03:31.0249 0x0b60  [ C3FFD65ABFB6441E7606CF74F1155273, EFA481D5075A9C0490CEBA5F8223BE322EB3811465F41A1FB3386E30E8C81714 ] ssrtln          C:\WINDOWS\system32\drivers\ssrtln.sys
16:03:31.0249 0x0b60  ssrtln - ok
16:03:31.0280 0x0b60  [ F05B8D10BD6AD4CBB561E29D5BE2C674, 765F26FC5890A587B0B309A45867CA4F4BB2A2C4A36C33F033B532481E293B33 ] SSScsiSV        C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
16:03:31.0280 0x0b60  SSScsiSV - ok
16:03:31.0358 0x0b60  [ 2A2DC39623ADEF8AB3703AB9FAC4B440, A7D66F8364363085EA8BC54AB41E0C1E509A7A88753D6E6707FACF0265DF2A75 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
16:03:31.0374 0x0b60  STHDA - ok
16:03:31.0436 0x0b60  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
16:03:31.0452 0x0b60  stisvc - ok
16:03:31.0499 0x0b60  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:03:31.0499 0x0b60  streamip - ok
16:03:31.0515 0x0b60  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
16:03:31.0515 0x0b60  swenum - ok
16:03:31.0530 0x0b60  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
16:03:31.0530 0x0b60  swmidi - ok
16:03:31.0530 0x0b60  SwPrv - ok
16:03:31.0561 0x0b60  [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
16:03:31.0561 0x0b60  symc810 - ok
16:03:31.0577 0x0b60  [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
16:03:31.0577 0x0b60  symc8xx - ok
16:03:31.0593 0x0b60  [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
16:03:31.0593 0x0b60  sym_hi - ok
16:03:31.0608 0x0b60  [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
16:03:31.0608 0x0b60  sym_u3 - ok
16:03:31.0608 0x0b60  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
16:03:31.0608 0x0b60  sysaudio - ok
16:03:31.0655 0x0b60  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
16:03:31.0671 0x0b60  SysmonLog - ok
16:03:32.0015 0x0b60  [ 34CDB0505B243CD616EBC4DE1E3FBFB6, 01839FED9F4963459B420C52B50AC527DA685FFB3273DB3655F07A3DC7F2A1D5 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe
16:03:32.0280 0x0b60  TabletServicePen - ok
16:03:32.0343 0x0b60  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:03:32.0358 0x0b60  TapiSrv - ok
16:03:32.0405 0x0b60  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:03:32.0421 0x0b60  Tcpip - ok
16:03:32.0468 0x0b60  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
16:03:32.0468 0x0b60  TDPIPE - ok
16:03:32.0483 0x0b60  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
16:03:32.0483 0x0b60  TDTCP - ok
16:03:32.0499 0x0b60  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
16:03:32.0499 0x0b60  TermDD - ok
16:03:32.0530 0x0b60  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
16:03:32.0546 0x0b60  TermService - ok
16:03:32.0608 0x0b60  [ 30698355067D07DA5F9EB81132C9FDD6, 80457F8DBB089FFF23ED220924F5C872D896707F4B31E9C77DAB78421B9B2F6D ] tfsnboio        C:\WINDOWS\system32\dla\tfsnboio.sys
16:03:32.0608 0x0b60  tfsnboio - ok
16:03:32.0624 0x0b60  [ FB9D825BB4A2ABDF24600F7505050E2B, A7A11366525C4DEAD588822F4C57C7ED5D6F3578F2DB2124BF0441133B3169B9 ] tfsncofs        C:\WINDOWS\system32\dla\tfsncofs.sys
16:03:32.0624 0x0b60  tfsncofs - ok
16:03:32.0640 0x0b60  [ CAFD8CCA11AA1E8B6D2EA1BA8F70EC33, AA5BDE527B67A14654D930252894FEDB8976EAE1F33C2BC0E7747D2B4EB93C4E ] tfsndrct        C:\WINDOWS\system32\dla\tfsndrct.sys
16:03:32.0640 0x0b60  tfsndrct - ok
16:03:32.0655 0x0b60  [ 8DB1E78FBF7C426D8EC3D8F1A33D6485, FF437EFD667EFE00729188B18C7E17E8C15D06A2C1F58A0F79E22DFADCECF969 ] tfsndres        C:\WINDOWS\system32\dla\tfsndres.sys
16:03:32.0655 0x0b60  tfsndres - ok
16:03:32.0686 0x0b60  [ B92F67A71CC8176F331B8AA8D9F555AD, F59E8464E44E08C18C3C7D32408D7661923F30FDD35390082DC7F2C02DCC40A3 ] tfsnifs         C:\WINDOWS\system32\dla\tfsnifs.sys
16:03:32.0686 0x0b60  tfsnifs - ok
16:03:32.0702 0x0b60  [ 85985FAA9A71E2358FCC2EDEFC2A3C5C, 9ADD1077C3B34E0EFA85EC4762822330D85F43EB4557C9ED015D8D1575E52885 ] tfsnopio        C:\WINDOWS\system32\dla\tfsnopio.sys
16:03:32.0702 0x0b60  tfsnopio - ok
16:03:32.0718 0x0b60  [ BBA22094F0F7C210567EFDAF11F64495, C55D3F3628C73FFA776C9B61BA735CB24DEE9F80F6E74A2F9BD70CFFB863BA57 ] tfsnpool        C:\WINDOWS\system32\dla\tfsnpool.sys
16:03:32.0718 0x0b60  tfsnpool - ok
16:03:32.0749 0x0b60  [ 81340BEF80B9811E98CE64611E67E3FF, CD6679A4D1A7932CD64F1F6AACF09CEC2D8E7DD001F812CC49756D8F582D907A ] tfsnudf         C:\WINDOWS\system32\dla\tfsnudf.sys
16:03:32.0749 0x0b60  tfsnudf - ok
16:03:32.0765 0x0b60  [ C035FD116224CCC8325F384776B6A8BB, CB97AD56288F916DE2AF5B1EC9D04AF3A1C2A2FA0A738282DA3763036DD18F12 ] tfsnudfa        C:\WINDOWS\system32\dla\tfsnudfa.sys
16:03:32.0765 0x0b60  tfsnudfa - ok
16:03:32.0796 0x0b60  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
16:03:32.0796 0x0b60  Themes - ok
16:03:32.0843 0x0b60  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
16:03:32.0843 0x0b60  TlntSvr - ok
16:03:32.0858 0x0b60  [ F2790F6AF01321B172AA62F8E1E187D9, 5644B5EFA0065C0CC9DB28E5520AAD2F4B3BCE48337F165BF9F166ECC164630C ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
16:03:32.0858 0x0b60  TosIde - ok
16:03:32.0905 0x0b60  [ 5D3785200A6FCE6EB5269F86070CD8EA, 28DB423696F2BFC6519C30B5FFD2CB0493F486F677E7813110CF14A50245E8CB ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe
16:03:32.0921 0x0b60  TouchServicePen - ok
16:03:32.0968 0x0b60  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
16:03:32.0983 0x0b60  TrkWks - ok
16:03:32.0999 0x0b60  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
16:03:32.0999 0x0b60  Udfs - ok
16:03:33.0030 0x0b60  [ 1B698A51CD528D8DA4FFAED66DFC51B9, FC3F12D25EE0E99AFE056502FCCFC052854699C21B99D559FAF1244F206DFB4F ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
16:03:33.0030 0x0b60  ultra - ok
16:03:33.0077 0x0b60  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
16:03:33.0093 0x0b60  Update - ok
16:03:33.0140 0x0b60  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:03:33.0140 0x0b60  upnphost - ok
16:03:33.0155 0x0b60  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
16:03:33.0171 0x0b60  UPS - ok
16:03:33.0202 0x0b60  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
16:03:33.0202 0x0b60  usbaudio - ok
16:03:33.0233 0x0b60  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:03:33.0233 0x0b60  usbccgp - ok
16:03:33.0249 0x0b60  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:03:33.0249 0x0b60  usbehci - ok
16:03:33.0296 0x0b60  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:03:33.0296 0x0b60  usbhub - ok
16:03:33.0343 0x0b60  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:03:33.0343 0x0b60  usbprint - ok
16:03:33.0390 0x0b60  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:03:33.0390 0x0b60  usbscan - ok
16:03:33.0390 0x0b60  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:03:33.0390 0x0b60  USBSTOR - ok
16:03:33.0421 0x0b60  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:03:33.0421 0x0b60  usbuhci - ok
16:03:33.0452 0x0b60  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
16:03:33.0452 0x0b60  usbvideo - ok
16:03:33.0468 0x0b60  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
16:03:33.0468 0x0b60  VgaSave - ok
16:03:33.0515 0x0b60  [ 754292CE5848B3738281B4F3607EAEF4, B0DCC9E9F8F78671FF878B493264C3B1DD2ED4A7167E3F5495F66ABF5FACB86C ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
16:03:33.0515 0x0b60  viaagp - ok
16:03:33.0530 0x0b60  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
16:03:33.0530 0x0b60  ViaIde - ok
16:03:33.0546 0x0b60  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
16:03:33.0546 0x0b60  VolSnap - ok
16:03:33.0593 0x0b60  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
16:03:33.0608 0x0b60  VSS - ok
16:03:33.0640 0x0b60  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] w32time         C:\WINDOWS\system32\w32time.dll
16:03:33.0640 0x0b60  w32time - ok
16:03:33.0671 0x0b60  [ 427A8BC96F16C40DF81C2D2F4EDD32DD, C65B089140D4A7218FC5B6EEDCCE498DF1F71BBE375762C9092FAC02CAE1CEC7 ] wacommousefilter C:\WINDOWS\system32\DRIVERS\wacommousefilter.sys
16:03:33.0671 0x0b60  wacommousefilter - ok
16:03:33.0686 0x0b60  [ 846B58EA44BF8C92E4B59F4E2252C4C0, C5803CB7F2D584D4C9E648E05355063C47197949F1B4085F38000733BB18BEA9 ] wacomvhid       C:\WINDOWS\system32\DRIVERS\wacomvhid.sys
16:03:33.0686 0x0b60  wacomvhid - ok
16:03:33.0718 0x0b60  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:03:33.0718 0x0b60  Wanarp - ok
16:03:33.0718 0x0b60  wanatw - ok
16:03:33.0780 0x0b60  [ BBCFEAB7E871CDDAC2D397EE7FA91FDC, 06FC132E0E256B9A4E4DDD05D3AF4D75E40C750ECCF94A76251B104C65CFFCDF ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
16:03:33.0780 0x0b60  Wdf01000 - ok
16:03:33.0796 0x0b60  WDICA - ok
16:03:33.0827 0x0b60  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
16:03:33.0827 0x0b60  wdmaud - ok
16:03:33.0843 0x0b60  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:03:33.0843 0x0b60  WebClient - ok
16:03:33.0936 0x0b60  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:03:33.0952 0x0b60  winmgmt - ok
16:03:33.0999 0x0b60  [ FD600B032E741EB6AAB509FC630F7C42, 2AF671D0648A5C2D2C4A7D0FDE803F07CC079CF1FA4E237DB912A8C77D9EC1F6 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys
16:03:33.0999 0x0b60  WinUSB - ok
16:03:34.0061 0x0b60  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
16:03:34.0061 0x0b60  WmdmPmSN - ok
16:03:34.0124 0x0b60  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
16:03:34.0155 0x0b60  Wmi - ok
16:03:34.0202 0x0b60  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:03:34.0202 0x0b60  WmiApSrv - ok
16:03:34.0327 0x0b60  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
16:03:34.0405 0x0b60  WMPNetworkSvc - ok
16:03:34.0436 0x0b60  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\Drivers\wpdusb.sys
16:03:34.0436 0x0b60  WpdUsb - ok
16:03:34.0843 0x0b60  [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:03:34.0874 0x0b60  WPFFontCache_v0400 - ok
16:03:34.0905 0x0b60  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:03:34.0905 0x0b60  WS2IFSL - ok
16:03:34.0952 0x0b60  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
16:03:34.0952 0x0b60  wscsvc - ok
16:03:35.0015 0x0b60  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:03:35.0015 0x0b60  WSTCODEC - ok
16:03:35.0030 0x0b60  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
16:03:35.0030 0x0b60  wuauserv - ok
16:03:35.0093 0x0b60  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:03:35.0093 0x0b60  WudfPf - ok
16:03:35.0124 0x0b60  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:03:35.0124 0x0b60  WudfRd - ok
16:03:35.0155 0x0b60  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
16:03:35.0155 0x0b60  WudfSvc - ok
16:03:35.0233 0x0b60  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
16:03:35.0265 0x0b60  WZCSVC - ok
16:03:35.0296 0x0b60  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
16:03:35.0311 0x0b60  xmlprov - ok
16:03:35.0311 0x0b60  ================ Scan global ===============================
16:03:35.0358 0x0b60  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
16:03:35.0421 0x0b60  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
16:03:35.0452 0x0b60  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
16:03:35.0499 0x0b60  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
16:03:35.0499 0x0b60  [ Global ] - ok
16:03:35.0499 0x0b60  ================ Scan MBR ==================================
16:03:35.0530 0x0b60  [ B16A2359F4962B0C622D81A1C1F4B703 ] \Device\Harddisk0\DR0
16:03:35.0702 0x0b60  \Device\Harddisk0\DR0 - ok
16:03:35.0718 0x0b60  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR4
16:03:35.0733 0x0b60  \Device\Harddisk1\DR4 - ok
16:03:35.0733 0x0b60  ================ Scan VBR ==================================
16:03:35.0733 0x0b60  [ 0EB46B6DC460B6F2AA7C3C6BD084BD7F ] \Device\Harddisk0\DR0\Partition1
16:03:35.0733 0x0b60  \Device\Harddisk0\DR0\Partition1 - ok
16:03:35.0733 0x0b60  [ 3E19884C7F8370CF8BD7A7B07C6C97D8 ] \Device\Harddisk1\DR4\Partition1
16:03:35.0749 0x0b60  \Device\Harddisk1\DR4\Partition1 - ok
16:03:35.0749 0x0b60  Waiting for KSN requests completion. In queue: 274
16:03:36.0749 0x0b60  Waiting for KSN requests completion. In queue: 274
16:03:37.0749 0x0b60  Waiting for KSN requests completion. In queue: 274
16:03:38.0749 0x0b60  Have new async UDS detects: 1
16:03:38.0749 0x0b60  SbcpHid - detected UDS:DangerousObject.Multi.Generic ( 0 )
16:03:38.0858 0x0b60  SbcpHid ( UDS:DangerousObject.Multi.Generic ) - infected
16:03:38.0858 0x0b60  Force sending object to P2P due to detect: C:\WINDOWS\system32\Drivers\SbcpHid.sys
16:03:58.0858 0x0b60  Object send P2P result: false
16:04:01.0499 0x0b60  Win FW state via NFM: enabled
16:04:04.0124 0x0b60  ============================================================
16:04:04.0124 0x0b60  Scan finished
16:04:04.0124 0x0b60  ============================================================
16:04:04.0140 0x03dc  Detected object count: 1
16:04:04.0140 0x03dc  Actual detected object count: 1
16:05:13.0686 0x03dc  SbcpHid ( UDS:DangerousObject.Multi.Generic ) - skipped by user
16:05:13.0686 0x03dc  SbcpHid ( UDS:DangerousObject.Multi.Generic ) - User select action: Skip

