outrate redirect virus

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
Hi

I am not a techie but yours seems to be the only site offering help on this one. I think I have just picked up outrate.co.uk redirect virus. (and I have been sent to drugsnews as well if that is similar). It seems to be this that has also caused a problem with Microsoft Security essentialsl as well, MSE seems to be working but from my user account I cannot open it up to do a scan. Trying to open it just gets the page to flash on the screen but not stay for long enough to do anything. Another user account on this computer is working Ok and I am doing a full scan on that at the moment. But is there an simple way to get rid of that redirect virus. I am using windows 7.
 

dvk01

Derek
Retired Moderator Retired Malware Specialist
Joined
Dec 14, 2002
Messages
56,452
follow advice here and post the logs those programs make
 

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
Before I attempt the steps described the current situation is that the full scan by Microsoft Security Essentials found 2 severe threats.
VirTool:Win32/Obfuscator.XG which has been quarantined and
Rogue:Win32/FakePAV which was removed

What I am not sure about is exactly what that has fixed, ie is the main corruption from the redirect virus now eliminated.

But although the MSE works as expected on the second user on this machine, on my account it will still not open properly although when trying to open it I can see it flash onto the screen long enough to see it shows in green.
 

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
Here are the reports
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:32:18, on 08/01/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16457)

Boot mode: Normal



Running processes:

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe

C:\Program Files (x86)\Dell Webcam\Dell WebcamCentral\WebcamDell2.exe

C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

C:\Program Files (x86)\Garmin\LifetimeUpdater\GarminLifetime.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe

C:\Users\colinfoot\Desktop\HijackThis.exe



R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Default_Page_URL = http://g.uk.msn.com/USCON/2

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchPage = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,StartPage = http://www.bbc.co.uk/news/

R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchPage = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,StartPage = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\InternetExplorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\InternetExplorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,LocalPage = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\InternetExplorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub -{18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Search Helper -{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files(x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Java(tm) Plug-In SSV Helper -{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files(x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper -{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\CommonFiles\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper -{AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_32.dll

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9}- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: (no name) -{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

O3 - Toolbar: Google Toolbar -{2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files(x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"

O4 - HKLM\..\Run: [Dell Webcam Central] "C:\ProgramFiles (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files(x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files(x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"

O4 - HKLM\..\Run: [Garmin Lifetime Updater] C:\Program Files(x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\ProgramFiles (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [swg] "C:\Program Files(x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files(x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [Rzkconrx] rundll32"C:\Users\colinfoot\AppData\Roaming\mlangb.dll",Ekdre

O4 - .DEFAULT User Startup: Dell Dock First Run.lnk =C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')

O4 - Startup: Dell Dock.lnk = C:\ProgramFiles\Dell\DellDock\DellDock.exe

O8 - Extra context menu item: E&xport to Microsoft Excel- res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... -res://C:\Program Files (x86)\Google\GoogleToolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004- {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\WindowsLive\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\WindowsLive\Writer\WindowsLiveWriterShortcuts.dll,-1003 -{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\WindowsLive\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote -{2670000A-7350-4f3c-8081-5663EE0C6C49} -C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote -{2670000A-7350-4f3c-8081-5663EE0C6C49} -C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll

O9 - Extra button: Research -{92780B25-18CC-41C8-B9BE-3C9C571A8263} -C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files(x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files(x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Acceleratedgraphics

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTimePlugin Control) -http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (ShockwaveFlash Object) -http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: wlpg -{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\WindowsLive\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Flash Player Update Service(AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated -C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea RT Filters Service (AERTFilters) -Andrea Electronics Corporation - C:\ProgramFiles\Realtek\Audio\HDA\AERTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) -Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Dock Login Service (DockLoginService) -Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS)- Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax)- Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update Service (gupdate) (gupdate) -Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) -Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google -C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner -C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel(R) Management and Security ApplicationLocal Management Service (LMS) - Intel Corporation - C:\Program Files(x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner -C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102(Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300(ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (filemissing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2(RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs)- Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3(SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1(Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101(sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: TurboBoost - Intel(R) Corporation -C:\Program Files\Intel\TurboBoost\TurboBoost.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101(UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel(R) Management & SecurityApplication User Notification Service (UNS) - Intel Corporation - C:\ProgramFiles (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003(VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) -Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) -Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601(WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (filemissing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine)- Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) -Unknown owner - C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110(wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (filemissing)

O23 - Service: Windows Media Player Network Sharing Service(WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows MediaPlayer\wmpnetwk.exe (file missing)



--

End of file - 10314 bytes





DDS (Ver_2012-11-20.01) - NTFS_AMD64

Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2

Run by colinfoot at 10:34:17 on 2013-01-08

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3893.2298 [GMT0:00]

.

AV: Microsoft Security Essentials *Enabled/Updated*{B140BF4E-23BB-4198-90AB-A51A4C60A69C}

SP: Microsoft Security Essentials *Enabled/Updated*{0A215EAA-0581-4E16-AA1B-9E6837E7EC21}

SP: Windows Defender *Disabled/Outdated*{D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Program Files\Microsoft Security Client\MsMpEng.exe

C:\Windows\System32\svchost.exe -kLocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -kLocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\Dell\DellDock\DockLogin.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE

C:\Windows\system32\WLANExt.exe

C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

C:\Windows\system32\svchost.exe -kLocalServiceAndNoImpersonation

C:\Program Files (x86)\Intel\Intel(R) Management EngineComponents\LMS\LMS.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\WindowsLive\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\WindowsLive\WLIDSvcM.exe

C:\Program Files\Microsoft Security Client\NisSrv.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\taskhost.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe

C:\Program Files\DellTPad\Apoint.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Dell\QuickSet\quickset.exe

C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE

C:\Windows\system32\igfxsrvc.exe

C:\Program Files(x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\Dell\DellDock\DellDock.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe

C:\Program Files (x86)\Dell Webcam\Dell WebcamCentral\WebcamDell2.exe

C:\Program Files\DellTPad\ApMsgFwd.exe

C:\Program Files\DellTPad\Apntex.exe

C:\Program Files\DellTPad\HidFind.exe

C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

C:\Program Files (x86)\Garmin\LifetimeUpdater\GarminLifetime.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe

C:\Windows\system32\svchost.exe -k SDRSVC

C:\Program Files (x86)\Intel\Intel(R) Management EngineComponents\UNS\UNS.exe

C:\Windows\system32\taskeng.exe

C:\Windows\System32\jusched.exe

C:\Windows\sysWOW64\wbem\wmiprvse.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\SysWOW64\NOTEPAD.EXE

C:\Windows\splwow64.exe

C:\Program Files\Microsoft Security Client\MpCmdRun.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.bbc.co.uk/news/

mWinlogon: Userinit = userinit.exe

BHO: Adobe PDF Link Helper:{18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SearchHelper\SEPsearchhelperie.dll

BHO: Java(tm) Plug-In SSV Helper:{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files(x86)\Java\jre7\bin\ssv.dll

BHO: Windows Live ID Sign-in Helper:{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\CommonFiles\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper:{AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_32.dll

BHO: Java(tm) Plug-In 2 SSV Helper:{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files(x86)\Java\jre7\bin\jp2ssv.dll

TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} -C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} -C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

uRun: [swg] "C:\Program Files(x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

uRun: [msnmsgr] "C:\Program Files (x86)\WindowsLive\Messenger\msnmsgr.exe" /background

uRun: [Rzkconrx] rundll32"C:\Users\colinfoot\AppData\Roaming\mlangb.dll",Ekdre

mRun: [PDVDDXSrv] "C:\Program Files(x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"

mRun: [Dell Webcam Central] "C:\Program Files(x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

mRun: [DellSupportCenter] "C:\Program Files (x86)\DellSupport Center\bin\sprtcmd.exe" /P DellSupportCenter

mRun: [Desktop Disc Tool] "C:\Program Files(x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"

mRun: [Garmin Lifetime Updater] C:\Program Files(x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized

mRun: [SunJavaUpdateSched] "C:\Program Files(x86)\Common Files\Java\Java Update\jusched.exe"

StartupFolder: C:\Users\COLINF~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK- C:\Program Files\Dell\DellDock\DellDock.exe

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: E&xport to Microsoft Excel -C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000

IE: Google Sidewiki... - C:\Program Files(x86)\Google\GoogleToolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} -{5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\WindowsLive\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} -{48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\MicrosoftOffice\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} -{FF059E31-CC5A-4E2E-BF3B-96E929D65503}

DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} -hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab

DPF: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab

DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} -hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706} :DHCPNameServer = 192.168.1.1

TCP:Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706}\358627567737265727970234F66666565686F6573756: DHCPNameServer = 192.168.1.254

TCP:Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706}\37568617 : DHCPNameServer =217.65.146.98 82.203.0.2

TCP: Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706}\458656023427561647966756023547574696F6: DHCPNameServer = 192.168.0.1

TCP: Interfaces\{F0859355-4E81-421A-A5E5-29404C16BB34} :DHCPNameServer = 192.168.1.1

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} -C:\Program Files (x86)\Windows Live\PhotoGallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

x64-BHO: Windows Live ID Sign-in Helper:{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\CommonFiles\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-BHO: Google Toolbar Helper:{AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_64.dll

x64-BHO: Java(tm) Plug-In 2 SSV Helper:{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

x64-TB: Google Toolbar:{2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_64.dll

x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe

x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe-s

x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe

x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

x64-Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe

x64-Run: [Broadcom Wireless Manager UI] C:\ProgramFiles\Dell\Dell Wireless WLAN Card\WLTRAY.exe

x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files(x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

x64-Run: [MSC] "C:\Program Files\Microsoft SecurityClient\msseces.exe" -hide -runkey

x64-DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} -<orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-SSODL: WebCheck - <orphaned>

.

============= SERVICES / DRIVERS ===============

.

R0 MpFilter;Microsoft Malware ProtectionDriver;C:\Windows\System32\drivers\MpFilter.sys [2012-8-30 228768]

R0PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-9-17 55280]

R2 AERTFilters;Andrea RT Filters Service;C:\ProgramFiles\Realtek\Audio\HDA\AERTSr64.exe [2009-10-9 92160]

R2 DockLoginService;Dock Login Service;C:\ProgramFiles\Dell\DellDock\DockLogin.exe [2009-6-9 155648]

R2 NisDrv;Microsoft Network InspectionSystem;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-8-30 128456]

R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys[2009-11-2 13784]

R2 UNS;Intel(R) Management & Security Application UserNotification Service;C:\Program Files (x86)\Intel\Intel(R) Management EngineComponents\UNS\UNS.exe [2010-4-1 2320920]

R3 CtClsFlt;Creative Camera Class Upper FilterDriver;C:\Windows\System32\drivers\CtClsFlt.sys [2010-4-1 172704]

R3 HECIx64;Intel(R) Management EngineInterface;C:\Windows\System32\drivers\HECIx64.sys [2009-9-17 56344]

R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys[2009-10-26 151936]

R3 IntcDAud;Intel(R) DisplayAudio;C:\Windows\System32\drivers\IntcDAud.sys [2009-9-26 233984]

R3 NisSrv;Microsoft Network Inspection;C:\ProgramFiles\Microsoft Security Client\NisSrv.exe [2012-9-12 368896]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys[2009-8-20 239616]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET FrameworkNGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe[2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET FrameworkNGENv4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe[2010-3-18 138576]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB CardReader;C:\Windows\System32\drivers\RtsUStor.sys [2009-7-17 220672]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys[2011-6-9 59392]

S3 TurboBoost;TurboBoost;C:\ProgramFiles\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]

S3 WatAdminSvc;Windows Activation TechnologiesService;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-8-5 1255736]

.

=============== Created Last 30 ================

.

2013-01-08 05:53:17 -------- d-----w- C:\Users\colinfoot\AppData\Local\{DE286C0D-D3B4-4889-B9F4-F04D2C6DA9B9}

2013-01-07 22:48:07 -------- d-----w- C:\Users\colinfoot\AppData\Local\{839AD455-FA2A-4DB7-97B8-D3BBFE1211DD}

2013-01-07 22:33:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{3A9C798C-5E36-4001-84F2-A9EF0C2BC69B}

2013-01-07 14:59:46 972264 ----a-w- C:\ProgramData\Microsoft\MicrosoftAntimalware\Definition Updates\{A99C8876-0BA2-4C91-9F89-E1378B774BB4}\gapaengine.dll

2013-01-07 14:59:42 9125352 ----a-w- C:\ProgramData\Microsoft\MicrosoftAntimalware\DefinitionUpdates\{B2274CE7-E91E-40F2-9007-E49A2B261866}\mpengine.dll

2013-01-07 14:49:59 -------- d-----w- C:\ProgramFiles (x86)\Microsoft Security Client

2013-01-07 14:49:55 -------- d-----w- C:\ProgramFiles\Microsoft Security Client

2013-01-07 06:21:49 -------- d-----w- C:\Users\colinfoot\AppData\Local\{D9FB9DC9-0D36-4817-9C75-969DDB1E84F1}

2013-01-06 10:29:41 -------- d-----w- C:\Users\colinfoot\AppData\Local\{FEE2D7DC-17EB-429C-BBDF-0BF472FC5E5D}

2013-01-05 20:40:25 118784 --sha-r- C:\Users\colinfoot\AppData\Roaming\mlangb.dll

2013-01-05 17:47:14 -------- d-----w- C:\Users\colinfoot\AppData\Local\{1C710112-80AB-4307-9A16-D92FA9702C10}

2013-01-04 13:40:08 -------- d-----w- C:\Users\colinfoot\AppData\Local\{522FE25D-E8FB-455C-8816-F612E5891D77}

2013-01-04 12:50:10 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F24D0963-A1E9-4BA2-9E3D-F60C52A7937A}

2013-01-03 21:37:32 -------- d-----w- C:\Users\colinfoot\AppData\Local\{62560E69-4FBF-4BBB-B6CF-7B28986A0AA9}

2013-01-03 15:46:19 -------- d-----w- C:\Users\colinfoot\AppData\Local\{5EA2685A-ACEA-4BDD-91F4-0D556F853678}

2013-01-03 06:25:46 -------- d-----w- C:\Users\colinfoot\AppData\Local\{9143EB38-AB6D-46AD-84FC-D76299F60C76}

2013-01-02 11:20:13 -------- d-----w- C:\Users\colinfoot\AppData\Local\{A3A3CA63-5329-458E-B700-4C7C539F7D1C}

2013-01-01 11:04:28 -------- d-----w- C:\Users\colinfoot\AppData\Local\{62B37EE0-01CE-4C4E-BAF3-7B745B860197}

2012-12-31 09:32:01 -------- d-----w- C:\Users\colinfoot\AppData\Local\{62971C45-CEE4-413A-B261-96528E8BF770}

2012-12-30 11:50:43 -------- d-----w- C:\Users\colinfoot\AppData\Local\{AEB60FC7-0CB9-4A28-8732-3937AE1FB305}

2012-12-29 22:10:48 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B5D2924B-0A63-4BC9-94BD-19D5310A8DA3}

2012-12-29 06:47:03 -------- d-----w- C:\Users\colinfoot\AppData\Local\{557FD7DF-A145-4705-88DD-9C5DD11BE9BA}

2012-12-28 06:59:35 -------- d-----w- C:\Users\colinfoot\AppData\Local\{07C077C2-2A7A-4BF0-B6D5-71FA65979598}

2012-12-27 13:07:06 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F0A91423-4A2B-4618-A43E-BC22E154B9E4}

2012-12-26 12:32:38 -------- d-----w- C:\Users\colinfoot\AppData\Local\{2331B904-2351-48D0-AC9D-2C569031C644}

2012-12-25 21:16:05 -------- d-----w- C:\Users\colinfoot\AppData\Local\{765C5505-96E6-4855-BF02-12AD991952B3}

2012-12-25 06:38:40 -------- d-----w- C:\Users\colinfoot\AppData\Local\{5258AEF5-15D3-4F41-A2AA-89C069895C57}

2012-12-24 19:18:12 -------- d-----w- C:\Users\colinfoot\AppData\Local\{80838728-678D-4389-AEDB-518C8FDF2705}

2012-12-24 06:27:13 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F41B8D14-1D36-4EB7-9B40-1A6B0E2108DA}

2012-12-23 10:30:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F6588CBE-7AAC-4F91-A159-DECC4FB8D7A2}

2012-12-22 07:48:58 -------- d-----w- C:\Users\colinfoot\AppData\Local\{6DFDC068-B2BB-485D-882D-B17EFC476865}

2012-12-21 12:44:07 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll

2012-12-21 12:44:06 46080 ----a-w- C:\Windows\System32\atmlib.dll

2012-12-21 12:44:06 367616 ----a-w- C:\Windows\System32\atmfd.dll

2012-12-21 12:44:06 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll

2012-12-21 11:45:18 -------- d-----w- C:\Users\colinfoot\AppData\Local\{DD69670F-8E16-450D-87C3-06BB9F3EF773}

2012-12-20 18:51:46 -------- d-----w- C:\Users\colinfoot\AppData\Local\{9B202130-A177-4942-BD4C-1AA5A6D78631}

2012-12-20 16:00:33 -------- d-----w- C:\Users\colinfoot\AppData\Local\{9EFF3074-46C3-403F-968E-8D96EA2D2365}

2012-12-19 17:51:17 -------- d-----w- C:\Users\colinfoot\AppData\Local\{803051D2-B536-42AA-ACAF-79C074B02653}

2012-12-19 05:45:49 -------- d-----w- C:\Users\colinfoot\AppData\Local\{1B508E28-D50C-4802-AC60-645E4CD521B4}

2012-12-18 12:41:26 -------- d-----w- C:\Users\colinfoot\AppData\Local\{7D23B033-488D-463A-95D7-445AD9C8FC72}

2012-12-17 21:22:14 -------- d-----w- C:\Users\colinfoot\AppData\Local\{6B5B75D8-9B0C-4540-A7BB-C3E412B56643}

2012-12-17 05:48:17 -------- d-----w- C:\Users\colinfoot\AppData\Local\{D8B9A854-7A97-49BC-9177-F4F893EC8A8E}

2012-12-16 10:59:22 -------- d-----w- C:\Users\colinfoot\AppData\Local\{E186B20D-40F3-4B0D-AA3F-C8491A6E8F37}

2012-12-16 09:17:34 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B8560197-A5C4-460B-B2F7-F403A8C51CBD}

2012-12-15 09:52:46 -------- d-----w- C:\Users\colinfoot\AppData\Local\{A108E7CD-112D-4020-946D-63099A464FAB}

2012-12-14 10:37:29 -------- d-----w- C:\Users\colinfoot\AppData\Local\{3A103120-27A8-40DD-8205-FD9169A2C191}

2012-12-13 19:17:28 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B1FA9967-56A9-49E0-AFDE-613CEE574FBE}

2012-12-13 07:01:40 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B37578B9-1D0D-40E8-803E-B187689CD608}

2012-12-13 06:52:01 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2012-12-13 06:52:01 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2012-12-13 06:52:00 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll

2012-12-13 06:52:00 304640 ----a-w- C:\ProgramFiles\Internet Explorer\IEShims.dll

2012-12-13 06:52:00 182816 ----a-w- C:\ProgramFiles\Internet Explorer\sqmapi.dll

2012-12-13 06:52:00 149552 ----a-w- C:\ProgramFiles (x86)\Internet Explorer\sqmapi.dll

2012-12-12 14:52:05 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2012-12-12 14:52:05 2048 ----a-w- C:\Windows\System32\tzres.dll

2012-12-12 14:52:00 3149824 ----a-w- C:\Windows\System32\win32k.sys

2012-12-12 14:49:15 478208 ----a-w- C:\Windows\System32\dpnet.dll

2012-12-12 14:49:15 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll

2012-12-12 10:23:28 -------- d-----w- C:\Users\colinfoot\AppData\Local\{108A4D00-C421-4E93-88D8-4DA1A0557CB6}

2012-12-12 09:44:30 -------- d-----w- C:\Users\colinfoot\AppData\Local\{EC898779-79DD-4D5D-AB3F-AB79C5EF4AF3}

2012-12-12 08:03:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{5928E0D9-5CC3-4732-98A7-D3F5F8869F89}

2012-12-11 13:25:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{0F69DAD6-9EAE-4984-90BF-3148E48E722E}

2012-12-10 22:21:21 -------- d-----w- C:\Users\colinfoot\AppData\Local\{52EE98A3-E6A2-4828-9A07-C72531179E3B}

2012-12-10 09:19:03 -------- d-----w- C:\Users\colinfoot\AppData\Local\{1C143124-9470-493F-9A18-FA664D2D274C}

2012-12-09 20:47:18 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F2EF1F16-2992-4D54-BA54-91DB59D78E9B}

.