[windygirl]

Thanks for all your help Marius! I will be sure to make a donation!

[Psychotic]

Fix with TDSS-Killer

Please read and follow these instructions carefully.

Download TDSSKiller.exe and save it to your desktop

• Execute TDSSKiller.exe by doubleclicking on it.
• Press Start Scan
  
• When the scan is finished, select copy to quarantine for the following entry.
  
  

  UDS:DangerousObject.Multi.Generic

• Hit continue.
  
• Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt
  

Please post the contents of that log in your next reply.

 

 

 

Combofix

Combofix should only be run when adviced by a team member!

Link


Important - Save the file to your desktop!

• Deactivate any and all of your antivirus programs /spyware scanners - they can prevent CF from doing its work.
• Run Combofix.exe
  

When finished, Combofix creates a log file named C:\Combofix.txt. Please post its content in your next reply.

Note: When receiving an error message containing ""Illegal operation attempted on a registry key that has been marked for deletion" simply restart your computer to fix this.

[windygirl]

TDSS Killer Log

 

05:01:45.0553 0x16a8  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50

05:01:50.0818 0x16a8  ============================================================

05:01:50.0818 0x16a8  Current date / time: 2013/12/17 05:01:50.0818

05:01:50.0818 0x16a8  SystemInfo:

05:01:50.0818 0x16a8 

05:01:50.0818 0x16a8  OS Version: 5.1.2600 ServicePack: 3.0

05:01:50.0818 0x16a8  Product type: Workstation

05:01:50.0818 0x16a8  ComputerName: NZINGA1

05:01:50.0818 0x16a8  UserName: Nzinga

05:01:50.0818 0x16a8  Windows directory: C:\WINDOWS

05:01:50.0818 0x16a8  System windows directory: C:\WINDOWS

05:01:50.0818 0x16a8  Processor architecture: Intel x86

05:01:50.0818 0x16a8  Number of processors: 2

05:01:50.0818 0x16a8  Page size: 0x1000

05:01:50.0818 0x16a8  Boot type: Normal boot

05:01:50.0818 0x16a8  ============================================================

05:01:53.0803 0x16a8  KLMD registered as C:\WINDOWS\system32\drivers\66748770.sys

05:01:53.0990 0x16a8  System UUID: {05F101A5-8440-8944-2FB6-B4874DE430A2}

05:01:54.0943 0x16a8  Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054

05:01:54.0959 0x16a8  Drive \Device\Harddisk1\DR4 - Size: 0x1D1C0F00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'

05:02:02.0037 0x16a8  ============================================================

05:02:02.0037 0x16a8  \Device\Harddisk0\DR0:

05:02:02.0037 0x16a8  MBR partitions:

05:02:02.0037 0x16a8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x8BA231A

05:02:02.0037 0x16a8  \Device\Harddisk1\DR4:

05:02:02.0037 0x16a8  MBR partitions:

05:02:02.0037 0x16a8  \Device\Harddisk1\DR4\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000

05:02:02.0037 0x16a8  ============================================================

05:02:02.0099 0x16a8  C: <-> \Device\Harddisk0\DR0\Partition1

05:02:02.0178 0x16a8  F: <-> \Device\Harddisk1\DR4\Partition1

05:02:02.0178 0x16a8  ============================================================

05:02:02.0178 0x16a8  Initialize success

05:02:02.0178 0x16a8  ============================================================

05:02:03.0631 0x14cc  ============================================================

05:02:03.0631 0x14cc  Scan started

05:02:03.0631 0x14cc  Mode: Manual;

05:02:03.0631 0x14cc  ============================================================

05:02:03.0631 0x14cc  KSN ping started

05:02:06.0412 0x14cc  KSN ping finished: true

05:02:07.0131 0x14cc  ================ Scan system memory ========================

05:02:07.0146 0x14cc  System memory - ok

05:02:07.0146 0x14cc  ================ Scan services =============================

05:02:07.0224 0x14cc  [ 01E81C84AD1D0ACC61CF3CFD06632210, 1140756BA2F28CA8DFCFF8FD223654E6A78BA1B770A169CC557ECE0E01381B17 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

05:02:07.0224 0x14cc  !SASCORE - ok

05:02:07.0537 0x14cc  [ B33CF4DE909A5B30F526D82053A63C8E, ABF5BB962C038E545C18B96E686E072D780C907096C7BB341297AF31D3703ABD ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe

05:02:07.0568 0x14cc  ABBYY.Licensing.FineReader.Sprint.9.0 - ok

05:02:07.0693 0x14cc  Abiosdsk - ok

05:02:07.0740 0x14cc  [ 6ABB91494FE6C59089B9336452AB2EA3, FA28396820E44F991891042E051A4414485B54D456F252E03E3FFE1B4B4CF843 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS

05:02:07.0740 0x14cc  abp480n5 - ok

05:02:07.0787 0x14cc  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys

05:02:07.0787 0x14cc  ACPI - ok

05:02:07.0818 0x14cc  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys

05:02:07.0818 0x14cc  ACPIEC - ok

05:02:07.0849 0x14cc  [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

05:02:07.0849 0x14cc  Adobe LM Service - ok

05:02:07.0912 0x14cc  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

05:02:07.0912 0x14cc  AdobeFlashPlayerUpdateSvc - ok

05:02:07.0943 0x14cc  [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys

05:02:07.0943 0x14cc  adpu160m - ok

05:02:07.0990 0x14cc  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys

05:02:07.0990 0x14cc  aec - ok

05:02:08.0021 0x14cc  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys

05:02:08.0037 0x14cc  AFD - ok

05:02:08.0084 0x14cc  [ 08FD04AA961BDC77FB983F328334E3D7, A784EC8A9EDB579262366B5A9AB177DB7BEC0A421BDE85431D0AD4959D5AF5E7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys

05:02:08.0084 0x14cc  agp440 - ok

05:02:08.0099 0x14cc  [ 03A7E0922ACFE1B07D5DB2EEB0773063, 93EEA872A5642C95FF19C81F8EFFB9B52742A14DBF138784F0F713AD18C413ED ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys

05:02:08.0099 0x14cc  agpCPQ - ok

05:02:08.0115 0x14cc  [ C23EA9B5F46C7F7910DB3EAB648FF013, 92C84E9AF278A3B55D56C4F8E6C10E3EF1F7B336A44A018AED6DC51A46671F0B ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys

05:02:08.0115 0x14cc  Aha154x - ok

05:02:08.0131 0x14cc  [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys

05:02:08.0131 0x14cc  aic78u2 - ok

05:02:08.0146 0x14cc  [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys

05:02:08.0162 0x14cc  aic78xx - ok

05:02:08.0193 0x14cc  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll

05:02:08.0209 0x14cc  Alerter - ok

05:02:08.0224 0x14cc  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe

05:02:08.0224 0x14cc  ALG - ok

05:02:08.0240 0x14cc  [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys

05:02:08.0240 0x14cc  AliIde - ok

05:02:08.0271 0x14cc  [ CB08AED0DE2DD889A8A820CD8082D83C, B1A9D493390AEDF6EFF8BCAA3B33EC31758452AB497C34C0728CDDA1D8DCBF2A ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys

05:02:08.0271 0x14cc  alim1541 - ok

05:02:08.0287 0x14cc  [ 95B4FB835E28AA1336CEEB07FD5B9398, 36CD3B14EF78B01FB653B78187FAA63C4DD5F4137AC3B91D81256A350EEDCBC1 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys

05:02:08.0287 0x14cc  amdagp - ok

05:02:08.0303 0x14cc  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6, 9B179F0B6A559639D3AE3975CEBF2718294BE5743517BEE06586F0D258164C81 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys

05:02:08.0303 0x14cc  amsint - ok

05:02:08.0365 0x14cc  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll

05:02:08.0365 0x14cc  AppMgmt - ok

05:02:08.0396 0x14cc  [ 62D318E9A0C8FC9B780008E724283707, 1A69806AB2BDECCEB5EB23A80700B3F98983D5D67F78839CBF269087FA460757 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys

05:02:08.0396 0x14cc  asc - ok

05:02:08.0412 0x14cc  [ 69EB0CC7714B32896CCBFD5EDCBEA447, 1CB506B5F71F84EFD26961010681D0A79AA7B266573378E3D2755125DF5D6BB6 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys

05:02:08.0412 0x14cc  asc3350p - ok

05:02:08.0428 0x14cc  [ 5D8DE112AA0254B907861E9E9C31D597, 557C93E82A71131D226267151C84B197503831A16263DDFE040E996B605CA9E8 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys

05:02:08.0428 0x14cc  asc3550 - ok

05:02:08.0553 0x14cc  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

05:02:08.0553 0x14cc  aspnet_state - ok

05:02:08.0599 0x14cc  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys

05:02:08.0599 0x14cc  AsyncMac - ok

05:02:08.0615 0x14cc  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys

05:02:08.0631 0x14cc  atapi - ok

05:02:08.0631 0x14cc  Atdisk - ok

05:02:08.0646 0x14cc  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys

05:02:08.0662 0x14cc  Atmarpc - ok

05:02:08.0693 0x14cc  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll

05:02:08.0709 0x14cc  AudioSrv - ok

05:02:08.0724 0x14cc  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys

05:02:08.0724 0x14cc  audstub - ok

05:02:08.0756 0x14cc  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys

05:02:08.0756 0x14cc  Beep - ok

05:02:08.0803 0x14cc  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll

05:02:08.0818 0x14cc  BITS - ok

05:02:08.0849 0x14cc  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll

05:02:08.0865 0x14cc  Browser - ok

05:02:08.0865 0x14cc  BTCFilterService - ok

05:02:08.0865 0x14cc  bvrp_pci - ok

05:02:09.0131 0x14cc  catchme - ok

05:02:09.0146 0x14cc  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys

05:02:09.0146 0x14cc  cbidf - ok

05:02:09.0146 0x14cc  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys

05:02:09.0162 0x14cc  cbidf2k - ok

05:02:09.0162 0x14cc  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

05:02:09.0162 0x14cc  CCDECODE - ok

05:02:09.0193 0x14cc  [ F3EC03299634490E97BBCE94CD2954C7, CDC85ADA27E0D501581CE6F28D7E1941E90411FA8E8F2C43A68BAA8CB78E85DD ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys

05:02:09.0193 0x14cc  cd20xrnt - ok

05:02:09.0209 0x14cc  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys

05:02:09.0209 0x14cc  Cdaudio - ok

05:02:09.0256 0x14cc  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys

05:02:09.0256 0x14cc  Cdfs - ok

05:02:09.0271 0x14cc  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys

05:02:09.0287 0x14cc  Cdrom - ok

05:02:09.0287 0x14cc  Changer - ok

05:02:09.0334 0x14cc  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe

05:02:09.0334 0x14cc  CiSvc - ok

05:02:09.0349 0x14cc  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe

05:02:09.0349 0x14cc  ClipSrv - ok

05:02:09.0396 0x14cc  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

05:02:09.0396 0x14cc  clr_optimization_v2.0.50727_32 - ok

05:02:09.0678 0x14cc  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

05:02:09.0693 0x14cc  clr_optimization_v4.0.30319_32 - ok

05:02:09.0709 0x14cc  [ E5DCB56C533014ECBC556A8357C929D5, B2915C0C07EDBA59C5D02680804C4C2DE099D73DE0D0DD0CDA748F34F11057E0 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys

05:02:09.0709 0x14cc  CmdIde - ok

05:02:09.0724 0x14cc  COMSysApp - ok

05:02:09.0740 0x14cc  [ 3EE529119EED34CD212A215E8C40D4B6, A6B71F3D4EE7358CA85F010E6271A6B72226D25DF30ED331DA830639ED3E9903 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys

05:02:09.0740 0x14cc  Cpqarray - ok

05:02:09.0787 0x14cc  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll

05:02:09.0787 0x14cc  CryptSvc - ok

05:02:09.0818 0x14cc  [ E550E7418984B65A78299D248F0A7F36, 52F6BD1027E91F9A90AFAB82C7F2A0314B7E55262F5293D5F9F8F12135EDD88C ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys

05:02:09.0818 0x14cc  dac2w2k - ok

05:02:09.0834 0x14cc  [ 683789CAA3864EB46125AE86FF677D34, B725D026E069AD253192E21245260CBA44EF3C72781616A2CAD0BF0E2D86D510 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys

05:02:09.0834 0x14cc  dac960nt - ok

05:02:09.0881 0x14cc  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll

05:02:09.0896 0x14cc  DcomLaunch - ok

05:02:09.0943 0x14cc  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll

05:02:09.0943 0x14cc  Dhcp - ok

05:02:09.0990 0x14cc  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys

05:02:09.0990 0x14cc  Disk - ok

05:02:10.0006 0x14cc  dmadmin - ok

05:02:10.0037 0x14cc  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys

05:02:10.0068 0x14cc  dmboot - ok

05:02:10.0099 0x14cc  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys

05:02:10.0099 0x14cc  dmio - ok

05:02:10.0115 0x14cc  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys

05:02:10.0115 0x14cc  dmload - ok

05:02:10.0162 0x14cc  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll

05:02:10.0162 0x14cc  dmserver - ok

05:02:10.0178 0x14cc  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys

05:02:10.0178 0x14cc  DMusic - ok

05:02:10.0193 0x14cc  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll

05:02:10.0193 0x14cc  Dnscache - ok

05:02:10.0240 0x14cc  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll

05:02:10.0256 0x14cc  Dot3svc - ok

05:02:10.0271 0x14cc  [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys

05:02:10.0271 0x14cc  dpti2o - ok

05:02:10.0303 0x14cc  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys

05:02:10.0303 0x14cc  drmkaud - ok

05:02:10.0334 0x14cc  [ E814854E6B246CCF498874839AB64D77, D7BD17AD9709DA8305FF58710EE5EAA14BA5857F4B64C1CBDD21751625BFF2A3 ] drvmcdb         C:\WINDOWS\system32\drivers\drvmcdb.sys

05:02:10.0334 0x14cc  drvmcdb - ok

05:02:10.0349 0x14cc  [ EE83A4EBAE70BC93CF14879D062F548B, CCA423C19BC8A6807EE29DA7FA9F545FDF2D0AAA8D4556E13B864ED6F6683827 ] drvnddm         C:\WINDOWS\system32\drivers\drvnddm.sys

05:02:10.0349 0x14cc  drvnddm - ok

05:02:10.0381 0x14cc  [ 95974E66D3DE4951D29E28E8BC0B644C, 5737A2FB4D95AAB61A50E25CC570D78FC91C1A7B02754211B1B57DC4209A7D58 ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys

05:02:10.0381 0x14cc  E100B - ok

05:02:10.0396 0x14cc  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll

05:02:10.0396 0x14cc  EapHost - ok

05:02:10.0459 0x14cc  [ 5D1347AA5AE6E2F77D7F4F8372D95AC9, F3CA10753B7D76C87A71A0FEDB5EACE77E2E10E8DD44BEE7C66BCE17BD3EFD71 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe

05:02:10.0474 0x14cc  ehRecvr - ok

05:02:10.0506 0x14cc  [ A53243709439AC2A4C216B817F8D7411, AF4624EEA9B165DE873B7D104D1EA3BE9A14BBC5B4CABE26544F90B78689EEF9 ] ehSched         C:\WINDOWS\eHome\ehSched.exe

05:02:10.0506 0x14cc  ehSched - ok

05:02:10.0646 0x14cc  [ B78436CA173FF723A1EACE5CD4900375, 6B80EAD3111FB0A48AFF35C07F0FF7BEDDF1E34200EFC599B8E92CEE4B372736 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe

05:02:10.0662 0x14cc  EpsonCustomerParticipation - ok

05:02:10.0724 0x14cc  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll

05:02:10.0724 0x14cc  ERSvc - ok

05:02:10.0756 0x14cc  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe

05:02:10.0771 0x14cc  Eventlog - ok

05:02:10.0818 0x14cc  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll

05:02:10.0818 0x14cc  EventSystem - ok

05:02:10.0865 0x14cc  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys

05:02:10.0865 0x14cc  Fastfat - ok

05:02:10.0896 0x14cc  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll

05:02:10.0912 0x14cc  FastUserSwitchingCompatibility - ok

05:02:10.0943 0x14cc  [ E97D6A8684466DF94FF3BC24FB787A07, 89E5A6889E3C5AB9AD3E80FFC16DD608278F3ADC282048B40B60196336A5CBEB ] Fax             C:\WINDOWS\system32\fxssvc.exe

05:02:10.0943 0x14cc  Fax - ok

05:02:10.0974 0x14cc  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys

05:02:10.0974 0x14cc  Fdc - ok

05:02:10.0990 0x14cc  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys

05:02:11.0006 0x14cc  Fips - ok

05:02:11.0006 0x14cc  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys

05:02:11.0021 0x14cc  Flpydisk - ok

05:02:11.0068 0x14cc  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys

05:02:11.0068 0x14cc  FltMgr - ok

05:02:11.0146 0x14cc  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

05:02:11.0146 0x14cc  FontCache3.0.0.0 - ok

05:02:11.0178 0x14cc  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys

05:02:11.0178 0x14cc  Fs_Rec - ok

05:02:11.0209 0x14cc  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys

05:02:11.0209 0x14cc  Ftdisk - ok

05:02:11.0240 0x14cc  [ 8C18F85EDD5D47F34068F3EFD5689FA9, 4453C9C180D016A4E961C897CD1C51319945E2046407785434EE763738B90D86 ] GEARAspiWDM     C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys

05:02:11.0240 0x14cc  GEARAspiWDM - ok

05:02:11.0303 0x14cc  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys

05:02:11.0303 0x14cc  Gpc - ok

05:02:11.0365 0x14cc  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe

05:02:11.0381 0x14cc  gupdate - ok

05:02:11.0381 0x14cc  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe

05:02:11.0381 0x14cc  gupdatem - ok

05:02:11.0428 0x14cc  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

05:02:11.0428 0x14cc  gusvc - ok

05:02:11.0459 0x14cc  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

05:02:11.0459 0x14cc  HDAudBus - ok

05:02:11.0537 0x14cc  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

05:02:11.0537 0x14cc  helpsvc - ok

05:02:11.0584 0x14cc  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll

05:02:11.0584 0x14cc  HidServ - ok

05:02:11.0615 0x14cc  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys

05:02:11.0615 0x14cc  HidUsb - ok

05:02:11.0646 0x14cc  [ 47EECE68857817F39C8C6F33A7E5E76C, 240EF7ACBBC1E7DF78D5C029C5C73AAE02286EABA87A5E6FF7D2C5A25F3C93FD ] hitmanpro36     C:\WINDOWS\system32\drivers\hitmanpro36.sys

05:02:11.0646 0x14cc  hitmanpro36 - ok

05:02:11.0693 0x14cc  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll

05:02:11.0693 0x14cc  hkmsvc - ok

05:02:11.0740 0x14cc  [ 8B84068E337A7D9DC4365C8F14A2E20C, D8FE50E57AA92465CB7E51D1509EAE2FB4A02B28E023D4C4E120D106501852AD ] HPFECP15        C:\WINDOWS\System32\drivers\HPFECP15.SYS

05:02:11.0740 0x14cc  HPFECP15 - ok

05:02:11.0756 0x14cc  [ B028377DEA0546A5FCFBA928A8AEFAE0, FD7B34A6036AD443014B16394A5F051A298CEE4276D50525FB9F15A0D2684C8B ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys

05:02:11.0756 0x14cc  hpn - ok

05:02:11.0803 0x14cc  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys

05:02:11.0803 0x14cc  HTTP - ok

05:02:11.0834 0x14cc  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll

05:02:11.0834 0x14cc  HTTPFilter - ok

05:02:11.0849 0x14cc  [ 9368670BD426EBEA5E8B18A62416EC28, 0ED865F8FB79F0B6309521925280E8640DB5CA6F75377434830536899734B6EE ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys

05:02:11.0849 0x14cc  i2omgmt - ok

05:02:11.0896 0x14cc  [ F10863BF1CCC290BABD1A09188AE49E0, BC038EAE6C8A76D56A5AD27035DC0369D6E766711E9FAA7467144370851F1615 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys

05:02:11.0896 0x14cc  i2omp - ok

05:02:11.0912 0x14cc  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys

05:02:11.0912 0x14cc  i8042prt - ok

05:02:11.0974 0x14cc  [ 0294A30B302CA71A2C26E582DDA93486, FD7F3233F387A6CA0EF3719BEC354B679CF786112B05168E02AE0A0916010271 ] ialm            C:\WINDOWS\system32\DRIVERS\ialmnt5.sys