==================== Find3M ====================

.

2012-12-12 23:15:19 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-12-12 23:15:19 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-11-14 06:11:44 2312704 ----a-w- C:\Windows\System32\jscript9.dll

2012-11-14 06:04:11 1392128 ----a-w- C:\Windows\System32\wininet.dll

2012-11-14 06:02:49 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl

2012-11-14 05:57:46 599040 ----a-w- C:\Windows\System32\vbscript.dll

2012-11-14 05:57:35 173056 ----a-w- C:\Windows\System32\ieUnatt.exe

2012-11-14 02:09:22 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll

2012-11-14 01:58:15 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2012-11-14 01:57:37 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll

2012-11-14 01:49:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2012-10-16 08:38:37 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll

2012-10-16 08:38:34 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll

2012-10-16 07:39:52 561664 ----a-w- C:\Windows\apppatch\AcLayers.dll

.

============= FINISH: 10:34:26.28 ===============



.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume2

Install Date: 03/08/2010 16:37:33

System Uptime: 08/01/2013 09:58:09 (1 hours ago)

.

Motherboard: Dell Inc. | | 0TKV96

Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz | U2E1 | 2267/133mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 59 GiB total, 7.531 GiB free.

D: is FIXED (NTFS) - 397 GiB total, 349.353 GiB free.

E: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: Microsoft 6to4 Adapter

Device ID: ROOT\*6TO4MP\0000

Manufacturer: Microsoft

Name: Microsoft 6to4 Adapter

PNP Device ID: ROOT\*6TO4MP\0000

Service: tunnel

.

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: Microsoft ISATAP Adapter

Device ID: ROOT\*ISATAP\0000

Manufacturer: Microsoft

Name: Microsoft ISATAP Adapter

PNP Device ID: ROOT\*ISATAP\0000

Service: tunnel

.

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: Microsoft Teredo Tunneling Adapter

Device ID: ROOT\*TEREDO\0000

Manufacturer: Microsoft

Name: Teredo Tunneling Pseudo-Interface

PNP Device ID: ROOT\*TEREDO\0000

Service: tunnel

.

==== System Restore Points ===================

.

RP425: 07/01/2013 15:13:13 - Installed Java(TM) 6 Update 38

.

==== Installed Programs ======================

.

Update for MicrosoftOffice 2007 (KB2508958)

Adobe AIR

Adobe Community Help

Adobe Flash Player 11 ActiveX

Adobe Media Player

Adobe Photoshop Lightroom 3.2 64-bit

Adobe Reader 9.5.2

Advanced Audio FX Engine

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

Compatibility Pack for the 2007 Office system

D3DX10

Dell Dock

Dell Edoc Viewer

Dell Touchpad

Dell Webcam Central

Dell Wireless WLAN Card Utility

Document Express DjVu Plug-in

Family Tree Maker 2005

FTMVistaUpdater

Garmin Communicator Plugin

Garmin Communicator Plugin x64

Garmin Lifetime Updater

Garmin USB Drivers

Garmin WebUpdater

Google Chrome

Google Earth Plug-in

Google Toolbar for Internet Explorer

Google Update Helper

Intel(R) Graphics Media Accelerator Driver

Intel(R) Management Engine Components

Intel(R) Turbo Boost Technology Monitor

Java 7 Update 9

Java Auto Updater

Java(TM) 6 Update 17 (64-bit)

Java(TM) 6 Update 38

Junk Mail filter update

Live! Cam Avatar Creator

Microsoft .NET Framework 4 Client Profile

Microsoft Application Error Reporting

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office File Validation Add-In

Microsoft Office Home and Student 2007

Microsoft Office Office 64-bit Components 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office Outlook Connector

Microsoft Office Outlook MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint Viewer 2007 (English)

Microsoft Office Professional 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared 64-bit MUI (English) 2007

Microsoft Office Shared 64-bit Setup Metadata MUI (English)2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Suite Activation Assistant

Microsoft Office Word MUI (English) 2007

Microsoft Search Enhancement Pack

Microsoft Security Client

Microsoft Security Essentials

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 ATL Update kb973923 - x648.0.50727.4053

Microsoft Visual C++ 2005 ATL Update kb973923 - x868.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2005 Redistributable (x64)

Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175

Microsoft Visual C++ 2008 ATL Update kb973924 - x649.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x649.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x869.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x649.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x869.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x869.0.30729.6161

Microsoft Works

Microsoft_VC80_ATL_x86

Microsoft_VC80_ATL_x86_x64

Microsoft_VC80_CRT_x86

Microsoft_VC80_CRT_x86_x64

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFC_x86_x64

Microsoft_VC80_MFCLOC_x86

Microsoft_VC80_MFCLOC_x86_x64

Microsoft_VC90_ATL_x86

Microsoft_VC90_ATL_x86_x64

Microsoft_VC90_CRT_x86

Microsoft_VC90_CRT_x86_x64

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFC_x86_x64

MSVCRT

MSVCRT_amd64

PowerDVD DX

Quickset64

Realtek High Definition Audio Driver

Roxio Burn

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2160841)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2446708)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2478663)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2518870)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2539636)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2572078)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2604121)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2633870)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656351)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656368)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656405)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2686827)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2729449)

Security Update for Microsoft .NET Framework 4 ClientProfile (KB2737019)

Security Update for Microsoft Office 2007 suites (KB2596615)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596672)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596744)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596754)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596785)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596856)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687311)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687441)32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2760416)32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2687307)32-Bit Edition

Security Update for Microsoft Office InfoPath 2007(KB2687440) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007(KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007(KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007(KB2596705) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2760421)32-Bit Edition

Uniblue SpeedUpMyPC

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile(KB2468871)

Update for Microsoft .NET Framework 4 Client Profile(KB2533523)

Update for Microsoft .NET Framework 4 Client Profile(KB2600217)

Update for Microsoft Office 2007 Help for Common Features(KB963673)

Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596848) 32-BitEdition

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Outlook 2007 (KB2687404) 32-BitEdition

Update for Microsoft Office Outlook 2007 Help (KB963677)

Update for Microsoft Office Outlook 2007 Junk Email Filter(KB2760573) 32-Bit Edition

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

Visual C++ 8.0 Runtime Setup Package (x64)

Visual Studio 2008 x64 Redistributables

Windows Driver Package - Garmin (grmnusb) GARMINDevices (06/03/2009 2.3.0.0)

Windows Live Communications Platform

Windows Live Essentials

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Language Selector

Windows Live Mail

Windows Live Messenger

Windows Live MIME IFilter

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

.

==== Event Viewer Messages From Past Week ========

.

07/01/2013 15:02:08, Error: Microsoft Antimalware[2001] - Microsoft Antimalware hasencountered an error trying to update signatures. NewSignature Version: Previous Signature Version:1.141.3310.0 Update Source: Microsoft Malware Protection Center UpdateStage: Install Source Path:http://go.microsoft.com/fwlink/?Lin...0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 SignatureType: AntiVirus Update Type: Full User: colinfoot-PC\Richard CurrentEngine Version: Previous Engine Version: 1.1.9002.0 Errorcode: 0x8050a003 Error description: This package does not containup-to-date definition files for this program. For more information, see Helpand Support.

07/01/2013 15:02:08, Error: Microsoft Antimalware[2001] - Microsoft Antimalware hasencountered an error trying to update signatures. NewSignature Version: Previous Signature Version:1.141.3310.0 Update Source: Microsoft Malware Protection Center UpdateStage: Install Source Path:http://go.microsoft.com/fwlink/?Lin...0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 SignatureType: AntiSpyware Update Type: Full User:colinfoot-PC\Richard Current Engine Version: PreviousEngine Version: 1.1.9002.0 Error code: 0x8050a003 Errordescription: This package does not contain up-to-date definition files for thisprogram. For more information, see Help and Support.

05/01/2013 17:29:27, Error: volsnap [36] - The shadow copies of volume C: were abortedbecause the shadow copy storage could not grow due to a user imposed limit.

01/01/2013 11:04:31, Error: Service Control Manager[7009] - A timeout was reached (30000milliseconds) while waiting for the Windows Search service to connect.

01/01/2013 11:04:31, Error: Service Control Manager[7000] - The Windows Search servicefailed to start due to the following error: The service did not respond to the start or control request in a timelyfashion.

01/01/2013 11:04:31, Error: Microsoft-Windows-DistributedCOM[10005] - DCOM got error"1053" attempting to start the service WSearch with arguments"" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

.

==== End Of File ===========================



Then running GMER Iget the error message “GMER has foundsystem modification caused by ROOTKIT activity”

But that screen is frozen even when nothing else is running




 

dvk01

Derek
Retired Moderator Retired Malware Specialist
Joined
Dec 14, 2002
Messages
56,452
OK I can see the problems

next step

Run tdss killer from http://support.kaspersky.com/viruses/solutions?qid=208280684

let it cure anything it fnds ( except SPTD.SYS or anything detected as UnsignedFile.Multi.Generic, which should be ignored) & then reboot

post back with its log

By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder.
Logs have names like: UtilityName.Version_Date_Time_log.txt.
E.g. C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt
 

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
Ran the TDS Killer but it said it found no threats having checked 413 objects.