05:02:12.0006 0x14cc  ialm - ok

05:02:12.0068 0x14cc  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

05:02:12.0068 0x14cc  IDriverT - ok

05:02:12.0162 0x14cc  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

05:02:12.0209 0x14cc  idsvc - ok

05:02:12.0240 0x14cc  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys

05:02:12.0240 0x14cc  Imapi - ok

05:02:12.0287 0x14cc  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe

05:02:12.0287 0x14cc  ImapiService - ok

05:02:12.0318 0x14cc  [ 4A40E045FAEE58631FD8D91AFC620719, 7A2FD81BD483821B3DA01B1CD7215423EDD719CBE3862C0342FF7D21A17AF437 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys

05:02:12.0318 0x14cc  ini910u - ok

05:02:12.0396 0x14cc  [ 7509C548400F4C9E0211E3F6E66ABBE6, 10884F759DE3EE38F93EF74202B0DBDA3CC5D5E7532E361DC33385D4CC18B659 ] IntelC51        C:\WINDOWS\system32\DRIVERS\IntelC51.sys

05:02:12.0459 0x14cc  IntelC51 - ok

05:02:12.0506 0x14cc  [ 9584FFDD41D37F2C239681D0DAC2513E, AB48DA5AA95C2D1F6C06EEF6635CC7DBCA64F90A5219E0A1501D46D5CD2944FA ] IntelC52        C:\WINDOWS\system32\DRIVERS\IntelC52.sys

05:02:12.0521 0x14cc  IntelC52 - ok

05:02:12.0553 0x14cc  [ CF0B937710CEC6EF39416EDECD803CBB, 45929596C8E8D47809065F3B690E26E93B66206390447292801CF2985C05289D ] IntelC53        C:\WINDOWS\system32\DRIVERS\IntelC53.sys

05:02:12.0553 0x14cc  IntelC53 - ok

05:02:12.0568 0x14cc  [ B5466A9250342A7AA0CD1FBA13420678, 87E735C4E8924A883AB692D387A83BCBFAE6E165688336AE7AB488F7CA8D339E ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys

05:02:12.0568 0x14cc  IntelIde - ok

05:02:12.0631 0x14cc  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys

05:02:12.0631 0x14cc  intelppm - ok

05:02:12.0646 0x14cc  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys

05:02:12.0646 0x14cc  Ip6Fw - ok

05:02:12.0678 0x14cc  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

05:02:12.0678 0x14cc  IpFilterDriver - ok

05:02:12.0724 0x14cc  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys

05:02:12.0724 0x14cc  IpInIp - ok

05:02:12.0756 0x14cc  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys

05:02:12.0756 0x14cc  IpNat - ok

05:02:12.0865 0x14cc  [ 929D6D4E7B1F8A6EEC96E620D121E1E5, F23757597B672AA47DB6B3C96C0F5CB32D154E5CC784615006BBB687B150EF94 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

05:02:12.0881 0x14cc  iPod Service - ok

05:02:12.0912 0x14cc  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys

05:02:12.0912 0x14cc  IPSec - ok

05:02:12.0928 0x14cc  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys

05:02:12.0928 0x14cc  IRENUM - ok

05:02:12.0974 0x14cc  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys

05:02:12.0990 0x14cc  isapnp - ok

05:02:13.0006 0x14cc  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys

05:02:13.0006 0x14cc  Kbdclass - ok

05:02:13.0021 0x14cc  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys

05:02:13.0021 0x14cc  kbdhid - ok

05:02:13.0037 0x14cc  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys

05:02:13.0053 0x14cc  kmixer - ok

05:02:13.0084 0x14cc  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys

05:02:13.0099 0x14cc  KSecDD - ok

05:02:13.0131 0x14cc  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll

05:02:13.0131 0x14cc  lanmanserver - ok

05:02:13.0178 0x14cc  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

05:02:13.0193 0x14cc  lanmanworkstation - ok

05:02:13.0193 0x14cc  lbrtfdc - ok

05:02:13.0256 0x14cc  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll

05:02:13.0256 0x14cc  LmHosts - ok

05:02:13.0256 0x14cc  LMIInfo - ok

05:02:13.0303 0x14cc  [ 4477689E2D8AE6B78BA34C9AF4CC1ED1, 0BC8AF546901E6C20611C5250BD65ACD0C4A8613BD8F8835F0D4680B5777F051 ] lmimirr         C:\WINDOWS\system32\DRIVERS\lmimirr.sys

05:02:13.0303 0x14cc  lmimirr - ok

05:02:13.0318 0x14cc  LMIRfsClientNP - ok

05:02:13.0334 0x14cc  [ 622704763DA924C1565344E8C7D6CA4D, 7E14D139E5ABF392FF77A57373C7A163E171E5F79FE7BE204B3747197E5697BB ] LMIRfsDriver    C:\WINDOWS\system32\drivers\LMIRfsDriver.sys

05:02:13.0334 0x14cc  LMIRfsDriver - ok

05:02:13.0365 0x14cc  [ A2AE666CEE860BABE7FA6F1662B71737, 149F52A9510A645A4B3C2981CAD0CB20C6CF82982BE5E7A1180E18C6AB647901 ] MASPINT         C:\WINDOWS\system32\drivers\MASPINT.sys

05:02:13.0365 0x14cc  MASPINT - ok

05:02:13.0396 0x14cc  [ 629CABB0421668C9D3D402A3C3D77E14, 967DB88807D389A6993224B4B625D40F1EC17F5EE21E38DA6771D97E53E694EA ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys

05:02:13.0396 0x14cc  MBAMProtector - ok

05:02:13.0459 0x14cc  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF, 807934D61E9A6C8302C934DCC3901A80A7068C9BC8EB4FAE24A32D97CB1DF963 ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

05:02:13.0459 0x14cc  MBAMScheduler - ok

05:02:13.0506 0x14cc  [ 916B8954AC3E06DC9E898AFFB41F3FB6, 8AD3D605F1681D743C7ACDB7CA4A1299F86B96959A7609A803A5823B30A21E82 ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

05:02:13.0521 0x14cc  MBAMService - ok

05:02:13.0584 0x14cc  [ DF0A511F38F16016BF658FCA0090CB87, 6D2F6360A4E1D369607F2F394B4A8C6EE8EEE9FA46A67394769E9C0044529B6C ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe

05:02:13.0584 0x14cc  McrdSvc - ok

05:02:13.0631 0x14cc  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll

05:02:13.0631 0x14cc  Messenger - ok

05:02:13.0646 0x14cc  [ B7521F69C0A9B29D356157229376FB21, A77C89BDC181038DD0F9A8AC0F7164B10EF9C54B0C57D8BAB8BC27932EBF890B ] MHN             C:\WINDOWS\System32\mhn.dll

05:02:13.0646 0x14cc  MHN - ok

05:02:13.0662 0x14cc  [ 7F2F1D2815A6449D346FCCCBC569FBD6, 1C5A321CE95CE4D9AA2CB5A00E9B7E711521A6BBB25D36F7F49A397C361585C6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys

05:02:13.0662 0x14cc  MHNDRV - ok

05:02:13.0693 0x14cc  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys

05:02:13.0693 0x14cc  mnmdd - ok

05:02:13.0740 0x14cc  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe

05:02:13.0740 0x14cc  mnmsrvc - ok

05:02:13.0787 0x14cc  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys

05:02:13.0787 0x14cc  Modem - ok

05:02:13.0803 0x14cc  [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys

05:02:13.0803 0x14cc  MODEMCSA - ok

05:02:13.0834 0x14cc  [ 59B8B11FF70728EEC60E72131C58B716, EB001E1FC17D57AE2A9D4CC7B6C45DC5C6869D3602C1B86F5D4940B11AAECA0A ] mohfilt         C:\WINDOWS\system32\DRIVERS\mohfilt.sys

05:02:13.0834 0x14cc  mohfilt - ok

05:02:13.0834 0x14cc  motccgp - ok

05:02:13.0834 0x14cc  motccgpfl - ok

05:02:13.0849 0x14cc  motmodem - ok

05:02:13.0849 0x14cc  MotoSwitchService - ok

05:02:13.0865 0x14cc  Motousbnet - ok

05:02:13.0865 0x14cc  motusbdevice - ok

05:02:13.0896 0x14cc  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys

05:02:13.0896 0x14cc  Mouclass - ok

05:02:13.0912 0x14cc  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys

05:02:13.0912 0x14cc  mouhid - ok

05:02:13.0928 0x14cc  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys

05:02:13.0928 0x14cc  MountMgr - ok

05:02:13.0990 0x14cc  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

05:02:13.0990 0x14cc  MozillaMaintenance - ok

05:02:14.0021 0x14cc  [ 3F4BB95E5A44F3BE34824E8E7CAF0737, 9A4F9E63AA55B779AF3563C66C8E40D9C42FF3BB5F533F70905ADC7A44EA7DAD ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys

05:02:14.0021 0x14cc  mraid35x - ok

05:02:14.0037 0x14cc  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys

05:02:14.0053 0x14cc  MRxDAV - ok

05:02:14.0084 0x14cc  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

05:02:14.0099 0x14cc  MRxSmb - ok

05:02:14.0162 0x14cc  [ B490BD0678CB6A4890A86020ED106C75, 7EB16824974F197A7181DDFEC1BD86A220FB6D2AD0217E2D1D1A6101931CCB5C ] MSCSPTISRV      C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe

05:02:14.0162 0x14cc  MSCSPTISRV - ok

05:02:14.0209 0x14cc  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe

05:02:14.0209 0x14cc  MSDTC - ok

05:02:14.0224 0x14cc  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys

05:02:14.0224 0x14cc  Msfs - ok

05:02:14.0240 0x14cc  MSIServer - ok

05:02:14.0256 0x14cc  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys

05:02:14.0256 0x14cc  MSKSSRV - ok

05:02:14.0271 0x14cc  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys

05:02:14.0271 0x14cc  MSPCLOCK - ok

05:02:14.0318 0x14cc  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys

05:02:14.0318 0x14cc  MSPQM - ok

05:02:14.0365 0x14cc  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys

05:02:14.0365 0x14cc  mssmbios - ok

05:02:14.0381 0x14cc  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys

05:02:14.0381 0x14cc  MSTEE - ok

05:02:14.0412 0x14cc  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys

05:02:14.0412 0x14cc  Mup - ok

05:02:14.0428 0x14cc  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

05:02:14.0428 0x14cc  NABTSFEC - ok

05:02:14.0474 0x14cc  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll

05:02:14.0490 0x14cc  napagent - ok

05:02:14.0521 0x14cc  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys

05:02:14.0521 0x14cc  NDIS - ok

05:02:14.0553 0x14cc  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys

05:02:14.0553 0x14cc  NdisIP - ok

05:02:14.0584 0x14cc  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys

05:02:14.0584 0x14cc  NdisTapi - ok

05:02:14.0599 0x14cc  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys

05:02:14.0599 0x14cc  Ndisuio - ok

05:02:14.0615 0x14cc  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys

05:02:14.0631 0x14cc  NdisWan - ok

05:02:14.0646 0x14cc  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys

05:02:14.0646 0x14cc  NDProxy - ok

05:02:14.0678 0x14cc  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys

05:02:14.0678 0x14cc  NetBIOS - ok

05:02:14.0709 0x14cc  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys

05:02:14.0709 0x14cc  NetBT - ok

05:02:14.0756 0x14cc  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe

05:02:14.0756 0x14cc  NetDDE - ok

05:02:14.0771 0x14cc  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe

05:02:14.0771 0x14cc  NetDDEdsdm - ok

05:02:14.0818 0x14cc  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe

05:02:14.0818 0x14cc  Netlogon - ok

05:02:14.0849 0x14cc  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll

05:02:14.0849 0x14cc  Netman - ok

05:02:14.0959 0x14cc  [ 465EBAB4E0AD6F5A9CAC539648D974E9, 18626F11424DF9315ECC1A7B9A0983340BDEC9ABA9184F97E36C3947AB7F45AE ] NetMDSB         C:\Program Files\Sony\MD Simple Burner\NetMDSB.exe

05:02:15.0006 0x14cc  NetMDSB - ok

05:02:15.0084 0x14cc  [ 9DA26B773BD04B867A8E9F427CD048FC, A8D8D92720EA31685864B834FC67CD6225D0B65DF40DCDD6A80E6D0DF677C855 ] NetSvc          C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