but here is the log
12:58:18.0576 5004 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
12:58:18.0717 5004 ============================================================
12:58:18.0717 5004 Current date / time: 2013/01/08 12:58:18.0717
12:58:18.0717 5004 SystemInfo:
12:58:18.0717 5004
12:58:18.0717 5004 OS Version: 6.1.7601 ServicePack: 1.0
12:58:18.0717 5004 Product type: Workstation
12:58:18.0717 5004 ComputerName: COLINFOOT-PC
12:58:18.0717 5004 UserName: colinfoot
12:58:18.0717 5004 Windows directory: C:\Windows
12:58:18.0717 5004 System windows directory: C:\Windows
12:58:18.0717 5004 Running under WOW64
12:58:18.0717 5004 Processor architecture: Intel x64
12:58:18.0717 5004 Number of processors: 4
12:58:18.0717 5004 Page size: 0x1000
12:58:18.0717 5004 Boot type: Normal boot
12:58:18.0717 5004 ============================================================
12:58:24.0021 5004 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:58:24.0036 5004 ============================================================
12:58:24.0036 5004 \Device\Harddisk0\DR0:
12:58:24.0036 5004 MBR partitions:
12:58:24.0036 5004 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1388000
12:58:24.0036 5004 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13BA800, BlocksNum 0x7530000
12:58:24.0052 5004 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x88EB000, BlocksNum 0x31A9A800
12:58:24.0052 5004 ============================================================
12:58:24.0099 5004 C: <-> \Device\Harddisk0\DR0\Partition2
12:58:24.0286 5004 D: <-> \Device\Harddisk0\DR0\Partition3
12:58:24.0286 5004 ============================================================
12:58:24.0286 5004 Initialize success
12:58:24.0286 5004 ============================================================
12:59:08.0016 2948 ============================================================
12:59:08.0016 2948 Scan started
12:59:08.0016 2948 Mode: Manual;
12:59:08.0016 2948 ============================================================
12:59:09.0326 2948 ================ Scan system memory ========================
12:59:09.0326 2948 System memory - ok
12:59:09.0326 2948 ================ Scan services =============================
12:59:09.0466 2948 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:59:09.0466 2948 1394ohci - ok
12:59:09.0513 2948 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:59:09.0513 2948 ACPI - ok
12:59:09.0544 2948 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:59:09.0544 2948 AcpiPmi - ok
12:59:09.0669 2948 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:59:09.0685 2948 AdobeFlashPlayerUpdateSvc - ok
12:59:09.0747 2948 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:59:09.0747 2948 adp94xx - ok
12:59:09.0778 2948 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:59:09.0794 2948 adpahci - ok
12:59:09.0810 2948 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:59:09.0810 2948 adpu320 - ok
12:59:09.0841 2948 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:59:09.0841 2948 AeLookupSvc - ok
12:59:09.0903 2948 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
12:59:09.0903 2948 AERTFilters - ok
12:59:09.0950 2948 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:59:09.0966 2948 AFD - ok
12:59:10.0012 2948 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:59:10.0012 2948 agp440 - ok
12:59:10.0044 2948 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:59:10.0044 2948 ALG - ok
12:59:10.0059 2948 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:59:10.0059 2948 aliide - ok
12:59:10.0075 2948 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:59:10.0075 2948 amdide - ok
12:59:10.0122 2948 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:59:10.0122 2948 AmdK8 - ok
12:59:10.0137 2948 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:59:10.0137 2948 AmdPPM - ok
12:59:10.0153 2948 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:59:10.0153 2948 amdsata - ok
12:59:10.0184 2948 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:59:10.0184 2948 amdsbs - ok
12:59:10.0200 2948 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:59:10.0200 2948 amdxata - ok
12:59:10.0246 2948 [ 8B522286C8D6A20133D12225B7759596 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
12:59:10.0262 2948 ApfiltrService - ok
12:59:10.0293 2948 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:59:10.0309 2948 AppID - ok
12:59:10.0324 2948 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:59:10.0324 2948 AppIDSvc - ok
12:59:10.0356 2948 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:59:10.0356 2948 Appinfo - ok
12:59:10.0402 2948 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:59:10.0402 2948 arc - ok
12:59:10.0418 2948 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:59:10.0418 2948 arcsas - ok
12:59:10.0449 2948 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:59:10.0449 2948 AsyncMac - ok
12:59:10.0480 2948 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:59:10.0480 2948 atapi - ok
12:59:10.0543 2948 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:59:10.0558 2948 AudioEndpointBuilder - ok
12:59:10.0605 2948 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:59:10.0605 2948 AudioSrv - ok
12:59:10.0668 2948 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:59:10.0668 2948 AxInstSV - ok
12:59:10.0714 2948 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:59:10.0714 2948 b06bdrv - ok
12:59:10.0761 2948 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:59:10.0761 2948 b57nd60a - ok
12:59:10.0808 2948 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
12:59:10.0808 2948 BCM42RLY - ok
12:59:10.0917 2948 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
12:59:10.0917 2948 BCM43XX - ok
12:59:10.0964 2948 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:59:10.0964 2948 BDESVC - ok
12:59:10.0995 2948 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:59:10.0995 2948 Beep - ok
12:59:11.0073 2948 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:59:11.0089 2948 BFE - ok
12:59:11.0120 2948 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:59:11.0136 2948 BITS - ok
12:59:11.0167 2948 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:59:11.0167 2948 blbdrive - ok
12:59:11.0214 2948 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:59:11.0214 2948 bowser - ok
12:59:11.0245 2948 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:59:11.0245 2948 BrFiltLo - ok
12:59:11.0260 2948 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:59:11.0260 2948 BrFiltUp - ok
12:59:11.0307 2948 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:59:11.0307 2948 Browser - ok
12:59:11.0323 2948 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:59:11.0338 2948 Brserid - ok
12:59:11.0354 2948 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:59:11.0354 2948 BrSerWdm - ok
12:59:11.0370 2948 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:59:11.0370 2948 BrUsbMdm - ok
12:59:11.0370 2948 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:59:11.0385 2948 BrUsbSer - ok
12:59:11.0385 2948 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:59:11.0401 2948 BTHMODEM - ok
12:59:11.0432 2948 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:59:11.0432 2948 bthserv - ok
12:59:11.0448 2948 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:59:11.0463 2948 cdfs - ok
12:59:11.0510 2948 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:59:11.0510 2948 cdrom - ok
12:59:11.0557 2948 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:59:11.0557 2948 CertPropSvc - ok
12:59:11.0588 2948 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:59:11.0588 2948 circlass - ok
12:59:11.0619 2948 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:59:11.0619 2948 CLFS - ok
12:59:11.0682 2948 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:59:11.0682 2948 clr_optimization_v2.0.50727_32 - ok
12:59:11.0728 2948 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:59:11.0728 2948 clr_optimization_v2.0.50727_64 - ok
12:59:11.0822 2948 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:59:11.0884 2948 clr_optimization_v4.0.30319_32 - ok
12:59:11.0931 2948 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:59:11.0947 2948 clr_optimization_v4.0.30319_64 - ok
12:59:11.0978 2948 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:59:11.0978 2948 CmBatt - ok
12:59:12.0009 2948 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:59:12.0009 2948 cmdide - ok
12:59:12.0072 2948 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:59:12.0072 2948 CNG - ok
12:59:12.0087 2948 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:59:12.0087 2948 Compbatt - ok
12:59:12.0134 2948 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:59:12.0134 2948 CompositeBus - ok
12:59:12.0150 2948 COMSysApp - ok
12:59:12.0306 2948 cpuz132 - ok
12:59:12.0352 2948 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:59:12.0352 2948 crcdisk - ok
12:59:12.0399 2948 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:59:12.0399 2948 CryptSvc - ok
12:59:12.0462 2948 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
12:59:12.0462 2948 CtClsFlt - ok
12:59:12.0508 2948 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:59:12.0524 2948 DcomLaunch - ok
12:59:12.0571 2948 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:59:12.0571 2948 defragsvc - ok
12:59:12.0618 2948 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:59:12.0618 2948 DfsC - ok
12:59:12.0649 2948 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:59:12.0664 2948 Dhcp - ok
12:59:12.0680 2948 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:59:12.0696 2948 discache - ok
12:59:12.0727 2948 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:59:12.0727 2948 Disk - ok
12:59:12.0805 2948 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:59:12.0805 2948 Dnscache - ok
12:59:12.0867 2948 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
12:59:12.0883 2948 DockLoginService - ok
12:59:12.0914 2948 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:59:12.0930 2948 dot3svc - ok
12:59:12.0945 2948 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:59:12.0945 2948 DPS - ok
12:59:12.0992 2948 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:59:12.0992 2948 drmkaud - ok
12:59:13.0039 2948 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:59:13.0054 2948 DXGKrnl - ok
12:59:13.0086 2948 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:59:13.0101 2948 EapHost - ok
12:59:13.0195 2948 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:59:13.0288 2948 ebdrv - ok
12:59:13.0351 2948 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
12:59:13.0351 2948 EFS - ok
12:59:13.0398 2948 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:59:13.0429 2948 ehRecvr - ok
12:59:13.0460 2948 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:59:13.0460 2948 ehSched - ok
12:59:13.0507 2948 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:59:13.0522 2948 elxstor - ok
12:59:13.0554 2948 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:59:13.0569 2948 ErrDev - ok
12:59:13.0600 2948 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:59:13.0616 2948 EventSystem - ok
12:59:13.0647 2948 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:59:13.0647 2948 exfat - ok
12:59:13.0678 2948 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:59:13.0678 2948 fastfat - ok
12:59:13.0725 2948 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:59:13.0756 2948 Fax - ok
12:59:13.0772 2948 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:59:13.0772 2948 fdc - ok
12:59:13.0803 2948 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:59:13.0803 2948 fdPHost - ok
12:59:13.0819 2948 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:59:13.0819 2948 FDResPub - ok
12:59:13.0819 2948 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:59:13.0834 2948 FileInfo - ok
12:59:13.0834 2948 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:59:13.0850 2948 Filetrace - ok
12:59:13.0850 2948 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:59:13.0850 2948 flpydisk - ok
12:59:13.0881 2948 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:59:13.0881 2948 FltMgr - ok
12:59:13.0944 2948 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
12:59:13.0975 2948 FontCache - ok
12:59:14.0037 2948 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:59:14.0037 2948 FontCache3.0.0.0 - ok
12:59:14.0068 2948 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:59:14.0068 2948 FsDepends - ok
12:59:14.0115 2948 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:59:14.0115 2948 Fs_Rec - ok
12:59:14.0162 2948 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:59:14.0162 2948 fvevol - ok
12:59:14.0193 2948 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:59:14.0193 2948 gagp30kx - ok
12:59:14.0256 2948 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:59:14.0287 2948 gpsvc - ok
12:59:14.0396 2948 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:59:14.0396 2948 gupdate - ok
12:59:14.0443 2948 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:59:14.0458 2948 gupdatem - ok
12:59:14.0490 2948 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:59:14.0490 2948 gusvc - ok
12:59:14.0521 2948 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:59:14.0521 2948 hcw85cir - ok
12:59:14.0568 2948 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:59:14.0568 2948 HDAudBus - ok
12:59:14.0599 2948 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
12:59:14.0599 2948 HECIx64 - ok
12:59:14.0614 2948 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:59:14.0614 2948 HidBatt - ok
12:59:14.0630 2948 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:59:14.0630 2948 HidBth - ok
12:59:14.0661 2948 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:59:14.0661 2948 HidIr - ok
12:59:14.0692 2948 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:59:14.0692 2948 hidserv - ok
12:59:14.0755 2948 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
12:59:14.0755 2948 HidUsb - ok
12:59:14.0802 2948 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:59:14.0802 2948 hkmsvc - ok
12:59:14.0864 2948 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:59:14.0864 2948 HomeGroupListener - ok
12:59:14.0911 2948 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:59:14.0911 2948 HomeGroupProvider - ok
12:59:14.0958 2948 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:59:14.0958 2948 HpSAMD - ok
12:59:15.0004 2948 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:59:15.0036 2948 HTTP - ok
12:59:15.0067 2948 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:59:15.0067 2948 hwpolicy - ok
12:59:15.0098 2948 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:59:15.0098 2948 i8042prt - ok
12:59:15.0129 2948 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:59:15.0145 2948 iaStorV - ok
12:59:15.0207 2948 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:59:15.0238 2948 idsvc - ok
12:59:15.0426 2948 [ 0372C154226F7074CD150F475A4870A6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:59:15.0597 2948 igfx - ok
12:59:15.0660 2948 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:59:15.0660 2948 iirsp - ok
12:59:15.0706 2948 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
12:59:15.0738 2948 IKEEXT - ok
12:59:15.0769 2948 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
12:59:15.0769 2948 Impcd - ok
12:59:15.0847 2948 [ 2A7CF87BE453241FE0BAA1C8651E7AA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:59:15.0862 2948 IntcAzAudAddService - ok
12:59:15.0894 2948 [ 49072EDBC5C2F964917D1B585C90ED0A ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
12:59:15.0894 2948 IntcDAud - ok
12:59:15.0925 2948 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:59:15.0925 2948 intelide - ok
12:59:15.0956 2948 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:59:15.0956 2948 intelppm - ok
12:59:16.0003 2948 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:59:16.0003 2948 IPBusEnum - ok
12:59:16.0050 2948 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:59:16.0050 2948 IpFilterDriver - ok
12:59:16.0112 2948 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:59:16.0112 2948 iphlpsvc - ok
12:59:16.0159 2948 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:59:16.0159 2948 IPMIDRV - ok
12:59:16.0174 2948 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:59:16.0190 2948 IPNAT - ok
12:59:16.0206 2948 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:59:16.0221 2948 IRENUM - ok
12:59:16.0221 2948 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:59:16.0221 2948 isapnp - ok
12:59:16.0252 2948 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:59:16.0268 2948 iScsiPrt - ok
12:59:16.0284 2948 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:59:16.0284 2948 kbdclass - ok
12:59:16.0315 2948 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:59:16.0315 2948 kbdhid - ok
12:59:16.0346 2948 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
12:59:16.0346 2948 KeyIso - ok
12:59:16.0377 2948 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:59:16.0393 2948 KSecDD - ok
12:59:16.0408 2948 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:59:16.0408 2948 KSecPkg - ok
12:59:16.0440 2948 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:59:16.0440 2948 ksthunk - ok
12:59:16.0471 2948 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:59:16.0471 2948 KtmRm - ok
12:59:16.0533 2948 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:59:16.0533 2948 LanmanServer - ok
12:59:16.0580 2948 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:59:16.0580 2948 LanmanWorkstation - ok
12:59:16.0627 2948 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:59:16.0627 2948 lltdio - ok
12:59:16.0658 2948 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:59:16.0658 2948 lltdsvc - ok
12:59:16.0674 2948 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:59:16.0674 2948 lmhosts - ok
12:59:16.0736 2948 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:59:16.0752 2948 LMS - ok
12:59:16.0783 2948 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:59:16.0783 2948 LSI_FC - ok
12:59:16.0798 2948 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:59:16.0798 2948 LSI_SAS - ok
12:59:16.0814 2948 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:59:16.0830 2948 LSI_SAS2 - ok
12:59:16.0845 2948 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:59:16.0861 2948 LSI_SCSI - ok
12:59:16.0876 2948 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:59:16.0876 2948 luafv - ok
12:59:16.0923 2948 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:59:16.0923 2948 Mcx2Svc - ok
12:59:16.0939 2948 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:59:16.0939 2948 megasas - ok
12:59:16.0970 2948 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:59:16.0970 2948 MegaSR - ok
12:59:17.0001 2948 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:59:17.0001 2948 MMCSS - ok
12:59:17.0017 2948 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:59:17.0017 2948 Modem - ok
12:59:17.0048 2948 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:59:17.0048 2948 monitor - ok
12:59:17.0079 2948 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:59:17.0079 2948 mouclass - ok
12:59:17.0095 2948 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:59:17.0110 2948 mouhid - ok
12:59:17.0142 2948 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:59:17.0142 2948 mountmgr - ok
12:59:17.0220 2948 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
12:59:17.0220 2948 MpFilter - ok
12:59:17.0266 2948 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:59:17.0266 2948 mpio - ok
12:59:17.0298 2948 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:59:17.0298 2948 mpsdrv - ok
12:59:17.0344 2948 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:59:17.0376 2948 MpsSvc - ok
12:59:17.0422 2948 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:59:17.0422 2948 MRxDAV - ok
12:59:17.0469 2948 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:59:17.0469 2948 mrxsmb - ok
12:59:17.0516 2948 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:59:17.0516 2948 mrxsmb10 - ok
12:59:17.0532 2948 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:59:17.0532 2948 mrxsmb20 - ok
12:59:17.0563 2948 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:59:17.0563 2948 msahci - ok
12:59:17.0594 2948 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:59:17.0594 2948 msdsm - ok
12:59:17.0625 2948 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:59:17.0625 2948 MSDTC - ok
12:59:17.0672 2948 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:59:17.0672 2948 Msfs - ok
12:59:17.0688 2948 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:59:17.0703 2948 mshidkmdf - ok
12:59:17.0750 2948 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:59:17.0750 2948 msisadrv - ok
12:59:17.0766 2948 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:59:17.0766 2948 MSiSCSI - ok
12:59:17.0781 2948 msiserver - ok
12:59:17.0797 2948 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:59:17.0812 2948 MSKSSRV - ok
12:59:17.0906 2948 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
12:59:17.0906 2948 MsMpSvc - ok
12:59:17.0953 2948 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:59:17.0953 2948 MSPCLOCK - ok
12:59:17.0953 2948 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:59:17.0953 2948 MSPQM - ok
12:59:18.0000 2948 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:59:18.0015 2948 MsRPC - ok
12:59:18.0046 2948 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:59:18.0046 2948 mssmbios - ok
12:59:18.0062 2948 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:59:18.0062 2948 MSTEE - ok
12:59:18.0062 2948 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:59:18.0078 2948 MTConfig - ok
12:59:18.0093 2948 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:59:18.0093 2948 Mup - ok
12:59:18.0109 2948 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:59:18.0124 2948 napagent - ok
12:59:18.0171 2948 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:59:18.0171 2948 NativeWifiP - ok
12:59:18.0218 2948 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:59:18.0249 2948 NDIS - ok
12:59:18.0280 2948 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:59:18.0280 2948 NdisCap - ok
12:59:18.0327 2948 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:59:18.0327 2948 NdisTapi - ok
12:59:18.0358 2948 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:59:18.0358 2948 Ndisuio - ok
12:59:18.0390 2948 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:59:18.0390 2948 NdisWan - ok
12:59:18.0452 2948 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:59:18.0452 2948 NDProxy - ok
12:59:18.0468 2948 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:59:18.0468 2948 NetBIOS - ok
12:59:18.0499 2948 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:59:18.0514 2948 NetBT - ok
12:59:18.0530 2948 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
12:59:18.0530 2948 Netlogon - ok
12:59:18.0561 2948 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:59:18.0577 2948 Netman - ok
12:59:18.0592 2948 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:59:18.0592 2948 netprofm - ok
12:59:18.0624 2948 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:59:18.0624 2948 NetTcpPortSharing - ok
12:59:18.0670 2948 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:59:18.0670 2948 nfrd960 - ok
12:59:18.0748 2948 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:59:18.0748 2948 NisDrv - ok
12:59:18.0811 2948 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
12:59:18.0811 2948 NisSrv - ok
12:59:18.0873 2948 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:59:18.0889 2948 NlaSvc - ok
12:59:18.0904 2948 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:59:18.0904 2948 Npfs - ok
12:59:18.0936 2948 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:59:18.0936 2948 nsi - ok
12:59:18.0951 2948 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:59:18.0951 2948 nsiproxy - ok
12:59:19.0029 2948 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:59:19.0076 2948 Ntfs - ok
12:59:19.0092 2948 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:59:19.0092 2948 Null - ok
12:59:19.0138 2948 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:59:19.0138 2948 nvraid - ok
12:59:19.0154 2948 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:59:19.0154 2948 nvstor - ok
12:59:19.0201 2948 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:59:19.0201 2948 nv_agp - ok
12:59:19.0279 2948 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:59:19.0279 2948 odserv - ok
12:59:19.0310 2948 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:59:19.0310 2948 ohci1394 - ok
12:59:19.0341 2948 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:59:19.0341 2948 ose - ok
12:59:19.0388 2948 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:59:19.0388 2948 p2pimsvc - ok
12:59:19.0419 2948 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:59:19.0419 2948 p2psvc - ok
12:59:19.0450 2948 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:59:19.0450 2948 Parport - ok
12:59:19.0482 2948 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:59:19.0482 2948 partmgr - ok
12:59:19.0497 2948 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:59:19.0513 2948 PcaSvc - ok
12:59:19.0528 2948 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:59:19.0528 2948 pci - ok
12:59:19.0560 2948 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:59:19.0560 2948 pciide - ok
12:59:19.0575 2948 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:59:19.0575 2948 pcmcia - ok
12:59:19.0606 2948 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:59:19.0606 2948 pcw - ok
12:59:19.0638 2948 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:59:19.0653 2948 PEAUTH - ok
12:59:19.0731 2948 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:59:19.0731 2948 PerfHost - ok
12:59:19.0794 2948 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:59:19.0825 2948 pla - ok
12:59:19.0887 2948 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:59:19.0903 2948 PlugPlay - ok
12:59:19.0934 2948 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:59:19.0934 2948 PNRPAutoReg - ok
12:59:19.0950 2948 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:59:19.0965 2948 PNRPsvc - ok
12:59:20.0012 2948 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:59:20.0012 2948 PolicyAgent - ok
12:59:20.0043 2948 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:59:20.0059 2948 Power - ok
12:59:20.0090 2948 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:59:20.0090 2948 PptpMiniport - ok
12:59:20.0106 2948 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:59:20.0106 2948 Processor - ok
12:59:20.0152 2948 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:59:20.0152 2948 ProfSvc - ok
12:59:20.0168 2948 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:59:20.0168 2948 ProtectedStorage - ok
12:59:20.0215 2948 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:59:20.0215 2948 Psched - ok
12:59:20.0246 2948 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
12:59:20.0246 2948 PxHlpa64 - ok
12:59:20.0308 2948 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:59:20.0355 2948 ql2300 - ok
12:59:20.0371 2948 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:59:20.0371 2948 ql40xx - ok
12:59:20.0402 2948 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:59:20.0402 2948 QWAVE - ok
12:59:20.0418 2948 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:59:20.0418 2948 QWAVEdrv - ok
12:59:20.0433 2948 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:59:20.0433 2948 RasAcd - ok
12:59:20.0480 2948 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:59:20.0480 2948 RasAgileVpn - ok
12:59:20.0496 2948 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:59:20.0496 2948 RasAuto - ok
12:59:20.0527 2948 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:59:20.0542 2948 Rasl2tp - ok
12:59:20.0558 2948 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:59:20.0574 2948 RasMan - ok
12:59:20.0589 2948 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:59:20.0605 2948 RasPppoe - ok
12:59:20.0620 2948 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:59:20.0620 2948 RasSstp - ok
12:59:20.0636 2948 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:59:20.0652 2948 rdbss - ok
12:59:20.0667 2948 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:59:20.0667 2948 rdpbus - ok
12:59:20.0683 2948 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:59:20.0683 2948 RDPCDD - ok
12:59:20.0714 2948 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:59:20.0714 2948 RDPENCDD - ok
12:59:20.0730 2948 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:59:20.0730 2948 RDPREFMP - ok
12:59:20.0761 2948 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:59:20.0776 2948 RDPWD - ok
12:59:20.0808 2948 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:59:20.0823 2948 rdyboost - ok
12:59:20.0854 2948 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:59:20.0854 2948 RemoteAccess - ok
12:59:20.0886 2948 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:59:20.0886 2948 RemoteRegistry - ok