05:02:15.0099 0x14cc  NetSvc - ok

05:02:15.0146 0x14cc  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

05:02:15.0146 0x14cc  NetTcpPortSharing - ok

05:02:15.0193 0x14cc  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll

05:02:15.0193 0x14cc  Nla - ok

05:02:15.0240 0x14cc  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys

05:02:15.0240 0x14cc  Npfs - ok

05:02:15.0287 0x14cc  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys

05:02:15.0303 0x14cc  Ntfs - ok

05:02:15.0334 0x14cc  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe

05:02:15.0334 0x14cc  NtLmSsp - ok

05:02:15.0396 0x14cc  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll

05:02:15.0412 0x14cc  NtmsSvc - ok

05:02:15.0428 0x14cc  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys

05:02:15.0428 0x14cc  Null - ok

05:02:15.0521 0x14cc  [ 2B298519EDBFCF451D43E0F1E8F1006D, 67F3F2001F4C8DABD253D60AB3222793635532DC51AD977954286F8A246F5592 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys

05:02:15.0631 0x14cc  nv - ok

05:02:15.0662 0x14cc  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

05:02:15.0662 0x14cc  NwlnkFlt - ok

05:02:15.0678 0x14cc  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

05:02:15.0678 0x14cc  NwlnkFwd - ok

05:02:15.0818 0x14cc  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

05:02:15.0834 0x14cc  odserv - ok

05:02:15.0912 0x14cc  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

05:02:15.0912 0x14cc  ose - ok

05:02:15.0943 0x14cc  [ DCACC2FC7DC0A3D7A60BEB81FA233822, 98866D1B93A5EAF2A7B008EACDB56A7CD3E06830F53A86330D5A0319AF8FF938 ] PACSPTISVR      C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe

05:02:15.0959 0x14cc  PACSPTISVR - ok

05:02:15.0990 0x14cc  [ DC450992EBA6F914080C1F7FBEEED72C, A7B9CB59E10EB7C973E53BB70A8FE2CDD25FCC3CC499A0D311449F861223A447 ] PalmUSBD        C:\WINDOWS\system32\drivers\PalmUSBD.sys

05:02:15.0990 0x14cc  PalmUSBD - ok

05:02:16.0037 0x14cc  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys

05:02:16.0037 0x14cc  Parport - ok

05:02:16.0053 0x14cc  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys

05:02:16.0053 0x14cc  PartMgr - ok

05:02:16.0084 0x14cc  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys

05:02:16.0084 0x14cc  ParVdm - ok

05:02:16.0099 0x14cc  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys

05:02:16.0099 0x14cc  PCI - ok

05:02:16.0099 0x14cc  PCIDump - ok

05:02:16.0131 0x14cc  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys

05:02:16.0131 0x14cc  PCIIde - ok

05:02:16.0146 0x14cc  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys

05:02:16.0146 0x14cc  Pcmcia - ok

05:02:16.0162 0x14cc  PDCOMP - ok

05:02:16.0162 0x14cc  PDFRAME - ok

05:02:16.0178 0x14cc  PDRELI - ok

05:02:16.0178 0x14cc  PDRFRAME - ok

05:02:16.0193 0x14cc  [ 6C14B9C19BA84F73D3A86DBA11133101, 2CFB7E027E43C1B3890985DFD7987B23E4E3CC003E3FD2583E4A8AC1F8A13B26 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys

05:02:16.0193 0x14cc  perc2 - ok

05:02:16.0224 0x14cc  [ F50F7C27F131AFE7BEBA13E14A3B9416, C0498EA65B908C07A734324ED70DB27F434FAAA815DD02F1BC429A3AB6C663D5 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys

05:02:16.0224 0x14cc  perc2hib - ok

05:02:16.0256 0x14cc  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe

05:02:16.0256 0x14cc  PlugPlay - ok

05:02:16.0271 0x14cc  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe

05:02:16.0287 0x14cc  PolicyAgent - ok

05:02:16.0303 0x14cc  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys

05:02:16.0303 0x14cc  PptpMiniport - ok

05:02:16.0303 0x14cc  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

05:02:16.0303 0x14cc  ProtectedStorage - ok

05:02:16.0334 0x14cc  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys

05:02:16.0334 0x14cc  PSched - ok

05:02:16.0349 0x14cc  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys

05:02:16.0349 0x14cc  Ptilink - ok

05:02:16.0365 0x14cc  [ 86724469CD077901706854974CD13C3E, 23C6B45928E43AC2893033DFC4265C2C87B3D185CB20553B9EAB818A46FB8C18 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys

05:02:16.0365 0x14cc  PxHelp20 - ok

05:02:16.0396 0x14cc  [ 0A63FB54039EB5662433CABA3B26DBA7, A1FB923EB2D08D89D24E8AD7042BBED7CB1DBDA9A5B77BDD188E9913BADAB0EF ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys

05:02:16.0396 0x14cc  ql1080 - ok

05:02:16.0412 0x14cc  [ 6503449E1D43A0FF0201AD5CB1B8C706, F1EFC2DE5998615CB182D7984366631FE956AE1ECA9AC777F26FCA2E6F2E05A6 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys

05:02:16.0412 0x14cc  Ql10wnt - ok

05:02:16.0443 0x14cc  [ 156ED0EF20C15114CA097A34A30D8A01, 7490B90D4C88B7A9BADB9473D4033535F054C797ABF6D542CB859DA5C9B2586A ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys

05:02:16.0443 0x14cc  ql12160 - ok

05:02:16.0459 0x14cc  [ 70F016BEBDE6D29E864C1230A07CC5E6, 895BC2C888F6566086FC1399F499A401D447E57333BC9F9C6DBAFE0F117603D6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys

05:02:16.0459 0x14cc  ql1240 - ok

05:02:16.0474 0x14cc  [ 907F0AEEA6BC451011611E732BD31FCF, F9E7023BD1042963110D0A613054D094437868B20779F23C316A38E4781A6152 ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys

05:02:16.0474 0x14cc  ql1280 - ok

05:02:16.0490 0x14cc  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys

05:02:16.0506 0x14cc  RasAcd - ok

05:02:16.0537 0x14cc  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll

05:02:16.0553 0x14cc  RasAuto - ok

05:02:16.0568 0x14cc  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

05:02:16.0568 0x14cc  Rasl2tp - ok

05:02:16.0631 0x14cc  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll

05:02:16.0631 0x14cc  RasMan - ok

05:02:16.0646 0x14cc  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys

05:02:16.0646 0x14cc  RasPppoe - ok

05:02:16.0678 0x14cc  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys

05:02:16.0678 0x14cc  Raspti - ok

05:02:16.0693 0x14cc  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys

05:02:16.0709 0x14cc  Rdbss - ok

05:02:16.0724 0x14cc  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

05:02:16.0724 0x14cc  RDPCDD - ok

05:02:16.0756 0x14cc  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys

05:02:16.0756 0x14cc  rdpdr - ok

05:02:16.0803 0x14cc  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys

05:02:16.0803 0x14cc  RDPWD - ok

05:02:16.0849 0x14cc  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe

05:02:16.0865 0x14cc  RDSessMgr - ok

05:02:16.0912 0x14cc  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys

05:02:16.0912 0x14cc  redbook - ok

05:02:16.0959 0x14cc  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll

05:02:16.0959 0x14cc  RemoteAccess - ok

05:02:16.0974 0x14cc  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll

05:02:16.0990 0x14cc  RemoteRegistry - ok

05:02:17.0006 0x14cc  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe

05:02:17.0006 0x14cc  RpcLocator - ok

05:02:17.0053 0x14cc  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll

05:02:17.0053 0x14cc  RpcSs - ok

05:02:17.0099 0x14cc  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe

05:02:17.0099 0x14cc  RSVP - ok

05:02:17.0131 0x14cc  SABKUTIL - ok

05:02:17.0146 0x14cc  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe

05:02:17.0146 0x14cc  SamSs - ok

05:02:17.0162 0x14cc  [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS

05:02:17.0162 0x14cc  SASDIFSV - ok

05:02:17.0193 0x14cc  [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS

05:02:17.0193 0x14cc  SASKUTIL - ok

05:02:17.0209 0x14cc  [ 2F0D9848B2EB1FA97D089BB3521D5377, EC10E8AEA102F1278510DF12BDF21DD730C1A0184155CCE07168D5EB442FFF26 ] SbcpHid         C:\WINDOWS\system32\Drivers\SbcpHid.sys

05:02:17.0209 0x14cc  SbcpHid - ok

05:02:17.0256 0x14cc  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe

05:02:17.0271 0x14cc  SCardSvr - ok

05:02:17.0318 0x14cc  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll

05:02:17.0318 0x14cc  Schedule - ok

05:02:17.0365 0x14cc  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys

05:02:17.0365 0x14cc  Secdrv - ok

05:02:17.0381 0x14cc  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll

05:02:17.0381 0x14cc  seclogon - ok

05:02:17.0396 0x14cc  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll

05:02:17.0412 0x14cc  SENS - ok

05:02:17.0443 0x14cc  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys

05:02:17.0443 0x14cc  serenum - ok

05:02:17.0474 0x14cc  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys

05:02:17.0474 0x14cc  Serial - ok

05:02:17.0506 0x14cc  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys

05:02:17.0506 0x14cc  Sfloppy - ok

05:02:17.0568 0x14cc  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll

05:02:17.0568 0x14cc  SharedAccess - ok

05:02:17.0599 0x14cc  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

05:02:17.0615 0x14cc  ShellHWDetection - ok

05:02:17.0615 0x14cc  Simbad - ok

05:02:17.0662 0x14cc  [ 6B33D0EBD30DB32E27D1D78FE946A754, CDA3D082D370B079C06D943DA124D76BAF0C5DB264FB0C893148EF6322D2FABE ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys

05:02:17.0662 0x14cc  sisagp - ok

05:02:17.0724 0x14cc  [ A37740568718F245E818D0C5575B9AA9, 36E94C60CA4E082DD73018CCE73E12E081C8F1A8367152F5CD97652138A47534 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe

05:02:17.0740 0x14cc  SkypeUpdate - ok

05:02:17.0756 0x14cc  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys

05:02:17.0756 0x14cc  SLIP - ok

05:02:18.0068 0x14cc  [ F8E7411B26530E34D1DDC82F8A6B741A, 2C9FC0B8607AB0E73EB78A4CC218C448BFFB2B8B23E4AC4EB4A8E82A2A33D469 ] SNP2UVC         C:\WINDOWS\system32\DRIVERS\snp2uvc.sys

05:02:18.0365 0x14cc  SNP2UVC - ok

05:02:18.0443 0x14cc  [ 06527D4B5D04B6A856939169BEBF48BC, 6C2B8DEBA6113573081A16B4B2B2A0D907FC4C81EA57351835B481F206F9F763 ] snpstd          C:\WINDOWS\system32\DRIVERS\snpstd.sys

05:02:18.0459 0x14cc  snpstd - ok

05:02:18.0474 0x14cc  [ DFADFC2C86662F40759BF02ADD27D569, 81BCBA6DE9CF540C66B4226BD5D46084295F41822BC1A7EB938277737F46CC76 ] sonypvs1        C:\WINDOWS\system32\DRIVERS\sonypvs1.sys

05:02:18.0474 0x14cc  sonypvs1 - ok

05:02:18.0506 0x14cc  [ 83C0F71F86D3BDAF915685F3D568B20E, 10B24723914A5A9E27A592FD58DAE2207B6E49F13A17CD2B1477C51D2D609D2E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys

05:02:18.0506 0x14cc  Sparrow - ok

05:02:18.0537 0x14cc  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys

05:02:18.0553 0x14cc  splitter - ok

05:02:18.0584 0x14cc  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe

05:02:18.0584 0x14cc  Spooler - ok

05:02:18.0615 0x14cc  [ 1B7447278005E38E464B34A7E841D628, CBEF504A8F499753E45FFC34DB25BB7AFCF3F5447A834289626BCFBB2AE4978F ] SPTISRV         C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe

05:02:18.0615 0x14cc  SPTISRV - ok

05:02:18.0631 0x14cc  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys

05:02:18.0631 0x14cc  sr - ok

05:02:18.0678 0x14cc  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll

05:02:18.0693 0x14cc  srservice - ok

05:02:18.0724 0x14cc  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys

05:02:18.0740 0x14cc  Srv - ok

05:02:18.0771 0x14cc  [ D7968049BE0ADBB6A57CEE3960320911, 6FB6D7BE384324211DAEDCCD80BA983E32183D08DF6C5B5B5453773DCC0F4D5B ] sscdbhk5        C:\WINDOWS\system32\drivers\sscdbhk5.sys

05:02:18.0771 0x14cc  sscdbhk5 - ok

05:02:18.0818 0x14cc  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll

05:02:18.0818 0x14cc  SSDPSRV - ok

05:02:18.0834 0x14cc  [ C3FFD65ABFB6441E7606CF74F1155273, EFA481D5075A9C0490CEBA5F8223BE322EB3811465F41A1FB3386E30E8C81714 ] ssrtln          C:\WINDOWS\system32\drivers\ssrtln.sys

05:02:18.0834 0x14cc  ssrtln - ok

05:02:18.0865 0x14cc  [ F05B8D10BD6AD4CBB561E29D5BE2C674, 765F26FC5890A587B0B309A45867CA4F4BB2A2C4A36C33F033B532481E293B33 ] SSScsiSV        C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

05:02:18.0865 0x14cc  SSScsiSV - ok

05:02:18.0943 0x14cc  [ 2A2DC39623ADEF8AB3703AB9FAC4B440, A7D66F8364363085EA8BC54AB41E0C1E509A7A88753D6E6707FACF0265DF2A75 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys

05:02:18.0959 0x14cc  STHDA - ok

05:02:19.0006 0x14cc  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll

05:02:19.0021 0x14cc  stisvc - ok

05:02:19.0053 0x14cc  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys

05:02:19.0053 0x14cc  streamip - ok

05:02:19.0068 0x14cc  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys

05:02:19.0068 0x14cc  swenum - ok

05:02:19.0084 0x14cc  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys

05:02:19.0084 0x14cc  swmidi - ok

05:02:19.0099 0x14cc  SwPrv - ok

05:02:19.0115 0x14cc  [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys

05:02:19.0115 0x14cc  symc810 - ok

05:02:19.0131 0x14cc  [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys

05:02:19.0131 0x14cc  symc8xx - ok

05:02:19.0146 0x14cc  [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys

05:02:19.0146 0x14cc  sym_hi - ok

05:02:19.0162 0x14cc  [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys

05:02:19.0162 0x14cc  sym_u3 - ok

05:02:19.0193 0x14cc  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys

05:02:19.0193 0x14cc  sysaudio - ok

05:02:19.0240 0x14cc  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe

05:02:19.0240 0x14cc  SysmonLog - ok

05:02:19.0584 0x14cc  [ 34CDB0505B243CD616EBC4DE1E3FBFB6, 01839FED9F4963459B420C52B50AC527DA685FFB3273DB3655F07A3DC7F2A1D5 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe

05:02:19.0849 0x14cc  TabletServicePen - ok

05:02:19.0896 0x14cc  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll

05:02:19.0896 0x14cc  TapiSrv - ok

05:02:19.0959 0x14cc  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys

05:02:19.0959 0x14cc  Tcpip - ok

05:02:20.0006 0x14cc  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys

05:02:20.0006 0x14cc  TDPIPE - ok

05:02:20.0021 0x14cc  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys

05:02:20.0021 0x14cc  TDTCP - ok

05:02:20.0037 0x14cc  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys

05:02:20.0053 0x14cc  TermDD - ok

05:02:20.0084 0x14cc  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll

05:02:20.0084 0x14cc  TermService - ok

05:02:20.0146 0x14cc  [ 30698355067D07DA5F9EB81132C9FDD6, 80457F8DBB089FFF23ED220924F5C872D896707F4B31E9C77DAB78421B9B2F6D ] tfsnboio        C:\WINDOWS\system32\dla\tfsnboio.sys

05:02:20.0146 0x14cc  tfsnboio - ok

05:02:20.0162 0x14cc  [ FB9D825BB4A2ABDF24600F7505050E2B, A7A11366525C4DEAD588822F4C57C7ED5D6F3578F2DB2124BF0441133B3169B9 ] tfsncofs        C:\WINDOWS\system32\dla\tfsncofs.sys

05:02:20.0162 0x14cc  tfsncofs - ok

05:02:20.0178 0x14cc  [ CAFD8CCA11AA1E8B6D2EA1BA8F70EC33, AA5BDE527B67A14654D930252894FEDB8976EAE1F33C2BC0E7747D2B4EB93C4E ] tfsndrct        C:\WINDOWS\system32\dla\tfsndrct.sys

05:02:20.0178 0x14cc  tfsndrct - ok

05:02:20.0193 0x14cc  [ 8DB1E78FBF7C426D8EC3D8F1A33D6485, FF437EFD667EFE00729188B18C7E17E8C15D06A2C1F58A0F79E22DFADCECF969 ] tfsndres        C:\WINDOWS\system32\dla\tfsndres.sys

05:02:20.0193 0x14cc  tfsndres - ok

05:02:20.0224 0x14cc  [ B92F67A71CC8176F331B8AA8D9F555AD, F59E8464E44E08C18C3C7D32408D7661923F30FDD35390082DC7F2C02DCC40A3 ] tfsnifs         C:\WINDOWS\system32\dla\tfsnifs.sys

05:02:20.0224 0x14cc  tfsnifs - ok

05:02:20.0256 0x14cc  [ 85985FAA9A71E2358FCC2EDEFC2A3C5C, 9ADD1077C3B34E0EFA85EC4762822330D85F43EB4557C9ED015D8D1575E52885 ] tfsnopio        C:\WINDOWS\system32\dla\tfsnopio.sys

05:02:20.0256 0x14cc  tfsnopio - ok

05:02:20.0256 0x14cc  [ BBA22094F0F7C210567EFDAF11F64495, C55D3F3628C73FFA776C9B61BA735CB24DEE9F80F6E74A2F9BD70CFFB863BA57 ] tfsnpool        C:\WINDOWS\system32\dla\tfsnpool.sys

05:02:20.0256 0x14cc  tfsnpool - ok

05:02:20.0287 0x14cc  [ 81340BEF80B9811E98CE64611E67E3FF, CD6679A4D1A7932CD64F1F6AACF09CEC2D8E7DD001F812CC49756D8F582D907A ] tfsnudf         C:\WINDOWS\system32\dla\tfsnudf.sys

05:02:20.0287 0x14cc  tfsnudf - ok

05:02:20.0303 0x14cc  [ C035FD116224CCC8325F384776B6A8BB, CB97AD56288F916DE2AF5B1EC9D04AF3A1C2A2FA0A738282DA3763036DD18F12 ] tfsnudfa        C:\WINDOWS\system32\dla\tfsnudfa.sys

05:02:20.0318 0x14cc  tfsnudfa - ok

05:02:20.0334 0x14cc  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll

05:02:20.0334 0x14cc  Themes - ok

05:02:20.0381 0x14cc  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe

05:02:20.0396 0x14cc  TlntSvr - ok

05:02:20.0412 0x14cc  [ F2790F6AF01321B172AA62F8E1E187D9, 5644B5EFA0065C0CC9DB28E5520AAD2F4B3BCE48337F165BF9F166ECC164630C ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys

05:02:20.0412 0x14cc  TosIde - ok

05:02:20.0459 0x14cc  [ 5D3785200A6FCE6EB5269F86070CD8EA, 28DB423696F2BFC6519C30B5FFD2CB0493F486F677E7813110CF14A50245E8CB ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe

05:02:20.0474 0x14cc  TouchServicePen - ok

05:02:20.0521 0x14cc  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll

05:02:20.0521 0x14cc  TrkWks - ok

05:02:20.0553 0x14cc  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys

05:02:20.0553 0x14cc  Udfs - ok

05:02:20.0568 0x14cc  [ 1B698A51CD528D8DA4FFAED66DFC51B9, FC3F12D25EE0E99AFE056502FCCFC052854699C21B99D559FAF1244F206DFB4F ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys

05:02:20.0568 0x14cc  ultra - ok

05:02:20.0599 0x14cc  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys

05:02:20.0615 0x14cc  Update - ok

05:02:20.0646 0x14cc  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll

05:02:20.0662 0x14cc  upnphost - ok

05:02:20.0678 0x14cc  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe

05:02:20.0678 0x14cc  UPS - ok

05:02:20.0724 0x14cc  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys

05:02:20.0724 0x14cc  usbaudio - ok

05:02:20.0756 0x14cc  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys

05:02:20.0756 0x14cc  usbccgp - ok

05:02:20.0771 0x14cc  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys

05:02:20.0771 0x14cc  usbehci - ok

05:02:20.0818 0x14cc  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys

05:02:20.0818 0x14cc  usbhub - ok

05:02:20.0865 0x14cc  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys

05:02:20.0865 0x14cc  usbprint - ok

05:02:20.0896 0x14cc  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys

05:02:20.0912 0x14cc  usbscan - ok

05:02:20.0912 0x14cc  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

05:02:20.0912 0x14cc  USBSTOR - ok

05:02:20.0943 0x14cc  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys

05:02:20.0943 0x14cc  usbuhci - ok

05:02:20.0959 0x14cc  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys

05:02:20.0974 0x14cc  usbvideo - ok

05:02:20.0990 0x14cc  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys

05:02:20.0990 0x14cc  VgaSave - ok

05:02:21.0037 0x14cc  [ 754292CE5848B3738281B4F3607EAEF4, B0DCC9E9F8F78671FF878B493264C3B1DD2ED4A7167E3F5495F66ABF5FACB86C ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys

05:02:21.0037 0x14cc  viaagp - ok

05:02:21.0053 0x14cc  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys

05:02:21.0053 0x14cc  ViaIde - ok

05:02:21.0068 0x14cc  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys

05:02:21.0068 0x14cc  VolSnap - ok

05:02:21.0115 0x14cc  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe

05:02:21.0131 0x14cc  VSS - ok

05:02:21.0178 0x14cc  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] w32time         C:\WINDOWS\system32\w32time.dll

05:02:21.0178 0x14cc  w32time - ok

05:02:21.0224 0x14cc  [ 427A8BC96F16C40DF81C2D2F4EDD32DD, C65B089140D4A7218FC5B6EEDCCE498DF1F71BBE375762C9092FAC02CAE1CEC7 ] wacommousefilter C:\WINDOWS\system32\DRIVERS\wacommousefilter.sys

05:02:21.0224 0x14cc  wacommousefilter - ok

05:02:21.0240 0x14cc  [ 846B58EA44BF8C92E4B59F4E2252C4C0, C5803CB7F2D584D4C9E648E05355063C47197949F1B4085F38000733BB18BEA9 ] wacomvhid       C:\WINDOWS\system32\DRIVERS\wacomvhid.sys

05:02:21.0240 0x14cc  wacomvhid - ok

05:02:21.0256 0x14cc  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys

05:02:21.0256 0x14cc  Wanarp - ok

05:02:21.0256 0x14cc  wanatw - ok

05:02:21.0318 0x14cc  [ BBCFEAB7E871CDDAC2D397EE7FA91FDC, 06FC132E0E256B9A4E4DDD05D3AF4D75E40C750ECCF94A76251B104C65CFFCDF ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys

05:02:21.0334 0x14cc  Wdf01000 - ok

05:02:21.0334 0x14cc  WDICA - ok

05:02:21.0349 0x14cc  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys

05:02:21.0365 0x14cc  wdmaud - ok

05:02:21.0381 0x14cc  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll

05:02:21.0381 0x14cc  WebClient - ok

05:02:21.0459 0x14cc  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll

05:02:21.0459 0x14cc  winmgmt - ok

05:02:21.0506 0x14cc  [ FD600B032E741EB6AAB509FC630F7C42, 2AF671D0648A5C2D2C4A7D0FDE803F07CC079CF1FA4E237DB912A8C77D9EC1F6 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys

05:02:21.0506 0x14cc  WinUSB - ok

05:02:21.0553 0x14cc  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll

05:02:21.0553 0x14cc  WmdmPmSN - ok

05:02:21.0599 0x14cc  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll

05:02:21.0615 0x14cc  Wmi - ok

05:02:21.0646 0x14cc  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe

05:02:21.0646 0x14cc  WmiApSrv - ok

05:02:21.0756 0x14cc  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe

05:02:21.0787 0x14cc  WMPNetworkSvc - ok

05:02:21.0818 0x14cc  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\Drivers\wpdusb.sys

05:02:21.0818 0x14cc  WpdUsb - ok

05:02:22.0209 0x14cc  [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

05:02:22.0240 0x14cc  WPFFontCache_v0400 - ok

05:02:22.0271 0x14cc  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys

05:02:22.0271 0x14cc  WS2IFSL - ok

05:02:22.0318 0x14cc  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll

05:02:22.0318 0x14cc  wscsvc - ok

05:02:22.0365 0x14cc  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

05:02:22.0365 0x14cc  WSTCODEC - ok

05:02:22.0381 0x14cc  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll

05:02:22.0381 0x14cc  wuauserv - ok

05:02:22.0428 0x14cc  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys

05:02:22.0443 0x14cc  WudfPf - ok

05:02:22.0459 0x14cc  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys

05:02:22.0459 0x14cc  WudfRd - ok

05:02:22.0474 0x14cc  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll

05:02:22.0490 0x14cc  WudfSvc - ok

05:02:22.0553 0x14cc  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll

05:02:22.0568 0x14cc  WZCSVC - ok

05:02:22.0599 0x14cc  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll

05:02:22.0599 0x14cc  xmlprov - ok

05:02:22.0615 0x14cc  ================ Scan global ===============================

05:02:22.0662 0x14cc  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll

05:02:22.0709 0x14cc  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll

05:02:22.0724 0x14cc  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll

05:02:22.0771 0x14cc  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe

05:02:22.0771 0x14cc  [ Global ] - ok

05:02:22.0771 0x14cc  ================ Scan MBR ==================================

05:02:22.0787 0x14cc  [ B16A2359F4962B0C622D81A1C1F4B703 ] \Device\Harddisk0\DR0

05:02:22.0959 0x14cc  \Device\Harddisk0\DR0 - ok

05:02:22.0974 0x14cc  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR4

05:02:22.0974 0x14cc  \Device\Harddisk1\DR4 - ok

05:02:22.0974 0x14cc  ================ Scan VBR ==================================

05:02:22.0990 0x14cc  [ 0EB46B6DC460B6F2AA7C3C6BD084BD7F ] \Device\Harddisk0\DR0\Partition1

05:02:22.0990 0x14cc  \Device\Harddisk0\DR0\Partition1 - ok

05:02:22.0990 0x14cc  [ 3E19884C7F8370CF8BD7A7B07C6C97D8 ] \Device\Harddisk1\DR4\Partition1

05:02:22.0990 0x14cc  \Device\Harddisk1\DR4\Partition1 - ok

05:02:22.0990 0x14cc  Waiting for KSN requests completion. In queue: 244

05:02:23.0990 0x14cc  Waiting for KSN requests completion. In queue: 244

05:02:24.0990 0x14cc  Waiting for KSN requests completion. In queue: 244

05:02:25.0990 0x14cc  Waiting for KSN requests completion. In queue: 244

05:02:26.0990 0x14cc  Have new async UDS detects: 1

05:02:26.0990 0x14cc  SbcpHid - detected UDS:DangerousObject.Multi.Generic ( 0 )

05:02:27.0099 0x14cc  SbcpHid ( UDS:DangerousObject.Multi.Generic ) - infected

05:02:27.0099 0x14cc  Force sending object to P2P due to detect: C:\WINDOWS\system32\Drivers\SbcpHid.sys

05:02:29.0974 0x14cc  Object send P2P result: true

05:02:32.0834 0x14cc  Win FW state via NFM: enabled

05:02:35.0381 0x14cc  ============================================================

05:02:35.0381 0x14cc  Scan finished

05:02:35.0381 0x14cc  ============================================================

05:02:35.0396 0x0864  Detected object count: 1

05:02:35.0396 0x0864  Actual detected object count: 1

05:02:52.0381 0x0864  C:\WINDOWS\system32\Drivers\SbcpHid.sys - copied to quarantine

05:02:52.0381 0x0864  SbcpHid ( UDS:DangerousObject.Multi.Generic ) - User select action: Quarantine

[windygirl]

ComboFix Log

 