12:59:20.0901 2948 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:59:20.0901 2948 RpcEptMapper - ok
12:59:20.0932 2948 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:59:20.0932 2948 RpcLocator - ok
12:59:20.0964 2948 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:59:20.0964 2948 RpcSs - ok
12:59:21.0010 2948 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:59:21.0010 2948 rspndr - ok
12:59:21.0042 2948 [ 502B316947EA887CDDD325D4745EB7D0 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
12:59:21.0042 2948 RSUSBSTOR - ok
12:59:21.0088 2948 [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:59:21.0088 2948 RTL8167 - ok
12:59:21.0104 2948 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
12:59:21.0104 2948 SamSs - ok
12:59:21.0135 2948 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:59:21.0135 2948 sbp2port - ok
12:59:21.0166 2948 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:59:21.0182 2948 SCardSvr - ok
12:59:21.0198 2948 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:59:21.0198 2948 scfilter - ok
12:59:21.0260 2948 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:59:21.0291 2948 Schedule - ok
12:59:21.0338 2948 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:59:21.0338 2948 SCPolicySvc - ok
12:59:21.0369 2948 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:59:21.0369 2948 SDRSVC - ok
12:59:21.0432 2948 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
12:59:21.0447 2948 SeaPort - ok
12:59:21.0463 2948 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:59:21.0463 2948 secdrv - ok
12:59:21.0494 2948 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:59:21.0494 2948 seclogon - ok
12:59:21.0525 2948 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
12:59:21.0525 2948 SENS - ok
12:59:21.0556 2948 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:59:21.0556 2948 SensrSvc - ok
12:59:21.0572 2948 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:59:21.0572 2948 Serenum - ok
12:59:21.0603 2948 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:59:21.0603 2948 Serial - ok
12:59:21.0666 2948 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:59:21.0666 2948 sermouse - ok
12:59:21.0712 2948 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:59:21.0712 2948 SessionEnv - ok
12:59:21.0744 2948 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:59:21.0759 2948 sffdisk - ok
12:59:21.0775 2948 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:59:21.0775 2948 sffp_mmc - ok
12:59:21.0790 2948 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:59:21.0806 2948 sffp_sd - ok
12:59:21.0837 2948 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:59:21.0853 2948 sfloppy - ok
12:59:21.0884 2948 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:59:21.0900 2948 SharedAccess - ok
12:59:21.0946 2948 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:59:21.0946 2948 ShellHWDetection - ok
12:59:21.0978 2948 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:59:21.0978 2948 SiSRaid2 - ok
12:59:21.0993 2948 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:59:21.0993 2948 SiSRaid4 - ok
12:59:22.0024 2948 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:59:22.0040 2948 Smb - ok
12:59:22.0087 2948 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:59:22.0087 2948 SNMPTRAP - ok
12:59:22.0102 2948 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:59:22.0102 2948 spldr - ok
12:59:22.0134 2948 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:59:22.0165 2948 Spooler - ok
12:59:22.0274 2948 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:59:22.0368 2948 sppsvc - ok
12:59:22.0399 2948 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:59:22.0414 2948 sppuinotify - ok
12:59:22.0446 2948 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:59:22.0461 2948 srv - ok
12:59:22.0477 2948 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:59:22.0492 2948 srv2 - ok
12:59:22.0508 2948 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:59:22.0508 2948 srvnet - ok
12:59:22.0539 2948 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:59:22.0539 2948 SSDPSRV - ok
12:59:22.0555 2948 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:59:22.0570 2948 SstpSvc - ok
12:59:22.0586 2948 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:59:22.0586 2948 stexstor - ok
12:59:22.0633 2948 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:59:22.0648 2948 stisvc - ok
12:59:22.0680 2948 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:59:22.0680 2948 swenum - ok
12:59:22.0726 2948 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:59:22.0726 2948 swprv - ok
12:59:22.0804 2948 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:59:22.0867 2948 SysMain - ok
12:59:22.0898 2948 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:59:22.0914 2948 TabletInputService - ok
12:59:22.0929 2948 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:59:22.0945 2948 TapiSrv - ok
12:59:22.0976 2948 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:59:22.0976 2948 TBS - ok
12:59:23.0054 2948 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:59:23.0132 2948 Tcpip - ok
12:59:23.0194 2948 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:59:23.0210 2948 TCPIP6 - ok
12:59:23.0241 2948 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:59:23.0257 2948 tcpipreg - ok
12:59:23.0272 2948 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:59:23.0272 2948 TDPIPE - ok
12:59:23.0319 2948 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:59:23.0319 2948 TDTCP - ok
12:59:23.0350 2948 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:59:23.0366 2948 tdx - ok
12:59:23.0382 2948 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:59:23.0382 2948 TermDD - ok
12:59:23.0397 2948 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:59:23.0428 2948 TermService - ok
12:59:23.0460 2948 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:59:23.0460 2948 Themes - ok
12:59:23.0475 2948 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:59:23.0475 2948 THREADORDER - ok
12:59:23.0491 2948 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:59:23.0491 2948 TrkWks - ok
12:59:23.0569 2948 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:59:23.0569 2948 TrustedInstaller - ok
12:59:23.0600 2948 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:59:23.0600 2948 tssecsrv - ok
12:59:23.0662 2948 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:59:23.0662 2948 TsUsbFlt - ok
12:59:23.0709 2948 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:59:23.0709 2948 tunnel - ok
12:59:23.0740 2948 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
12:59:23.0772 2948 TurboB - ok
12:59:23.0787 2948 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
12:59:23.0803 2948 TurboBoost - ok
12:59:23.0834 2948 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:59:23.0834 2948 uagp35 - ok
12:59:23.0865 2948 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:59:23.0881 2948 udfs - ok
12:59:23.0912 2948 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:59:23.0912 2948 UI0Detect - ok
12:59:23.0943 2948 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:59:23.0943 2948 uliagpkx - ok
12:59:23.0990 2948 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
12:59:23.0990 2948 umbus - ok
12:59:24.0021 2948 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:59:24.0021 2948 UmPass - ok
12:59:24.0130 2948 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:59:24.0193 2948 UNS - ok
12:59:24.0240 2948 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:59:24.0240 2948 upnphost - ok
12:59:24.0286 2948 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:59:24.0286 2948 usbccgp - ok
12:59:24.0318 2948 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:59:24.0318 2948 usbcir - ok
12:59:24.0333 2948 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
12:59:24.0333 2948 usbehci - ok
12:59:24.0364 2948 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:59:24.0380 2948 usbhub - ok
12:59:24.0380 2948 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:59:24.0396 2948 usbohci - ok
12:59:24.0427 2948 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:59:24.0427 2948 usbprint - ok
12:59:24.0442 2948 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
12:59:24.0458 2948 usbscan - ok
12:59:24.0474 2948 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:59:24.0474 2948 USBSTOR - ok
12:59:24.0489 2948 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:59:24.0489 2948 usbuhci - ok
12:59:24.0520 2948 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:59:24.0536 2948 usbvideo - ok
12:59:24.0567 2948 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:59:24.0567 2948 UxSms - ok
12:59:24.0583 2948 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
12:59:24.0583 2948 VaultSvc - ok
12:59:24.0630 2948 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:59:24.0630 2948 vdrvroot - ok
12:59:24.0692 2948 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:59:24.0708 2948 vds - ok
12:59:24.0754 2948 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:59:24.0754 2948 vga - ok
12:59:24.0770 2948 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:59:24.0770 2948 VgaSave - ok
12:59:24.0817 2948 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:59:24.0817 2948 vhdmp - ok
12:59:24.0848 2948 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:59:24.0848 2948 viaide - ok
12:59:24.0864 2948 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:59:24.0864 2948 volmgr - ok
12:59:24.0910 2948 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:59:24.0910 2948 volmgrx - ok
12:59:24.0942 2948 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:59:24.0942 2948 volsnap - ok
12:59:24.0973 2948 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:59:24.0973 2948 vsmraid - ok
12:59:25.0035 2948 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
12:59:25.0082 2948 VSS - ok
12:59:25.0098 2948 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:59:25.0098 2948 vwifibus - ok
12:59:25.0113 2948 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:59:25.0129 2948 vwififlt - ok
12:59:25.0144 2948 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
12:59:25.0144 2948 W32Time - ok
12:59:25.0160 2948 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:59:25.0160 2948 WacomPen - ok
12:59:25.0207 2948 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:59:25.0207 2948 WANARP - ok
12:59:25.0222 2948 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:59:25.0222 2948 Wanarpv6 - ok
12:59:25.0285 2948 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:59:25.0332 2948 WatAdminSvc - ok
12:59:25.0394 2948 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
12:59:25.0441 2948 wbengine - ok
12:59:25.0472 2948 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:59:25.0488 2948 WbioSrvc - ok
12:59:25.0519 2948 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:59:25.0519 2948 wcncsvc - ok
12:59:25.0550 2948 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:59:25.0550 2948 WcsPlugInService - ok
12:59:25.0628 2948 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:59:25.0644 2948 Wd - ok
12:59:25.0690 2948 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:59:25.0706 2948 Wdf01000 - ok
12:59:25.0737 2948 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:59:25.0753 2948 WdiServiceHost - ok
12:59:25.0753 2948 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:59:25.0753 2948 WdiSystemHost - ok
12:59:25.0800 2948 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
12:59:25.0800 2948 WebClient - ok
12:59:25.0815 2948 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:59:25.0831 2948 Wecsvc - ok
12:59:25.0846 2948 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:59:25.0846 2948 wercplsupport - ok
12:59:25.0862 2948 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
12:59:25.0862 2948 WerSvc - ok
12:59:25.0909 2948 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:59:25.0909 2948 WfpLwf - ok
12:59:25.0924 2948 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:59:25.0924 2948 WIMMount - ok
12:59:25.0956 2948 WinDefend - ok
12:59:25.0956 2948 WinHttpAutoProxySvc - ok
12:59:26.0018 2948 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:59:26.0018 2948 Winmgmt - ok
12:59:26.0096 2948 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
12:59:26.0158 2948 WinRM - ok
12:59:26.0252 2948 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:59:26.0252 2948 WinUsb - ok
12:59:26.0299 2948 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
12:59:26.0330 2948 Wlansvc - ok
12:59:26.0486 2948 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:59:26.0533 2948 wlidsvc - ok
12:59:26.0580 2948 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
12:59:26.0611 2948 wltrysvc - ok
12:59:26.0658 2948 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:59:26.0658 2948 WmiAcpi - ok
12:59:26.0689 2948 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:59:26.0689 2948 wmiApSrv - ok
12:59:26.0720 2948 WMPNetworkSvc - ok
12:59:26.0751 2948 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:59:26.0751 2948 WPCSvc - ok
12:59:26.0782 2948 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:59:26.0798 2948 WPDBusEnum - ok
12:59:26.0814 2948 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:59:26.0814 2948 ws2ifsl - ok
12:59:26.0829 2948 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
12:59:26.0845 2948 wscsvc - ok
12:59:26.0845 2948 WSearch - ok
12:59:26.0923 2948 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
12:59:27.0001 2948 wuauserv - ok
12:59:27.0032 2948 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:59:27.0032 2948 WudfPf - ok
12:59:27.0063 2948 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:59:27.0079 2948 WUDFRd - ok
12:59:27.0094 2948 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:59:27.0094 2948 wudfsvc - ok
12:59:27.0126 2948 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
12:59:27.0126 2948 WwanSvc - ok
12:59:27.0157 2948 ================ Scan global ===============================
12:59:27.0172 2948 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:59:27.0219 2948 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:59:27.0219 2948 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:59:27.0250 2948 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:59:27.0266 2948 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:59:27.0282 2948 [Global] - ok
12:59:27.0282 2948 ================ Scan MBR ==================================
12:59:27.0297 2948 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:59:27.0609 2948 \Device\Harddisk0\DR0 - ok
12:59:27.0609 2948 ================ Scan VBR ==================================
12:59:27.0625 2948 [ D6882CAB9992BEB45569AAEF134498EB ] \Device\Harddisk0\DR0\Partition1
12:59:27.0625 2948 \Device\Harddisk0\DR0\Partition1 - ok
12:59:27.0640 2948 [ 648A5E096581CCEF30C7BBC0DE874E61 ] \Device\Harddisk0\DR0\Partition2
12:59:27.0656 2948 \Device\Harddisk0\DR0\Partition2 - ok
12:59:27.0672 2948 [ 612C1C3F603E31ED72F90C7D8005A7A6 ] \Device\Harddisk0\DR0\Partition3
12:59:27.0672 2948 \Device\Harddisk0\DR0\Partition3 - ok
12:59:27.0672 2948 ============================================================
12:59:27.0672 2948 Scan finished
12:59:27.0672 2948 ============================================================
12:59:27.0687 3708 Detected object count: 0
12:59:27.0687 3708 Actual detected object count: 0
12:59:47.0577 0744 ============================================================
12:59:47.0577 0744 Scan started
12:59:47.0577 0744 Mode: Manual;
12:59:47.0577 0744 ============================================================
12:59:47.0858 0744 ================ Scan system memory ========================
12:59:47.0858 0744 System memory - ok
12:59:47.0874 0744 ================ Scan services =============================
12:59:48.0154 0744 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:59:48.0170 0744 1394ohci - ok
12:59:48.0201 0744 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:59:48.0217 0744 ACPI - ok
12:59:48.0264 0744 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:59:48.0264 0744 AcpiPmi - ok
12:59:48.0373 0744 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:59:48.0373 0744 AdobeFlashPlayerUpdateSvc - ok
12:59:48.0404 0744 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:59:48.0404 0744 adp94xx - ok
12:59:48.0420 0744 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:59:48.0435 0744 adpahci - ok
12:59:48.0451 0744 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:59:48.0451 0744 adpu320 - ok
12:59:48.0498 0744 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:59:48.0498 0744 AeLookupSvc - ok
12:59:48.0544 0744 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
12:59:48.0544 0744 AERTFilters - ok
12:59:48.0591 0744 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:59:48.0607 0744 AFD - ok
12:59:48.0638 0744 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:59:48.0638 0744 agp440 - ok
12:59:48.0654 0744 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:59:48.0654 0744 ALG - ok
12:59:48.0669 0744 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:59:48.0669 0744 aliide - ok
12:59:48.0685 0744 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:59:48.0685 0744 amdide - ok
12:59:48.0716 0744 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:59:48.0716 0744 AmdK8 - ok
12:59:48.0732 0744 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:59:48.0732 0744 AmdPPM - ok
12:59:48.0747 0744 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:59:48.0747 0744 amdsata - ok
12:59:48.0763 0744 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:59:48.0763 0744 amdsbs - ok
12:59:48.0778 0744 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:59:48.0778 0744 amdxata - ok
12:59:48.0810 0744 [ 8B522286C8D6A20133D12225B7759596 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
12:59:48.0810 0744 ApfiltrService - ok
12:59:48.0841 0744 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:59:48.0841 0744 AppID - ok
12:59:48.0872 0744 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:59:48.0872 0744 AppIDSvc - ok
12:59:48.0903 0744 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:59:48.0903 0744 Appinfo - ok
12:59:48.0934 0744 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:59:48.0934 0744 arc - ok
12:59:48.0950 0744 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:59:48.0950 0744 arcsas - ok
12:59:48.0966 0744 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:59:48.0966 0744 AsyncMac - ok
12:59:48.0997 0744 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:59:48.0997 0744 atapi - ok
12:59:49.0059 0744 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:59:49.0059 0744 AudioEndpointBuilder - ok
12:59:49.0090 0744 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:59:49.0090 0744 AudioSrv - ok
12:59:49.0122 0744 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:59:49.0122 0744 AxInstSV - ok
12:59:49.0168 0744 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:59:49.0168 0744 b06bdrv - ok
12:59:49.0184 0744 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:59:49.0200 0744 b57nd60a - ok
12:59:49.0215 0744 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
12:59:49.0215 0744 BCM42RLY - ok
12:59:49.0293 0744 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
12:59:49.0324 0744 BCM43XX - ok
12:59:49.0356 0744 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:59:49.0356 0744 BDESVC - ok
12:59:49.0387 0744 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:59:49.0387 0744 Beep - ok
12:59:49.0434 0744 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:59:49.0434 0744 BFE - ok
12:59:49.0496 0744 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:59:49.0496 0744 BITS - ok
12:59:49.0512 0744 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:59:49.0512 0744 blbdrive - ok
12:59:49.0558 0744 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:59:49.0558 0744 bowser - ok
12:59:49.0574 0744 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:59:49.0574 0744 BrFiltLo - ok
12:59:49.0590 0744 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:59:49.0590 0744 BrFiltUp - ok
12:59:49.0621 0744 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:59:49.0621 0744 Browser - ok
12:59:49.0652 0744 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:59:49.0652 0744 Brserid - ok
12:59:49.0668 0744 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:59:49.0668 0744 BrSerWdm - ok
12:59:49.0683 0744 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:59:49.0683 0744 BrUsbMdm - ok
12:59:49.0699 0744 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:59:49.0699 0744 BrUsbSer - ok
12:59:49.0714 0744 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:59:49.0714 0744 BTHMODEM - ok
12:59:49.0746 0744 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:59:49.0746 0744 bthserv - ok
12:59:49.0777 0744 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:59:49.0777 0744 cdfs - ok
12:59:49.0808 0744 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:59:49.0808 0744 cdrom - ok
12:59:49.0839 0744 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:59:49.0855 0744 CertPropSvc - ok
12:59:49.0870 0744 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:59:49.0870 0744 circlass - ok
12:59:49.0902 0744 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:59:49.0902 0744 CLFS - ok
12:59:49.0980 0744 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:59:49.0980 0744 clr_optimization_v2.0.50727_32 - ok
12:59:50.0026 0744 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:59:50.0026 0744 clr_optimization_v2.0.50727_64 - ok
12:59:50.0073 0744 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:59:50.0073 0744 clr_optimization_v4.0.30319_32 - ok
12:59:50.0120 0744 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:59:50.0120 0744 clr_optimization_v4.0.30319_64 - ok
12:59:50.0167 0744 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:59:50.0167 0744 CmBatt - ok
12:59:50.0167 0744 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:59:50.0167 0744 cmdide - ok
12:59:50.0214 0744 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:59:50.0229 0744 CNG - ok
12:59:50.0245 0744 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:59:50.0245 0744 Compbatt - ok
12:59:50.0276 0744 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:59:50.0276 0744 CompositeBus - ok
12:59:50.0276 0744 COMSysApp - ok
12:59:50.0416 0744 cpuz132 - ok
12:59:50.0463 0744 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:59:50.0463 0744 crcdisk - ok
12:59:50.0510 0744 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:59:50.0510 0744 CryptSvc - ok
12:59:50.0541 0744 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
12:59:50.0541 0744 CtClsFlt - ok
12:59:50.0588 0744 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:59:50.0588 0744 DcomLaunch - ok
12:59:50.0619 0744 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:59:50.0619 0744 defragsvc - ok
12:59:50.0650 0744 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:59:50.0650 0744 DfsC - ok
12:59:50.0666 0744 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:59:50.0666 0744 Dhcp - ok
12:59:50.0697 0744 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:59:50.0697 0744 discache - ok
12:59:50.0713 0744 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:59:50.0728 0744 Disk - ok
12:59:50.0760 0744 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:59:50.0760 0744 Dnscache - ok
12:59:50.0822 0744 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
12:59:50.0822 0744 DockLoginService - ok
12:59:50.0869 0744 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:59:50.0869 0744 dot3svc - ok
12:59:50.0884 0744 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:59:50.0884 0744 DPS - ok
12:59:50.0916 0744 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:59:50.0916 0744 drmkaud - ok
12:59:50.0994 0744 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:59:51.0009 0744 DXGKrnl - ok
12:59:51.0056 0744 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:59:51.0056 0744 EapHost - ok
12:59:51.0165 0744 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:59:51.0181 0744 ebdrv - ok
12:59:51.0212 0744 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
12:59:51.0212 0744 EFS - ok
12:59:51.0274 0744 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:59:51.0290 0744 ehRecvr - ok
12:59:51.0306 0744 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:59:51.0306 0744 ehSched - ok
12:59:51.0337 0744 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:59:51.0337 0744 elxstor - ok
12:59:51.0384 0744 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:59:51.0384 0744 ErrDev - ok
12:59:51.0430 0744 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:59:51.0430 0744 EventSystem - ok
12:59:51.0446 0744 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:59:51.0446 0744 exfat - ok
12:59:51.0477 0744 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:59:51.0477 0744 fastfat - ok
12:59:51.0524 0744 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:59:51.0540 0744 Fax - ok
12:59:51.0540 0744 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:59:51.0540 0744 fdc - ok
12:59:51.0571 0744 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:59:51.0571 0744 fdPHost - ok
12:59:51.0571 0744 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:59:51.0571 0744 FDResPub - ok
12:59:51.0602 0744 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:59:51.0602 0744 FileInfo - ok
12:59:51.0618 0744 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:59:51.0618 0744 Filetrace - ok
12:59:51.0633 0744 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:59:51.0633 0744 flpydisk - ok
12:59:51.0649 0744 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:59:51.0664 0744 FltMgr - ok
12:59:51.0711 0744 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
12:59:51.0727 0744 FontCache - ok
12:59:51.0805 0744 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:59:51.0805 0744 FontCache3.0.0.0 - ok
12:59:51.0836 0744 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:59:51.0836 0744 FsDepends - ok
12:59:51.0883 0744 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:59:51.0883 0744 Fs_Rec - ok
12:59:51.0914 0744 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:59:51.0914 0744 fvevol - ok
12:59:51.0930 0744 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:59:51.0930 0744 gagp30kx - ok
12:59:51.0976 0744 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:59:51.0992 0744 gpsvc - ok
12:59:52.0070 0744 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:59:52.0070 0744 gupdate - ok
12:59:52.0086 0744 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:59:52.0086 0744 gupdatem - ok
12:59:52.0117 0744 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:59:52.0117 0744 gusvc - ok
12:59:52.0148 0744 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:59:52.0148 0744 hcw85cir - ok
12:59:52.0179 0744 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:59:52.0179 0744 HDAudBus - ok
12:59:52.0210 0744 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
12:59:52.0210 0744 HECIx64 - ok
12:59:52.0226 0744 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:59:52.0242 0744 HidBatt - ok
12:59:52.0257 0744 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:59:52.0257 0744 HidBth - ok
12:59:52.0273 0744 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:59:52.0273 0744 HidIr - ok
12:59:52.0304 0744 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:59:52.0320 0744 hidserv - ok
12:59:52.0335 0744 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
12:59:52.0335 0744 HidUsb - ok
12:59:52.0382 0744 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:59:52.0382 0744 hkmsvc - ok
12:59:52.0413 0744 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:59:52.0413 0744 HomeGroupListener - ok
12:59:52.0460 0744 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:59:52.0460 0744 HomeGroupProvider - ok
12:59:52.0491 0744 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:59:52.0491 0744 HpSAMD - ok
12:59:52.0522 0744 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:59:52.0538 0744 HTTP - ok
12:59:52.0569 0744 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:59:52.0569 0744 hwpolicy - ok
12:59:52.0585 0744 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:59:52.0585 0744 i8042prt - ok
12:59:52.0616 0744 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:59:52.0632 0744 iaStorV - ok
12:59:52.0678 0744 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:59:52.0678 0744 idsvc - ok
12:59:52.0866 0744 [ 0372C154226F7074CD150F475A4870A6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:59:52.0897 0744 igfx - ok
12:59:52.0928 0744 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:59:52.0928 0744 iirsp - ok
12:59:52.0990 0744 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
12:59:52.0990 0744 IKEEXT - ok
12:59:53.0022 0744 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
12:59:53.0022 0744 Impcd - ok
12:59:53.0100 0744 [ 2A7CF87BE453241FE0BAA1C8651E7AA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:59:53.0100 0744 IntcAzAudAddService - ok
12:59:53.0115 0744 [ 49072EDBC5C2F964917D1B585C90ED0A ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
12:59:53.0131 0744 IntcDAud - ok
12:59:53.0162 0744 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:59:53.0162 0744 intelide - ok
12:59:53.0178 0744 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:59:53.0178 0744 intelppm - ok
12:59:53.0209 0744 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:59:53.0209 0744 IPBusEnum - ok
12:59:53.0240 0744 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:59:53.0240 0744 IpFilterDriver - ok
12:59:53.0302 0744 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:59:53.0302 0744 iphlpsvc - ok
12:59:53.0334 0744 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:59:53.0334 0744 IPMIDRV - ok
12:59:53.0365 0744 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:59:53.0365 0744 IPNAT - ok
12:59:53.0380 0744 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:59:53.0380 0744 IRENUM - ok
12:59:53.0396 0744 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:59:53.0396 0744 isapnp - ok
12:59:53.0412 0744 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:59:53.0412 0744 iScsiPrt - ok
12:59:53.0427 0744 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:59:53.0427 0744 kbdclass - ok
12:59:53.0443 0744 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:59:53.0443 0744 kbdhid - ok
12:59:53.0458 0744 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
12:59:53.0458 0744 KeyIso - ok
12:59:53.0490 0744 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:59:53.0490 0744 KSecDD - ok
12:59:53.0536 0744 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:59:53.0536 0744 KSecPkg - ok
12:59:53.0568 0744 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:59:53.0568 0744 ksthunk - ok
12:59:53.0599 0744 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:59:53.0614 0744 KtmRm - ok
12:59:53.0646 0744 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:59:53.0646 0744 LanmanServer - ok
12:59:53.0692 0744 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:59:53.0692 0744 LanmanWorkstation - ok
12:59:53.0708 0744 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:59:53.0708 0744 lltdio - ok
12:59:53.0739 0744 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:59:53.0739 0744 lltdsvc - ok
12:59:53.0755 0744 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:59:53.0755 0744 lmhosts - ok
12:59:53.0802 0744 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:59:53.0817 0744 LMS - ok
12:59:53.0833 0744 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:59:53.0833 0744 LSI_FC - ok
12:59:53.0864 0744 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:59:53.0864 0744 LSI_SAS - ok
12:59:53.0880 0744 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:59:53.0880 0744 LSI_SAS2 - ok
12:59:53.0880 0744 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:59:53.0880 0744 LSI_SCSI - ok
12:59:53.0911 0744 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:59:53.0911 0744 luafv - ok
12:59:53.0958 0744 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:59:53.0958 0744 Mcx2Svc - ok
12:59:53.0973 0744 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:59:53.0973 0744 megasas - ok
12:59:53.0989 0744 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:59:54.0004 0744 MegaSR - ok
12:59:54.0020 0744 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:59:54.0020 0744 MMCSS - ok
12:59:54.0036 0744 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:59:54.0036 0744 Modem - ok
12:59:54.0051 0744 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:59:54.0051 0744 monitor - ok
12:59:54.0098 0744 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:59:54.0098 0744 mouclass - ok
12:59:54.0114 0744 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:59:54.0114 0744 mouhid - ok
12:59:54.0160 0744 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:59:54.0160 0744 mountmgr - ok
12:59:54.0207 0744 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
12:59:54.0207 0744 MpFilter - ok
12:59:54.0238 0744 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:59:54.0238 0744 mpio - ok
12:59:54.0270 0744 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:59:54.0270 0744 mpsdrv - ok
12:59:54.0316 0744 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:59:54.0332 0744 MpsSvc - ok
12:59:54.0363 0744 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:59:54.0363 0744 MRxDAV - ok
12:59:54.0410 0744 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:59:54.0410 0744 mrxsmb - ok
12:59:54.0441 0744 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:59:54.0457 0744 mrxsmb10 - ok
12:59:54.0472 0744 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:59:54.0472 0744 mrxsmb20 - ok
12:59:54.0504 0744 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:59:54.0504 0744 msahci - ok
12:59:54.0519 0744 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:59:54.0519 0744 msdsm - ok
12:59:54.0550 0744 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:59:54.0566 0744 MSDTC - ok
12:59:54.0597 0744 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:59:54.0597 0744 Msfs - ok
12:59:54.0613 0744 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:59:54.0613 0744 mshidkmdf - ok
12:59:54.0660 0744 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:59:54.0660 0744 msisadrv - ok
12:59:54.0691 0744 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:59:54.0691 0744 MSiSCSI - ok
12:59:54.0691 0744 msiserver - ok
12:59:54.0722 0744 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:59:54.0722 0744 MSKSSRV - ok
12:59:54.0784 0744 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
12:59:54.0784 0744 MsMpSvc - ok
12:59:54.0800 0744 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:59:54.0800 0744 MSPCLOCK - ok
12:59:54.0800 0744 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:59:54.0800 0744 MSPQM - ok
12:59:54.0847 0744 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:59:54.0862 0744 MsRPC - ok
12:59:54.0894 0744 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:59:54.0894 0744 mssmbios - ok
12:59:54.0909 0744 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:59:54.0909 0744 MSTEE - ok
12:59:54.0925 0744 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:59:54.0925 0744 MTConfig - ok
12:59:54.0956 0744 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:59:54.0956 0744 Mup - ok
12:59:54.0987 0744 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:59:54.0987 0744 napagent - ok
12:59:55.0018 0744 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:59:55.0018 0744 NativeWifiP - ok
12:59:55.0050 0744 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:59:55.0065 0744 NDIS - ok
12:59:55.0081 0744 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:59:55.0081 0744 NdisCap - ok
12:59:55.0096 0744 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:59:55.0096 0744 NdisTapi - ok
12:59:55.0128 0744 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:59:55.0128 0744 Ndisuio - ok
12:59:55.0159 0744 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:59:55.0159 0744 NdisWan - ok
12:59:55.0206 0744 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:59:55.0206 0744 NDProxy - ok
12:59:55.0237 0744 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:59:55.0237 0744 NetBIOS - ok
12:59:55.0268 0744 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:59:55.0268 0744 NetBT - ok
12:59:55.0284 0744 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
12:59:55.0284 0744 Netlogon - ok
12:59:55.0315 0744 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:59:55.0315 0744 Netman - ok
12:59:55.0346 0744 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:59:55.0346 0744 netprofm - ok
12:59:55.0377 0744 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:59:55.0377 0744 NetTcpPortSharing - ok
12:59:55.0408 0744 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:59:55.0408 0744 nfrd960 - ok
12:59:55.0440 0744 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:59:55.0440 0744 NisDrv - ok
12:59:55.0471 0744 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
12:59:55.0471 0744 NisSrv - ok
12:59:55.0518 0744 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:59:55.0533 0744 NlaSvc - ok
12:59:55.0549 0744 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:59:55.0549 0744 Npfs - ok
12:59:55.0564 0744 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:59:55.0564 0744 nsi - ok
12:59:55.0596 0744 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:59:55.0596 0744 nsiproxy - ok
12:59:55.0658 0744 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:59:55.0674 0744 Ntfs - ok
12:59:55.0720 0744 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:59:55.0720 0744 Null - ok
12:59:55.0767 0744 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:59:55.0767 0744 nvraid - ok
12:59:55.0783 0744 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:59:55.0783 0744 nvstor - ok
12:59:55.0798 0744 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:59:55.0798 0744 nv_agp - ok
12:59:55.0876 0744 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:59:55.0876 0744 odserv - ok
12:59:55.0892 0744 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:59:55.0892 0744 ohci1394 - ok
12:59:55.0923 0744 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:59:55.0923 0744 ose - ok
12:59:55.0954 0744 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:59:55.0954 0744 p2pimsvc - ok
12:59:55.0986 0744 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:59:55.0986 0744 p2psvc - ok
12:59:56.0001 0744 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:59:56.0001 0744 Parport - ok
12:59:56.0032 0744 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:59:56.0032 0744 partmgr - ok
12:59:56.0048 0744 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:59:56.0064 0744 PcaSvc - ok
12:59:56.0079 0744 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:59:56.0079 0744 pci - ok
12:59:56.0110 0744 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:59:56.0110 0744 pciide - ok
12:59:56.0142 0744 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:59:56.0142 0744 pcmcia - ok
12:59:56.0157 0744 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:59:56.0157 0744 pcw - ok
12:59:56.0188 0744 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:59:56.0188 0744 PEAUTH - ok
12:59:56.0266 0744 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:59:56.0266 0744 PerfHost - ok
12:59:56.0329 0744 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:59:56.0344 0744 pla - ok
12:59:56.0391 0744 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:59:56.0391 0744 PlugPlay - ok
12:59:56.0422 0744 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:59:56.0422 0744 PNRPAutoReg - ok
12:59:56.0454 0744 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:59:56.0454 0744 PNRPsvc - ok
12:59:56.0500 0744 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:59:56.0500 0744 PolicyAgent - ok
12:59:56.0547 0744 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:59:56.0547 0744 Power - ok
12:59:56.0578 0744 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:59:56.0578 0744 PptpMiniport - ok
12:59:56.0594 0744 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:59:56.0594 0744 Processor - ok
12:59:56.0641 0744 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:59:56.0641 0744 ProfSvc - ok
12:59:56.0656 0744 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:59:56.0656 0744 ProtectedStorage - ok
12:59:56.0688 0744 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:59:56.0703 0744 Psched - ok
12:59:56.0734 0744 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
12:59:56.0734 0744 PxHlpa64 - ok
12:59:56.0781 0744 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:59:56.0797 0744 ql2300 - ok
12:59:56.0812 0744 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:59:56.0812 0744 ql40xx - ok
12:59:56.0844 0744 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:59:56.0844 0744 QWAVE - ok
12:59:56.0859 0744 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:59:56.0859 0744 QWAVEdrv - ok
12:59:56.0875 0744 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:59:56.0875 0744 RasAcd - ok
12:59:56.0890 0744 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:59:56.0890 0744 RasAgileVpn - ok
12:59:56.0906 0744 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:59:56.0922 0744 RasAuto - ok
12:59:56.0953 0744 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:59:56.0953 0744 Rasl2tp - ok
12:59:57.0000 0744 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:59:57.0000 0744 RasMan - ok
12:59:57.0031 0744 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:59:57.0031 0744 RasPppoe - ok
12:59:57.0046 0744 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:59:57.0046 0744 RasSstp - ok
12:59:57.0062 0744 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:59:57.0062 0744 rdbss - ok
12:59:57.0093 0744 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:59:57.0093 0744 rdpbus - ok
12:59:57.0109 0744 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:59:57.0109 0744 RDPCDD - ok
12:59:57.0109 0744 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:59:57.0109 0744 RDPENCDD - ok
12:59:57.0140 0744 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:59:57.0140 0744 RDPREFMP - ok
12:59:57.0187 0744 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:59:57.0187 0744 RDPWD - ok
12:59:57.0218 0744 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:59:57.0218 0744 rdyboost - ok
12:59:57.0249 0744 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:59:57.0249 0744 RemoteAccess - ok
12:59:57.0280 0744 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:59:57.0280 0744 RemoteRegistry - ok
12:59:57.0296 0744 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:59:57.0296 0744 RpcEptMapper - ok
12:59:57.0327 0744 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:59:57.0327 0744 RpcLocator - ok
12:59:57.0358 0744 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:59:57.0374 0744 RpcSs - ok
12:59:57.0390 0744 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:59:57.0390 0744 rspndr - ok
12:59:57.0421 0744 [ 502B316947EA887CDDD325D4745EB7D0 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
12:59:57.0421 0744 RSUSBSTOR - ok
12:59:57.0452 0744 [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:59:57.0452 0744 RTL8167 - ok
12:59:57.0468 0744 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
12:59:57.0468 0744 SamSs - ok
12:59:57.0499 0744 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:59:57.0499 0744 sbp2port - ok
12:59:57.0530 0744 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:59:57.0530 0744 SCardSvr - ok
12:59:57.0561 0744 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:59:57.0561 0744 scfilter - ok
12:59:57.0624 0744 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:59:57.0639 0744 Schedule - ok
12:59:57.0686 0744 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:59:57.0686 0744 SCPolicySvc - ok
12:59:57.0702 0744 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:59:57.0717 0744 SDRSVC - ok
12:59:57.0748 0744 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
12:59:57.0748 0744 SeaPort - ok
12:59:57.0780 0744 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:59:57.0780 0744 secdrv - ok
12:59:57.0811 0744 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:59:57.0811 0744 seclogon - ok
12:59:57.0842 0744 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
12:59:57.0842 0744 SENS - ok
12:59:57.0858 0744 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:59:57.0858 0744 SensrSvc - ok
12:59:57.0873 0744 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:59:57.0873 0744 Serenum - ok
12:59:57.0904 0744 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:59:57.0904 0744 Serial - ok
12:59:57.0936 0744 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:59:57.0936 0744 sermouse - ok
12:59:57.0982 0744 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:59:57.0982 0744 SessionEnv - ok
12:59:57.0998 0744 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:59:57.0998 0744 sffdisk - ok
12:59:58.0029 0744 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:59:58.0029 0744 sffp_mmc - ok
12:59:58.0045 0744 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:59:58.0045 0744 sffp_sd - ok
12:59:58.0060 0744 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:59:58.0060 0744 sfloppy - ok
12:59:58.0092 0744 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:59:58.0092 0744 SharedAccess - ok
12:59:58.0138 0744 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:59:58.0154 0744 ShellHWDetection - ok
12:59:58.0170 0744 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:59:58.0170 0744 SiSRaid2 - ok
12:59:58.0185 0744 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:59:58.0185 0744 SiSRaid4 - ok
12:59:58.0201 0744 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:59:58.0201 0744 Smb - ok
12:59:58.0216 0744 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:59:58.0216 0744 SNMPTRAP - ok
12:59:58.0248 0744 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:59:58.0248 0744 spldr - ok
12:59:58.0279 0744 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:59:58.0294 0744 Spooler - ok
12:59:58.0388 0744 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:59:58.0419 0744 sppsvc - ok
12:59:58.0450 0744 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:59:58.0450 0744 sppuinotify - ok
12:59:58.0497 0744 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:59:58.0513 0744 srv - ok
12:59:58.0528 0744 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:59:58.0544 0744 srv2 - ok
12:59:58.0560 0744 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:59:58.0560 0744 srvnet - ok
12:59:58.0575 0744 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:59:58.0575 0744 SSDPSRV - ok
12:59:58.0591 0744 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:59:58.0591 0744 SstpSvc - ok
12:59:58.0622 0744 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:59:58.0622 0744 stexstor - ok
12:59:58.0669 0744 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:59:58.0684 0744 stisvc - ok
12:59:58.0716 0744 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:59:58.0716 0744 swenum - ok
12:59:58.0747 0744 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:59:58.0762 0744 swprv - ok
12:59:58.0825 0744 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:59:58.0840 0744 SysMain - ok
12:59:58.0872 0744 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:59:58.0872 0744 TabletInputService - ok
12:59:58.0887 0744 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:59:58.0887 0744 TapiSrv - ok
12:59:58.0903 0744 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:59:58.0918 0744 TBS - ok
12:59:58.0981 0744 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:59:58.0996 0744 Tcpip - ok
12:59:59.0074 0744 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:59:59.0090 0744 TCPIP6 - ok
12:59:59.0137 0744 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:59:59.0137 0744 tcpipreg - ok
12:59:59.0168 0744 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:59:59.0168 0744 TDPIPE - ok
12:59:59.0199 0744 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:59:59.0199 0744 TDTCP - ok
12:59:59.0230 0744 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:59:59.0230 0744 tdx - ok
12:59:59.0246 0744 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:59:59.0246 0744 TermDD - ok
12:59:59.0277 0744 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:59:59.0277 0744 TermService - ok
12:59:59.0308 0744 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:59:59.0308 0744 Themes - ok
12:59:59.0324 0744 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:59:59.0324 0744 THREADORDER - ok
12:59:59.0340 0744 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:59:59.0340 0744 TrkWks - ok
12:59:59.0418 0744 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:59:59.0418 0744 TrustedInstaller - ok
12:59:59.0449 0744 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:59:59.0449 0744 tssecsrv - ok
12:59:59.0480 0744 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:59:59.0480 0744 TsUsbFlt - ok
12:59:59.0511 0744 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:59:59.0511 0744 tunnel - ok
12:59:59.0542 0744 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
12:59:59.0542 0744 TurboB - ok
12:59:59.0558 0744 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
12:59:59.0558 0744 TurboBoost - ok
12:59:59.0589 0744 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:59:59.0589 0744 uagp35 - ok
12:59:59.0620 0744 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:59:59.0620 0744 udfs - ok
12:59:59.0652 0744 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:59:59.0652 0744 UI0Detect - ok
12:59:59.0667 0744 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:59:59.0667 0744 uliagpkx - ok
12:59:59.0698 0744 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
12:59:59.0714 0744 umbus - ok
12:59:59.0730 0744 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:59:59.0745 0744 UmPass - ok
12:59:59.0823 0744 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:59:59.0854 0744 UNS - ok
12:59:59.0886 0744 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:59:59.0886 0744 upnphost - ok
12:59:59.0932 0744 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:59:59.0932 0744 usbccgp - ok
12:59:59.0948 0744 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:59:59.0948 0744 usbcir - ok
12:59:59.0979 0744 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
12:59:59.0979 0744 usbehci - ok
12:59:59.0995 0744 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:59:59.0995 0744 usbhub - ok
13:00:00.0042 0744 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:00:00.0042 0744 usbohci - ok
13:00:00.0073 0744 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:00:00.0073 0744 usbprint - ok
13:00:00.0104 0744 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:00:00.0104 0744 usbscan - ok
13:00:00.0135 0744 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:00:00.0135 0744 USBSTOR - ok
13:00:00.0151 0744 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:00:00.0166 0744 usbuhci - ok
13:00:00.0182 0744 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
13:00:00.0182 0744 usbvideo - ok
13:00:00.0213 0744 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:00:00.0213 0744 UxSms - ok
13:00:00.0229 0744 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:00:00.0229 0744 VaultSvc - ok
13:00:00.0276 0744 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:00:00.0276 0744 vdrvroot - ok
13:00:00.0322 0744 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:00:00.0322 0744 vds - ok
13:00:00.0354 0744 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:00:00.0354 0744 vga - ok
13:00:00.0385 0744 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:00:00.0385 0744 VgaSave - ok
13:00:00.0416 0744 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:00:00.0432 0744 vhdmp - ok
13:00:00.0432 0744 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:00:00.0432 0744 viaide - ok
13:00:00.0463 0744 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:00:00.0463 0744 volmgr - ok
13:00:00.0510 0744 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:00:00.0510 0744 volmgrx - ok
13:00:00.0525 0744 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:00:00.0541 0744 volsnap - ok
13:00:00.0556 0744 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:00:00.0556 0744 vsmraid - ok
13:00:00.0619 0744 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:00:00.0634 0744 VSS - ok
13:00:00.0650 0744 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:00:00.0666 0744 vwifibus - ok
13:00:00.0666 0744 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:00:00.0666 0744 vwififlt - ok
13:00:00.0712 0744 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:00:00.0712 0744 W32Time - ok
13:00:00.0728 0744 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:00:00.0728 0744 WacomPen - ok
13:00:00.0759 0744 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:00:00.0759 0744 WANARP - ok
13:00:00.0775 0744 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:00:00.0775 0744 Wanarpv6 - ok
13:00:00.0837 0744 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:00:00.0853 0744 WatAdminSvc - ok
13:00:00.0915 0744 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:00:00.0931 0744 wbengine - ok
13:00:00.0962 0744 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:00:00.0962 0744 WbioSrvc - ok
13:00:00.0993 0744 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:00:00.0993 0744 wcncsvc - ok
13:00:01.0009 0744 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:00:01.0009 0744 WcsPlugInService - ok
13:00:01.0024 0744 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:00:01.0024 0744 Wd - ok
13:00:01.0071 0744 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:00:01.0087 0744 Wdf01000 - ok
13:00:01.0102 0744 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:00:01.0102 0744 WdiServiceHost - ok
13:00:01.0134 0744 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:00:01.0134 0744 WdiSystemHost - ok
13:00:01.0165 0744 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:00:01.0165 0744 WebClient - ok
13:00:01.0196 0744 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:00:01.0196 0744 Wecsvc - ok
13:00:01.0212 0744 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:00:01.0212 0744 wercplsupport - ok
13:00:01.0227 0744 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:00:01.0243 0744 WerSvc - ok
13:00:01.0274 0744 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:00:01.0274 0744 WfpLwf - ok
13:00:01.0290 0744 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:00:01.0290 0744 WIMMount - ok
13:00:01.0305 0744 WinDefend - ok
13:00:01.0305 0744 WinHttpAutoProxySvc - ok
13:00:01.0368 0744 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:00:01.0368 0744 Winmgmt - ok
13:00:01.0446 0744 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:00:01.0461 0744 WinRM - ok
13:00:01.0524 0744 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:00:01.0524 0744 WinUsb - ok
13:00:01.0570 0744 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:00:01.0586 0744 Wlansvc - ok
13:00:01.0726 0744 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:00:01.0742 0744 wlidsvc - ok
13:00:01.0789 0744 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
13:00:01.0789 0744 wltrysvc - ok
13:00:01.0820 0744 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:00:01.0820 0744 WmiAcpi - ok
13:00:01.0851 0744 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:00:01.0851 0744 wmiApSrv - ok
13:00:01.0882 0744 WMPNetworkSvc - ok
13:00:01.0898 0744 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:00:01.0914 0744 WPCSvc - ok
13:00:01.0945 0744 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:00:01.0945 0744 WPDBusEnum - ok
13:00:01.0960 0744 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:00:01.0960 0744 ws2ifsl - ok
13:00:01.0992 0744 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
13:00:01.0992 0744 wscsvc - ok
13:00:01.0992 0744 WSearch - ok
13:00:02.0070 0744 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:00:02.0085 0744 wuauserv - ok
13:00:02.0132 0744 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:00:02.0132 0744 WudfPf - ok
13:00:02.0148 0744 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:00:02.0148 0744 WUDFRd - ok
13:00:02.0179 0744 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:00:02.0179 0744 wudfsvc - ok
13:00:02.0210 0744 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:00:02.0226 0744 WwanSvc - ok
13:00:02.0226 0744 ================ Scan global ===============================
13:00:02.0257 0744 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:00:02.0288 0744 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
13:00:02.0304 0744 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
13:00:02.0319 0744 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:00:02.0350 0744 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:00:02.0350 0744 [Global] - ok
13:00:02.0350 0744 ================ Scan MBR ==================================
13:00:02.0382 0744 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:00:02.0725 0744 \Device\Harddisk0\DR0 - ok
13:00:02.0725 0744 ================ Scan VBR ==================================
13:00:02.0740 0744 [ D6882CAB9992BEB45569AAEF134498EB ] \Device\Harddisk0\DR0\Partition1
13:00:02.0740 0744 \Device\Harddisk0\DR0\Partition1 - ok
13:00:02.0756 0744 [ 648A5E096581CCEF30C7BBC0DE874E61 ] \Device\Harddisk0\DR0\Partition2
13:00:02.0756 0744 \Device\Harddisk0\DR0\Partition2 - ok
13:00:02.0772 0744 [ 612C1C3F603E31ED72F90C7D8005A7A6 ] \Device\Harddisk0\DR0\Partition3
13:00:02.0772 0744 \Device\Harddisk0\DR0\Partition3 - ok
13:00:02.0772 0744 ============================================================
13:00:02.0772 0744 Scan finished
13:00:02.0772 0744 ============================================================
13:00:02.0772 2260 Detected object count: 0
13:00:02.0787 2260 Actual detected object count: 0
13:00:07.0748 5024 Deinitialize success