ComboFix 13-12-16.01 - Nzinga 12/17/2013   5:08.8.2 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.3318.1829 [GMT -5:00]
Running from: c:\documents and settings\Nzinga\Desktop\ComboFix.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Nzinga\My Documents\$AP47.tmp
c:\documents and settings\Nzinga\My Documents\$AP4A.tmp
c:\documents and settings\Nzinga\My Documents\$AP4D.tmp
.
.
(((((((((((((((((((((((((   Files Created from 2013-11-17 to 2013-12-17  )))))))))))))))))))))))))))))))
.
.
2013-12-17 10:02 . 2013-12-17 10:02    --------    d-----w-    C:\TDSSKiller_Quarantine
2013-12-15 20:43 . 2013-12-15 20:43    --------    d-----w-    C:\FRST
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-11 15:42 . 2013-01-09 00:39    71048    -c--a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-12-11 15:42 . 2013-01-09 00:39    692616    -c--a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-11-13 02:59 . 2004-08-19 20:49    150528    ----a-w-    c:\windows\system32\imagehlp.dll
2013-11-07 05:38 . 2004-08-19 20:49    591360    ----a-w-    c:\windows\system32\rpcrt4.dll
2013-11-06 01:03 . 2009-04-17 21:09    7168    ----a-w-    c:\windows\system32\xpsp4res.dll
2013-10-30 02:26 . 2004-08-19 20:49    1879040    ----a-w-    c:\windows\system32\win32k.sys
2013-10-25 11:24 . 2004-08-19 20:49    841216    ----a-w-    c:\windows\system32\wininet.dll
2013-10-25 11:24 . 2004-08-19 20:49    1830912    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-10-25 11:24 . 2004-08-19 20:49    78336    ----a-w-    c:\windows\system32\ieencode.dll
2013-10-25 11:24 . 2004-08-19 20:49    17408    ----a-w-    c:\windows\system32\corpol.dll
2013-10-23 23:45 . 2004-08-19 20:49    172032    ----a-w-    c:\windows\system32\scrrun.dll
2013-10-12 15:56 . 2004-08-19 20:49    278528    ----a-w-    c:\windows\system32\oakley.dll
2013-10-09 13:12 . 2004-08-19 20:49    287744    ----a-w-    c:\windows\system32\gdi32.dll
2013-10-07 10:59 . 2004-08-19 20:49    603136    ----a-w-    c:\windows\system32\crypt32.dll
2013-09-22 23:53 . 2004-08-19 20:49    389120    ----a-w-    c:\windows\system32\html.iec
2012-04-11 15:28 . 2012-04-11 15:28    799441    -c--a-w-    c:\program files\RegpairSetup.exe
2012-02-19 16:37 . 2012-02-19 16:37    692480    -c--a-w-    c:\program files\RealPlayer.exe
2011-09-22 13:14 . 2011-09-22 13:14    5335216    -c--a-w-    c:\program files\minuswindows.exe
2011-09-04 13:41 . 2011-09-04 13:41    20278864    -c--a-w-    c:\program files\companionlink.exe
2011-05-31 17:28 . 2011-05-31 17:27    56712856    -c--a-w-    c:\program files\Avery Wizard 4.0.0.exe
2010-11-16 00:53 . 2010-11-15 22:34    13525424    -c--a-w-    c:\program files\Dropbox 0.7.110.exe
2010-11-05 16:28 . 2010-11-05 16:27    8567280    -c--a-w-    c:\program files\Firefox Setup 3.6.12.exe
2010-07-02 14:53 . 2010-07-02 14:53    9070816    -c--a-w-    c:\program files\SUPERAntiSpyware.exe
2010-01-19 11:48 . 2010-01-19 11:48    10600847    -c--a-w-    c:\program files\SeaMonkey Setup 2.0.2.exe
2010-01-04 15:52 . 2010-01-04 15:50    10601579    -c--a-w-    c:\program files\SeaMonkey Setup 2.0.1.exe
2009-09-22 11:12 . 2009-09-22 11:11    13266944    -c--a-w-    c:\program files\seamonkey-1.1.18.en-US.win32.installer.exe
2009-03-11 21:11 . 2009-03-11 21:10    1606063    -c--a-w-    c:\program files\treodekstop213setup.exe
2009-01-31 15:43 . 2009-01-31 15:43    7518240    -c--a-w-    c:\program files\Firefox Setup 3.0.5.exe
2009-01-17 17:41 . 2009-01-17 17:40    13029376    -c--a-w-    c:\program files\seamonkey-1.1.14.en-US.win32.installer.exe
2008-11-09 17:41 . 2008-11-09 17:40    11464704    -c--a-w-    c:\program files\sharecalendar_setup.exe
2008-10-01 00:27 . 2008-10-01 00:25    13025280    -c--a-w-    c:\program files\seamonkey-1.1.12.exe
2008-06-26 03:00 . 2008-06-26 03:00    4898144    -c--a-w-    c:\program files\LimeWireWin18.exe
2008-04-09 15:12 . 2008-04-09 15:11    13012992    -c--a-w-    c:\program files\seamonkey-1.1.9.en-US.win32.installer.exe
2008-03-24 23:50 . 2008-03-24 23:50    13000704    -c--a-w-    c:\program files\seamonkey-1.1.8.exe
2007-12-21 09:06 . 2007-12-21 09:06    13025280    -c--a-w-    c:\program files\seamonkey-1.1.7.en-US.win32.installer.exe
2007-12-17 12:35 . 2007-12-17 12:30    51622242    -c--a-w-    c:\program files\ACEMCP603PRO.exe
2007-12-17 11:55 . 2007-12-17 11:54    7045601    -c--a-w-    c:\program files\XP_Codec_Pack_2.3.4.exe
2007-12-17 10:48 . 2006-09-26 17:36    25755448    -c--a-w-    c:\program files\wmp11-windowsxp-x86-enu.exe
2007-11-01 16:07 . 2007-11-01 16:06    11160320    -c--a-w-    c:\program files\pk zip.exe
2007-08-26 15:32 . 2007-08-26 15:31    13012992    -c--a-w-    c:\program files\seamonkey-1.1.4.en-US.win32.installer.exe
2007-07-21 08:25 . 2007-07-21 08:25    3126056    -c--a-w-    c:\program files\LimeWireWin.exe
2007-06-16 14:25 . 2007-06-16 14:25    315318    -c--a-w-    c:\program files\soltvradio_setup.exe
2007-04-11 17:24 . 2007-04-11 17:21    10976768    -c--a-w-    c:\program files\Sprint_PCS_CM_v034.msi
2007-04-11 17:23 . 2007-04-11 17:21    10740224    -c--a-w-    c:\program files\SprintPCSConnectionMgr_V3.01.040.msi
2007-04-11 17:10 . 2007-04-11 17:09    10420865    -c--a-w-    c:\program files\bitpim-0.9.14-setup.exe
2007-04-09 18:30 . 2007-04-09 18:29    19994184    -c--a-w-    c:\program files\QuickTimeInstaller.exe
2007-04-04 12:01 . 2007-04-04 12:00    12992512    -c--a-w-    c:\program files\seamonkey-1.1.1.en-US.win32.installer.exe
2007-04-03 21:37 . 2007-04-03 21:37    10059790    -c--a-w-    c:\program files\bitpim-0.9.13-setup.exe
2007-02-24 00:34 . 2007-02-24 00:34    8643136    -c--a-w-    c:\program files\ymsgr7_437_us.exe
2007-01-18 15:00 . 2007-01-18 14:59    6342512    -c--a-w-    c:\program files\Thunderbird Setup 1.5.0.9.exe
2007-01-18 14:31 . 2007-01-18 14:31    5971432    -c--a-w-    c:\program files\Firefox Setup 2.0.0.1.exe
2006-10-10 17:41 . 2006-10-10 17:41    16504464    -c--a-w-    c:\program files\jre-1_5_0_08-windows-i586-p.exe
2006-10-10 17:37 . 2006-10-10 17:37    21290704    -c--a-w-    c:\program files\AdbeRdr708 mozilla plugin.exe
2006-10-10 14:18 . 2006-10-10 14:18    3054417    -c--a-w-    c:\program files\FSViewerSetup26.exe
2006-10-01 18:05 . 2006-10-01 18:05    6335024    -c--a-w-    c:\program files\Thunderbird Setup 1.5.0.7.exe
2006-09-30 16:25 . 2006-09-30 16:25    2146871    -c--a-w-    c:\program files\zipitfast.exe
2006-09-26 17:59 . 2006-09-26 17:58    47652464    -c--a-w-    c:\program files\PlusDME_Full.exe
2006-09-26 17:59 . 2006-09-26 17:57    47652464    -c--a-w-    c:\program files\Super Pack.exe
2006-07-27 14:20 . 2006-07-27 14:18    8701008    -c--a-w-    c:\program files\jewelquest_at.exe
2006-07-13 01:33 . 2006-07-13 01:28    12038352    -c--a-w-    c:\program files\mozilla-win32-1.7.13-installer.exe
2006-07-05 13:43 . 2006-07-05 13:41    4864452    -c--a-w-    c:\program files\palm401upgrade2.exe
2006-06-30 02:26 . 2006-06-30 02:22    24070456    -c--a-w-    c:\program files\windows media player11-windowsxp-x86-enu.exe
2006-06-07 13:54 . 2006-06-07 13:55    937001    -c--a-w-    c:\program files\soulseek156c.exe
2006-06-05 19:19 . 2006-06-05 19:19    705536    -c--a-w-    c:\program files\MoozikoPlayerSetup.msi
2006-04-22 15:20 . 2006-04-22 15:19    5432500    -c--a-w-    c:\program files\ImageMixerV151.exe
2006-03-13 15:32 . 2006-03-13 15:31    9739116    -c--a-w-    c:\program files\SimpleOcr.exe
2006-03-01 19:18 . 2006-03-01 19:16    12754672    -c--a-w-    c:\program files\MP10Setup.exe
2006-03-01 16:20 . 2006-03-01 16:20    1419556    -c--a-w-    c:\program files\klitecodec270b.exe
2006-02-24 21:10 . 2006-02-24 21:10    2002069    -c--a-w-    c:\program files\yahoo_texttwist_tm1-1.exe
2006-01-30 19:48 . 2006-03-16 16:23    27160459    -c--a-w-    c:\program files\Norton Antivirus download.EXE
2006-01-18 01:00 . 2006-01-18 00:54    12026576    -c--a-w-    c:\program files\mozilla-win32-1.7.8-installer.exe
2006-01-17 22:11 . 2006-01-18 22:49    948936    -c--a-w-    c:\program files\install_flash_player.exe
2005-12-18 17:58 . 2005-12-18 17:56    12899744    -c--a-w-    c:\program files\RealPlayer10-5GOLD_bb.exe
2005-12-17 03:01 . 2005-12-17 02:51    54725800    -c--a-w-    c:\program files\iPodSetup.exe
2005-12-16 15:26 . 2005-12-16 15:13    34412848    -c--a-w-    c:\program files\iTunesSetup.exe
2005-12-14 19:09 . 2005-12-14 19:09    1619132    -c--a-w-    c:\program files\freeripmp3.exe
2005-12-10 05:25 . 2005-12-10 05:25    2855080    -c--a-w-    c:\program files\adawaresepersonal.exe
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2012-10-10 12:06 . 5E1F3187E0E21163C48EE173746DAF9E . 917984 . . [16.0] . . c:\windows\erdnt\cache\firefox.exe
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    130736    ----a-w-    c:\documents and settings\Nzinga\Application Data\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    130736    ----a-w-    c:\documents and settings\Nzinga\Application Data\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    130736    ----a-w-    c:\documents and settings\Nzinga\Application Data\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36    130736    ----a-w-    c:\documents and settings\Nzinga\Application Data\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="c:\program files\Dell Support\DSAgnt.exe" [2005-05-15 332800]
"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2009-05-27 4351216]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2013-11-12 5717272]
"EPLTarget\P0000000000000000"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_TATIHVA.EXE" [2013-01-23 220800]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2005-04-06 94208]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2005-04-06 77824]
"Persistence"="c:\windows\system32\igfxpers.exe" [2005-04-06 114688]
"IntelMeM"="c:\program files\Intel\Modem Event Monitor\IntelMEM.exe" [2003-09-04 221184]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2004-12-06 127035]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-07-27 81920]
"SsAAD.exe"="c:\progra~1\Sony\SONICS~1\SsAAD.exe" [2006-01-07 81920]
"type32"="c:\program files\Microsoft IntelliType Pro\type32.exe" [2005-03-15 196608]
"SigmatelSysTrayApp"="stsystra.exe" [2005-03-22 339968]
"snpstd"="c:\windows\vsnpstd.exe" [2004-06-10 286720]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2007-07-11 569344]
"EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2010-10-12 979328]
"FUFAXRCV"="c:\program files\Epson Software\FAX Utility\FUFAXRCV.exe" [2011-03-09 495616]
"FUFAXSTM"="c:\program files\Epson Software\FAX Utility\FUFAXSTM.exe" [2011-03-09 856064]
"LTCM Client"="c:\program files\LTCM Client\ltcmClient.exe" [2009-08-05 1596096]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-24 926896]
"Acrobat Assistant 7.0"="c:\program files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2008-04-23 483328]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2006-09-01 282624]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2006-09-12 229952]
.
c:\documents and settings\Nzinga\Start Menu\Programs\Startup\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-11-21 110592]
Dropbox.lnk - c:\documents and settings\Nzinga\Application Data\Dropbox\bin\Dropbox.exe /systemstartup [2013-5-24 27776968]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1033-F400-7760-100000000002}\SC_Acrobat.exe [2013-3-23 25214]
SecureZIP Attachments Status.lnk - c:\program files\PKWARE\PKZIPM\11.20.0008\PKTray.exe -tray [2007-11-1 197984]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-09-04 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2008-05-28 16:32    87352    ----a-w-    c:\windows\system32\LMIinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36Crusader]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36CrusaderBoot]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Acrobat Speed Launcher.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk
backup=c:\windows\pss\Adobe Acrobat Speed Launcher.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HotSync Manager.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HotSync Manager.lnk
backup=c:\windows\pss\HotSync Manager.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Image Transfer.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Image Transfer.lnk
backup=c:\windows\pss\Image Transfer.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microtek Scanner Finder.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Microtek Scanner Finder.lnk
backup=c:\windows\pss\Microtek Scanner Finder.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^PennConnect.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\PennConnect.lnk
backup=c:\windows\pss\PennConnect.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
backup=c:\windows\pss\QuickBooks Update Agent.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BambooCore]
2011-09-27 03:45    646232    -c--a-w-    c:\program files\Bamboo Dock\BambooCore.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2006-09-12 05:58    229952    ----a-w-    c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12    1695232    -c--a-w-    c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyVideoDaily2]
2005-11-30 15:09    401408    -c--a-w-    c:\program files\MyVideoDaily2\MyVideoDaily2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2006-09-01 19:57    282624    ----a-w-    c:\program files\QuickTime\qttask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-07-13 18:18    17420464    -c--a-r-    c:\program files\Skype\Phone\Skype.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\mozilla.org\\Mozilla\\mozilla.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Documents and Settings\\Nzinga\\Application Data\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
.
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2/17/2010 1:25 PM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/10/2010 1:41 PM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [6/29/2010 12:48 PM 116608]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [5/14/2009 4:07 PM 759048]
R2 EpsonCustomerParticipation;EpsonCustomerParticipation;c:\program files\epson\EpsonCustomerParticipation\EPCP.exe [6/9/2011 12:01 PM 521600]
R2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe [9/15/2012 6:04 PM 5553016]
R2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe [9/15/2012 6:05 PM 451960]
S1 SABKUTIL;SABKUTIL;\??\c:\program files\SUPERAntiSpyware\SABKUTIL.sys --> c:\program files\SUPERAntiSpyware\SABKUTIL.sys [?]
S2 HPFECP15;HPFECP15;c:\windows\system32\drivers\HPFecp15.sys [9/4/1998 2:32 AM 52800]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\LogMeIn\x86\RaInfo.sys --> c:\program files\LogMeIn\x86\RaInfo.sys [?]
S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [10/6/2012 10:07 AM 398184]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [8/28/2011 10:38 AM 682344]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [7/13/2012 1:14 PM 160944]
S3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys --> c:\windows\system32\DRIVERS\motfilt.sys [?]
S3 hitmanpro36;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro36.sys [7/23/2012 9:04 PM 27424]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [8/28/2011 10:37 AM 21104]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys --> c:\windows\system32\DRIVERS\motccgp.sys [?]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys --> c:\windows\system32\DRIVERS\motccgpfl.sys [?]
S3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys --> c:\windows\system32\DRIVERS\Motousbnet.sys [?]
S3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys --> c:\windows\system32\DRIVERS\motusbdevice.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 28644627
*NewlyCreated* - 95890862
*Deregistered* - 28644627
*Deregistered* - 95890862
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-05 04:18    1210320    ----a-w-    c:\program files\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-12-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-09 15:42]
.
2013-12-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-01-10 19:42]
.
2013-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-13 15:32]
.
2013-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-13 15:32]
.
2013-12-17 c:\windows\Tasks\ReclaimerUpdateFiles_Nzinga.job
- c:\documents and settings\Nzinga\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-24 23:23]
.
2013-12-17 c:\windows\Tasks\ReclaimerUpdateXML_Nzinga.job
- c:\documents and settings\Nzinga\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-24 23:23]
.
2013-12-13 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Nzinga.job
- c:\documents and settings\Nzinga\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-24 23:23]
.
2013-12-17 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task a5d2a694-12bb-4850-87cb-f080803d1d2b.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-09-04 13:39]
.
2013-12-17 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task c260bc1d-0917-496a-a6b6-069a411912a8.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-09-04 13:39]
.
.
------- Supplementary Scan -------
.

uStart Page = about:blank
uInternet Settings,ProxyServer = 0.0.0.0:80
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.11.1

FF - ProfilePath - c:\documents and settings\Nzinga\Application Data\Mozilla\Firefox\Profiles\msnjx4x8.default\

FF - prefs.js: browser.search.selectedEngine - Yahoo


FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-DW7 - c:\program files\The Weather Channel\The Weather Channel App\TWCApp.exe
MSConfigStartUp-TkBellExe - c:\program files\Common Files\Real\Update_OB\realsched.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-12-17 05:14
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...  
.
scanning hidden autostart entries ...
.
scanning hidden files ...  
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(684)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
Completion time: 2013-12-17  05:16:38
ComboFix-quarantined-files.txt  2013-12-17 10:16
ComboFix2.txt  2012-10-17 13:32
.
Pre-Run: 22,769,352,704 bytes free
Post-Run: 23,078,776,832 bytes free
.
- - End Of File - - 8F941526695F609645A41D9715828785
B16A2359F4962B0C622D81A1C1F4B703
 

[Psychotic]

No Antivirus Program installed!

I don't see an Anti Virus Program running on your machine.

Download and install an antivirus program, and make sure that you keep it updated New viruses come out every minute, so it is essential that you have the latest signatures for your antivirus program to provide you with the best possible protection from malicious software.

Two good antivirus programs free for non-commercial home use are
Avast!
or
Microsoft Security Essentials

Note: You should only have one antivirus installed at a time. Having more than one antivirus program installed at once is likely to cause conflicts and may well decrease your overall protection as well as impairing the performance of your PC.

[windygirl]

i do have antivirus programs, malwarebytes and super antispyware. i turned them off as per your instruction during the combofix stage of the malware removal but didn't turn them back on. i have rectified that.

[windygirl]

question-are the two i have conflicting?

[Psychotic]

You don´t have an antivirus program. Super Antispyware and MBAM are on-demand scanners, they don´t provide realtime protection.

[windygirl]

ahhhh! thank you for the clarification. i will get an antivirus program.

[AdvancedSetup]

Since this issue is resolved I will close the thread to prevent others from posting here. If you need assistance please start your own topic and someone will be happy to assist you.