Being more than a little ignorant in what I am doing I ran it again and got the following which is a little smaller in size

13:03:14.0212 4812 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
13:03:14.0368 4812 ============================================================
13:03:14.0368 4812 Current date / time: 2013/01/08 13:03:14.0368
13:03:14.0368 4812 SystemInfo:
13:03:14.0368 4812
13:03:14.0368 4812 OS Version: 6.1.7601 ServicePack: 1.0
13:03:14.0368 4812 Product type: Workstation
13:03:14.0368 4812 ComputerName: COLINFOOT-PC
13:03:14.0368 4812 UserName: colinfoot
13:03:14.0368 4812 Windows directory: C:\Windows
13:03:14.0368 4812 System windows directory: C:\Windows
13:03:14.0368 4812 Running under WOW64
13:03:14.0368 4812 Processor architecture: Intel x64
13:03:14.0368 4812 Number of processors: 4
13:03:14.0368 4812 Page size: 0x1000
13:03:14.0368 4812 Boot type: Normal boot
13:03:14.0368 4812 ============================================================
13:03:17.0441 4812 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:03:17.0441 4812 ============================================================
13:03:17.0441 4812 \Device\Harddisk0\DR0:
13:03:17.0441 4812 MBR partitions:
13:03:17.0441 4812 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1388000
13:03:17.0441 4812 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13BA800, BlocksNum 0x7530000
13:03:17.0457 4812 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x88EB000, BlocksNum 0x31A9A800
13:03:17.0457 4812 ============================================================
13:03:17.0488 4812 C: <-> \Device\Harddisk0\DR0\Partition2
13:03:17.0535 4812 D: <-> \Device\Harddisk0\DR0\Partition3
13:03:17.0535 4812 ============================================================
13:03:17.0535 4812 Initialize success
13:03:17.0535 4812 ============================================================
13:03:30.0327 2176 ============================================================
13:03:30.0327 2176 Scan started
13:03:30.0327 2176 Mode: Manual;
13:03:30.0327 2176 ============================================================
13:03:31.0809 2176 ================ Scan system memory ========================
13:03:31.0809 2176 System memory - ok
13:03:31.0809 2176 ================ Scan services =============================
13:03:31.0996 2176 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:03:31.0996 2176 1394ohci - ok
13:03:32.0027 2176 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:03:32.0027 2176 ACPI - ok
13:03:32.0058 2176 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:03:32.0058 2176 AcpiPmi - ok
13:03:32.0277 2176 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:03:32.0277 2176 AdobeFlashPlayerUpdateSvc - ok
13:03:32.0339 2176 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:03:32.0355 2176 adp94xx - ok
13:03:32.0370 2176 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:03:32.0386 2176 adpahci - ok
13:03:32.0401 2176 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:03:32.0401 2176 adpu320 - ok
13:03:32.0433 2176 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:03:32.0433 2176 AeLookupSvc - ok
13:03:32.0495 2176 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
13:03:32.0495 2176 AERTFilters - ok
13:03:32.0542 2176 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:03:32.0557 2176 AFD - ok
13:03:32.0604 2176 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:03:32.0604 2176 agp440 - ok
13:03:32.0635 2176 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:03:32.0651 2176 ALG - ok
13:03:32.0682 2176 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:03:32.0682 2176 aliide - ok
13:03:32.0698 2176 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:03:32.0698 2176 amdide - ok
13:03:32.0729 2176 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:03:32.0729 2176 AmdK8 - ok
13:03:32.0745 2176 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:03:32.0745 2176 AmdPPM - ok
13:03:32.0776 2176 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:03:32.0791 2176 amdsata - ok
13:03:32.0807 2176 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:03:32.0807 2176 amdsbs - ok
13:03:32.0823 2176 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:03:32.0823 2176 amdxata - ok
13:03:32.0885 2176 [ 8B522286C8D6A20133D12225B7759596 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
13:03:32.0885 2176 ApfiltrService - ok
13:03:32.0963 2176 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
13:03:32.0963 2176 AppID - ok
13:03:32.0979 2176 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:03:32.0979 2176 AppIDSvc - ok
13:03:33.0010 2176 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:03:33.0010 2176 Appinfo - ok
13:03:33.0057 2176 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:03:33.0057 2176 arc - ok
13:03:33.0072 2176 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:03:33.0072 2176 arcsas - ok
13:03:33.0103 2176 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:03:33.0103 2176 AsyncMac - ok
13:03:33.0150 2176 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
13:03:33.0150 2176 atapi - ok
13:03:33.0228 2176 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:03:33.0259 2176 AudioEndpointBuilder - ok
13:03:33.0275 2176 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:03:33.0275 2176 AudioSrv - ok
13:03:33.0337 2176 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:03:33.0337 2176 AxInstSV - ok
13:03:33.0400 2176 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:03:33.0415 2176 b06bdrv - ok
13:03:33.0447 2176 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:03:33.0462 2176 b57nd60a - ok
13:03:33.0493 2176 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
13:03:33.0493 2176 BCM42RLY - ok
13:03:33.0618 2176 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
13:03:33.0634 2176 BCM43XX - ok
13:03:33.0712 2176 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:03:33.0712 2176 BDESVC - ok
13:03:33.0759 2176 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:03:33.0759 2176 Beep - ok
13:03:33.0852 2176 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
13:03:33.0868 2176 BFE - ok
13:03:33.0883 2176 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
13:03:33.0930 2176 BITS - ok
13:03:33.0961 2176 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:03:33.0961 2176 blbdrive - ok
13:03:34.0008 2176 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:03:34.0024 2176 bowser - ok
13:03:34.0039 2176 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:03:34.0039 2176 BrFiltLo - ok
13:03:34.0055 2176 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:03:34.0055 2176 BrFiltUp - ok
13:03:34.0117 2176 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
13:03:34.0117 2176 Browser - ok
13:03:34.0149 2176 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:03:34.0149 2176 Brserid - ok
13:03:34.0180 2176 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:03:34.0180 2176 BrSerWdm - ok
13:03:34.0195 2176 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:03:34.0195 2176 BrUsbMdm - ok
13:03:34.0211 2176 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:03:34.0211 2176 BrUsbSer - ok
13:03:34.0227 2176 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:03:34.0227 2176 BTHMODEM - ok
13:03:34.0273 2176 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:03:34.0273 2176 bthserv - ok
13:03:34.0289 2176 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:03:34.0289 2176 cdfs - ok
13:03:34.0336 2176 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
13:03:34.0336 2176 cdrom - ok
13:03:34.0383 2176 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
13:03:34.0383 2176 CertPropSvc - ok
13:03:34.0398 2176 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:03:34.0414 2176 circlass - ok
13:03:34.0429 2176 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:03:34.0445 2176 CLFS - ok
13:03:34.0492 2176 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:03:34.0507 2176 clr_optimization_v2.0.50727_32 - ok
13:03:34.0554 2176 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:03:34.0554 2176 clr_optimization_v2.0.50727_64 - ok
13:03:34.0648 2176 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:03:34.0710 2176 clr_optimization_v4.0.30319_32 - ok
13:03:34.0757 2176 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:03:34.0757 2176 clr_optimization_v4.0.30319_64 - ok
13:03:34.0804 2176 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:03:34.0804 2176 CmBatt - ok
13:03:34.0835 2176 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:03:34.0835 2176 cmdide - ok
13:03:34.0882 2176 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
13:03:34.0897 2176 CNG - ok
13:03:34.0913 2176 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:03:34.0913 2176 Compbatt - ok
13:03:34.0960 2176 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:03:34.0960 2176 CompositeBus - ok
13:03:34.0975 2176 COMSysApp - ok
13:03:35.0241 2176 cpuz132 - ok
13:03:35.0319 2176 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:03:35.0319 2176 crcdisk - ok
13:03:35.0381 2176 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:03:35.0381 2176 CryptSvc - ok
13:03:35.0443 2176 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
13:03:35.0443 2176 CtClsFlt - ok
13:03:35.0506 2176 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:03:35.0506 2176 DcomLaunch - ok
13:03:35.0568 2176 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:03:35.0568 2176 defragsvc - ok
13:03:35.0615 2176 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:03:35.0615 2176 DfsC - ok
13:03:35.0662 2176 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
13:03:35.0662 2176 Dhcp - ok
13:03:35.0693 2176 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:03:35.0693 2176 discache - ok
13:03:35.0724 2176 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:03:35.0724 2176 Disk - ok
13:03:35.0787 2176 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:03:35.0787 2176 Dnscache - ok
13:03:35.0865 2176 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
13:03:35.0865 2176 DockLoginService - ok
13:03:35.0911 2176 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:03:35.0911 2176 dot3svc - ok
13:03:35.0927 2176 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
13:03:35.0927 2176 DPS - ok
13:03:35.0974 2176 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:03:35.0989 2176 drmkaud - ok
13:03:36.0052 2176 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:03:36.0052 2176 DXGKrnl - ok
13:03:36.0083 2176 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:03:36.0099 2176 EapHost - ok
13:03:36.0192 2176 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:03:36.0301 2176 ebdrv - ok
13:03:36.0333 2176 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
13:03:36.0333 2176 EFS - ok
13:03:36.0411 2176 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:03:36.0426 2176 ehRecvr - ok
13:03:36.0457 2176 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:03:36.0457 2176 ehSched - ok
13:03:36.0504 2176 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:03:36.0520 2176 elxstor - ok
13:03:36.0567 2176 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:03:36.0567 2176 ErrDev - ok
13:03:36.0629 2176 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:03:36.0645 2176 EventSystem - ok
13:03:36.0676 2176 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:03:36.0691 2176 exfat - ok
13:03:36.0723 2176 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:03:36.0723 2176 fastfat - ok
13:03:36.0769 2176 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
13:03:36.0801 2176 Fax - ok
13:03:36.0816 2176 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:03:36.0816 2176 fdc - ok
13:03:36.0847 2176 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:03:36.0847 2176 fdPHost - ok
13:03:36.0863 2176 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:03:36.0863 2176 FDResPub - ok
13:03:36.0879 2176 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:03:36.0879 2176 FileInfo - ok
13:03:36.0894 2176 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:03:36.0894 2176 Filetrace - ok
13:03:36.0925 2176 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:03:36.0925 2176 flpydisk - ok
13:03:36.0972 2176 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:03:36.0972 2176 FltMgr - ok
13:03:37.0050 2176 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
13:03:37.0097 2176 FontCache - ok
13:03:37.0222 2176 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:03:37.0222 2176 FontCache3.0.0.0 - ok
13:03:37.0253 2176 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:03:37.0253 2176 FsDepends - ok
13:03:37.0347 2176 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:03:37.0347 2176 Fs_Rec - ok
13:03:37.0393 2176 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:03:37.0393 2176 fvevol - ok
13:03:37.0440 2176 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:03:37.0440 2176 gagp30kx - ok
13:03:37.0503 2176 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
13:03:37.0534 2176 gpsvc - ok
13:03:37.0643 2176 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:03:37.0643 2176 gupdate - ok
13:03:37.0690 2176 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:03:37.0690 2176 gupdatem - ok
13:03:37.0721 2176 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:03:37.0737 2176 gusvc - ok
13:03:37.0752 2176 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:03:37.0752 2176 hcw85cir - ok
13:03:37.0799 2176 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:03:37.0815 2176 HDAudBus - ok
13:03:37.0846 2176 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
13:03:37.0846 2176 HECIx64 - ok
13:03:37.0861 2176 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:03:37.0877 2176 HidBatt - ok
13:03:37.0893 2176 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:03:37.0893 2176 HidBth - ok
13:03:37.0908 2176 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:03:37.0908 2176 HidIr - ok
13:03:37.0939 2176 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:03:37.0939 2176 hidserv - ok
13:03:38.0002 2176 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
13:03:38.0002 2176 HidUsb - ok
13:03:38.0064 2176 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:03:38.0080 2176 hkmsvc - ok
13:03:38.0142 2176 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:03:38.0142 2176 HomeGroupListener - ok
13:03:38.0189 2176 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:03:38.0189 2176 HomeGroupProvider - ok
13:03:38.0236 2176 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:03:38.0251 2176 HpSAMD - ok
13:03:38.0314 2176 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:03:38.0345 2176 HTTP - ok
13:03:38.0376 2176 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:03:38.0376 2176 hwpolicy - ok
13:03:38.0392 2176 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:03:38.0407 2176 i8042prt - ok
13:03:38.0439 2176 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:03:38.0454 2176 iaStorV - ok
13:03:38.0532 2176 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:03:38.0563 2176 idsvc - ok
13:03:39.0016 2176 [ 0372C154226F7074CD150F475A4870A6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
13:03:39.0172 2176 igfx - ok
13:03:39.0219 2176 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:03:39.0219 2176 iirsp - ok
13:03:39.0281 2176 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
13:03:39.0297 2176 IKEEXT - ok
13:03:39.0328 2176 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
13:03:39.0328 2176 Impcd - ok
13:03:39.0484 2176 [ 2A7CF87BE453241FE0BAA1C8651E7AA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:03:39.0484 2176 IntcAzAudAddService - ok
13:03:39.0515 2176 [ 49072EDBC5C2F964917D1B585C90ED0A ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
13:03:39.0515 2176 IntcDAud - ok
13:03:39.0562 2176 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
13:03:39.0562 2176 intelide - ok
13:03:39.0593 2176 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:03:39.0593 2176 intelppm - ok
13:03:39.0624 2176 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:03:39.0624 2176 IPBusEnum - ok
13:03:39.0687 2176 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:03:39.0687 2176 IpFilterDriver - ok
13:03:39.0718 2176 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:03:39.0733 2176 iphlpsvc - ok
13:03:39.0765 2176 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:03:39.0780 2176 IPMIDRV - ok
13:03:39.0796 2176 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:03:39.0796 2176 IPNAT - ok
13:03:39.0827 2176 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:03:39.0827 2176 IRENUM - ok
13:03:39.0843 2176 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:03:39.0843 2176 isapnp - ok
13:03:39.0874 2176 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:03:39.0874 2176 iScsiPrt - ok
13:03:39.0905 2176 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
13:03:39.0905 2176 kbdclass - ok
13:03:39.0921 2176 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
13:03:39.0921 2176 kbdhid - ok
13:03:39.0952 2176 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
13:03:39.0952 2176 KeyIso - ok
13:03:39.0983 2176 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:03:39.0983 2176 KSecDD - ok
13:03:40.0030 2176 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:03:40.0030 2176 KSecPkg - ok
13:03:40.0061 2176 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:03:40.0061 2176 ksthunk - ok
13:03:40.0077 2176 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:03:40.0092 2176 KtmRm - ok
13:03:40.0217 2176 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:03:40.0233 2176 LanmanServer - ok
13:03:40.0264 2176 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:03:40.0264 2176 LanmanWorkstation - ok
13:03:40.0295 2176 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:03:40.0311 2176 lltdio - ok
13:03:40.0342 2176 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:03:40.0342 2176 lltdsvc - ok
13:03:40.0357 2176 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:03:40.0373 2176 lmhosts - ok
13:03:40.0435 2176 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
13:03:40.0435 2176 LMS - ok
13:03:40.0482 2176 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:03:40.0482 2176 LSI_FC - ok
13:03:40.0498 2176 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:03:40.0498 2176 LSI_SAS - ok
13:03:40.0513 2176 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:03:40.0513 2176 LSI_SAS2 - ok
13:03:40.0529 2176 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:03:40.0529 2176 LSI_SCSI - ok
13:03:40.0545 2176 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:03:40.0560 2176 luafv - ok
13:03:40.0591 2176 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:03:40.0591 2176 Mcx2Svc - ok
13:03:40.0607 2176 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:03:40.0623 2176 megasas - ok
13:03:40.0638 2176 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:03:40.0654 2176 MegaSR - ok
13:03:40.0669 2176 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:03:40.0669 2176 MMCSS - ok
13:03:40.0685 2176 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:03:40.0685 2176 Modem - ok
13:03:40.0716 2176 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:03:40.0716 2176 monitor - ok
13:03:40.0747 2176 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
13:03:40.0747 2176 mouclass - ok
13:03:40.0779 2176 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:03:40.0779 2176 mouhid - ok
13:03:40.0841 2176 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:03:40.0841 2176 mountmgr - ok
13:03:40.0919 2176 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
13:03:40.0919 2176 MpFilter - ok
13:03:40.0950 2176 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:03:40.0966 2176 mpio - ok
13:03:40.0981 2176 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:03:40.0997 2176 mpsdrv - ok
13:03:41.0044 2176 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:03:41.0075 2176 MpsSvc - ok
13:03:41.0106 2176 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:03:41.0122 2176 MRxDAV - ok
13:03:41.0169 2176 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:03:41.0169 2176 mrxsmb - ok
13:03:41.0215 2176 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:03:41.0231 2176 mrxsmb10 - ok
13:03:41.0247 2176 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:03:41.0247 2176 mrxsmb20 - ok
13:03:41.0278 2176 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:03:41.0278 2176 msahci - ok
13:03:41.0309 2176 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:03:41.0309 2176 msdsm - ok
13:03:41.0340 2176 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:03:41.0340 2176 MSDTC - ok
13:03:41.0371 2176 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:03:41.0371 2176 Msfs - ok
13:03:41.0403 2176 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:03:41.0403 2176 mshidkmdf - ok
13:03:41.0434 2176 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:03:41.0434 2176 msisadrv - ok
13:03:41.0449 2176 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:03:41.0465 2176 MSiSCSI - ok
13:03:41.0465 2176 msiserver - ok
13:03:41.0496 2176 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:03:41.0496 2176 MSKSSRV - ok
13:03:41.0621 2176 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:03:41.0621 2176 MsMpSvc - ok
13:03:41.0668 2176 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:03:41.0668 2176 MSPCLOCK - ok
13:03:41.0668 2176 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:03:41.0668 2176 MSPQM - ok
13:03:41.0715 2176 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:03:41.0730 2176 MsRPC - ok
13:03:41.0761 2176 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:03:41.0777 2176 mssmbios - ok
13:03:41.0793 2176 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:03:41.0793 2176 MSTEE - ok
13:03:41.0808 2176 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:03:41.0808 2176 MTConfig - ok
13:03:41.0824 2176 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:03:41.0824 2176 Mup - ok
13:03:41.0855 2176 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:03:41.0855 2176 napagent - ok
13:03:41.0902 2176 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:03:41.0902 2176 NativeWifiP - ok
13:03:41.0980 2176 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:03:42.0011 2176 NDIS - ok
13:03:42.0027 2176 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:03:42.0042 2176 NdisCap - ok
13:03:42.0089 2176 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:03:42.0089 2176 NdisTapi - ok
13:03:42.0120 2176 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:03:42.0120 2176 Ndisuio - ok
13:03:42.0151 2176 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:03:42.0151 2176 NdisWan - ok
13:03:42.0198 2176 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:03:42.0214 2176 NDProxy - ok
13:03:42.0229 2176 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:03:42.0229 2176 NetBIOS - ok
13:03:42.0276 2176 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:03:42.0292 2176 NetBT - ok
13:03:42.0307 2176 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:03:42.0307 2176 Netlogon - ok
13:03:42.0354 2176 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:03:42.0370 2176 Netman - ok
13:03:42.0385 2176 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:03:42.0401 2176 netprofm - ok
13:03:42.0417 2176 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:03:42.0432 2176 NetTcpPortSharing - ok
13:03:42.0463 2176 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:03:42.0479 2176 nfrd960 - ok
13:03:42.0541 2176 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:03:42.0541 2176 NisDrv - ok
13:03:42.0619 2176 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
13:03:42.0619 2176 NisSrv - ok
13:03:42.0666 2176 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:03:42.0666 2176 NlaSvc - ok
13:03:42.0697 2176 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:03:42.0697 2176 Npfs - ok
13:03:42.0729 2176 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:03:42.0729 2176 nsi - ok
13:03:42.0729 2176 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:03:42.0729 2176 nsiproxy - ok
13:03:42.0791 2176 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:03:42.0838 2176 Ntfs - ok
13:03:42.0853 2176 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:03:42.0869 2176 Null - ok
13:03:42.0916 2176 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:03:42.0916 2176 nvraid - ok
13:03:42.0947 2176 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:03:42.0947 2176 nvstor - ok
13:03:42.0994 2176 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:03:42.0994 2176 nv_agp - ok
13:03:43.0134 2176 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:03:43.0150 2176 odserv - ok
13:03:43.0181 2176 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:03:43.0181 2176 ohci1394 - ok
13:03:43.0228 2176 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:03:43.0228 2176 ose - ok
13:03:43.0259 2176 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:03:43.0275 2176 p2pimsvc - ok
13:03:43.0290 2176 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:03:43.0306 2176 p2psvc - ok
13:03:43.0337 2176 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:03:43.0337 2176 Parport - ok
13:03:43.0368 2176 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:03:43.0368 2176 partmgr - ok
13:03:43.0384 2176 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:03:43.0384 2176 PcaSvc - ok
13:03:43.0399 2176 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:03:43.0415 2176 pci - ok
13:03:43.0446 2176 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:03:43.0446 2176 pciide - ok
13:03:43.0477 2176 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:03:43.0477 2176 pcmcia - ok
13:03:43.0509 2176 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:03:43.0509 2176 pcw - ok
13:03:43.0524 2176 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:03:43.0555 2176 PEAUTH - ok
13:03:43.0649 2176 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:03:43.0665 2176 PerfHost - ok
13:03:43.0727 2176 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:03:43.0758 2176 pla - ok
13:03:43.0821 2176 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:03:43.0821 2176 PlugPlay - ok
13:03:43.0852 2176 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:03:43.0852 2176 PNRPAutoReg - ok
13:03:43.0883 2176 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:03:43.0883 2176 PNRPsvc - ok
13:03:43.0930 2176 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:03:43.0945 2176 PolicyAgent - ok
13:03:43.0977 2176 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:03:43.0977 2176 Power - ok
13:03:44.0023 2176 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:03:44.0023 2176 PptpMiniport - ok
13:03:44.0039 2176 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:03:44.0039 2176 Processor - ok
13:03:44.0070 2176 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:03:44.0086 2176 ProfSvc - ok
13:03:44.0101 2176 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:03:44.0101 2176 ProtectedStorage - ok
13:03:44.0133 2176 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:03:44.0133 2176 Psched - ok
13:03:44.0164 2176 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
13:03:44.0164 2176 PxHlpa64 - ok
13:03:44.0320 2176 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:03:44.0367 2176 ql2300 - ok
13:03:44.0382 2176 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:03:44.0382 2176 ql40xx - ok
13:03:44.0429 2176 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:03:44.0429 2176 QWAVE - ok
13:03:44.0445 2176 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:03:44.0460 2176 QWAVEdrv - ok
13:03:44.0476 2176 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:03:44.0476 2176 RasAcd - ok
13:03:44.0523 2176 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:03:44.0523 2176 RasAgileVpn - ok
13:03:44.0569 2176 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:03:44.0569 2176 RasAuto - ok
13:03:44.0616 2176 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:03:44.0616 2176 Rasl2tp - ok
13:03:44.0647 2176 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:03:44.0647 2176 RasMan - ok
13:03:44.0679 2176 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:03:44.0679 2176 RasPppoe - ok
13:03:44.0694 2176 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:03:44.0694 2176 RasSstp - ok
13:03:44.0725 2176 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:03:44.0725 2176 rdbss - ok
13:03:44.0757 2176 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:03:44.0757 2176 rdpbus - ok
13:03:44.0772 2176 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:03:44.0772 2176 RDPCDD - ok
13:03:44.0803 2176 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:03:44.0803 2176 RDPENCDD - ok
13:03:44.0819 2176 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:03:44.0819 2176 RDPREFMP - ok
13:03:44.0850 2176 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:03:44.0866 2176 RDPWD - ok
13:03:44.0897 2176 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:03:44.0913 2176 rdyboost - ok
13:03:44.0944 2176 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:03:44.0944 2176 RemoteAccess - ok
13:03:44.0959 2176 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:03:44.0975 2176 RemoteRegistry - ok
13:03:44.0991 2176 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:03:44.0991 2176 RpcEptMapper - ok
13:03:45.0006 2176 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:03:45.0022 2176 RpcLocator - ok
13:03:45.0053 2176 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:03:45.0053 2176 RpcSs - ok
13:03:45.0131 2176 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:03:45.0147 2176 rspndr - ok
13:03:45.0209 2176 [ 502B316947EA887CDDD325D4745EB7D0 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
13:03:45.0240 2176 RSUSBSTOR - ok
13:03:45.0318 2176 [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:03:45.0334 2176 RTL8167 - ok
13:03:45.0349 2176 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:03:45.0349 2176 SamSs - ok
13:03:45.0381 2176 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:03:45.0381 2176 sbp2port - ok
13:03:45.0427 2176 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:03:45.0443 2176 SCardSvr - ok
13:03:45.0474 2176 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:03:45.0474 2176 scfilter - ok
13:03:45.0552 2176 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:03:45.0583 2176 Schedule - ok
13:03:45.0615 2176 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:03:45.0615 2176 SCPolicySvc - ok
13:03:45.0646 2176 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:03:45.0646 2176 SDRSVC - ok
13:03:45.0724 2176 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
13:03:45.0724 2176 SeaPort - ok
13:03:45.0771 2176 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:03:45.0771 2176 secdrv - ok
13:03:45.0802 2176 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:03:45.0802 2176 seclogon - ok
13:03:45.0833 2176 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:03:45.0833 2176 SENS - ok
13:03:45.0849 2176 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:03:45.0849 2176 SensrSvc - ok
13:03:45.0864 2176 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:03:45.0864 2176 Serenum - ok
13:03:45.0880 2176 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:03:45.0895 2176 Serial - ok
13:03:45.0927 2176 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:03:45.0927 2176 sermouse - ok
13:03:45.0973 2176 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:03:45.0973 2176 SessionEnv - ok
13:03:45.0989 2176 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:03:45.0989 2176 sffdisk - ok
13:03:46.0005 2176 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:03:46.0005 2176 sffp_mmc - ok
13:03:46.0020 2176 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:03:46.0020 2176 sffp_sd - ok
13:03:46.0036 2176 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:03:46.0036 2176 sfloppy - ok
13:03:46.0067 2176 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:03:46.0083 2176 SharedAccess - ok
13:03:46.0145 2176 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:03:46.0161 2176 ShellHWDetection - ok
13:03:46.0192 2176 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:03:46.0192 2176 SiSRaid2 - ok
13:03:46.0223 2176 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:03:46.0223 2176 SiSRaid4 - ok
13:03:46.0270 2176 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:03:46.0270 2176 Smb - ok
13:03:46.0317 2176 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:03:46.0317 2176 SNMPTRAP - ok
13:03:46.0332 2176 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:03:46.0332 2176 spldr - ok
13:03:46.0379 2176 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
13:03:46.0410 2176 Spooler - ok
13:03:46.0519 2176 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:03:46.0597 2176 sppsvc - ok
13:03:46.0629 2176 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:03:46.0629 2176 sppuinotify - ok
13:03:46.0675 2176 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:03:46.0675 2176 srv - ok
13:03:46.0691 2176 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:03:46.0707 2176 srv2 - ok
13:03:46.0722 2176 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:03:46.0722 2176 srvnet - ok
13:03:46.0753 2176 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:03:46.0769 2176 SSDPSRV - ok
13:03:46.0785 2176 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:03:46.0785 2176 SstpSvc - ok
13:03:46.0816 2176 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:03:46.0816 2176 stexstor - ok
13:03:46.0863 2176 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:03:46.0894 2176 stisvc - ok
13:03:46.0925 2176 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:03:46.0925 2176 swenum - ok
13:03:47.0003 2176 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:03:47.0019 2176 swprv - ok
13:03:47.0097 2176 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:03:47.0175 2176 SysMain - ok
13:03:47.0206 2176 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:03:47.0206 2176 TabletInputService - ok
13:03:47.0237 2176 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:03:47.0237 2176 TapiSrv - ok
13:03:47.0268 2176 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:03:47.0284 2176 TBS - ok
13:03:47.0346 2176 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:03:47.0409 2176 Tcpip - ok
13:03:47.0471 2176 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:03:47.0487 2176 TCPIP6 - ok
13:03:47.0518 2176 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:03:47.0518 2176 tcpipreg - ok
13:03:47.0549 2176 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:03:47.0549 2176 TDPIPE - ok
13:03:47.0596 2176 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:03:47.0596 2176 TDTCP - ok
13:03:47.0643 2176 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:03:47.0643 2176 tdx - ok
13:03:47.0658 2176 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:03:47.0658 2176 TermDD - ok
13:03:47.0689 2176 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:03:47.0721 2176 TermService - ok
13:03:47.0736 2176 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:03:47.0752 2176 Themes - ok
13:03:47.0752 2176 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:03:47.0767 2176 THREADORDER - ok
13:03:47.0783 2176 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:03:47.0799 2176 TrkWks - ok
13:03:47.0908 2176 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:03:47.0908 2176 TrustedInstaller - ok
13:03:47.0970 2176 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:03:47.0970 2176 tssecsrv - ok
13:03:48.0064 2176 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:03:48.0064 2176 TsUsbFlt - ok
13:03:48.0126 2176 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:03:48.0126 2176 tunnel - ok
13:03:48.0173 2176 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
13:03:48.0189 2176 TurboB - ok
13:03:48.0235 2176 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
13:03:48.0282 2176 TurboBoost - ok
13:03:48.0313 2176 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:03:48.0329 2176 uagp35 - ok
13:03:48.0438 2176 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:03:48.0454 2176 udfs - ok
13:03:48.0501 2176 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:03:48.0501 2176 UI0Detect - ok
13:03:48.0547 2176 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:03:48.0547 2176 uliagpkx - ok
13:03:48.0625 2176 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:03:48.0625 2176 umbus - ok
13:03:48.0672 2176 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:03:48.0672 2176 UmPass - ok
13:03:48.0813 2176 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
13:03:48.0875 2176 UNS - ok
13:03:48.0922 2176 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:03:48.0922 2176 upnphost - ok
13:03:48.0969 2176 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:03:48.0969 2176 usbccgp - ok
13:03:49.0000 2176 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:03:49.0000 2176 usbcir - ok
13:03:49.0015 2176 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:03:49.0015 2176 usbehci - ok
13:03:49.0047 2176 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:03:49.0062 2176 usbhub - ok
13:03:49.0078 2176 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:03:49.0078 2176 usbohci - ok
13:03:49.0109 2176 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:03:49.0109 2176 usbprint - ok
13:03:49.0140 2176 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:03:49.0140 2176 usbscan - ok
13:03:49.0156 2176 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:03:49.0156 2176 USBSTOR - ok
13:03:49.0171 2176 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:03:49.0171 2176 usbuhci - ok
13:03:49.0218 2176 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
13:03:49.0218 2176 usbvideo - ok
13:03:49.0249 2176 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:03:49.0249 2176 UxSms - ok
13:03:49.0265 2176 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:03:49.0265 2176 VaultSvc - ok
13:03:49.0296 2176 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:03:49.0296 2176 vdrvroot - ok
13:03:49.0343 2176 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:03:49.0374 2176 vds - ok
13:03:49.0405 2176 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:03:49.0405 2176 vga - ok
13:03:49.0421 2176 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:03:49.0421 2176 VgaSave - ok
13:03:49.0468 2176 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:03:49.0468 2176 vhdmp - ok
13:03:49.0483 2176 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:03:49.0483 2176 viaide - ok
13:03:49.0499 2176 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:03:49.0515 2176 volmgr - ok
13:03:49.0546 2176 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:03:49.0546 2176 volmgrx - ok
13:03:49.0577 2176 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:03:49.0577 2176 volsnap - ok
13:03:49.0608 2176 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:03:49.0608 2176 vsmraid - ok
13:03:49.0671 2176 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:03:49.0717 2176 VSS - ok
13:03:49.0733 2176 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:03:49.0733 2176 vwifibus - ok
13:03:49.0764 2176 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:03:49.0764 2176 vwififlt - ok
13:03:49.0811 2176 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:03:49.0811 2176 W32Time - ok
13:03:49.0827 2176 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:03:49.0827 2176 WacomPen - ok
13:03:49.0873 2176 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:03:49.0873 2176 WANARP - ok
13:03:49.0873 2176 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:03:49.0873 2176 Wanarpv6 - ok
13:03:49.0951 2176 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:03:49.0983 2176 WatAdminSvc - ok
13:03:50.0045 2176 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:03:50.0092 2176 wbengine - ok
13:03:50.0123 2176 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:03:50.0123 2176 WbioSrvc - ok
13:03:50.0170 2176 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:03:50.0170 2176 wcncsvc - ok
13:03:50.0201 2176 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:03:50.0201 2176 WcsPlugInService - ok
13:03:50.0217 2176 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:03:50.0217 2176 Wd - ok
13:03:50.0263 2176 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:03:50.0295 2176 Wdf01000 - ok
13:03:50.0310 2176 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:03:50.0310 2176 WdiServiceHost - ok
13:03:50.0310 2176 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:03:50.0310 2176 WdiSystemHost - ok
13:03:50.0357 2176 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:03:50.0357 2176 WebClient - ok
13:03:50.0388 2176 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:03:50.0388 2176 Wecsvc - ok
13:03:50.0404 2176 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:03:50.0404 2176 wercplsupport - ok
13:03:50.0435 2176 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:03:50.0435 2176 WerSvc - ok
13:03:50.0482 2176 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:03:50.0482 2176 WfpLwf - ok
13:03:50.0497 2176 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:03:50.0497 2176 WIMMount - ok
13:03:50.0529 2176 WinDefend - ok
13:03:50.0529 2176 WinHttpAutoProxySvc - ok
13:03:50.0591 2176 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:03:50.0591 2176 Winmgmt - ok
13:03:50.0669 2176 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:03:50.0747 2176 WinRM - ok
13:03:50.0841 2176 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:03:50.0841 2176 WinUsb - ok
13:03:50.0887 2176 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:03:50.0919 2176 Wlansvc - ok
13:03:51.0075 2176 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:03:51.0137 2176 wlidsvc - ok
13:03:51.0168 2176 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
13:03:51.0215 2176 wltrysvc - ok
13:03:51.0262 2176 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:03:51.0262 2176 WmiAcpi - ok
13:03:51.0293 2176 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:03:51.0309 2176 wmiApSrv - ok
13:03:51.0324 2176 WMPNetworkSvc - ok
13:03:51.0355 2176 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:03:51.0355 2176 WPCSvc - ok
13:03:51.0402 2176 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:03:51.0402 2176 WPDBusEnum - ok
13:03:51.0418 2176 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:03:51.0418 2176 ws2ifsl - ok
13:03:51.0433 2176 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
13:03:51.0449 2176 wscsvc - ok
13:03:51.0449 2176 WSearch - ok
13:03:51.0527 2176 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:03:51.0605 2176 wuauserv - ok
13:03:51.0652 2176 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:03:51.0652 2176 WudfPf - ok
13:03:51.0683 2176 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:03:51.0699 2176 WUDFRd - ok
13:03:51.0714 2176 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:03:51.0714 2176 wudfsvc - ok
13:03:51.0745 2176 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:03:51.0745 2176 WwanSvc - ok
13:03:51.0777 2176 ================ Scan global ===============================
13:03:51.0808 2176 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:03:51.0839 2176 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
13:03:51.0855 2176 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
13:03:51.0870 2176 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:03:51.0901 2176 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:03:51.0901 2176 [Global] - ok
13:03:51.0917 2176 ================ Scan MBR ==================================
13:03:51.0933 2176 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:03:52.0245 2176 \Device\Harddisk0\DR0 - ok
13:03:52.0245 2176 ================ Scan VBR ==================================
13:03:52.0245 2176 [ D6882CAB9992BEB45569AAEF134498EB ] \Device\Harddisk0\DR0\Partition1
13:03:52.0260 2176 \Device\Harddisk0\DR0\Partition1 - ok
13:03:52.0276 2176 [ 648A5E096581CCEF30C7BBC0DE874E61 ] \Device\Harddisk0\DR0\Partition2
13:03:52.0276 2176 \Device\Harddisk0\DR0\Partition2 - ok
13:03:52.0291 2176 [ 612C1C3F603E31ED72F90C7D8005A7A6 ] \Device\Harddisk0\DR0\Partition3
13:03:52.0307 2176 \Device\Harddisk0\DR0\Partition3 - ok
13:03:52.0307 2176 ============================================================
13:03:52.0307 2176 Scan finished
13:03:52.0307 2176 ============================================================
13:03:52.0323 2656 Detected object count: 0
13:03:52.0323 2656 Actual detected object count: 0
 

dvk01

Derek
Retired Moderator Retired Malware Specialist
Joined
Dec 14, 2002
Messages
56,452
I needed to check for a rootkit as well as the obvious things showing

Delete any existing version of ComboFix you have sitting on your desktop
Please read and follow all these instructions very carefully
Do not edit or remove any information or user names etc, otherwise we cannot fix the problem. If you insist on editing out anything then I will close the topic & refuse to offer any help.

Download ComboFix from Hereto your Desktop.

**Note: It is important that it is saved directly to your desktop and run from the desktop and not any other folder on your computer**
--------------------------------------------------------------------
1. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

  • Very Important! Temporarily disable your anti-virus and anti-malware real-time protection and any script blocking components of them or your firewall before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results" or stop combofix running at all
  • Click on THIS LINK to see instructions on how to temporarily disable many security programs while running combofix. The list does not cover every program. If yours is not listed and you don't know how to disable it, please ask.
  • Remember to re enable the protection again after combofix has finished
--------------------------------------------------------------------
2. Close any open browsers and any other programs you might have running
Double click on renamed combofix.exe & follow the prompts.​
If you are using windows XP It might display a pop up saying that "Recovery console is not installed, do you want to install?"
Please select yes & let it download the files it needs to do this. Once the recovery console is installed Combofix will then offer to scan for malware. Select continue or yes.
When finished, it will produce a report for you.
Please post the "C:\ComboFix.txt" for further review


****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.Read HERE why we disable autoruns

Please do not install any new programs or update anything (always allow your antivirus/antispyware to update) unless told to do so while we are fixing your problem. If combofix alerts to a new version and offers to update, please let it. It is essential we always use the latest version.

Please tell us if it has cured the problems or if there are any outstanding issues

*EXTRA NOTES*
  • If Combofix detects any Rootkit/Bootkit activity on your system it will give a warning and prompt for a reboot, you must allow it to do so.
  • If Combofix reboot is due to a rootkit, the screen may stay black for several minutes on reboot, this is normal
  • If after running Combofix you receive any type of warning message about registry key's being listed for deletion when trying to open certain items, reboot the system and this will fix the issue (Those items will not be deleted)

Post the log in next reply please...
 

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
Thanks for all you are doing I really appreciate it. But I think I need a bit more advice before I run this program from my desktop.
I disabled the firewall as instructed by the link for a Windows 7 application but still got a message that other parts of the WSE such as anti virus were enabled. I only have Windows Security Essentials and have checked the list of all programs installed to make sure I do not have anything else in there but I do not recognise anything that would interfere. Do I need to disable more than the firewall to run the latest recommended program and if so how please. Otherwise is it OK to ignore any further messages if the firewall is disabled?

Thanks again
 

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
Sorry I have checked the site for disabling again and found a bit more instruction so please ignore the last message and I will try again. Thanks
 

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
By turning off MSE though the other user I have run Combofix and then reset MSE.

Here is the log report as put into my C drive, there is another on the desk top that seems different , do you need to see that as well

ComboFix 13-01-08.01 - colinfoot 08/01/2013 21:21:57.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3893.2447 [GMT 0:00]
Running from: c:\users\colinfoot\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\colinfoot\AppData\Roaming\mlangb.dll
c:\windows\security\Database\tmp.edb
c:\windows\SysWow64\system
.
.
((((((((((((((((((((((((( Files Created from 2012-12-08 to 2013-01-08 )))))))))))))))))))))))))))))))
.
.
2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Sue\AppData\Local\temp
2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Richard\AppData\Local\temp
2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Helen\AppData\Local\temp
2013-01-07 19:16 . 2013-01-07 20:43 -------- d-----w- c:\users\Richard\AppData\Local\PowerDVD DX
2013-01-07 14:49 . 2013-01-07 14:49 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2013-01-07 14:49 . 2013-01-07 14:50 -------- d-----w- c:\program files\Microsoft Security Client
2012-12-21 12:44 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-21 12:44 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-21 12:44 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-21 12:44 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-13 06:52 . 2012-11-14 05:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-12-13 06:52 . 2012-11-14 01:44 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-12-13 06:52 . 2012-11-14 07:11 182816 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2012-12-13 06:52 . 2012-11-14 06:00 304640 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2012-12-13 06:52 . 2012-11-14 05:53 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-12-13 06:52 . 2012-11-14 02:56 149552 ----a-w- c:\program files (x86)\Internet Explorer\sqmapi.dll
2012-12-13 06:52 . 2012-11-14 01:48 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-12-12 14:52 . 2012-11-09 05:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-12-12 14:52 . 2012-11-09 04:42 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-12-12 14:52 . 2012-11-22 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-12-12 14:49 . 2012-11-02 05:59 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-12-12 14:49 . 2012-11-02 05:11 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-07 14:59 . 2013-01-07 14:59 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A99C8876-0BA2-4C91-9F89-E1378B774BB4}\gapaengine.dll
2012-12-13 06:54 . 2010-08-11 07:02 67413224 ----a-w- c:\windows\system32\MRT.exe
2012-12-12 23:15 . 2012-03-31 16:38 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-12 23:15 . 2011-05-17 05:23 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-08 09:24 . 2013-01-08 15:50 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{95DBA1C9-5E09-4AC7-B16D-462552320FB1}\mpengine.dll
2012-11-08 09:24 . 2013-01-07 14:59 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-10-16 08:38 . 2012-11-28 09:32 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38 . 2012-11-28 09:32 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39 . 2012-11-28 09:32 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-08-08 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDVDDXSrv"="c:\program files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-12-29 140520]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2009-06-24 409744]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-12-15 498160]
"Garmin Lifetime Updater"="c:\program files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe" [2012-05-23 1466760]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\Helen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
c:\users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
Dropbox.lnk - c:\users\colinfoot\AppData\Roaming\Dropbox\bin\Dropbox.exe [N/A]
.
c:\users\Sue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
c:\users\colinfoot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-07-17 220672]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-04 1255736]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-10-09 92160]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2320920]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2009-09-26 233984]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2013-01-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-31 23:15]
.
2013-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-08 09:01]
.
2013-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-08 09:01]
.
2013-01-08 c:\windows\Tasks\SpeedUpMyPC.job
- c:\program files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe [2011-04-21 15:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2009-09-16 357376]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-09 8158240]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-11-04 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-11-04 390168]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-11-04 408600]
"Broadcom Wireless Manager UI"="c:\program files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" [2009-07-17 4968960]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.bbc.co.uk/news/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MIF5BA~1\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
Wow6432Node-HKCU-Run-Rzkconrx - c:\users\colinfoot\AppData\Roaming\mlangb.dll
Wow6432Node-HKLM-Run-DellSupportCenter - c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe
SafeBoot-mcmscsvc
SafeBoot-MCODS
Toolbar-Locked - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2013-01-08 21:46:40 - machine was rebooted
ComboFix-quarantined-files.txt 2013-01-08 21:46
.
Pre-Run: 8,083,361,792 bytes free
Post-Run: 8,253,181,952 bytes free
.
- - End Of File - - 5F3C075B3006B097E651CD7C58496B14

Something good has happened already as MSE is now visible on my user page

If we are near the end then thank you again and sorry for all the trouble
 

dvk01

Derek
Retired Moderator Retired Malware Specialist
Joined
Dec 14, 2002
Messages
56,452
Looks like that cured it

*Follow these steps to uninstall Combofix and the other tools it downloaded to remove the malware*
* Click START then RUN
* Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the /U, it needs to be there.


This will also purge the restore folder and clear any malware that has been put in there. Now Empty Recycle bin on desktop Then reboot.

go here http://www.thespykiller.co.uk/index.php?page=3 for info on how to tighten your security settings and how to help prevent future attacks.

and scan here http://secunia.com/vulnerability_scanning/personal for out of date & vulnerable common applications on your computer and update whatever it suggests. Download & use the PSI version ( not the OSI, in your browser java version) as I no longer recommend having Java installed on the computer at all, unless it is absolutely necessary, because of the too high risk of malware infiltration

Then pay an urgent visit to windows update & make sure you are fully updated, that will help to plug the security holes that let these pests on in the first place. If windows update doesn't work, please come back & tell us
 

pendle

Thread Starter
Joined
Jan 7, 2013
Messages
8
Thanks I think we may be done. Have uninstalled the software, ditched Java (I await to see if anything I used really needed it) run the checks and updated everwhere suggested.

So thanks again, I am mighty relieved :) and hope I do not catch that critter again

Best wishes
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top